Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 67C29200D1A for ; Mon, 9 Oct 2017 23:07:54 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 6637B1609CE; Mon, 9 Oct 2017 21:07:54 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 5696F1609B8 for ; Mon, 9 Oct 2017 23:07:53 +0200 (CEST) Received: (qmail 69073 invoked by uid 500); 9 Oct 2017 21:07:51 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 69062 invoked by uid 99); 9 Oct 2017 21:07:51 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd2-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 09 Oct 2017 21:07:51 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id 1095C1A297F for ; Mon, 9 Oct 2017 21:07:51 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 0.999 X-Spam-Level: X-Spam-Status: No, score=0.999 tagged_above=-999 required=6.31 tests=[KAM_LAZY_DOMAIN_SECURITY=1, SPF_HELO_PASS=-0.001] autolearn=disabled Received: from mx1-lw-eu.apache.org ([10.40.0.8]) by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024) with ESMTP id 4vpg4tYA5xWe for ; Mon, 9 Oct 2017 21:07:50 +0000 (UTC) Received: from mailbox.servedge.com (li1281-212.members.linode.com [45.79.182.212]) by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with ESMTPS id D0BC35F6C6 for ; Mon, 9 Oct 2017 21:07:49 +0000 (UTC) Received: (qmail 15785 invoked by uid 513); 9 Oct 2017 16:07:49 -0500 Received: from pool-173-66-116-184.washdc.fios.verizon.net (HELO Christophers-iMac.local) (chris@christopherschultz.net@173.66.116.184) by mailbox.servedge.com with ECDHE-RSA-AES128-GCM-SHA256 encrypted SMTP; 9 Oct 2017 16:07:49 -0500 Subject: Re: Tomcat APR / openssl To: users@tomcat.apache.org From: Christopher Schultz Message-ID: Date: Mon, 9 Oct 2017 17:07:48 -0400 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:52.0) Gecko/20100101 Thunderbird/52.3.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit archived-at: Mon, 09 Oct 2017 21:07:54 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Jennifer, On 10/9/17 10:22 AM, Wang, Jennifer wrote: > I am looking openssl's SSL_CTX_set_psk_server_callback in APR & > did not found it. Just wonder if there is way to set it. We need to > use TLS-PSK. I don't believe there is an easy way to use Tomcat with a PSK-based TLS cipher suite. Why not use RSA with a client-certificate if you want two-way authentication? - -chris -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQJRBAEBCAA7FiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAlnb5SQdHGNocmlzQGNo cmlzdG9waGVyc2NodWx0ei5uZXQACgkQHPApP6U8pFgwwQ/+JUc5+GjSPj5geBUh QEGLd5+7wJSb48rZ1dLXrMPDkHms9js/osGnwLKF6R0ypJHkIcHnq380ZpMREPgZ YVHTEcoWSoeUAmN+xavJAaaTyiRtE3al3IuHMegiEq/ld95EaJ1kKAxup8kH/rIs s46Z3fpaho6auxPNXtAxYbCQ/SOjgHmC2v6ZJsJKJRrI/QotEWlOISaxgo4oJk5X DVfzEaIplFx74WR+jpXyQJFGI19BI93bCSPgy4Niqk9wJb3Wv3XuEoolyoZkL5yC QuaoUAIqFGuNqRR+WbjYH7kNjRv+HtmY+fhZCk2YnmUDytg2xj+MPOXIDdKACJQv Nlns4KhLU2AtXTTluO+nLEfbl9r9OtTMuVqDl0+Sbl2gest2JipY4Zgm7h7+r83h a77Ct0EDGomDhUkqrvfvRE6so0KO5uga9sj8kGulmA5EiPK3/tOrseJ1ZDMnvCfH 8+ev/oHqjAjFOojCX5u+omZ4RNsx+Va7/RMJCbfUcpB4HjrX1MDIIlsmq2egi6Rg DJA3g1+GkwCS2Ul2EehuZmo5Lez3oamIDksJ04GyMUbyx5QBS4JJqGR5KGIE9+nM M51t932+ioFxgEndTYBUedftiDGvEGBH8Wy7yUhpXtrPmg5SF6Izih7n9OyBlATr X4SHzGl7BNeWxRvf33hbH1T+ToE= =nDIg -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org