On 6/27/25 12:42 PM, Michael Osipov wrote:
On 2025/06/27 09:31:48 jean-frederic clere wrote:
On 6/26/25 1:55 PM, Rémy Maucherat wrote:
On Thu, Jun 26, 2025 at 1:52 PM jean-frederic clere <jfcl...@gmail.com> wrote:
Hi,
While using main I have:
+++
26-Jun-2025 12:00:18.247 SEVERE [main]
org.apache.catalina.util.LifecycleBase.handleSubClassException Failed to
initialize component [Connector["http-apr-8080"]]
java.lang.UnsatisfiedLinkError: 'long
org.apache.tomcat.jni.Address.info(java.lang.String, int, int, int, long)'
at org.apache.tomcat.jni.Address.info(Native Method)
at
org.apache.tomcat.util.net.AprEndpoint.bind(AprEndpoint.java:392)
+++
When using 1.3.x the JVM was crashing I "fixed" that now I have:
+++
Caused by: javax.crypto.BadPaddingException: Given final block
not properly padded. Such issues can arise if a bad key is used during
decryption.
at
java.base/com.sun.crypto.provider.CipherCore.unpad(CipherCore.java:861)
at
java.base/com.sun.crypto.provider.CipherCore.fillOutputBuffer(CipherCore.java:941)
at
java.base/com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:734)
at
java.base/com.sun.crypto.provider.AESCipher.engineDoFinal(AESCipher.java:446)
at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2244)
+++
I was expecting openssl asking for the passphrase but it seems that is
not possible now.
Any hints?
I haven't heard about this feature for a long time.
My suggestion is to remove the "For OpenSSL the default behaviour is not
to use a password, but OpenSSL will prompt for one, if required." from
the docs.
And as the feature has been gone for some time and no one complained and
Are you sure https://bz.apache.org/bugzilla/show_bug.cgi?id=64826?
Yes: A dirty patch helps:
+++
jfclere@fedora:~/tomcat$ git diff .
diff --git a/java/org/apache/tomcat/util/net/openssl/OpenSSLUtil.java
b/java/org/apache/tomcat/util/net/openssl/OpenSSLUtil.java
index 1e5edcd6fe..8dc0c0f5c9 100644
--- a/java/org/apache/tomcat/util/net/openssl/OpenSSLUtil.java
+++ b/java/org/apache/tomcat/util/net/openssl/OpenSSLUtil.java
@@ -132,6 +132,9 @@ public class OpenSSLUtil extends SSLUtilBase {
return null;
}
throw e;
+ } catch (Exception e) {
+ System.out.println("Oops: " + e);
+ return null; /* let openssl figure */
}
}
+++
Then openssl asks for the passpharse:
+++
jfclere@fedora:~/tomcat/output/build$ Some of your private key files are
encrypted for security reasons.
In order to read them you have to provide the pass phrases.
Enter pass phrase:
Some of your private key files are encrypted for security reasons.
In order to read them you have to provide the pass phrases.
Enter pass phrase:
Some of your private key files are encrypted for security reasons.
In order to read them you have to provide the pass phrases.
Enter pass phrase:
+++
But I can't enter it :-( for some other reasons
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
--
Cheers
Jean-Frederic
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
