tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hiemer, Bernhard" <Hie...@mayr.de>
Subject Re: Tomcat with SSL
Date Tue, 27 Apr 2004 05:29:48 GMT

Hello again!

I tried this with a Sun JRE and SunJSSE. All works fine.
IBM JRE with SunJSSE does not work.
Unfortunally this should run on a IBM iSeries and on my developer machine
(Win XP). So I have to use IBM JRE.

Are there updates or fixes for the IBM JRE or IBMJsse?
Can I run Tomcat without SunJsse?
Have anybody got this working?

My VM is:
java version "1.3.1"
Java(TM) 2 Runtime Environment, Standard Edition (build 1.3.1)
Classic VM (build 1.3.1, J2RE 1.3.1 IBM Windows 32 build cn131-20030711a
(JIT enabled: jitc))

The Manifest.mf from ibmjsse.jar:
Manifest-Version: 1.0
IBM-Reusable-JVM-Compatible: True
Created-By: Ant 1.4.1
Name: com/ibm/jsse/ com/ibm/net/ssl/www/ com/ibm/net/ssl/ com/ibm/net/ss
 l/internal/www/protocol/https/ com/ibm/net/ssl/www/protocol/http/ com/i
 bm/net/ssl/www/protocol/https/ com/ibm/pkcs11/ com/ibm/pkcs11/nat/ com/
 ibm/security/cert/ com/ibm/sslight/ com/ibm/sslite/ javax/net/ javax/ne
 t/ssl/ javax/security/cert/
Build-Level: -20030317
Implementation-Vendor: IBM Corporation
Implementation-Title: JSSE Package
Implementation-Version: 1.0.3


Thanks 
Bernhard




-----Ursprüngliche Nachricht-----
Von: Hiemer, Bernhard 
Gesendet: Donnerstag, 22. April 2004 09:50
An: tomcat-user@jakarta.apache.org
Betreff: Re: Tomcat with SSL



Thanks for your reply!

I configured my server.xml like this:
    <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
               port="8443" minProcessors="5" maxProcessors="75"
               enableLookups="true"
	       acceptCount="10" debug="0" scheme="https" secure="true"
               useURIValidationHack="false">
      <Factory
className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory"
               clientAuth="false" protocol="TLS" 
               keystoreFile="C:\Programme\IBM\WebSphere Studio\Application
Developer\v5.1\runtimes\base_v5\java\jre\lib\security\test" 
               keystorePass="changeit" />
    </Connector>

But there are the same effects ...






-----Ursprüngliche Nachricht-----
Von: Bill Barker [mailto:wbarker@wilshire.com]
Gesendet: Donnerstag, 22. April 2004 08:38
An: tomcat-user@jakarta.apache.org
Betreff: Re: Tomcat with SSL


I believe that you can't use IBM's JSSE with the HttpConnector.  You have to
use the CoyoteConnector.

"Hiemer, Bernhard" <Hiemer@mayr.de> wrote in message
news:83611C6D0BACD411B83C00B0D021B5F5016532B8@exchange.chrmayr.lan...

Hi Tomcat-Users,

I found out, that my problem depends on the configuration of the security
providers in the java.security file.
(On my machine is installed jsse from IBM and Sun).

If the configuration is
security.provider.1=sun.security.provider.Sun
security.provider.2=com.ibm.jsse.JSSEProvider
security.provider.3=com.sun.net.ssl.internal.ssl.Provider

I get the following Exception
Catalina.start: LifecycleException:  null.open:
java.security.NoSuchAlgorithmException: Class com.ibm.jsse.ba configured for
SSLContext not a SSLContext
at com.sun.net.ssl.SunJSSE_b.a(DashoA6275)
at com.sun.net.ssl.SSLContext.getInstance(DashoA6275)
at
org.apache.catalina.net.SSLServerSocketFactory.initProxy(SSLServerSocContext
not a SSLContext
at com.sun.net.ssl.SunJSSE_b.a(DashoA6275)
at com.sun.net.ssl.SSLContext.getInstance(DashoA6275)
...


In the other case, when the configuration-file looks like
security.provider.1=sun.security.provider.Sun
security.provider.2=com.sun.net.ssl.internal.ssl.Provider
security.provider.3=com.ibm.jsse.JSSEProvider

this error message occurs:
java.lang.reflect.InvocationTargetException: java.lang.OutOfMemoryError




The relevant part of the server.xml file is:
<Connector
className="org.apache.catalina.connector.http.HttpConnector"
               port="8443" minProcessors="5" maxProcessors="75"
               enableLookups="true"
       acceptCount="10" debug="0" scheme="https" secure="true"
               useURIValidationHack="false">
      <Factory className="org.apache.catalina.net.SSLServerSocketFactory"
               clientAuth="false" protocol="TLS"
               keystoreFile="C:\Programme\IBM\WebSphere Studio\Application
Developer\v5.1\runtimes\base_v5\java\jre\lib\security\test"
               keystorePass="changeit" />
    </Connector>



In the first case it looks like the two different jsse implementations cause
the problem. But how to configure it right?

Can anyone give me any suggestions?

Thanks
Bernhard






-----Ursprüngliche Nachricht-----
Von: Hiemer, Bernhard
Gesendet: Freitag, 16. April 2004 08:00
An: 'tomcat-user@jakarta.apache.org'
Betreff: Tomcat with SSL


Hi at all!

I´m trying to configure my Tomcat-Standalone for SSL-Support. I use Win XP,
JRE 1.3.1 and JSSE 1.0.3_02.
The Tomcat-Versions I tried are 4.1.30 and 5.0.19.

I worked along the HOW-TO on the Jakarta-Website:
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/ssl-howto.html

BUT I receive the following error on startup of Tomcat:
java.lang.reflect.InvocationTargetException: java.lang.OutOfMemoryError

I have already tried the Options -Xmx512m -Xms128m to give the VM more
memory.

What´s to do now?
Thanks in advance for each little help!
Bernhard




---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message