tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: tomcat and openssl issue
Date Wed, 16 Jan 2013 15:38:21 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Alexandr,

On 1/16/13 10:21 AM, Lenkov, Alexandr wrote:
> Thank you. Looks like my description was not clear. My web 
> application uses a dll (in C++) which uses openssl in FIPS mode.
> So it is different from native library.
> 
> If I create libeay32.dll without /FIXED linker option then it may
> be loaded (at different address) and works. When I use /FIXED it
> cannot be loaded at 0xFB00000.

You said that this DDL "can be loaded by other processes correctly".
Have you tried it from a Java process, or only from C++ client code?
I'm fairly sure Tomcat does nothing to restrict you from loading DDLs
however you want, but the JVM can certainly do that kind of thing.

> Also the openssl version shown in the logs seems to be wrong:
> 
> 2013-01-16 13:37:04,319 INFO 
> [org.apache.catalina.core.AprLifecycleListener] OpenSSL
> successfully initialized with version OpenSSL 1.0.0g 18 Jan 2012

So you are trying to use Tomcat's APR/native library *and* your own
version of OpenSSL at the same time? What happens if you disable the
AprLifecycleListener to avoid loading APR/native?

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with undefined - http://www.enigmail.net/

iEYEAREIAAYFAlD2yW0ACgkQ9CaO5/Lv0PDZOQCfbAZNwpcwz92LoWyU3FKS8CWT
l9YAnR7Q75mJ7mvgsyh2dOKz3rdTNwA8
=d2c2
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message