DigitalFatCat opened a new pull request, #634: URL: https://github.com/apache/tomcat/pull/634
https://bz.apache.org/bugzilla/show_bug.cgi?id=66684 Recently, we tested the use of the crLFile configuration (in server.xml) in the scenario where two-way certificate authentication is enabled. When the file pointed to by the crlFile configuration item is an empty file (the file exists but the file content is blank), Tomcat cannot provide services and SSL HandShake reports an error(certificate_unknown). When crlFile is not configured or the content in crlFile is correct, no error is reported. I'm thinking that don't need to set the revocationEnabled parameter to true (In org.apache.tomcat.util.net.SSLUtilBase#getParameters 498L) when the file content is blank. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
