jmeter-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From GitBox <...@apache.org>
Subject [GitHub] [jmeter] kiwi1969 commented on pull request #654: Update SSLManager.java
Date Tue, 24 Aug 2021 18:02:25 GMT

kiwi1969 commented on pull request #654:
URL: https://github.com/apache/jmeter/pull/654#issuecomment-904858530


   Correction on last comment, I was trying to force the no password as error,
   when no password supplied for Z/OS, as on Z/OS is is mandatory.
   But in the end the root cause was the imported key was imported as a cert,
   and resulting messages just confusing
   
   *Russell Shaw*
   Software Engineer - Career
   
   Acro Database Support
   Equifax Inc.
   
   O 770-740-6243
   
   C 678-243-8579
   ***@***.***
   
   
   On Tue, Aug 24, 2021 at 1:58 PM Russell Shaw ***@***.***>
   wrote:
   
   > Also, Z/OS doesn't allow empty password in it's keyrings, and I was trying
   > to remove the no password supplied error that comes out, when there is no
   > key in the keyring
   >
   > *Russell Shaw*
   > Software Engineer - Career
   >
   > Acro Database Support
   > Equifax Inc.
   >
   > O 770-740-6243
   >
   > C 678-243-8579
   > ***@***.***
   >
   >
   > On Tue, Aug 24, 2021 at 1:55 PM Russell Shaw ***@***.***>
   > wrote:
   >
   >> OK.
   >>
   >> I found the real issue I was trying to fix, is that the error message is
   >> not correct, whenever the keyring is supplied, but has no valid key in it
   >> (only certs).
   >> ie It complains about no keyring being supplied, rather than no valid key
   >> in keyring.
   >> This is minor, but leads to confusion when trying to resolve the issue.
   >> It looked to me that the associated } was in wrong place, which caused
   >> the misleading error message to occur.
   >>
   >> I figured it out only by writing a stub program that drives the exact
   >> code that parses the keyring file, and prints out it's findings.
   >> There I could see it was skipping the cert entries.
   >>
   >> I think for Z/OS we probably have to import a PKCS12 file for the system
   >> to actually import as a key, and not a cert.
   >> This part is our internal issue, as our security team will not give us a
   >> PKCS12 file to import.
   >> I gave up on this change, as I cannot get a successful test until our
   >> security team changes their policies.
   >>
   >> Cheers, Russell
   >>
   >> *Russell Shaw*
   >> Software Engineer - Career
   >>
   >> Acro Database Support
   >> Equifax Inc.
   >>
   >> O 770-740-6243
   >>
   >> C 678-243-8579
   >> ***@***.***
   >>
   >>
   >> On Tue, Aug 24, 2021 at 3:49 AM Felix Schumacher <
   >> ***@***.***> wrote:
   >>
   >>> Can you give more information on your real problem? Why should z/OS be
   >>> different in handling non-GUI case than other operating systems?
   >>>
   >>> —
   >>> You are receiving this because you authored the thread.
   >>> Reply to this email directly, view it on GitHub
   >>> <https://protect2.fireeye.com/v1/url?k=92622450-cdf91c80-92620e86-86b9155280ac-3752cdb69b5bc7dd&q=1&e=9fdabfa9-f0e0-483f-a9ab-036c5dc9d6e9&u=https%3A%2F%2Fgithub.com%2Fapache%2Fjmeter%2Fpull%2F654%23issuecomment-904406726>,
   >>> or unsubscribe
   >>> <https://protect2.fireeye.com/v1/url?k=947b2050-cbe01880-947b0a86-86b9155280ac-7602bc8f6f742a15&q=1&e=9fdabfa9-f0e0-483f-a9ab-036c5dc9d6e9&u=https%3A%2F%2Fgithub.com%2Fnotifications%2Funsubscribe-auth%2FAQUUKHVD6HYK64D2ZIZN5L3T6NFGPANCNFSM42AIPDDA>
   >>> .
   >>> Triage notifications on the go with GitHub Mobile for iOS
   >>> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>
   >>> or Android
   >>> <https://protect2.fireeye.com/v1/url?k=6b7d18f4-34e62024-6b7d3222-86b9155280ac-f145ba0dbd725861&q=1&e=9fdabfa9-f0e0-483f-a9ab-036c5dc9d6e9&u=https%3A%2F%2Fplay.google.com%2Fstore%2Fapps%2Fdetails%3Fid%3Dcom.github.android%26utm_campaign%3Dnotification-email>
   >>> .
   >>>
   >>
   
   -- 
   This message contains proprietary information from Equifax which may be 
   confidential. If you are not an intended recipient, please refrain from any 
   disclosure, copying, distribution or use of this information and note that 
   such actions are prohibited. If you have received this transmission in 
   error, please notify by ***@***.*** 
   ***@***.***>. Equifax® is a registered trademark of 
   Equifax Inc. All rights reserved.
   
   
   
   
   
   
   
   
   
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@jmeter.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org



Mime
View raw message