Re: Updating Tomcat native requires APR update
On Thu, Jun 30, 2016 at 8:49 AM, Ari Luoma wrote: > On Wed, Jun 29, 2016 at 3:04 PM, Mark Thomas wrote: >> On 29/06/2016 12:40, Ari Luoma wrote: >>> First I would like to thank you for the great job you do by responding >>> to these questions people have. >>> >>> I am about to update Tomcat 8.0.26 -> 8.5.3. >>> >>> I am using AJP APR connector between Tomcat and Apache. >>> >>> If I update APR (by downloading and compiling it from APR website) to >>> the newest do I also need to compile httpd or can it use 1.3.9 APR >>> with httpd when Tomcat uses 1.5.2? >> >> As long as you compile APR 1.5.2 to a separate location and don't >> overwrite your APR 1.3.9 build you should be fine. >> > > But even though if someone would overwrite the previous one it should > be fine, because compiling later version? > > Binary Compatibility: "Similar to source compatibility, an application > that has been compiled against a particular version will continue to > be linkable against later versions (unless the major number changes). > It is possible that an application will not be able to successfully > link against a previous minor version." > Source: http://apr.apache.org/versioning.html > But if I would override the original I would also need to update OpenSSL because apr-util needs OpenSSL-1.0.2h for SSL support. By not overriding I can leave apr util without SSL support >>> Below more info about the current setup: >>> >>> One Server with: CentOS 6.3 >>> Apache HTTP Server 2.2.15 (installed from centos repo) >>> Tomcat 8.0.26 (Installed by downloading tar.gz...) >>> APR 1.3.9 (installed from centos repo and this is the newest version >>> available from repo) >>> Tomcat-native 1.1.33 (built from Tomcat directory) >>> >>> Server is running multiple Tomcats instances in different ports. >>> httpd is there at front as a proxy with configuration something like this. >>> >>> Listen 443 >>> NameVirtualHost *:443 >>> >>> ... >>> >>> ProxyPass ajp://localhost:8109/myWebApp/ timeout=3600 >>> ProxyPassReverseCookiePath /myWebApp /test >>> >>> >>> >>> >>> Connector on Tomcat side: >>> >>> >>> >>> #httpd -V >>> Server version: Apache/2.2.15 (Unix) >>> Server built: Aug 13 2013 17:29:28 >>> Server's Module Magic Number: 20051115:25 >>> Server loaded: APR 1.3.9, APR-Util 1.3.9 >>> Compiled using: APR 1.3.9, APR-Util 1.3.9 >>> ... >>> >>> When about to build the tomcat native 1.2.7 from Tomcat 8.5.3 it says: >>> configure: error: Found APR 1.3.9. You need version 1.4.3 or newer >>> installed. >> >> Once you fix the APR issue, OpenSSL might be your next problem since >> tomcat native requires OpenSSL 1.0.2. There are various solutions, the >> simplest being to build Tomcat Native without OpenSSL support if you >> don't need it. > > Thanks for that! > Luckily I don't need the SSL support on Tomcat side, because httpd > handles it and connection to manager goes through VPN so I can > "downgrade" https connection into http. > Is tomcat_native library only used on APR connectors? So that I (or someone else who happens to read this) could use "org.apache.coyote.http11.Http11NioProtocol" for HTTPS and AJP APR for httpd <-> Tomcat without SSL. Are there any downsides for having both NIO and APR in use, like much greater memory consumption? >> >> Mark >> >> >> - >> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >> For additional commands, e-mail: users-h...@tomcat.apache.org >> - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Updating Tomcat native requires APR update
On Wed, Jun 29, 2016 at 3:04 PM, Mark Thomas wrote: > On 29/06/2016 12:40, Ari Luoma wrote: >> First I would like to thank you for the great job you do by responding >> to these questions people have. >> >> I am about to update Tomcat 8.0.26 -> 8.5.3. >> >> I am using AJP APR connector between Tomcat and Apache. >> >> If I update APR (by downloading and compiling it from APR website) to >> the newest do I also need to compile httpd or can it use 1.3.9 APR >> with httpd when Tomcat uses 1.5.2? > > As long as you compile APR 1.5.2 to a separate location and don't > overwrite your APR 1.3.9 build you should be fine. > But even though if someone would overwrite the previous one it should be fine, because compiling later version? Binary Compatibility: "Similar to source compatibility, an application that has been compiled against a particular version will continue to be linkable against later versions (unless the major number changes). It is possible that an application will not be able to successfully link against a previous minor version." Source: http://apr.apache.org/versioning.html >> Below more info about the current setup: >> >> One Server with: CentOS 6.3 >> Apache HTTP Server 2.2.15 (installed from centos repo) >> Tomcat 8.0.26 (Installed by downloading tar.gz...) >> APR 1.3.9 (installed from centos repo and this is the newest version >> available from repo) >> Tomcat-native 1.1.33 (built from Tomcat directory) >> >> Server is running multiple Tomcats instances in different ports. >> httpd is there at front as a proxy with configuration something like this. >> >> Listen 443 >> NameVirtualHost *:443 >> >> ... >> >> ProxyPass ajp://localhost:8109/myWebApp/ timeout=3600 >> ProxyPassReverseCookiePath /myWebApp /test >> >> >> >> >> Connector on Tomcat side: >> >> >> >> #httpd -V >> Server version: Apache/2.2.15 (Unix) >> Server built: Aug 13 2013 17:29:28 >> Server's Module Magic Number: 20051115:25 >> Server loaded: APR 1.3.9, APR-Util 1.3.9 >> Compiled using: APR 1.3.9, APR-Util 1.3.9 >> ... >> >> When about to build the tomcat native 1.2.7 from Tomcat 8.5.3 it says: >> configure: error: Found APR 1.3.9. You need version 1.4.3 or newer installed. > > Once you fix the APR issue, OpenSSL might be your next problem since > tomcat native requires OpenSSL 1.0.2. There are various solutions, the > simplest being to build Tomcat Native without OpenSSL support if you > don't need it. Thanks for that! Luckily I don't need the SSL support on Tomcat side, because httpd handles it and connection to manager goes through VPN so I can "downgrade" https connection into http. > > Mark > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Updating Tomcat native requires APR update
On 29/06/2016 12:40, Ari Luoma wrote: > First I would like to thank you for the great job you do by responding > to these questions people have. > > I am about to update Tomcat 8.0.26 -> 8.5.3. > > I am using AJP APR connector between Tomcat and Apache. > > If I update APR (by downloading and compiling it from APR website) to > the newest do I also need to compile httpd or can it use 1.3.9 APR > with httpd when Tomcat uses 1.5.2? As long as you compile APR 1.5.2 to a separate location and don't overwrite your APR 1.3.9 build you should be fine. > Below more info about the current setup: > > One Server with: CentOS 6.3 > Apache HTTP Server 2.2.15 (installed from centos repo) > Tomcat 8.0.26 (Installed by downloading tar.gz...) > APR 1.3.9 (installed from centos repo and this is the newest version > available from repo) > Tomcat-native 1.1.33 (built from Tomcat directory) > > Server is running multiple Tomcats instances in different ports. > httpd is there at front as a proxy with configuration something like this. > > Listen 443 > NameVirtualHost *:443 > > ... > > ProxyPass ajp://localhost:8109/myWebApp/ timeout=3600 > ProxyPassReverseCookiePath /myWebApp /test > > > > > Connector on Tomcat side: > > > > #httpd -V > Server version: Apache/2.2.15 (Unix) > Server built: Aug 13 2013 17:29:28 > Server's Module Magic Number: 20051115:25 > Server loaded: APR 1.3.9, APR-Util 1.3.9 > Compiled using: APR 1.3.9, APR-Util 1.3.9 > ... > > When about to build the tomcat native 1.2.7 from Tomcat 8.5.3 it says: > configure: error: Found APR 1.3.9. You need version 1.4.3 or newer installed. Once you fix the APR issue, OpenSSL might be your next problem since tomcat native requires OpenSSL 1.0.2. There are various solutions, the simplest being to build Tomcat Native without OpenSSL support if you don't need it. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org