Uploaded image for project: 'Undertow'
  1. Undertow
  2. UNDERTOW-633

Check SSL/TLS handshake error handling in undertow

    XMLWordPrintable

Details

    • Hide
      • Configure HTTPS using TLS 1.2 for fips java (unsupported configuration)
      • Start eap (no error)
      • Access https://127.0.0.1:8443. Expected error java.security.NoSuchAlgorithmException: no such algorithm: SunTls12MasterSecret for provider SunPKCS11-testPkcs occures. EAP start to use 100% of CPU
      Show
      Configure HTTPS using TLS 1.2 for fips java (unsupported configuration) Start eap (no error) Access https://127.0.0.1:8443 . Expected error java.security.NoSuchAlgorithmException: no such algorithm: SunTls12MasterSecret for provider SunPKCS11-testPkcs occures. EAP start to use 100% of CPU

    Description

      100% CPU usage with unsupported configuration

      Per [2] provided reproducer is not supported configuration and will be documented in [1]. My main concern here is if you can revise undertow implementation to avoid 100% CPU usage by any other SSL handshake error. See EAP thread dump and stack trace in attachment.

      [1] https://issues.jboss.org/browse/JBEAP-3160
      [2] https://bugs.openjdk.java.net/browse/JDK-8029661

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-3413 Check SSL/TLS handshake error handling in undertow

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed

          Activity

            People

              sdouglas1@redhat.com Stuart Douglas
              sdouglas1@redhat.com Stuart Douglas
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: