Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Truststore shipped with the product has 4 expired certs #8479

Closed
madurangasiriwardena opened this issue Jun 10, 2020 · 1 comment
Closed

Truststore shipped with the product has 4 expired certs #8479

madurangasiriwardena opened this issue Jun 10, 2020 · 1 comment
Assignees
@pulasthi7
Labels
identity-core Identity runtime and core development Priority/Highest Severity/Critical Type/Task
Milestone
5.11.0-Alpha2

Comments

@madurangasiriwardena
Copy link
Member

Describe the issue:
Truststore shipped with the product has 4 expired certs atm. Because of this below error logs are printed in server startup.

[2020-06-10 11:23:12,145] []  WARN {org.apache.tomcat.util.net.SSLUtilBase} - jsseUtil.trustedCertNotValid
[2020-06-10 11:23:12,146] []  WARN {org.apache.tomcat.util.net.SSLUtilBase} - jsseUtil.trustedCertNotValid
[2020-06-10 11:23:12,146] []  WARN {org.apache.tomcat.util.net.SSLUtilBase} - jsseUtil.trustedCertNotValid
[2020-06-10 11:23:12,146] []  WARN {org.apache.tomcat.util.net.SSLUtilBase} - jsseUtil.trustedCertNotValid

Need to clean/add new trusted certs.
@GANGANI GANGANI mentioned this issue Jul 3, 2020
Merged
@malithie malithie added the identity-core Identity runtime and core development label Jul 6, 2020
@thanujalk thanujalk added this to the 5.11.0-Beta milestone Sep 10, 2020
@pulasthi7 pulasthi7 mentioned this issue Sep 22, 2020
Closed
@pulasthi7 pulasthi7 self-assigned this Sep 22, 2020
@pulasthi7
Copy link
Contributor

Checked the latest JDKs(jdk15, jdk1.8.261) and found no new certificates for the following,

KEYNECTIS CA
AddTrust Class 1 CA
AddTrust Qualified CA
AddTrust External CA

Hence closing.

Created wso2/carbon-kernel#2775 to track adding new CA certs.

@pulasthi7 pulasthi7 modified the milestones: 5.11.0-Beta, 5.11.0-Alpha2 Sep 24, 2020
@chanikag chanikag mentioned this issue Apr 1, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@pulasthi7 pulasthi7

Labels
identity-core Identity runtime and core development Priority/Highest Severity/Critical Type/Task
Projects
None yet
Milestone
5.11.0-Alpha2
Development

No branches or pull requests
4 participants
@madurangasiriwardena @pulasthi7 @thanujalk @malithie