Thanks for all that data.
Very strange. It is as if the server picks the wrong key to decrypt with.
Given you can reproduce this, I suggest trying different versions of
Java on the server to see if you can determine a pattern.
Also, if you are able to provide a test case that reliably demonstrates
this bug, that would be extremely helpful too.
Mark
On 19/03/2019 09:25, Jan Vomlel wrote:
Hello Mark,
communication is on
https://drive.google.com/open?id=12ZqbgKkHzGKzXk19ssIcJMX6iQBUE4fQ
file 18-03-2019-3-filtered-one-connection.pcapng
There is also full communication log from wireshark and catalina.out.
Critical packet contains data:
17 03 03 01 AB 00 00 00 00 00 00 00 01 19 58 D0
In wireshark it is followed by Change cipher spec, in catalina out are
this packets together in one request. Client was firefox 60.5.2esr.
Thanks, Jan
Dne 18.03.2019 v 12:08 Mark Thomas napsal(a):
On 18/03/2019 10:49, Jan Vomlel wrote:
Thank you Mark. I enabled the logger org.apache.coyote.http11.
I cannot paste line
org.apache.coyote.http11.Http11InputBuffer.parseRequestLine here,
because it contains not printable characters and copy paste doesnot
work.
It seems like bug in tomcat or jdk. ???
The client appears to be sending some unexpected binary data.
It could be something TLS related although I'd expect JSSE to just
handle that.
It could be part of a previous request but that would mean a
mis-behaving client.
Wireshark (or similar) should give us some more info.
Can you capture a Wireshark trace of a connection that fails like this
from the initial TCP handshake all the way to the point where it
fails? If you can put that somewhere we can get it and look at it we
might see something relevant. Note you can filter the data just for
the one connection. We shouldn't need anything else.
Thanks,
Mark
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org