Opened 6 years ago
Closed 4 years ago
#15748 closed defect (fixed)
Remote control HTTPS stays broken when keystore is unopenable
Reported by: | midgard | Owned by: | Don-vip |
---|---|---|---|
Priority: | normal | Milestone: | 19.10 |
Component: | Core remotecontrol | Version: | |
Keywords: | template_report https certificate | Cc: | stoecker |
Description
What steps will reproduce the problem?
- Remove preferences.xml (sometimes it gets corrupted and discarded, so this can occur naturally)
- remotecontrol/josm.keystore is now useless because the key for it is lost
- Open JOSM
What is the expected result?
JOSM discards the keystore, creates a new one.
What happens instead?
JOSM logs the messages below and does not start the remote control over HTTPS. It will never again start over HTTPS until you manually remove the file remotecontrol/josm.keystore.
INFO: RemoteControl::Accepting remote connections on /127.0.0.1:8111
INFO: RemoteControl::Accepting remote connections on /0:0:0:0:0:0:0:1:8111
FINE: java.io.IOException: Keystore was tampered with, or password was incorrect. Cause: java.security.UnrecoverableKeyException: Password verification failed
WARNING: Cannot start IPv4 remotecontrol https server on port 8112: Keystore was tampered with, or password was incorrect
FINE: java.io.IOException: Keystore was tampered with, or password was incorrect. Cause: java.security.UnrecoverableKeyException: Password verification failed
WARNING: Cannot start IPv6 remotecontrol https server on port 8112: Keystore was tampered with, or password was incorrect
Please provide any additional information below. Attach a screenshot if possible.
URL:http://josm.openstreetmap.de/svn/trunk Repository:UUID: 0c6e7542-c601-0410-84e7-c038aed88b3b Last:Changed Date: 2017-12-31 03:09:43 +0100 (Sun, 31 Dec 2017) Build-Date:2017-12-31 02:33:46 Revision:13265 Relative:URL: ^/trunk Identification: JOSM/1.5 (13265) Linux Memory Usage: 407 MB / 1749 MB (311 MB allocated, but free) Java version: 1.8.0_144-b01, Oracle Corporation, OpenJDK 64-Bit Server VM VM arguments: [-Djosm.restart=true, -Dawt.useSystemAAFontSettings=on] Plugins: + Mapillary (v1.5.9) + apache-commons (33668) + apache-http (32699) + buildings_tools (33735) + ext_tools (33889) + reverter (33865) + tageditor (33806) + todo (30303) + turnlanes-tagging (260) + turnrestrictions (33780) + utilsplugin2 (33742) Last errors/warnings: - W: No configuration settings found. Using hardcoded default values for all pools. - W: Cannot start IPv4 remotecontrol https server on port 8112: Keystore was tampered with, or password was incorrect - W: Cannot start IPv6 remotecontrol https server on port 8112: Keystore was tampered with, or password was incorrect
Attachments (0)
Change History (24)
comment:1 Changed 6 years ago by
Keywords: | https certificate added |
---|
comment:2 Changed 6 years ago by
Okay, that's fine if it's just for localhost. Just make sure to coordinate with the osm-website guys. ;)
comment:4 Changed 6 years ago by
Milestone: | → 18.05 |
---|
comment:5 Changed 6 years ago by
Cc: | stoecker added |
---|
This also needs to be fixed if https support is kept.
comment:6 Changed 6 years ago by
Hmm. As I'd prefer certs in X.509 this should be gone. Keystore all in memory. Much like the root cert loader.
comment:7 Changed 6 years ago by
Milestone: | 18.05 → 18.06 |
---|
comment:8 Changed 5 years ago by
Owner: | changed from team to stoecker |
---|
comment:9 Changed 5 years ago by
Milestone: | 18.06 → 18.07 |
---|
comment:10 Changed 5 years ago by
Milestone: | 18.07 → 18.08 |
---|
comment:11 Changed 5 years ago by
Milestone: | 18.08 → 18.09 |
---|
comment:12 Changed 5 years ago by
Milestone: | 18.09 → 18.10 |
---|
comment:13 Changed 5 years ago by
Milestone: | 18.10 → 18.11 |
---|
comment:14 Changed 5 years ago by
Milestone: | 18.11 → 18.12 |
---|
comment:15 Changed 5 years ago by
Milestone: | 18.12 → 19.01 |
---|
comment:16 Changed 5 years ago by
Milestone: | 19.01 → 19.02 |
---|
comment:17 Changed 5 years ago by
Milestone: | 19.02 → 19.03 |
---|
comment:18 Changed 5 years ago by
Milestone: | 19.03 → 19.04 |
---|
comment:19 Changed 5 years ago by
Milestone: | 19.04 → 19.05 |
---|
comment:20 Changed 5 years ago by
Milestone: | 19.05 |
---|
comment:21 Changed 4 years ago by
same issue ticket:10033#comment:87 same fix (don't forget to readd the certif for https://127.0.0.1:8112 into the nagivator for overpass turbo)
comment:22 Changed 4 years ago by
That's not a fix, that's a workaround. In this issue's description, this workaround is already mentioned.
comment:23 Changed 4 years ago by
Milestone: | → 19.10 |
---|---|
Owner: | changed from stoecker to Don-vip |
Status: | new → assigned |
See #10033 comments. We're discussing about geting rid of https completely or not.