[jetty-users] Question regd jetty ssl configuration.

[TSmitha <smitad221@xxxxxxxxx>]

Hi,

I am using jetty version -- jetty-9.4.40.v20210413 - 13 April 2021 on java 1.8 platform.

I am setting up ssl by referring to this documentation regarding putting obfuscated/encrypted password in jetty-ssl-context.xml -- https://www.eclipse.org/jetty/documentation/jetty-9/index.html#configuring-security-secure-passwords

If i provide OBF: format passwords for (keystore and truststore) then jetty server runs fine but if i put MD5: format password in this xml file, jetty server fails to run, i have found this log in jetty/logs

java.security.PrivilegedActionException: java.io.IOException: Keystore was tampered with, or password was incorrect

        at java.security.AccessController.doPrivileged(Native Method)

        at org.eclipse.jetty.xml.XmlConfiguration.main(XmlConfiguration.java:1857)

        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

        at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)

        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

        at java.lang.reflect.Method.invoke(Method.java:498)

        at org.eclipse.jetty.start.Main.invokeMain(Main.java:218)

        at org.eclipse.jetty.start.Main.start(Main.java:491)

        at org.eclipse.jetty.start.Main.main(Main.java:77)

Caused by:

java.io.IOException: Keystore was tampered with, or password was incorrect

        at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:780)

Can you please provide your guidance about the right way to achieve this?

Thanks,

Smita