It is probably not the most common combination, but when running TC
8.5.85 unit tests with Java 1.7.0 plus tcnative 2.0.2 build against
OpenSSL 3.1.0beta1, the test testPost() fails all 8 iterations it uses with:
javax.net.ssl.SSLException: ciphertext sanity check failed
at sun.security.ssl.Alerts.getSSLException(Alerts.java:208)
at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1904)
at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:981)
at sun.security.ssl.SSLSocketImpl.readDataRecord(SSLSocketImpl.java:891)
at sun.security.ssl.AppInputStream.read(AppInputStream.java:102)
at sun.security.ssl.AppInputStream.read(AppInputStream.java:69)
at org.apache.tomcat.util.net.TestSsl$1.run(TestSsl.java:131)
Caused by: javax.crypto.BadPaddingException: ciphertext sanity check failed
at sun.security.ssl.InputRecord.decrypt(InputRecord.java:147)
at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:976)
... 4 more
I guess this is nothing to fix for us, just wanted to mention it in case
someones searches for it.
The test does not fail with other OpenSSL versions like 3.0.7 and also
not with higher Java versions, just that combination. But this
combination does fail consistently on all 6 Linux platforms plus Solaris.
Apart from that testing with OpenSSL 3.1.0beta1 looks pretty good.
Best regards,
Rainer
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
