Skip to content

test: ignore late identities while awaiting rotating-keys ping#3001

Merged
He-Pin merged 1 commit into
apache:mainfrom
He-Pin:fix/rotating-keys-ignore-late-identify
May 29, 2026
Merged

test: ignore late identities while awaiting rotating-keys ping#3001
He-Pin merged 1 commit into
apache:mainfrom
He-Pin:fix/rotating-keys-ignore-late-identify

Conversation

@He-Pin
Copy link
Copy Markdown
Member

@He-Pin He-Pin commented May 28, 2026

Motivation

RotatingKeysSSLEngineProviderSpec can receive a delayed ActorIdentity from an earlier Identify attempt after the target actor ref has already been resolved. Nightly retry policy still fails builds when that stale identity arrives before the ping reply.

Modification

Wait for the expected ping with fishForMessage and ignore late ActorIdentity messages while keeping the same per-attempt timeout budget.

Result

The test accepts the intended ping reply without being failed by harmless delayed Identify responses.

Tests

  • JDK 21: remote / Test / testOnly org.apache.pekko.remote.artery.tcp.ssl.RotatingProviderWithChangingKeysSpec
  • JDK 25: remote / Test / testOnly org.apache.pekko.remote.artery.tcp.ssl.RotatingProviderWithChangingKeysSpec (fails on existing JDK 25 EKU certificate validation behavior)
  • scalafmt --mode diff-ref=origin/main --quiet
  • scalafmt --list --mode diff-ref=origin/main
  • git diff --check

References

Refs #2994

@He-Pin
test: ignore late identities while awaiting rotating-keys ping
021eef0 
Motivation:
RotatingKeysSSLEngineProviderSpec can receive a delayed ActorIdentity from an earlier Identify attempt after the target actor ref has already been resolved. Nightly retry policy still fails builds when that stale identity arrives before the ping reply.

Modification:
Wait for the expected ping with fishForMessage and ignore late ActorIdentity messages while keeping the same per-attempt timeout budget.

Result:
The test accepts the intended ping reply without being failed by harmless delayed Identify responses.

Tests:
- JDK 21: remote / Test / testOnly org.apache.pekko.remote.artery.tcp.ssl.RotatingProviderWithChangingKeysSpec
- JDK 25: remote / Test / testOnly org.apache.pekko.remote.artery.tcp.ssl.RotatingProviderWithChangingKeysSpec (fails on existing JDK 25 EKU certificate validation behavior)
- scalafmt --mode diff-ref=origin/main --quiet
- scalafmt --list --mode diff-ref=origin/main
- git diff --check

References:
Refs apache#2994
@He-Pin He-Pin mentioned this pull request May 28, 2026
Closed
pjfanning
pjfanning approved these changes May 29, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@pjfanning pjfanning left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@He-Pin He-Pin merged commit 900e1f6 into apache:main May 29, 2026
9 checks passed
@He-Pin He-Pin deleted the fix/rotating-keys-ignore-late-identify branch May 29, 2026 06:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pjfanning pjfanning pjfanning approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@He-Pin @pjfanning