Am 25.08.2017 um 23:25 schrieb Rainer Jung:
Am 25.08.2017 um 18:24 schrieb Mark Thomas:
Version 1.2.13 includes the following changes compared to 1.2.12:
- Update minimum recommended OpenSSL version to 1.0.2l
- Update minimum recommended APR version to 1.6.2
- Windows binaries built with OpenSSL 1.0.2l and APR 1.6.2
- Support for the SSL_CONF_cmd API
Various other fixes and improvements. See the changelog for details.
The proposed release artefacts can be found at [1],
and the build was done using tag [2].
The Apache Tomcat Native 1.2.13 is
[ ] Stable, go ahead and release
[ ] Broken because of ...
Another thing: the client auth with cert tests (TestClientCert and
TestCustomSsl) fail for me currently when using TC trunk with a Java
connector (NIO/NIO2) and OpenSSL impl (plus tcnative 1.2.13, APR 1.6.2,
OpenSSL 1.0.2l).
I am pretty sure the tests worked when I had added the additional client
CA checks, but they do no longer. But there might have been some other
setup, e.g. OpenSSL 1.1.0 instead of 1.0.2 or something else. i need to
investigate further.
The test does not only fail because the key manager does not get called,
but the access to /unprotected also fails with a 401.
These tests work with APR and also with the JSSE impl.
Regards,
Rainer
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
