mvn install hangs on TestOpenTimeStamps.stamp()

Question

mvn install hangs on TestOpenTimeStamps.stamp()

f-lombardo opened this issue 7 years ago · comments

Franco Lombardo commented 7 years ago

Hi guys,

I tried to run mvn install on Windows with java 1.8.0_121, but the aforementioned test hangs (and some others fail).

Thank you.

Franco

Riccardo Casatta · Answer 1 · Thu May 11 2017 16:47:54 GMT+0800 (China Standard Time)

Hi Franco,
the errors looks like problem with the SSL connection, if you can open in the browser the site https://finney.calendar.eternitywall.com/ with a secure connection it means Java does not use the operating system certificates but their own.

To solve the problem you need to import the let's encrypt root certificate into the java certificates.
Locate the path of the certificate on windows (on mac they are at: /Library/Java/JavaVirtualMachines/jdk1.8.0_25.jdk/Contents/Home/jre/lib/security)

then create the file DST_Root_CA_X3.pem with the following content

then import with the command:

keytool.exe -import -alias letsencrypt -keystore ./cacerts -trustcacerts -file DST_Root_CA_X3.pem

Peter Todd · Answer 2 · Thu May 11 2017 17:58:54 GMT+0800 (China Standard Time)

It might be reasonable to have the libraries include the letsencrypt root and explicitly validate the cert against it. Calendars are low-trust anyway.

Franco Lombardo · Answer 3 · Thu May 11 2017 21:01:50 GMT+0800 (China Standard Time)

It works, thank you!
Some notes for Windows users:

Check the java version you're using with
mvn -version
In order to import the above certificate, run a command prompt in administrative mode
The default password of the keystore is changeit
The position of the keystore is: MY_JDK_DIR\jre\lib\security (for example C:\Program Files\Java\jdk1.8.0_91\jre\lib\security)

Riccardo Casatta · Answer 4 · Wed May 17 2017 23:23:34 GMT+0800 (China Standard Time)

Mentioning this issue in the readme and closing
12c7fad