vavrtom commented on issue #44: QPID-8367 [Broker-J] Trusted CA revocation list URL: https://github.com/apache/qpid-broker-j/pull/44#issuecomment-578053439 Hi Alex, generating certificates lasts about 10 - 15 seconds on i5-4570. It looks like Bouncy Castle supports generating CRLs (https://www.bouncycastle.org/wiki/display/JA1/X.509+Certificate+Revocation+Lists), I guess it should be possible to generate all test certificates. I think it is good idea to use Bouncy Castle, but I suggest to solve generating test certificates in different JIRA. I left generated certificates in repository for now. When generating by Bouncy Castle will be in place, test certificates can be removed from repository. Changes done: * certificates moved to qpid-test-utils * data URLs are allowed for CRL file * renamed attributes in AbstractTruststore and related files * AuthenticationTest * http server is based on jetty (I chose com.sun.net.httpserver.HttpServer because it is included in JVM) * if port is occupied, tests using http server are skipped * removed KeystoreTestBase * removed hardcoded separator from class TestSSLConstants * doc book module updated Best Regards, Tomas
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
