Am 18.03.19 um 16:43 schrieb Igor T: >> Since 9.0.12 and 16 do the same, I wouldn't look at that at all. Something >> simple like this works in the general case, there must be something >> specific here. So it's Windows, which some unspecified OpenSSL version. >> >> Rémy > That's not right. After many tests I've found out that 9.0.12 build > comes with [OpenSSL 1.0.2o 27 Mar 2018], while 9.0.16 comes with > [OpenSSL 1.1.1a 20 Nov 2018]. > The problem was localized to OpenSSL 1.1.1a on Nio2. > Also it became clear that establishing of connection takes more time > with OpenSSL 1.1.1a on Nio. > So it looks like OpenSSL 1.1.1a build is much less optimized and buggy. > > So the question is: how to change OpenSSL version that is shipped with > the latest tomcat build back to 1.0.2? > Any feedback appreciated. >
I did have to reset some installations to Tomcat 8.5.35 to avoid using TC native latest two versions on Linux. We have seen some bugfixes in the lastes TC native, which did slightly improve the situation. But TC still tends to crash on some machines (Linux). Some of the changes made in native after 8.5.35 are unstable. Markus --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
