Funnily enough, the TCK test in question actually contains more errors. Only in this case the error works to our advantage.
getRemoteUser(): CN=CTS,OU=Java Software,O=Sun Microsystems Inc.,L=Burlington,ST=MA,C=US<BR>
isUserInRole("ADM"): !true!<BR>
Caller principal Name = CN=CTS,OU=Java Software,O=Sun Microsystems Inc.,L=Burlington,ST=MA,C=US
clientCertTest: cipher-suite : TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
clientCertTest: key-size : 256
clientCertTest: certificate [0]=[
[
Version: V3
Subject: CN=CTS, OU=Java Software, O=Sun Microsystems Inc., L=Burlington, ST=MA, C=US
Signature Algorithm: SHA256withRSA, OID = 1.2.840.113549.1.1.11
Key: Sun RSA public key, 2048 bits
params: null
modulus: 24460105159495683492479219036286112749899854013500201309232120825123331060682329826163915830251897432595746713185596288522960790747408731775058546008104864519848489118361000700960956192511733961528243032372562571285863153870347040697051544628937678450380798213161047385654009510331310879509706993818924558058241541436686925218504703743974586296114509605422003065618409897263700779222128675817568715275150994218434579165698867790691632043901394964526449428390754635763515883418569290094463550082321137739585784480450110054008617899423014100371287884979085344751261803723149160277946971097431777068322972064736592397767
public exponent: 65537
Validity: [From: Mon Dec 23 07:21:39 CET 2019,
To: Sat Aug 13 08:21:39 CEST 2044]
Issuer: CN=CTS, OU=Java Software, O=Sun Microsystems Inc., L=Burlington, ST=MA, C=US
SerialNumber: [ 68deca39]
Certificate Extensions: 1
[1]: ObjectId: 2.5.29.14 Criticality=false
SubjectKeyIdentifier [
KeyIdentifier [
0000: D6 86 B4 6D AB 78 A9 0E CB 85 F9 AD F6 AC 79 9D ...m.x........y.
]
]
]
Algorithm: [SHA256withRSA]
Signature:
0000: 5D 33 FA E7 78 A8 62 8B 9B D9 1F 34 BE 31 66 22 ]3..x.b....4.1f"
0010: 94 C4 63 D9 A7 8B E7 D6 C4 7B D5 EB 3E 60 AB 6F ..c.........>`.o
0020: A3 A0 70 A0 7F 0A 16 F6 5A 47 2A 0A 8C A2 19 F0 ..p.....ZG*.....
0030: 9F D0 5B 4A B6 D1 C0 6D 08 7D 29 28 F8 E6 86 F8 ..[J...m..)(....
0040: CA A3 33 C7 3F 35 23 11 B0 91 41 77 EF A9 8A 7A ..3.?5#...Aw...z
0050: AE 80 72 CF 15 E7 06 D2 D6 4D BB E7 27 9D 7F D6 ..r......M..'...
0060: DC 3A F3 73 5B 16 50 D7 D7 75 D5 E7 72 FF 63 4A .:.s[.P..u..r.cJ
0070: 7F 3C 26 B4 2D D8 37 A4 B3 80 1B 4A 20 36 57 6E .<&.-.7....J 6Wn
0080: B8 2A EE F1 4F FF 65 58 FF A3 F4 3A 51 3F 02 0F .*..O.eX...:Q?..
0090: 66 4F 83 B4 9A 8A 79 7E 0A 0E D0 40 64 08 0E 0B fO....y....@d...
00A0: F5 B7 9C 30 7F F1 25 F2 A5 93 9B 18 13 58 D2 FC ...0..%......X..
00B0: 86 03 E0 04 42 A3 FC 4B E0 31 2C 41 DA 7F B6 8A ....B..K.1,A....
00C0: F7 A1 42 71 F8 B6 BC AF EF B3 ED 66 3B DF 27 23 ..Bq.......f;.'#
00D0: C4 E0 D0 3C E0 B1 B2 6B 4B FD E4 8F B4 01 FD 8E ...<...kK.......
00E0: 4A 8D 25 45 A8 A6 CD DD 37 FD C4 6D BF BB A9 98 J.%E....7..m....
00F0: F7 B5 BC 6E 91 83 0C 80 4A E0 F0 C3 70 10 10 B8 ...n....J...p...
]
clientCertTest: PASSED
The test checks for "CN=CTS, OU=Java Software, O=Sun Microsystems Inc., L=Burlington, ST=MA, C=US", which it intends to find in "getRemoteUser(): CN=CTS,OU=Java Software,O=Sun Microsystems Inc.,L=Burlington,ST=MA,C=US", which would fail.
However, the test forgets that it also prints the certificate, which contains exactly that string as well. Hence, the test is testing nothing there and its effectively a NOOP concerning testing for the user name. This explains why the test has always passed for other servers, even though they were never consistent in their DN formatting.