Re: Connector warning message with native libraries

Thu, 05 Apr 2012 15:30:00 -0700 

Replying to my own question.

See ============= COMMENT ================

----- Original Message -----

> From: Mark Eggers <its_toas...@yahoo.com>
> To: Tomcat Users List <users@tomcat.apache.org>
> Cc: 
> Sent: Thursday, April 5, 2012 12:40 PM
> Subject: Connector warning message with native libraries
> 
> Folks:
> 
> I'm seeing a warning in my logs when I use request.secret for the AJP
> connector when I load the APR native libraries. The warning is:
> 
> WARNING: [SetAllPropertiesRule]{Server/Service/Connector}
>   Setting property 'request.secret' to 'somesillypassword' did 
> not find a
>   matching property.
> 
> I'm running a three node Tomcat cluster for testing with the following
> configuraiton:
> 
> OS:     Fedora 15 32 bit
> JVM:    java version "1.6.0_31"
>         Java(TM) SE Runtime Environment (build 1.6.0_31-b04)
>         Java HotSpot(TM) Client VM (build 20.6-b01, mixed mode, sharing)
> Tomcat: 6.0.35
> Native: 1.1.22
> APR:    apr-util-devel-1.3.12-1.fc15.i686 (Fedora RPM)
> SSL:    openssl-devel-1.0.0g-1.fc15.i686 (Fedora RPM)
> 


> Here's the snippet from my server.xml.
> 
> <!-- Define an AJP 1.3 Connector on port 8019 -->
> <Connector port="8019" protocol="AJP/1.3" 
> redirectPort="8453"
>        request.secret="somesillypassword"
>        connectionTimeout="600000"
>        URIEncoding="UTF-8"/>
> 

============= COMMENT ================


It helps to read the fine javadoc for org.apache.coyote.ajp.AjpAprProtocol.

In there you will find a protected string called requiredSecret (much like 
Tomcat 7.x).

Indeed, changing request.secret to requiredSecret when loading the native 
libraries eliminates the warning.

However, a cursory glance at the online documentation didn't reveal any mention 
of this requirement for the AjpAprProtocol. It's not a problem for Tomcat 7.x 
obviously since this is the same attribute for both AprProtocol and 
AjpAprProtocol.

However, for Tomcat 6 this presents an issue.

So a note when loading the native libraries, using AjpAprProtocol, and Tomcat 6 
with the "secret" attribute:

Change request.secret="somesillypassword" on the AJP/1.3 connector definition 
to requiredSecret="somesillypassword".

============= COMMENT ================


Sorry for the bandwidth.

. . . . just my two cents.
/mde/


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Reply via email to