Return-Path: X-Original-To: apmail-tomcat-users-archive@www.apache.org Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 4764789AE for ; Tue, 30 Aug 2011 12:45:48 +0000 (UTC) Received: (qmail 93607 invoked by uid 500); 30 Aug 2011 12:45:44 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 93065 invoked by uid 500); 30 Aug 2011 12:45:43 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 93056 invoked by uid 99); 30 Aug 2011 12:45:42 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 30 Aug 2011 12:45:42 +0000 X-ASF-Spam-Status: No, hits=0.6 required=5.0 tests=HTML_MESSAGE,RCVD_IN_DNSWL_MED,SPF_NEUTRAL X-Spam-Check-By: apache.org Received-SPF: neutral (athena.apache.org: local policy) Received: from [207.126.144.119] (HELO eu1sys200aog105.obsmtp.com) (207.126.144.119) by apache.org (qpsmtpd/0.29) with SMTP; Tue, 30 Aug 2011 12:45:37 +0000 Received: from mail-gy0-f178.google.com ([209.85.160.178]) (using TLSv1) by eu1sys200aob105.postini.com ([207.126.147.11]) with SMTP ID DSNKTlzbWrQsNwRzohrJ4h41vI2Nhob6Az2a@postini.com; Tue, 30 Aug 2011 12:45:16 UTC Received: by gyh3 with SMTP id 3so6217041gyh.37 for ; Tue, 30 Aug 2011 05:45:13 -0700 (PDT) Received: by 10.142.143.12 with SMTP id q12mr3036195wfd.227.1314708313269; Tue, 30 Aug 2011 05:45:13 -0700 (PDT) MIME-Version: 1.0 Received: by 10.142.246.1 with HTTP; Tue, 30 Aug 2011 05:44:53 -0700 (PDT) From: Andrew Eells Date: Tue, 30 Aug 2011 13:44:53 +0100 Message-ID: Subject: SSL configuration / APR / Tomcat 7.0.17 To: users Content-Type: multipart/alternative; boundary=000e0cd14656fee89404abb86186 --000e0cd14656fee89404abb86186 Content-Type: text/plain; charset=ISO-8859-1 Tomcat 7.0.16 Linux x86_64 GNU/Linux (Amazon AWS 64-bit AMI) APR is definitely correctly installed, without the SSL configuration I receive the following log info: INFO: Loaded APR based Apache Tomcat Native library 1.1.20. 30-Aug-2011 13:22:47 org.apache.catalina.core.AprLifecycleListener init INFO: APR capabilities: IPv6 [true], sendfile [true], accept filters [false], random [true]. I am unable to start Tomcat having followed the SSL How-to ( http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html) and receive the following stack trace on server start: SEVERE: Failed to initialize connector [Connector[HTTP/1.1-8443]] org.apache.catalina.LifecycleException: Protocol handler initialization failed at org.apache.catalina.connector.Connector.initInternal(Connector.java:912) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardService.initInternal(StandardService.java:559) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:781) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.startup.Catalina.load(Catalina.java:572) at org.apache.catalina.startup.Catalina.load(Catalina.java:595) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:616) at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:262) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:430) Caused by: java.lang.Exception: Unable to load certificate key /usr/local/tomcat/conf/my.pem (error:0906D06C:PEM routines:PEM_read_bio:no start line) at org.apache.tomcat.jni.SSLContext.setCertificate(Native Method) at org.apache.tomcat.util.net.AprEndpoint.bind(AprEndpoint.java:513) at org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.java:490) at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:364) at org.apache.catalina.connector.Connector.initInternal(Connector.java:910) ... 13 more As per the documentation, my server.xml configuration is as follows: I have tried removing redundant parameters as per the HTTP Connector SSL Support ( http://tomcat.apache.org/tomcat-7.0-doc/config/http.html#SSL%20Support) but still receive the same error. Any pointers gratefully received. Best regards, -- *Andrew Eells* 32-38 Dukes Place, London, EC3A 7LP tel: +44 (0) 845 475 1415 mobile: +44 (0) 772 555 1809 web: www.qmetric.co.uk Follow me on: ---------------------------------------------------------------------------------- The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorised. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. QMetric Group Limited company number 07151701 the registered office of which is at 32-38 Dukes Place, London, United Kingdom, EC3A 7LP. --000e0cd14656fee89404abb86186--