Hello,
I've seen a TLS problem with JDK 14.0.1 and Apache River 3.0 that I want to
share in case someone else runs into the same issue. A client will receive a
"Contraints are not supported” error when attempting to perform a reggie lookup
when using TLS. The call to ServerAuthManager.getServerCertificate() returns
null instead of the server certificate because the sslSessionContext doesn't
have any session ids.
ServerAuthManager.java:113
if (sslSessionContext.getSession(session.getId()) != null) { //
sslSessionContext.getSession() returns null with JDK 14.0.1
// returns the server certificate
}
The workaround is to use -Djdk.tls.server.enableSessionTicketExtension=false on
the server or use JDK 15 according to the OpenJDK bug report:
https://bugs.openjdk.java.net/browse/JDK-8242008
<https://bugs.openjdk.java.net/browse/JDK-8242008>
