[ https://issues.apache.org/jira/browse/SOLR-9068?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15274658#comment-15274658 ]
Uwe Schindler edited comment on SOLR-9068 at 5/6/16 8:11 PM: ------------------------------------------------------------- Hi, sorry for the delay: The patch with the answer to the Ultimate Question of Life, the Universe, and Everything looks good. It is currently running using {{ant beast -Dbeast.iters=100 -Dtestcase=TestMiniSolrCloudClusterSSL}} (this single test) and no failure up to now (already 8 rounds through). So I think this works. Maybe the padding code in the JDK has a bug that it should look random, but not "all bytes are equal". Why not use this patch also for non-Solaris? was (Author: thetaphi): Hi, sorry for the delay: The patch with the answer to the Ultimate Question of Life, the Universe, and Everything looks good. It is currently running using {{ant beast -Dbeast.iters=100 -Dtestcase=TestMiniSolrCloudClusterSSL}} (this single test) and no failure up to now (already 8 rounds through). So I think this works. Maybe the padding has a bug that it should look random, but not "all bytes are equal". Why not use this patch also for non-Solaris? > Solaris SSL test failures when using NullSecureRandom? > ------------------------------------------------------ > > Key: SOLR-9068 > URL: https://issues.apache.org/jira/browse/SOLR-9068 > Project: Solr > Issue Type: Sub-task > Reporter: Hoss Man > Fix For: 4.9, master > > Attachments: SOLR-9068.Lucene-Solr-6.x-Solaris_110.log, > SOLR-9068.Lucene-Solr-master-Solaris_558.log, SOLR-9068.patch, SOLR-9068.patch > > > In parent issue SOLR-5776, NullSecureRandom was introduced and SSLTestConfig > was refactored so that both client & server would use it to prevent blocked > threads waiting for entropy. > Since those commits to master & branch_6x, both Solaris jenkins builds have > seen failures at the same spots in > TestMiniSolrCloudClusterSSL.testSslAndNoClientAuth - and looking at the logs > the root cause appears to be intranode communication failures due to > "javax.crypto.BadPaddingException" > Perhaps the Solaris SSL impl has bugs in it's padding code that are tickeled > when the SecureRandom instance returns long strings of null bytes? -- This message was sent by Atlassian JIRA (v6.3.4#6332) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org