Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8213924

CipherCore change seems to cause SSL handshake errors

    Details

      Description

      ADDITIONAL SYSTEM INFORMATION :
      Linux x64 Java8 OpenJ9

      A DESCRIPTION OF THE PROBLEM :
      I've been doing some performance analysis of Java services in vSphere and a change was recently introduced that broke half the Java services with a CertificateValidationException (vSphere exception class). I've isolated the change to a modification that was made to CipherCore around 4 weeks ago. It looks like this would be the obvious culprit: https://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/70160c527861 except that the sunjce_provider.jar also shows a new anonymous inner class for CipherCore that I don't see in the changeset.

      Anyway, the difference between success and failure is the one change to this class made between the 10/18 and 10/19 builds.

      REGRESSION : Last worked in version 8u191

      STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
      Setting up the environment to reproduce this is difficult. It requires vSphere appliance. I can help debug in my environment.

      EXPECTED VERSUS ACTUAL BEHAVIOR :
      EXPECTED -
      Service starts fine
      ACTUAL -
      Service fails to start with SSL handshake errors

      CUSTOMER SUBMITTED WORKAROUND :
      Copying an older sunjce_provider.jar into a later build fixes the issue

      FREQUENCY : always


        Attachments

          Activity

            People

            • Assignee:
              coffeys Sean Coffey
              Reporter:
              webbuggrp Webbug Group
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: