Re: Fwd: Tomcat + ssl problems
Hi, Thanks for your reply. We are using jdk1.4.2. I am busy recompiling it as we speak to be 100% sure that it's ok. At 10:20 AM 8/18/2004 -0700, Hassan Schroeder wrote: Lloyd Hopper wrote: I am re-submitting this mail as I have had absolutely no response as of yet - is there really no one that has come across this before? I haven't (and I'm running Tomcat/SSL), but... Firstly, the keytool will not work properly when generating a new key. right off the bat, that tells me it's not a Tomcat problem, it's a basic JVM install problem of some kind. Keytool should work; until you fix that, you're stuck. Are you on a current JVM? That's where I'd be looking, at least... FWIW, -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Fwd: Tomcat + ssl problems
Hello, I am re-submitting this mail as I have had absolutely no response as of yet - is there really no one that has come across this before? I have seen similar problems both here and via Google groups but no really helpful solutions. Once again, please could somebody point me in the right direction on how to solve this. I was maybe thinking that the Tomcat compilation (with the JSSE automatically included) was not done properly, but standalone without SSL everything runs perfectly. Suggestions please Lloyd Date: Thu, 12 Aug 2004 14:02:59 +0200 To: [EMAIL PROTECTED] From: Lloyd Hopper [EMAIL PROTECTED] Subject: Tomcat + ssl problems Hello, I am sure somebody has come across something similar before but I have been unable to find a resolution as yet. The problem is this; I am trying to enable SSL in Tomcat 4.1.29 and several things happen that are not correct, even though this should be a rather simple goal to achieve. Firstly, the keytool will not work properly when generating a new key. You get asked all the questions and when you have finished and you confirm the information entered with a 'yes' it just hangs. Importing with keytool and checking the keystore both work fine (the -list and -import flags) but generating doesn't (-genkey). I cannot seem to find any error messages either and in top the process appears intermittently. Secondly, after importing the certificate (made with openssl) I then change the server.xml config and ensure that the JSSE_HOME is correct in catalina.sh and restart Tomcat using catalina.sh. This is what I get: - begin excerpt catalina log -- Exception during startup processing java.lang.reflect.InvocationTargetException at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:324) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:203) Caused by: java.lang.NoClassDefFoundError: javax/net/ServerSocketFactory at java.lang.ClassLoader.findBootstrapClass(Native Method) at java.lang.ClassLoader.findBootstrapClass0(ClassLoader.java:709) at java.lang.ClassLoader.loadClass(ClassLoader.java:284) at java.lang.ClassLoader.loadClass(ClassLoader.java:282) at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:274) at java.lang.ClassLoader.loadClass(ClassLoader.java:235) at org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader.java:941) at org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader.java:857) at org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader.java:941) at org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader.java:857) at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:302) at org.apache.tomcat.util.net.jsse.JSSE14Factory.getSocketFactory(JSSE14Factory.java:80) at org.apache.tomcat.util.net.jsse.JSSEImplementation.getServerSocketFactory(JSSEImplementation.java:113) at org.apache.coyote.http11.Http11Protocol.checkSocketFactory(Http11Protocol.java:615) at org.apache.coyote.http11.Http11Protocol.init(Http11Protocol.java:166) at org.apache.coyote.tomcat4.CoyoteConnector.initialize(CoyoteConnector.java:1173) at org.apache.catalina.core.StandardService.initialize(StandardService.java:579) at org.apache.catalina.core.StandardServer.initialize(StandardServer.java:2246) at org.apache.catalina.startup.Catalina.start(Catalina.java:511) at org.apache.catalina.startup.Catalina.execute(Catalina.java:400) at org.apache.catalina.startup.Catalina.process(Catalina.java:180) ... 5 more end excerpt catalina log - Tomcat runs perfectly if I comment the SSL out. --- begin server.xml excerpt --- !-- Define a non-SSL Coyote HTTP/1.1 Connector -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8180 minProcessors=5 maxProcessors=75 enableLookups=true redirectPort=8443 acceptCount=100 debug=0 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to -1 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=75 enableLookups=true acceptCount=100 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory
Re: Fwd: Tomcat + ssl problems
Lloyd Hopper wrote: I am re-submitting this mail as I have had absolutely no response as of yet - is there really no one that has come across this before? I haven't (and I'm running Tomcat/SSL), but... Firstly, the keytool will not work properly when generating a new key. right off the bat, that tells me it's not a Tomcat problem, it's a basic JVM install problem of some kind. Keytool should work; until you fix that, you're stuck. Are you on a current JVM? That's where I'd be looking, at least... FWIW, -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
