[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221863141 this one just does not want to turn green. :( wanna give it another shot @rhtyd? --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
GitHub user rhtyd reopened a pull request: https://github.com/apache/cloudstack/pull/1511 4.9/master bountycastle changes This PR adds bountycastle related version and code fixes from @DaanHoogland on top of https://github.com/apache/cloudstack/pull/1510 I could not fix java compilation issues when using version 1.54 with openjdk 1.7.0_99, @DaanHoogland can you take over? The branch in on asf remote so you can push/pull as necessary. Thanks. cc @swill You can merge this pull request into a Git repository by running: $ git pull https://github.com/apache/cloudstack 4.9-bountycastle-daan Alternatively you can review and apply these changes as the patch at: https://github.com/apache/cloudstack/pull/1511.patch To close this pull request, make a commit to your master/trunk branch with (at least) the following in the commit message: This closes #1511 commit baebef8e5207ed6e44a8dca04cd293f5f6061c8b Author: Daan HooglandDate: 2016-05-18T11:25:32Z upgrade bouncy castle to version 1.54 commit 98bf0ca1737c5ccb9ff313a6fc8ddd78e3610340 Author: Daan Hoogland Date: 2016-05-18T11:45:41Z pedantic formatting commit 722156da15acd480f8902186d7eae70ed3ab9870 Author: Daan Hoogland Date: 2016-05-24T12:33:29Z add prolonged jetty annotation scanning --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd closed the pull request at: https://github.com/apache/cloudstack/pull/1511 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221220936 rebase, yes. I will keep reformat and functional/technical changes segragated, however. funny enough the .../push run is started again this time around --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221215124 @DaanHoogland I don't know, can you rebase and squash push -f? --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221205073 timeouts in the before_script.sh again but I will investigate locally. @rhtyd do you know why only continuous-integration/travis-ci/pr was run this time and continuous-integration/travis-ci/push was run 4 days ago? --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221190865 tnx @rhtyd --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221189095 Done @DaanHoogland --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd closed the pull request at: https://github.com/apache/cloudstack/pull/1511 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
GitHub user rhtyd reopened a pull request: https://github.com/apache/cloudstack/pull/1511 4.9/master bountycastle changes This PR adds bountycastle related version and code fixes from @DaanHoogland on top of https://github.com/apache/cloudstack/pull/1510 I could not fix java compilation issues when using version 1.54 with openjdk 1.7.0_99, @DaanHoogland can you take over? The branch in on asf remote so you can push/pull as necessary. Thanks. cc @swill You can merge this pull request into a Git repository by running: $ git pull https://github.com/apache/cloudstack 4.9-bountycastle-daan Alternatively you can review and apply these changes as the patch at: https://github.com/apache/cloudstack/pull/1511.patch To close this pull request, make a commit to your master/trunk branch with (at least) the following in the commit message: This closes #1511 commit 74514f6b9906dfd0079097c8076ec75fe68a8244 Author: Daan HooglandDate: 2016-05-18T11:25:32Z upgrade bouncy castle to version 1.54 commit 431f567073f1a912960a742539a6c0829ef5b928 Author: Daan Hoogland Date: 2016-05-18T11:45:41Z pedantic formatting --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221186203 @rhtyd please re-open this one, if you will. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221159200 @DaanHoogland can you rebase and push again to try to kick off Travis and see if we can clear this one up? Thanks... --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-221159015 ### CI RESULTS ``` Tests Run: 85 Skipped: 0 Failed: 0 Errors: 1 Duration: 4h 20m 05s ``` **Summary of the problem(s):** ``` ERROR: Test create, assign, remove of an Internal LB with roundrobin http traffic to 3 vm's in a Redundant VPC -- Traceback (most recent call last): File "/data/git/cs2/cloudstack/test/integration/smoke/test_internal_lb.py", line 617, in test_02_internallb_roundrobin_1RVPC_3VM_HTTP_port80 self.execute_internallb_roundrobin_tests(redundant_vpc_offering) File "/data/git/cs2/cloudstack/test/integration/smoke/test_internal_lb.py", line 685, in execute_internallb_roundrobin_tests client_vm, applb.sourceipaddress, max_http_requests) File "/data/git/cs2/cloudstack/test/integration/smoke/test_internal_lb.py", line 526, in run_ssh_test_accross_hosts ssh_client = self.get_ssh_client(clienthost, 8) File "/data/git/cs2/cloudstack/test/integration/smoke/test_internal_lb.py", line 497, in get_ssh_client self.fail("Unable to create ssh connection: " % e) TypeError: not all arguments converted during string formatting -- Additional details in: /tmp/MarvinLogs/test_network_2G1DDU/results.txt ``` **Associated Uploads** **`/tmp/MarvinLogs/DeployDataCenter__May_22_2016_06_55_39_QFP1LP:`** * [dc_entries.obj](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_22_2016_06_55_39_QFP1LP/dc_entries.obj) * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_22_2016_06_55_39_QFP1LP/failed_plus_exceptions.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_22_2016_06_55_39_QFP1LP/runinfo.txt) **`/tmp/MarvinLogs/test_network_2G1DDU:`** * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_2G1DDU/failed_plus_exceptions.txt) * [results.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_2G1DDU/results.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_2G1DDU/runinfo.txt) **`/tmp/MarvinLogs/test_vpc_routers_LM5LVT:`** * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_LM5LVT/failed_plus_exceptions.txt) * [results.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_LM5LVT/results.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_LM5LVT/runinfo.txt) Uploads will be available until `2016-07-24 02:00:00 +0200 CEST` *Comment created by [`upr comment`](https://github.com/cloudops/upr).* --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220640589 Ok. Travis has been pretty consistently green for PRs recently, so I have not seen this problem elsewhere. I am not sure why there are sometimes more than once Travis job. @rhtyd may know the answers to these questions as he has spent more time with Travis than most of us. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220637398 @swill please see my comment above about the travis failures. BTW why is there sometimes two travis runs (pr and push) and sometimes only one? --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220624878 I have seen similar issues in a couple other PRs. Since this is a PR related to connectivity, I do want to try to get a cleaner CI run if I can. Also, travis is failing which concerns me a bit... --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220595800 Im not sure what to think of those failures. I will run again in clean setup to see if I can get rid of those. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220595610 ### CI RESULTS ``` Tests Run: 85 Skipped: 0 Failed: 2 Errors: 0 Duration: 4h 21m 39s ``` **Summary of the problem(s):** ``` FAIL: test_02_vpc_privategw_static_routes (integration.smoke.test_privategw_acl.TestPrivateGwACL) -- Traceback (most recent call last): File "/data/git/cs1/cloudstack/test/integration/smoke/test_privategw_acl.py", line 262, in test_02_vpc_privategw_static_routes self.performVPCTests(vpc_off) File "/data/git/cs1/cloudstack/test/integration/smoke/test_privategw_acl.py", line 345, in performVPCTests self.check_pvt_gw_connectivity(vm1, public_ip_1, [vm2.nic[0].ipaddress, vm1.nic[0].ipaddress]) File "/data/git/cs1/cloudstack/test/integration/smoke/test_privategw_acl.py", line 704, in check_pvt_gw_connectivity "Ping to VM on Network Tier N from VM in Network Tier A should be successful at least for 2 out of 3 VMs" AssertionError: Ping to VM on Network Tier N from VM in Network Tier A should be successful at least for 2 out of 3 VMs -- Additional details in: /tmp/MarvinLogs/test_network_TNYPXD/results.txt ``` ``` FAIL: test_03_vpc_privategw_restart_vpc_cleanup (integration.smoke.test_privategw_acl.TestPrivateGwACL) -- Traceback (most recent call last): File "/data/git/cs1/cloudstack/test/integration/smoke/test_privategw_acl.py", line 274, in test_03_vpc_privategw_restart_vpc_cleanup self.performVPCTests(vpc_off, restart_with_cleanup = True) File "/data/git/cs1/cloudstack/test/integration/smoke/test_privategw_acl.py", line 351, in performVPCTests self.check_pvt_gw_connectivity(vm1, public_ip_1, [vm2.nic[0].ipaddress, vm1.nic[0].ipaddress]) File "/data/git/cs1/cloudstack/test/integration/smoke/test_privategw_acl.py", line 704, in check_pvt_gw_connectivity "Ping to VM on Network Tier N from VM in Network Tier A should be successful at least for 2 out of 3 VMs" AssertionError: Ping to VM on Network Tier N from VM in Network Tier A should be successful at least for 2 out of 3 VMs -- Additional details in: /tmp/MarvinLogs/test_network_TNYPXD/results.txt ``` **Associated Uploads** **`/tmp/MarvinLogs/DeployDataCenter__May_20_2016_05_58_53_JUS630:`** * [dc_entries.obj](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_20_2016_05_58_53_JUS630/dc_entries.obj) * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_20_2016_05_58_53_JUS630/failed_plus_exceptions.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_20_2016_05_58_53_JUS630/runinfo.txt) **`/tmp/MarvinLogs/test_network_TNYPXD:`** * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_TNYPXD/failed_plus_exceptions.txt) * [results.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_TNYPXD/results.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_TNYPXD/runinfo.txt) **`/tmp/MarvinLogs/test_vpc_routers_3HBG8V:`** * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_3HBG8V/failed_plus_exceptions.txt) * [results.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_3HBG8V/results.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_3HBG8V/runinfo.txt) Uploads will be available until `2016-07-20 02:00:00 +0200 CEST` *Comment created by [`upr comment`](https://github.com/cloudops/upr).* --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user koushik-das commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r64015658 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -429,60 +434,42 @@ private void validateChain(List chain, Certificate cert) { } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); --- End diff -- @DaanHoogland Thanks --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220529332 theare is two timeouts in the before script again and one exception in a teardown method of a test. @swill, are these errors repetible as well? they seem so --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220433360 @swill I must have made a booboo spliting the style parts from the test upgrades. I will look at it over the weekend. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-220431955 This is failing to build for me. ``` Running org.apache.cloudstack.affinity.AffinityApiUnitTest Tests run: 7, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 0.086 sec - in org.apache.cloudstack.affinity.AffinityApiUnitTest Running org.apache.cloudstack.network.lb.CertServiceTest Tests run: 13, Failures: 2, Errors: 0, Skipped: 0, Time elapsed: 0.63 sec <<< FAILURE! - in org.apache.cloudstack.network.lb.CertServiceTest runUploadSslCertBadkeyAlgo(org.apache.cloudstack.network.lb.CertServiceTest) Time elapsed: 0.476 sec <<< FAILURE! java.lang.AssertionError: Did not expect message: Error parsing certificate data Parsing certificate/key failed: Invalid Key format. at org.junit.Assert.fail(Assert.java:88) at org.junit.Assert.assertTrue(Assert.java:41) at org.apache.cloudstack.network.lb.CertServiceTest.runUploadSslCertBadkeyAlgo(CertServiceTest.java:480) runUploadSslCertBadPassword(org.apache.cloudstack.network.lb.CertServiceTest) Time elapsed: 0.006 sec <<< FAILURE! java.lang.AssertionError: Did not expect message: Error parsing certificate data Parsing certificate/key failed: Invalid Key format. at org.junit.Assert.fail(Assert.java:88) at org.junit.Assert.assertTrue(Assert.java:41) at org.apache.cloudstack.network.lb.CertServiceTest.runUploadSslCertBadPassword(CertServiceTest.java:392) Running org.apache.cloudstack.network.lb.ApplicationLoadBalancerTest Tests run: 11, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 0.105 sec - in org.apache.cloudstack.network.lb.ApplicationLoadBalancerTest Running org.cloud.network.router.deployment.VpcRouterDeploymentDefinitionTest Tests run: 16, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 0.17 sec - in org.cloud.network.router.deployment.VpcRouterDeploymentDefinitionTest Running org.cloud.network.router.deployment.RouterDeploymentDefinitionTest Tests run: 39, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 0.113 sec - in org.cloud.network.router.deployment.RouterDeploymentDefinitionTest Results : Failed tests: CertServiceTest.runUploadSslCertBadPassword:392 Did not expect message: Error parsing certificate data Parsing certificate/key failed: Invalid Key format. CertServiceTest.runUploadSslCertBadkeyAlgo:480 Did not expect message: Error parsing certificate data Parsing certificate/key failed: Invalid Key format. Tests run: 359, Failures: 2, Errors: 0, Skipped: 5 ``` --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63852079 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -429,60 +434,42 @@ private void validateChain(List chain, Certificate cert) { } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); --- End diff -- changed --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63851517 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -341,179 +350,172 @@ public SslCertResponse createCertResponse(SslCertVO cert, List chain, Certificate cert) { -List certs = new ArrayList(); -Set anchors = new HashSet(); +final List certs = new ArrayList(); +final Set anchors = new HashSet(); certs.add(cert); // adding for self signed certs certs.addAll(chain); -for (Certificate c : certs) { -if (!(c instanceof X509Certificate)) +for (final Certificate c : certs) { +if (!(c instanceof X509Certificate)) { throw new IllegalArgumentException("Invalid chain format. Expected X509 certificate"); +} -X509Certificate xCert = (X509Certificate)c; +final X509Certificate xCert = (X509Certificate)c; -Principal subject = xCert.getSubjectDN(); -Principal issuer = xCert.getIssuerDN(); +xCert.getSubjectDN(); +xCert.getIssuerDN(); anchors.add(new TrustAnchor(xCert, null)); } -X509CertSelector target = new X509CertSelector(); +final X509CertSelector target = new X509CertSelector(); target.setCertificate((X509Certificate)cert); PKIXBuilderParameters params = null; try { params = new PKIXBuilderParameters(anchors, target); params.setRevocationEnabled(false); params.addCertStore(CertStore.getInstance("Collection", new CollectionCertStoreParameters(certs))); -CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); +final CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); builder.build(params); -} catch (InvalidAlgorithmParameterException e) { +} catch (final InvalidAlgorithmParameterException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (CertPathBuilderException e) { +} catch (final CertPathBuilderException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchAlgorithmException e) { +} catch (final NoSuchAlgorithmException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchProviderException e) { +} catch (final NoSuchProviderException e) { throw new CloudRuntimeException("No provider for certificate validation", e); } } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key, final String password) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); } } public Certificate parseCertificate(String cert) { -PEMReader certPem = new PEMReader(new StringReader(cert)); +final PemReader certPem = new PemReader(new StringReader(cert)); try { -return (Certificate)certPem.readObject(); -} catch (Exception e) { +return
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63851057 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -341,179 +350,172 @@ public SslCertResponse createCertResponse(SslCertVO cert, List chain, Certificate cert) { -List certs = new ArrayList(); -Set anchors = new HashSet(); +final List certs = new ArrayList(); +final Set anchors = new HashSet(); certs.add(cert); // adding for self signed certs certs.addAll(chain); -for (Certificate c : certs) { -if (!(c instanceof X509Certificate)) +for (final Certificate c : certs) { +if (!(c instanceof X509Certificate)) { throw new IllegalArgumentException("Invalid chain format. Expected X509 certificate"); +} -X509Certificate xCert = (X509Certificate)c; +final X509Certificate xCert = (X509Certificate)c; -Principal subject = xCert.getSubjectDN(); -Principal issuer = xCert.getIssuerDN(); +xCert.getSubjectDN(); +xCert.getIssuerDN(); anchors.add(new TrustAnchor(xCert, null)); } -X509CertSelector target = new X509CertSelector(); +final X509CertSelector target = new X509CertSelector(); target.setCertificate((X509Certificate)cert); PKIXBuilderParameters params = null; try { params = new PKIXBuilderParameters(anchors, target); params.setRevocationEnabled(false); params.addCertStore(CertStore.getInstance("Collection", new CollectionCertStoreParameters(certs))); -CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); +final CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); builder.build(params); -} catch (InvalidAlgorithmParameterException e) { +} catch (final InvalidAlgorithmParameterException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (CertPathBuilderException e) { +} catch (final CertPathBuilderException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchAlgorithmException e) { +} catch (final NoSuchAlgorithmException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchProviderException e) { +} catch (final NoSuchProviderException e) { throw new CloudRuntimeException("No provider for certificate validation", e); } } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key, final String password) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); } } public Certificate parseCertificate(String cert) { -PEMReader certPem = new PEMReader(new StringReader(cert)); +final PemReader certPem = new PemReader(new StringReader(cert)); try { -return (Certificate)certPem.readObject(); -} catch (Exception e) { +return
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user koushik-das commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63829633 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -429,60 +434,42 @@ private void validateChain(List chain, Certificate cert) { } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); --- End diff -- Since password is now removed, the exception message also needs to be updated. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user koushik-das commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63828871 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -341,179 +350,172 @@ public SslCertResponse createCertResponse(SslCertVO cert, List chain, Certificate cert) { -List certs = new ArrayList(); -Set anchors = new HashSet(); +final List certs = new ArrayList(); +final Set anchors = new HashSet(); certs.add(cert); // adding for self signed certs certs.addAll(chain); -for (Certificate c : certs) { -if (!(c instanceof X509Certificate)) +for (final Certificate c : certs) { +if (!(c instanceof X509Certificate)) { throw new IllegalArgumentException("Invalid chain format. Expected X509 certificate"); +} -X509Certificate xCert = (X509Certificate)c; +final X509Certificate xCert = (X509Certificate)c; -Principal subject = xCert.getSubjectDN(); -Principal issuer = xCert.getIssuerDN(); +xCert.getSubjectDN(); +xCert.getIssuerDN(); anchors.add(new TrustAnchor(xCert, null)); } -X509CertSelector target = new X509CertSelector(); +final X509CertSelector target = new X509CertSelector(); target.setCertificate((X509Certificate)cert); PKIXBuilderParameters params = null; try { params = new PKIXBuilderParameters(anchors, target); params.setRevocationEnabled(false); params.addCertStore(CertStore.getInstance("Collection", new CollectionCertStoreParameters(certs))); -CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); +final CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); builder.build(params); -} catch (InvalidAlgorithmParameterException e) { +} catch (final InvalidAlgorithmParameterException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (CertPathBuilderException e) { +} catch (final CertPathBuilderException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchAlgorithmException e) { +} catch (final NoSuchAlgorithmException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchProviderException e) { +} catch (final NoSuchProviderException e) { throw new CloudRuntimeException("No provider for certificate validation", e); } } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key, final String password) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); } } public Certificate parseCertificate(String cert) { -PEMReader certPem = new PEMReader(new StringReader(cert)); +final PemReader certPem = new PemReader(new StringReader(cert)); try { -return (Certificate)certPem.readObject(); -} catch (Exception e) { +return
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63688438 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -341,179 +350,172 @@ public SslCertResponse createCertResponse(SslCertVO cert, List chain, Certificate cert) { -List certs = new ArrayList(); -Set anchors = new HashSet(); +final List certs = new ArrayList(); +final Set anchors = new HashSet(); certs.add(cert); // adding for self signed certs certs.addAll(chain); -for (Certificate c : certs) { -if (!(c instanceof X509Certificate)) +for (final Certificate c : certs) { +if (!(c instanceof X509Certificate)) { throw new IllegalArgumentException("Invalid chain format. Expected X509 certificate"); +} -X509Certificate xCert = (X509Certificate)c; +final X509Certificate xCert = (X509Certificate)c; -Principal subject = xCert.getSubjectDN(); -Principal issuer = xCert.getIssuerDN(); +xCert.getSubjectDN(); +xCert.getIssuerDN(); anchors.add(new TrustAnchor(xCert, null)); } -X509CertSelector target = new X509CertSelector(); +final X509CertSelector target = new X509CertSelector(); target.setCertificate((X509Certificate)cert); PKIXBuilderParameters params = null; try { params = new PKIXBuilderParameters(anchors, target); params.setRevocationEnabled(false); params.addCertStore(CertStore.getInstance("Collection", new CollectionCertStoreParameters(certs))); -CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); +final CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); builder.build(params); -} catch (InvalidAlgorithmParameterException e) { +} catch (final InvalidAlgorithmParameterException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (CertPathBuilderException e) { +} catch (final CertPathBuilderException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchAlgorithmException e) { +} catch (final NoSuchAlgorithmException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchProviderException e) { +} catch (final NoSuchProviderException e) { throw new CloudRuntimeException("No provider for certificate validation", e); } } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key, final String password) throws IOException { --- End diff -- applied --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63683861 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -341,179 +350,172 @@ public SslCertResponse createCertResponse(SslCertVO cert, List chain, Certificate cert) { -List certs = new ArrayList(); -Set anchors = new HashSet(); +final List certs = new ArrayList(); +final Set anchors = new HashSet(); certs.add(cert); // adding for self signed certs certs.addAll(chain); -for (Certificate c : certs) { -if (!(c instanceof X509Certificate)) +for (final Certificate c : certs) { +if (!(c instanceof X509Certificate)) { throw new IllegalArgumentException("Invalid chain format. Expected X509 certificate"); +} -X509Certificate xCert = (X509Certificate)c; +final X509Certificate xCert = (X509Certificate)c; -Principal subject = xCert.getSubjectDN(); -Principal issuer = xCert.getIssuerDN(); +xCert.getSubjectDN(); +xCert.getIssuerDN(); anchors.add(new TrustAnchor(xCert, null)); } -X509CertSelector target = new X509CertSelector(); +final X509CertSelector target = new X509CertSelector(); target.setCertificate((X509Certificate)cert); PKIXBuilderParameters params = null; try { params = new PKIXBuilderParameters(anchors, target); params.setRevocationEnabled(false); params.addCertStore(CertStore.getInstance("Collection", new CollectionCertStoreParameters(certs))); -CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); +final CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); builder.build(params); -} catch (InvalidAlgorithmParameterException e) { +} catch (final InvalidAlgorithmParameterException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (CertPathBuilderException e) { +} catch (final CertPathBuilderException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchAlgorithmException e) { +} catch (final NoSuchAlgorithmException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchProviderException e) { +} catch (final NoSuchProviderException e) { throw new CloudRuntimeException("No provider for certificate validation", e); } } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key, final String password) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); } } public Certificate parseCertificate(String cert) { -PEMReader certPem = new PEMReader(new StringReader(cert)); +final PemReader certPem = new PemReader(new StringReader(cert)); try { -return (Certificate)certPem.readObject(); -} catch (Exception e) { +return
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-219993865 @swill the GLB code missing is false alarm. I had removed unused code months ago to get rid of warnings. I am compiling a version without pedantic formatting to facilitate further review --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-219973474 tag:needslove @swill Looking into @koushik-das remarks I noticed global loadbalancing code different in this one compared to the previous merge commit! --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-219971607 @koushik-das most significantly around line 690 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-219971144 @koushik-das I will look at those two comment, thanks and no, quite significant changes were done in the NetscalerResource. You are right that a lot of them were final keywords and brackets `n' braces but also the usage of PemWriter had to change in that file. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user koushik-das commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-219945994 @DaanHoogland Not able to see diffs for NetscalerResource.java, are the changes mostly related to adding 'final' keyword? Provided some comments, rest of the code LGTM. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user koushik-das commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63655432 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -341,179 +350,172 @@ public SslCertResponse createCertResponse(SslCertVO cert, List chain, Certificate cert) { -List certs = new ArrayList(); -Set anchors = new HashSet(); +final List certs = new ArrayList(); +final Set anchors = new HashSet(); certs.add(cert); // adding for self signed certs certs.addAll(chain); -for (Certificate c : certs) { -if (!(c instanceof X509Certificate)) +for (final Certificate c : certs) { +if (!(c instanceof X509Certificate)) { throw new IllegalArgumentException("Invalid chain format. Expected X509 certificate"); +} -X509Certificate xCert = (X509Certificate)c; +final X509Certificate xCert = (X509Certificate)c; -Principal subject = xCert.getSubjectDN(); -Principal issuer = xCert.getIssuerDN(); +xCert.getSubjectDN(); +xCert.getIssuerDN(); anchors.add(new TrustAnchor(xCert, null)); } -X509CertSelector target = new X509CertSelector(); +final X509CertSelector target = new X509CertSelector(); target.setCertificate((X509Certificate)cert); PKIXBuilderParameters params = null; try { params = new PKIXBuilderParameters(anchors, target); params.setRevocationEnabled(false); params.addCertStore(CertStore.getInstance("Collection", new CollectionCertStoreParameters(certs))); -CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); +final CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); builder.build(params); -} catch (InvalidAlgorithmParameterException e) { +} catch (final InvalidAlgorithmParameterException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (CertPathBuilderException e) { +} catch (final CertPathBuilderException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchAlgorithmException e) { +} catch (final NoSuchAlgorithmException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchProviderException e) { +} catch (final NoSuchProviderException e) { throw new CloudRuntimeException("No provider for certificate validation", e); } } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key, final String password) throws IOException { +try (final PemReader pemReader = new PemReader(new StringReader(key));) { +final PemObject pemObject = pemReader.readPemObject(); +final byte[] content = pemObject.getContent(); +final PKCS8EncodedKeySpec privKeySpec = new PKCS8EncodedKeySpec(content); +final KeyFactory factory = KeyFactory.getInstance("RSA", "BC"); +return factory.generatePrivate(privKeySpec); +} catch (NoSuchAlgorithmException | NoSuchProviderException e) { +throw new IOException("No encryption provider available.", e); +} catch (final InvalidKeySpecException e) { throw new IOException("Invalid Key format or invalid password.", e); } } public Certificate parseCertificate(String cert) { -PEMReader certPem = new PEMReader(new StringReader(cert)); +final PemReader certPem = new PemReader(new StringReader(cert)); try { -return (Certificate)certPem.readObject(); -} catch (Exception e) { +return
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user koushik-das commented on a diff in the pull request: https://github.com/apache/cloudstack/pull/1511#discussion_r63655061 --- Diff: server/src/org/apache/cloudstack/network/lb/CertServiceImpl.java --- @@ -341,179 +350,172 @@ public SslCertResponse createCertResponse(SslCertVO cert, List chain, Certificate cert) { -List certs = new ArrayList(); -Set anchors = new HashSet(); +final List certs = new ArrayList(); +final Set anchors = new HashSet(); certs.add(cert); // adding for self signed certs certs.addAll(chain); -for (Certificate c : certs) { -if (!(c instanceof X509Certificate)) +for (final Certificate c : certs) { +if (!(c instanceof X509Certificate)) { throw new IllegalArgumentException("Invalid chain format. Expected X509 certificate"); +} -X509Certificate xCert = (X509Certificate)c; +final X509Certificate xCert = (X509Certificate)c; -Principal subject = xCert.getSubjectDN(); -Principal issuer = xCert.getIssuerDN(); +xCert.getSubjectDN(); +xCert.getIssuerDN(); anchors.add(new TrustAnchor(xCert, null)); } -X509CertSelector target = new X509CertSelector(); +final X509CertSelector target = new X509CertSelector(); target.setCertificate((X509Certificate)cert); PKIXBuilderParameters params = null; try { params = new PKIXBuilderParameters(anchors, target); params.setRevocationEnabled(false); params.addCertStore(CertStore.getInstance("Collection", new CollectionCertStoreParameters(certs))); -CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); +final CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", "BC"); builder.build(params); -} catch (InvalidAlgorithmParameterException e) { +} catch (final InvalidAlgorithmParameterException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (CertPathBuilderException e) { +} catch (final CertPathBuilderException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchAlgorithmException e) { +} catch (final NoSuchAlgorithmException e) { throw new IllegalArgumentException("Invalid certificate chain", e); -} catch (NoSuchProviderException e) { +} catch (final NoSuchProviderException e) { throw new CloudRuntimeException("No provider for certificate validation", e); } } -public PrivateKey parsePrivateKey(String key, String password) throws IOException { - -PasswordFinder pGet = null; - -if (password != null) -pGet = new KeyPassword(password.toCharArray()); - -PEMReader privateKey = new PEMReader(new StringReader(key), pGet); -Object obj = null; -try { -obj = privateKey.readObject(); -} finally { -IOUtils.closeQuietly(privateKey); -} - -try { - -if (obj instanceof KeyPair) -return ((KeyPair)obj).getPrivate(); - -return (PrivateKey)obj; - -} catch (Exception e) { +public PrivateKey parsePrivateKey(final String key, final String password) throws IOException { --- End diff -- @DaanHoogland 'password' is not used, if not needed please remove it. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-219088252 This one is coming back with a clean bill of health. I think we are ready on this one. Can I get some code review? Thanks... --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-219088009 ### CI RESULTS ``` Tests Run: 85 Skipped: 0 Failed: 0 Errors: 0 Duration: 9h 21m 07s ``` **Associated Uploads** **`/tmp/MarvinLogs/DeployDataCenter__May_12_2016_22_51_15_RMVFB8:`** * [dc_entries.obj](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_12_2016_22_51_15_RMVFB8/dc_entries.obj) * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_12_2016_22_51_15_RMVFB8/failed_plus_exceptions.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/DeployDataCenter__May_12_2016_22_51_15_RMVFB8/runinfo.txt) **`/tmp/MarvinLogs/test_network_B5H17M:`** * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_B5H17M/failed_plus_exceptions.txt) * [results.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_B5H17M/results.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_network_B5H17M/runinfo.txt) **`/tmp/MarvinLogs/test_vpc_routers_R4QHHL:`** * [failed_plus_exceptions.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_R4QHHL/failed_plus_exceptions.txt) * [results.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_R4QHHL/results.txt) * [runinfo.txt](https://objects-east.cloud.ca/v1/e465abe2f9ae4478b9fff416eab61bd9/PR1511/tmp/MarvinLogs/test_vpc_routers_R4QHHL/runinfo.txt) Uploads will be available until `2016-07-13 02:00:00 +0200 CEST` *Comment created by [`upr comment`](https://github.com/cloudops/upr).* --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218714480 @rhtyd the issue seems to occur in the prepare script not in the tests: ./tools/travis/before_script.sh --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218713732 @DaanHoogland there is a known issue in test_list_ids_parameter test causing issue. You can force travis by doing a pull --rebase and/or git commit --amend and then push -f --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218712059 @swill, I have to correct myself. The timeout is in the before_script.sh. This is run several times without problems and then fails in a test set. In the 'push' set above it fails when running before executing test set "component/test_snapshots component/test_acl_listvolume". In the 'pr' suite it fails before executing "smoke/test_hosts smoke/test_internal_lb smoke/test_iso smoke/test_list_ids_parameter smoke/test_loadbalance smoke/test_multipleips_per_nic smoke/test_network smoke/test_network_acl smoke/test_nic smoke/test_nic_adapter_type smoke/test_non_contigiousvlan". I don't know how to look up prior runs but IMMSMC prior failures where at different places. If someone has a suggestion on how to force the issue preferrably outside of travis), please --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218699576 @rhtyd thanks, looks like @swill is right and this needs more tlc. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218656345 @DaanHoogland done --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd closed the pull request at: https://github.com/apache/cloudstack/pull/1511 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
GitHub user rhtyd reopened a pull request: https://github.com/apache/cloudstack/pull/1511 4.9/master bountycastle changes This PR adds bountycastle related version and code fixes from @DaanHoogland on top of https://github.com/apache/cloudstack/pull/1510 I could not fix java compilation issues when using version 1.54 with openjdk 1.7.0_99, @DaanHoogland can you take over? The branch in on asf remote so you can push/pull as necessary. Thanks. cc @swill You can merge this pull request into a Git repository by running: $ git pull https://github.com/apache/cloudstack 4.9-bountycastle-daan Alternatively you can review and apply these changes as the patch at: https://github.com/apache/cloudstack/pull/1511.patch To close this pull request, make a commit to your master/trunk branch with (at least) the following in the commit message: This closes #1511 commit 2d82198acad1cab0755cfc18bdbc5ba7ee8f66ca Author: Daan HooglandDate: 2016-04-22T10:58:33Z maven: upgrade bounty castle version to 1.54 Upgrades bountycastle dependency version to bcprov-15on v1.54 commit 4817cb6ab1ed94a2a6c056b6d09f8219a98c04a1 Author: Daan Hoogland Date: 2016-04-25T12:05:40Z use more safe getCertificate(s) call --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218542671 Good point, I am numb to travis timeouts. RM work remnance :( --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218503116 @DaanHoogland well a timeout in combination with a connection is not being able to be established seems relevant since it is related to the code that has changed. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218473575 a timeout @swill. in travis that is not a good indication of not working. I wouldn't know where to look. @rhtyd can you close and reopen? --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218458113 the travis logs seem to indicate that something is not working... --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-218411583 I've rebased against latest master and pushed -f --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-216305206 @DaanHoogland please rebase and push -f again, to re-kickoff Travis; I'll review and test this change soon against a real KVM env tomorrow --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-216287103 I need some code reviews on this one. Also, @DaanHoogland you may have to push again. Our lovely checkers are being annoying again... --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-216229542 @DaanHoogland please rebase against latest master; after that I can help test this in my env. Thanks. tag:needlove --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214463216 Just finished all reruns of failing tests in the bubble. They all succeeded. [1511.results.network.txt](https://github.com/apache/cloudstack/files/235077/1511.results.network.txt) [1511.results.vpc_routers.txt](https://github.com/apache/cloudstack/files/235078/1511.results.vpc_routers.txt) [1511.results.loadbalance.txt](https://github.com/apache/cloudstack/files/235079/1511.results.loadbalance.txt) [1511.results.ssvm.txt](https://github.com/apache/cloudstack/files/235080/1511.results.ssvm.txt) --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214459138 Thank you sir. :) --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214458410 I found one bug and added a commit to solve it. I will keep at tjis one for a while. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214455195 Lets get some CI results in here so we can start to figure out what is going on. I believe I had a bunch of problems with this PR before it was broken out, so I want to make sure we understand what is going on. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214454225 @swill it seems the berfore script is failing sometimes. I don't think this is a problem with the PR itself. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-21297 I will run those failed travis tests in the bubble. I am seeing some failures as well so this needs more work --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user swill commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214414511 Thanks @DaanHoogland. Travis seems to be upset with a couple errors. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214297629 @swill I started the smoke tests for this --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user rhtyd commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214249307 @DaanHoogland thanks, if we can migrate to Java8 I won't mind not fixing the issue for 1.7 at all --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---
[GitHub] cloudstack pull request: 4.9/master bountycastle changes
Github user DaanHoogland commented on the pull request: https://github.com/apache/cloudstack/pull/1511#issuecomment-214243282 @rhtyd I am using 1.8 exclusively atm. I will see if I find any problems in that. may look at 1.7 someday. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is enabled but not working, please contact infrastructure at infrastruct...@apache.org or file a JIRA ticket with INFRA. ---