Don't mix JSSE and OpenSSL configuration styles - avoids warning in logs

markt-asf · markt-asf · commit d571cf07b438 · 2026-01-05T17:56:39.000Z
There is no need to configure a key store password for a PEM file.
diff --git a/test/org/apache/tomcat/util/net/TestSSLHostConfigCompat.java b/test/org/apache/tomcat/util/net/TestSSLHostConfigCompat.java
@@ -254,7 +254,6 @@ private void configureHostRSA() {
                 SSLHostConfigCertificate sslHostConfigCertificateRsa = new SSLHostConfigCertificate(sslHostConfig, Type.RSA);
                 sslHostConfigCertificateRsa.setCertificateFile(getPath(TesterSupport.LOCALHOST_RSA_CERT_PEM));
                 sslHostConfigCertificateRsa.setCertificateKeyFile(getPath(TesterSupport.LOCALHOST_RSA_KEY_PEM));
-                sslHostConfigCertificateRsa.setCertificateKeystorePassword(TesterSupport.JKS_PASS);
                 sslHostConfig.addCertificate(sslHostConfigCertificateRsa);
                 break;
             }
@@ -276,7 +275,6 @@ private void configureHostEC() {
                 SSLHostConfigCertificate sslHostConfigCertificateEc = new SSLHostConfigCertificate(sslHostConfig, Type.EC);
                 sslHostConfigCertificateEc.setCertificateFile(getPath(TesterSupport.LOCALHOST_EC_CERT_PEM));
                 sslHostConfigCertificateEc.setCertificateKeyFile(getPath(TesterSupport.LOCALHOST_EC_KEY_PEM));
-                sslHostConfigCertificateEc.setCertificateKeyPassword(TesterSupport.JKS_PASS);
                 sslHostConfig.addCertificate(sslHostConfigCertificateEc);
                 break;
             }
