Bug#1055348: jetty9: Update from DLA 3641 breaks puppetdb ("Exception in thread "main" java.lang.IllegalStateException: KeyStores with multiple certificates are not supported on the base class org.eclipse.jetty.util.ssl.SslContextFactory")

Sun Nov 5 16:33:13 GMT 2023

On Sat, 2023-11-04 at 20:33 +0100, Markus Koschany wrote:
> Could you install the version of trapperkeeper-webserver-jetty9-
> clojure from Bullseye and reinstall the jetty9 security update and
> report back if this solves your problem?

Doing that directly doesn't "just work":

 libtrapperkeeper-webserver-jetty9-clojure : Depends: libkitchensink-clojure (>= 3.1.1-2) but 2.3.0-2 is to be installed
                                             Depends: libprismatic-schema-clojure (>= 1.1.12) but 1.1.6-1 is to be installed
                                             Depends: libpuppetlabs-i18n-clojure (>= 0.9.0-2) but 0.8.0-1 is to be installed
                                             Depends: libring-codec-clojure (>= 1.1.2) but 1.0.1-1 is to be installed
                                             Depends: libssl-utils-clojure (>= 3.1.0) but 0.8.3-2 is to be installed
                                             Depends: libtrapperkeeper-clojure (>= 3.1.0) but 1.5.2-2 is to be installed
                                             Depends: libtrapperkeeper-filesystem-watcher-clojure (>= 1.2.2-2) but it is not installable
                                             Depends: libordered-clojure but it is not installable

Adding a bullseye APT source ends up at "19 upgraded, 5 newly
installed".

Do you have an idea how simple rebuilding the bullseye package on
buster would be? I'm happy to try that in general, but I've not really
looked at the Java ecosystem in Debian much.

Regards,

Adam