tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Barker" <res0o...@verizon.net>
Subject Re: coyote connector and SSL generates exception for every GET request - Tomcat 4.1.12
Date Sat, 26 Oct 2002 05:47:24 GMT
It's a normally harmless bug in 4.1.12 (it just takes up logfile space).
Due to security reasons, the 4.1.12 release came out while the SSL support
still had debugging statements left in the code.  If you want it to go away,
grab the tomcat-util.jar from the (unofficial) 4.1.13 release at
http://jakarta.apache.org/builds/jakarta-tomcat-4.0/test/v4.1.13/bin/.  If
you are not using a SecurityManager sandbox, then you could consider
upgrading to 4.1.13 for everything.

"HAVENS,PETER (HP-Cupertino,ex3)" <peter_havens@hp.com> wrote in message
news:8041C6C444CD5A49A64D8971B20E39AFE630AC@xcup30.cup.hp.com...
> Can someone help me understand why I am seeing these exceptions in my
> Catalina.out.  I am running tomcat 4.1.12 and I have it configured to use
> coyote connector in my server.xml
>
> ---- Server.xml snippet ------------------
>     <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
>                port="280" minProcessors="5" maxProcessors="75"
>                enableLookups="false" redirectPort="50000"
>                acceptCount="10" debug="0" connectionTimeout="60000"/>
>
>     <!-- Define an SSL HTTP/1.1 Connector on port 50000 -->
>     <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
>                port="50000" minProcessors="5" maxProcessors="75"
>                enableLookups="false" acceptCount="10" debug="0"
>            scheme="https" secure="true">
>       <Factory
> className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory"
>                clientAuth="false" protocol="TLS"
>                keystoreFile="/etc/opt/mx/config/security/certificates"
>                keystorePass="changeit"
>
> ---- End Server.xml snippet ------------------
>
> Here are the exceptions being generated and found in my Catalina.out for
> every SSL GET request.
>
> --- Catalina.out snippet ------------------
> Oct 25, 2002 4:02:46 PM org.apache.coyote.http11.Http11Processor action
> WARNING: Exception getting SSL attributes
> javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
>       at
>
com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA62
> 75)
>       at
>
org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain(JSSESupport.j
> ava:118)
>       at
> org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:543)
>       at org.apache.coyote.Response.action(Response.java:216)
>       at
>
org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java:
> 314)
>       at
> org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221)
>       at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:405)
>       at
>
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConne
> ction(Http11Protocol.java:380)
>       at
> org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:508)
>       at
>
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.jav
> a:533)
>       at java.lang.Thread.run(Thread.java:536)
>
> --- End Catalina.out snippet ------------------
>
>
> Thank you very much,
>
> -Peter
>





--
To unsubscribe, e-mail:   <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-user-help@jakarta.apache.org>


Mime
View raw message