[jira] [Updated] (SOLR-9028) fix bugs in (add sanity checks for) SSL clientAuth testing

Fri, 22 Apr 2016 15:47:27 -0700 

     [ 
https://issues.apache.org/jira/browse/SOLR-9028?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Hoss Man updated SOLR-9028:
---------------------------
    Attachment: SOLR-9028.patch


bq. Fails for me on OS X 10.11.4 ...

Thanks steve,

The failure you're seeing seems to jive with what was reported in SOLR-3854 
when the choice was made to explicitly disable all clientAuth testing on OSX -- 
it would be nice to get to the bottom of that, and i have some theories (see 
nocommits still in patch) but i'm not going to stress out about it too much 
just yet.

Here's an update patch that resolves most of the nocommits in 
TestMiniSolrCloudClusterSSL.

I still need to review & sanity check one expected failure case in that class, 
and I want to write another "test the test" class that _does_ rely on 
SolrTestCaseJ4's randomization logic to initialize a SSLTestConfig, but then 
spot checks that the clients/servers created by 
SolrTestCaseJ4/MiniSolrCloudCluster match the expectations based on whats in 
SSLTestConfig.


> fix bugs in (add sanity checks for) SSL clientAuth testing
> ----------------------------------------------------------
>
>                 Key: SOLR-9028
>                 URL: https://issues.apache.org/jira/browse/SOLR-9028
>             Project: Solr
>          Issue Type: Bug
>            Reporter: Hoss Man
>            Assignee: Hoss Man
>         Attachments: SOLR-9028.patch, SOLR-9028.patch, os.x.failure.txt
>
>
> While looking into SOLR-8970 i realized there was a whole heap of problems 
> with how clientAuth was being handled in tests.  Notably: it wasn't actaully 
> being used when the randomization selects it (aparently due to a copy/paste 
> mistake in SOLR-7166).  But there are few other misc issues (improper usage 
> of sysprops overrides for tests, missuage of keystore/truststore in test 
> clients, etc..)
> I'm working up a patch to fix all of this, and add some much needed tests to 
> *explicitly* verify both SSL and clientAuth that will include some "false 
> positive" verifications, and some "test the test" checks.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to