tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "epicwinter@hotmail.com" <epicwin...@hotmail.com>
Subject RE: ssl connector
Date Fri, 13 Feb 2009 01:14:59 GMT

Thanks.  So I don't understand the docs where they suggest defining connectors with apr and
without.  They show examples of 3 different connectors:  org.apache.coyote.http11.Http11Protocol,org.apache.coyote.http11.Http11NioProtocol
and org.apache.coyote.http11.Http11AprProtocol.

Do I need to define all three?  Is there a performance difference?

And the APR one doesn't seem to define the keystore, is it not necessary for that?
thanks


> Date: Fri, 13 Feb 2009 00:38:02 +0000
> Subject: Re: ssl problems
> From: anuragkapur@gmail.com
> To: users@tomcat.apache.org
> 
> You also need a .keystore  file (if you are on default settings, then in the
> users home directory).
> Read more on it here: http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html
> 
> Anurag
> ------------------------------------------------------------------
> Anurag Kapur
> Associate - Technology,
> Sapient Corporation India.
> ------------------------------------------------------------------
> 
> 
> On Fri, Feb 13, 2009 at 12:30 AM, epicwinter@hotmail.com <
> epicwinter@hotmail.com> wrote:
> 
> >
> > First off unfortunately on this install I am using tomcat on windows, i
> > know boo hiss...  But I just installed the latest tomcat 6.0.18 and am
> > having a problem with ssl.
> >
> > All I did was added these lines to the originally installed server.xml
> > file:
> > <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
> >               maxThreads="150" scheme="https" secure="true"
> >           clientAuth="false" sslProtocol="TLS"
> >           SSLEngine="on"
> >    SSLCertificateFile="C:\Documents and Settings\Ryan\My
> > Documents\work\project1\ssl\mycert.pem"
> >    SSLCertificateKeyFile="C:\Documents and Settings\Ryan\My
> > Documents\work\project1\ssl\mykey.pem"
> >    SSLPassword="mypass"
> >           />
> >
> > And I get this weird error telling me it can't find this .keystore file i
> > never even reference in my config.  I even tried without adding this and get
> > the same error:
> >
> > <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
> >
> >               maxThreads="150" scheme="https" secure="true"
> >
> >           clientAuth="false" sslProtocol="TLS"
> >
> > />
> >
> >
> > Here is the full text of the error:
> >
> > Feb 12, 2009 4:27:19 PM org.apache.tomcat.util.net.jsse.JSSESocketFactory
> > getStore
> > SEVERE: Failed to load keystore type JKS with path C:\Documents and
> > Settings\Ryan/.keystore due to C:\Documents and Settings\Ryan\.keystore (The
> > system cannot find the file specified)
> > java.io.FileNotFoundException: C:\Documents and Settings\Ryan\.keystore
> > (The system cannot find the file specified)
> >    at java.io.FileInputStream.open(Native Method)
> >    at java.io.FileInputStream.<init>(FileInputStream.java:106)
> >    at
> > org.apache.tomcat.util.net.jsse.JSSESocketFactory.getStore(JSSESocketFactory.java:337)
> >    at
> > org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeystore(JSSESocketFactory.java:259)
> >    at
> > org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeyManagers(JSSESocketFactory.java:444)
> >    at
> > org.apache.tomcat.util.net.jsse.JSSESocketFactory.init(JSSESocketFactory.java:409)
> >    at
> > org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:125)
> >    at org.apache.tomcat.util.net.JIoEndpoint.init(JIoEndpoint.java:496)
> >    at org.apache.coyote.http11.Http11Protocol.init(Http11Protocol.java:176)
> >    at
> > org.apache.catalina.connector.Connector.initialize(Connector.java:1058)
> >    at
> > org.apache.catalina.core.StandardService.initialize(StandardService.java:677)
> >    at
> > org.apache.catalina.core.StandardServer.initialize(StandardServer.java:795)
> >    at org.apache.catalina.startup.Catalina.load(Catalina.java:530)
> >    at org.apache.catalina.startup.Catalina.load(Catalina.java:550)
> >    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> >    at
> > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> >    at
> > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> >    at java.lang.reflect.Method.invoke(Method.java:585)
> >    at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:260)
> >    at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:412)
> > Feb 12, 2009 4:27:19 PM org.apache.coyote.http11.Http11Protocol init
> >
> > Any thoughts?
> >
> >
> >
> >
> > _________________________________________________________________
> > Windows Live™: Keep your life in sync.
> > http://windowslive.com/explore?ocid=TXT_TAGLM_WL_t1_allup_explore_022009

_________________________________________________________________
Windows Live™: E-mail. Chat. Share. Get more ways to connect. 
http://windowslive.com/online/hotmail?ocid=TXT_TAGLM_WL_HM_AE_Faster_022009
Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message