https://bz.apache.org/bugzilla/show_bug.cgi?id=64221
Bug ID: 64221 Summary: org.apache.tomcat.util.net.TestClientCertTls13 not skipped if TLS 1.3 is disabled Product: Tomcat 10 Version: unspecified Hardware: All OS: FreeBSD Status: NEW Severity: normal Priority: P2 Component: Util Assignee: dev@tomcat.apache.org Reporter: micha...@apache.org Target Milestone: ------ * Get Tomcat master * export JAVA_HOME=.../openjdk11 * export _JAVA_OPTIONS=-Dhttps.protocols=TLSv1,TLSv1.1,TLSv1.2 * ant clean test See the following fail: > [concat] Testsuites with failed tests: > [concat] TEST-org.apache.tomcat.util.net.TestClientCertTls13.APR.txt > [concat] TEST-org.apache.tomcat.util.net.TestClientCertTls13.NIO2.txt in detail: > Testcase: testClientCertPost took 5,849 sec > Caused an ERROR > Received fatal alert: protocol_version > javax.net.ssl.SSLHandshakeException: Received fatal alert: protocol_version > at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:131) > at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:117) I don't know whether the Tomcat code is failing here or the tests don't properly test for the absence of TLS 1.3. Note that I am running with libtcnative 1.2.23, libapr-1 1.7.0 and OpenSSL 1.1.1d-freebsd. I assume that OpenSSL is used for TLS, but the URLConnection uses Sun JSSE. I am on: > FreeBSD 12.1-STABLE #5 r357318 with > $ $JAVA_HOME/bin/java -version > openjdk version "11.0.6" 2020-01-14 > OpenJDK Runtime Environment (build 11.0.6+10-1) > OpenJDK 64-Bit Server VM (build 11.0.6+10-1, mixed mode) -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org