New docker version and correction of password #1
Conversation
|
Thanks for the PR, I stumbled upon this as I saw an "Invalid keystore format" error message. I think, the root cause can be found here: https://support.oracle.com/knowledge/More%20Applications%20and%20Technologies/2847060_1.html The Java runtime in the 5.3.1 image is "OpenJDK Runtime Environment (Zulu 8.38.0.13-CA-linux64) (build 1.8.0_212-b04)" and I generated my keystores with Java 20, so that the problem seems to correlate with the Oracle support information: "An "Invalid keystore format" error occurs when a keystore is read by a JDK version lower than a keystore generated with JDK 8u301 and higher. [...]" The 6.2.4 images have a much newer runtime: OpenJDK Runtime Environment Zulu11.54+25-CA (build 11.0.14.1+1-LTS) Further Oracle notes: "In Java 8u301 release, a new fix went in to upgrade the default PKCS12 encryption algorithm, as noted in Java 8u301 release notes at https://www.oracle.com/java/technologies/javase/8all-relnotes.html#R180_301 ➜ Upgraded the Default PKCS12 Encryption Algorithms For compatibility, a new system property named keystore.pkcs12.legacy is defined that will revert the algorithms to use the older, weaker algorithms. There is no value defined for this property. |
|
Glad someone got some use out of it! |
|
I've contributed some refactoring in another PR: #2 |
I had trouble getting this running with the old docker version since the broker would crash due to some formatting problems with the keystore. After updating to the latest base images this problem disappeared. I also noticed that control center would not start due to incorrect password. I corrected the java options to have the correct password and it started just fine.
Thank you for making this project, it has been very useful for me so far for testing purposes.