Separating ciphers with two spaces results in unspecified behaviour #16037
Labels
bug
This bug is not present in a released version of Open Liberty
release bug
This bug is present in a released version of Open Liberty
release:21003
Describe the bug
Create an SSL configuration.
Specify ciphers like so (note there is a double space between SOME of the ciphers):
Starting liberty, it will not be able to make any TLS connection
Steps to Reproduce
Use the configuration from above.
Please note that there are TWO consecutive spaces between some of the ciphers.
Expected behavior
Two consecutive spaces are ignored/treated as one separator char.
OR
print a warning
OR
do not start and throw an error if
<config onError="fail" />
is set.I prefer the first solution.
Diagnostic information:
see above
$WLP_OUTPUT_DIR/messages.log
No useful messages given.
If you enable ssl tracing, you can see that a cipher
TLS_NULL_NULL_NULL
is chosen. Obviously, we get an exception that no common cipher was found / could be chosen.Additional context
IBM case TS005074992
Reply was
The text was updated successfully, but these errors were encountered: