Uploaded image for project: 'JBoss Web Server'
  1. JBoss Web Server
  2. JWS-1445

[ASF BZ 63765] NIO2 connector with OpenSSL 1.1.1 hangs with TLSv1.3

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 5.4.0.DR1
    • 5.2.0.DR2
    • tomcat
    • None
    • ?
    • Hide

      1) Configure NIO2 connector

      <Connector port="8443" protocol="org.apache.coyote.http11.Http11Nio2Protocol" maxThreads="150" SSLEnabled="true" >
      <SSLHostConfig protocols="TLSv1.3">
          <Certificate certificateKeyFile="conf/localhost.server.key.pem"
                         certificateFile="conf/localhost.server.cert.pem"
                         certificateKeyPassword="testpass"
                         certificateChainFile="conf/ca-chain.cert.pem"
                         type="RSA" />
      </SSLHostConfig>
 </Connector>

      2) Make a request, through browser or curl

      curl --insecure -v https://localhost:8443
      Show
      1) Configure NIO2 connector <Connector port= "8443" protocol= "org.apache.coyote.http11.Http11Nio2Protocol" maxThreads= "150" SSLEnabled= " true " > <SSLHostConfig protocols= "TLSv1.3" > <Certificate certificateKeyFile= "conf/localhost.server.key.pem" certificateFile= "conf/localhost.server.cert.pem" certificateKeyPassword= "testpass" certificateChainFile= "conf/ca-chain.cert.pem" type= "RSA" /> </SSLHostConfig> </Connector> 2) Make a request, through browser or curl curl --insecure -v https: //localhost:8443

      Request hangs and fails with "Empty reply from server". This mainly happens on first request, intermittently with later requests. Can be reproduced with curl or Chrome.

              rhn-support-csutherl Coty Sutherland
              akrajcik@redhat.com Adam Krajcik
              Adam Krajcik Adam Krajcik
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated:
                Resolved: