tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Lengyel Tamás <leng...@quattrosoft.hu>
Subject tomcat with apr and openssl gives ssl_error_rx_record_too_long
Date Fri, 01 Apr 2011 16:46:36 GMT
Hi all,



We use tomcat 5.5.30 on ubuntu linux, ssl configured and working (with java= =3D  keystore).

We tried to install APR. libapr1-dev, libssl-dev, java (jdk1.6.0_24) instal= =3D led.

tomcat-native-1.1-20-src downloaded, and built correctly ("Loaded APR based= =3D  Apache Tomcat
Native library 1.1.20" message in catalina.out, no error=  mes=3D sages).

We used the free "portecle" application to export private key and certifica= =3D te from the
java keystore.

Relevant server.xml parts are:



    <Listener className=3D3D"org.apache.catalina.core.AprLifecycleListener"=

S=3D SLEngine=3D3D"on" />



    <Connector

      protocol=3D3D"org.apache.coyote.http11.Http11AprProtocol"

      URIEncoding=3D3D"UTF-8"

      acceptCount=3D3D"100"

      algorithm=3D3D"${jazz.connector.algorithm}"

      clientAuth=3D3D"false"

      connectionTimeout=3D3D"20000"

      disableUploadTimeout=3D3D"true"

      enableLookups=3D3D"false"

      SSLCertificateFile=3D3D"/opt/IBM/JazzTeamServer/server/tomcat/rtc.cer"

      SSLCertificateKeyFile=3D3D"/opt/IBM/JazzTeamServer/server/tomcat/rtcpk.pem=

"

      SSLPassword=3D3D"

      maxHttpHeaderSize=3D3D"8192"

      maxSpareThreads=3D3D"75"

      maxThreads=3D3D"150"

      minSpareThreads=3D3D"25"

      port=3D3D"9443"

      scheme=3D3D"https"

      secure=3D3D"true"

      SSLEnabled=3D3D"true

      SSLProtocol=3D3D"${jazz.connector.sslProtocol}"/>



We tried to omit and change ${jazz.connector.*} parameters without effect s= =3D o we think
it's not relevant.

(Rational Team Concert is running on this server, hopefully unrelevant.) Af= ter all, when
connecting to the server we've got the mentioned error:



"An error occurred during a connection to https://some-machine:9443.

SSL received a record that exceeded the maximum permissible length.

(Error code: ssl_error_rx_record_too_long)"



No error messages in log.

Any instructions, comments, hints appreciated.





Best regards,



Lengyel Tamas

Quattrosoft Kft.

e-mail: lengyel@quattrosoft.hu<mailto:lengyel@quattrosoft.hu>


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message