Am 26.08.2017 um 19:11 schrieb Rainer Jung:
Am 25.08.2017 um 23:25 schrieb Rainer Jung:
Am 25.08.2017 um 18:24 schrieb Mark Thomas:
Version 1.2.13 includes the following changes compared to 1.2.12:
- Update minimum recommended OpenSSL version to 1.0.2l
- Update minimum recommended APR version to 1.6.2
- Windows binaries built with OpenSSL 1.0.2l and APR 1.6.2
- Support for the SSL_CONF_cmd API
Various other fixes and improvements. See the changelog for details.
The proposed release artefacts can be found at [1],
and the build was done using tag [2].
The Apache Tomcat Native 1.2.13 is
[ ] Stable, go ahead and release
[ ] Broken because of ...
Another thing: the client auth with cert tests (TestClientCert and
TestCustomSsl) fail for me currently when using TC trunk with a Java
connector (NIO/NIO2) and OpenSSL impl (plus tcnative 1.2.13, APR 1.6.2,
OpenSSL 1.0.2l).
I am pretty sure the tests worked when I had added the additional client
CA checks, but they do no longer. But there might have been some other
setup, e.g. OpenSSL 1.1.0 instead of 1.0.2 or something else. i need to
investigate further.
The test does not only fail because the key manager does not get called,
but the access to /unprotected also fails with a 401.
These tests work with APR and also with the JSSE impl.
This was broken by myself in r1805525 and now fixed again in r1806356 by
partially reverting that change.
Sorry for the noise,
Rainer
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
