from:"Ivano Luberti"

Re: TLSCertificateReloadListener Detects Expiration But Never Reads New Cert & Key Files

2024-03-19 Thread Ivano Luberti


Could there be a regression also in 9.0.86

Because I had a similar issue (reload tls didn't work) but It was the 
first time I was doing that on that tomcat instance and I  had assumed 
there was some misconfiguration, even though certificates where server 
correctly but the wrong expiration date and after restarting tomcat the 
certificates were served with correct dates


Il 18/03/2024 21:20, Mark Thomas ha scritto:

On 18/03/2024 08:21, Mark Thomas wrote:

On 17/03/2024 15:26, Justin Y wrote:

Hi Everyone --

   I've spent a few hours scratching my head and then diving into 
the source code of 10.1.19 to figure out what's going on.


Could you test with 10.1.18? I'm wondering if the user provided 
SSLContext changes in 10.1.19 have triggered a regression.


Never mind. I've just confirmed that those changes did trigger a 
regression. I'll commit a fix shortly and it will be in the next round 
of releases.


Mark




Mark



   I'm using the /TLSCertificateReloadListener/ 
 
to reload files that will be (eventually) managed by Let's Encrypt.


   Although it does detect the expiration and log that things were 
reloaded, the new files are never read and the old cert & key are 
used forever, causing the trigger to reoccur again and again.


   The only way I can get the system to function correctly is if I, 
during debugging in Eclipse with the matching Tomcat source, null 
out the "sslContext" on line 102 of AbstractJsseEndpoint.


   From what I can tell, the SSLHostConfigCertificate objects keep a 
copy of an SSLContext and during the JMX unregister and register the 
same SSLContext is transferred, which never takes in the same files.


   From my limited knowledge, it appears the files will never be 
loaded unless a new instance of SSLContext is created.


   I've tried both APR (OpenSSL) and native JSSE configurations. One 
thing of note - during testing, I'm only using PEM-based cert and 
key files (no CA).


   I have tried writing my own /TLSCertificateReloadListener/ 
 
implementation but have found no clear way to null the SSLContext of 
the (determined expired) SSLHostConfigCertificate objects to allow a 
reload.


   I appreciate any suggestions!

-- Justin



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



Il contenuto di questo messaggio e dei suoi eventuali allegati è 
riservato. Nel caso in cui Lei non sia il destinatario, La preghiamo di 
contattare telefonicamente o via e-mail il mittente ai recapiti sopra 
indicati e di cancellare il messaggio e gli eventuali allegati dal Suo 
sistema senza farne copia o diffonderli. Le opinioni espresse sono 
quelle dell'autore e non rappresentano necessariamente quelle della Società.
This message and any attachment are confidential.If you are not the 
intended recipient, please telephone or email the sender and delete this 
message and any attachment from your system. If you are not the intended 
recipient you must not copy this message or attachment or disclose the 
contents to any other person. Any opinions presented are solely those of 
the author and do not necessarily represent those of the Company.


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: AW: Tomcat SMPT TLS1.2

2024-03-11 Thread Ivano Luberti


LOL

but to be honest we encountered the issue after moving from JDK 1.7 to 
JDK 1.8 without changing the  SMTP server


Il 11/03/2024 17:49, Jost Richstein ha scritto:

Yes, of course. Mail-1.4.jar is from May 2006. I'm not even sure if TLS existed 
back then.


-Ursprüngliche Nachricht-
Von: Ivano Luberti  
Gesendet: Montag, 11. März 2024 17:46

An:users@tomcat.apache.org
Betreff: Re: Tomcat SMPT TLS1.2

I had issues in the past connectin to mailserver using TLS and solved them 
upgrading the webapplicatio library from mail-1.4.jar to javax.mail-1.6.2.jar

Il 11/03/2024 17:41, Robert Turner ha scritto:

AFAIK, there is nothing in Tomcat for SMTP. This would be part of the
application you are running typically. It's possible (but not
guaranteed) that the web application is using the standard Java
libraries for SMTP, and as such, you may (but again not guaranteed) be
able to configure some of the mail settings via Java system properties
(
https://javaee.github.io/javamail/docs/api/com/sun/mail/smtp/package-s
ummary.html
).

Best bet is to work with your application provider and their
documentation / support.

Also, consider upgrading Java and Tomcat to current / supported
versions as those versions are both very old and likely have many
security issues that need patching.



On Mon, Mar 11, 2024 at 12:39 PM Jost
Richstein
wrote:


Hi,

this is definitely not a Tomcat problem - take a look at:


https://javaee.github.io/javamail/docs/api/com/sun/mail/smtp/package-
summary
.html
<https://javaee.github.io/javamail/docs/api/com/sun/mail/smtp/package 
-summary.html>



-Ursprüngliche Nachricht-
Von: Brandie Nickey
Gesendet: Montag, 11. März 2024 17:35An:users@tomcat.apache.org
Betreff: Tomcat SMPT TLS1.2

Hi all,

I have a COTS webapp using Tomcat 8.0.43 and Java 1.8.0_121.  I have
been trying to find out where to configure outbound smtp messages to
use only TLS1.2.  I've found plenty of info on the https using TLS1.2
and have configured that just fine in server.xml file and in the Java
tab of the tomcatw.exe file, but that doesn't seem to be applying to the emails
outgoing from the webapp.   Anyone have any ideas? (Also upgrading is not
an
option as this tomcat/java combo is the only one supported by the
vendor for our webapp version).

Thank you!
Brandie



-
To unsubscribe,e-mail:users-unsubscr...@tomcat.apache.org
For additional commands,e-mail:users-h...@tomcat.apache.org



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


Il contenuto di questo messaggio e dei suoi eventuali allegati è 
riservato. Nel caso in cui Lei non sia il destinatario, La preghiamo di 
contattare telefonicamente o via e-mail il mittente ai recapiti sopra 
indicati e di cancellare il messaggio e gli eventuali allegati dal Suo 
sistema senza farne copia o diffonderli. Le opinioni espresse sono 
quelle dell'autore e non rappresentano necessariamente quelle della Società.
This message and any attachment are confidential.If you are not the 
intended recipient, please telephone or email the sender and delete this 
message and any attachment from your system. If you are not the intended 
recipient you must not copy this message or attachment or disclose the 
contents to any other person. Any opinions presented are solely those of 
the author and do not necessarily represent those of the Company.


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: Tomcat SMPT TLS1.2

2024-03-11 Thread Ivano Luberti

I had issues in the past connectin to mailserver using TLS and solved 
them upgrading the webapplicatio library from mail-1.4.jar to 
javax.mail-1.6.2.jar


Il 11/03/2024 17:41, Robert Turner ha scritto:

AFAIK, there is nothing in Tomcat for SMTP. This would be part of the
application you are running typically. It's possible (but not guaranteed)
that the web application is using the standard Java libraries for SMTP, and
as such, you may (but again not guaranteed) be able to configure some of
the mail settings via Java system properties (
https://javaee.github.io/javamail/docs/api/com/sun/mail/smtp/package-summary.html
).

Best bet is to work with your application provider and their
documentation / support.

Also, consider upgrading Java and Tomcat to current / supported versions as
those versions are both very old and likely have many security issues that
need patching.



On Mon, Mar 11, 2024 at 12:39 PM Jost Richstein
wrote:


Hi,

this is definitely not a Tomcat problem - take a look at:


https://javaee.github.io/javamail/docs/api/com/sun/mail/smtp/package-summary
.html



-Ursprüngliche Nachricht-
Von: Brandie Nickey
Gesendet: Montag, 11. März 2024 17:35
An:users@tomcat.apache.org
Betreff: Tomcat SMPT TLS1.2

Hi all,

I have a COTS webapp using Tomcat 8.0.43 and Java 1.8.0_121.  I have been
trying to find out where to configure outbound smtp messages to use only
TLS1.2.  I've found plenty of info on the https using TLS1.2 and have
configured that just fine in server.xml file and in the Java tab of the
tomcatw.exe file, but that doesn't seem to be applying to the emails
outgoing from the webapp.   Anyone have any ideas? (Also upgrading is not
an
option as this tomcat/java combo is the only one supported by the vendor
for
our webapp version).

Thank you!
Brandie



-
To unsubscribe, e-mail:users-unsubscr...@tomcat.apache.org
For additional commands, e-mail:users-h...@tomcat.apache.org



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



Il contenuto di questo messaggio e dei suoi eventuali allegati è 
riservato. Nel caso in cui Lei non sia il destinatario, La preghiamo di 
contattare telefonicamente o via e-mail il mittente ai recapiti sopra 
indicati e di cancellare il messaggio e gli eventuali allegati dal Suo 
sistema senza farne copia o diffonderli. Le opinioni espresse sono 
quelle dell'autore e non rappresentano necessariamente quelle della Società.
This message and any attachment are confidential.If you are not the 
intended recipient, please telephone or email the sender and delete this 
message and any attachment from your system. If you are not the intended 
recipient you must not copy this message or attachment or disclose the 
contents to any other person. Any opinions presented are solely those of 
the author and do not necessarily represent those of the Company.


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: Tomcat 9 returning 404 for audio files

2024-03-11 Thread Ivano Luberti


Could it be the file is created with incorrect access rights?

Il 11/03/2024 16:46, Mark Thomas ha scritto:

On 11/03/2024 11:31, Sam wrote:

Thanks for replying!!

Yes audio files are generated dynamically from DB.in a Servlet.

I've verified that audio file exists on file system before returning the
html code that contains audo control.


Is there any chance of an attempt to access the file before it is 
created? The resources implementation can cache "not found" results 
for a short period of time.


You might want to test the code with a simple text file to determine 
whether file type is a factor (which seems unlikely but you never know).


Mark




On Mon, Mar 11, 2024, 5:22 a.m. Mark Thomas  wrote:


On 11/03/2024 02:21, Sam wrote:

I just upgraded a legacy application from Tomcat 7 to Tomcat 9. It's
deployed as a war file. I'm facing a weird issue with audio files

playback.


When loading a page that contains an audio file. First time Tomcat

returns
404 error but if reloading the page, audio file is loaded properly 
and no

error from Tomcat.

I'm using html 5 audio control to display the file.

All other static resources(images, css and js files) are working 
without

any issues. Only audio files are having this issue.

I enabled the logs for DefaultServlet in Tomcat. Follwong is the log

entry

when I try to open the audio file first time. I can see 404 being

returned

from server in Chrome dev tools.


*09-Mar-2024 20:12:50.747 INFO DefaultServlet.serveResource: Serving
resource '/wav/2B916004DFE94FA40446429E1671C893_0001053.mp3' 
headers and

data*
Following is the log for 2nd attempt. This time audio is available and
playable in browser. *09-Mar-2024 20:13:00.371 INFO
DefaultServlet.serveResource: Serving resource
'/wav/2B916004DFE94FA40446429E1671C893_0001053.mp3' headers and data *
*09-Mar-2024 20:13:01.372 INFO DefaultServlet.serveFile:
contentType='audio/mpeg'*


Are the audio files generated dynamically on request?

Mark




Here is the audio control code:


 
bottom:0;"


    
  src="/wav/2B916004DFE94FA40446429E1671C893_0001053.mp3"

type="audio/mpeg" >
    
 

I've tried relative path and full path but result is the same in both

cases.


I've spent days trying to solve this but no luck :(

I would really appreciate any guidance to solve this issue.

Thanks!



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org






-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



Il contenuto di questo messaggio e dei suoi eventuali allegati è 
riservato. Nel caso in cui Lei non sia il destinatario, La preghiamo di 
contattare telefonicamente o via e-mail il mittente ai recapiti sopra 
indicati e di cancellare il messaggio e gli eventuali allegati dal Suo 
sistema senza farne copia o diffonderli. Le opinioni espresse sono 
quelle dell'autore e non rappresentano necessariamente quelle della Società.
This message and any attachment are confidential.If you are not the 
intended recipient, please telephone or email the sender and delete this 
message and any attachment from your system. If you are not the intended 
recipient you must not copy this message or attachment or disclose the 
contents to any other person. Any opinions presented are solely those of 
the author and do not necessarily represent those of the Company.


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: JAVA -tomcat- Request header is too large

2023-12-08 Thread Ivano Luberti



Il 07/12/2023 17:51, Mark Thomas ha scritto:

On 07/12/2023 15:37, Ivano Luberti wrote:

Hi, since a few days these errors started showing in my log files:

06-Dec-2023 07:39:56.082 INFO [http-nio-8080-exec-5826] 
org.apache.coyote.http11.Http11Processor.service Error parsing HTTP 
request header
 Note: further occurrences of HTTP request parsing errors will be 
logged at DEBUG level.

    java.lang.IllegalArgumentException: Request header is too large
        at 
org.apache.coyote.http11.Http11InputBuffer.fill(Http11InputBuffer.java:790)
        at 
org.apache.coyote.http11.Http11InputBuffer.parseHeader(Http11InputBuffer.java:975)
        at 
org.apache.coyote.http11.Http11InputBuffer.parseHeaders(Http11InputBuffer.java:604)
        at 
org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:294)
        at 
org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65)
        at 
org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:893)
        at 
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1789)
        at 
org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)
        at 
org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191)
        at 
org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659)
        at 
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)

        at java.lang.Thread.run(Thread.java:750)


I know I can increase the tolerated header size using sometjing like 
this:


... />


Bu my question is how can i debug the issue?

For example: how can i find the page requested when the exception was 
raised?


Match the timestamp in the logs with the timestamp in the access logs 
of the associated 400 response.


Mark


Thank you Mark.

Finding the exception in log files led me to think there was noting in 
the access log.


Is there any way to log the header content so I can find what is causing 
the issue?



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

JAVA -tomcat- Request header is too large

2023-12-07 Thread Ivano Luberti


Hi, since a few days these errors started showing in my log files:

06-Dec-2023 07:39:56.082 INFO [http-nio-8080-exec-5826] 
org.apache.coyote.http11.Http11Processor.service Error parsing HTTP 
request header
 Note: further occurrences of HTTP request parsing errors will be 
logged at DEBUG level.

    java.lang.IllegalArgumentException: Request header is too large
        at 
org.apache.coyote.http11.Http11InputBuffer.fill(Http11InputBuffer.java:790)
        at 
org.apache.coyote.http11.Http11InputBuffer.parseHeader(Http11InputBuffer.java:975)
        at 
org.apache.coyote.http11.Http11InputBuffer.parseHeaders(Http11InputBuffer.java:604)
        at 
org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:294)
        at 
org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65)
        at 
org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:893)
        at 
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1789)
        at 
org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)
        at 
org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191)
        at 
org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659)
        at 
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)

        at java.lang.Thread.run(Thread.java:750)


I know I can increase the tolerated header size using sometjing like this:



Bu my question is how can i debug the issue?

For example: how can i find the page requested when the exception was 
raised?





--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: Issues with writing to the log file

2023-10-11 Thread Ivano Luberti


I have issues with tomcat log files to.

Is thee a guide on where and how they are configured?

It seems it depends not only on tomcat but also on the OSis it correct?

Il 11/10/2023 00:21, Shakila Rajaiah ha scritto:

Hello Users,
I am not sure if I have set up my application correctly. The logs that I have 
included in my java application are not getting written to the log files.
I have catalina.2023-10-10 which only contaings information about the server 
starting.localhost.2023-10-10 having similar information
localhost_access_log.2023-10-10 - get and post requests

I can see all the logs on the server when it is running. Can I write out that 
information to a text file? If so can you please send me the link?
Thanks,Shakila

Shakila Rajaiah  *  e-mail:sraja...@yahoo.com   
  


   

--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: deploying war with tomcat manage fails with no significative errors in logs

2023-10-09 Thread Ivano Luberti

Chris, yes checked  other files and I have also logs/localhost_*.log but 
the deployments event reported there are the same found in catalina.out. 
There is manager log too, same as above


Il 10/10/2023 04:54, Christopher Schultz ha scritto:

Ivano,

On 10/9/23 16:05, Ivano Luberti wrote:

I solved my own issue:

In my web.xml

I had two times the same mapping for a servlet

   
 reportservlet
/repinvenduti/reportservlet
   

But there was no error message in tomcat logs with this regard.

Maybe tomcat logging is not tuned correctly?


Did you check logs other than catalina.out? I usually find these kind 
of logs in a log file like logs/localhost_*.log


-chris

Because doing the same mistake in Eclipse leads to the following logs 
which clearly expose the poblem cause


java.lang.reflect.InvocationTargetException

at sun.reflect.GeneratedMethodAccessor23.invoke(Unknown Source)

at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)


at java.lang.reflect.Method.invoke(Method.java:497)

at 
org.apache.tomcat.util.IntrospectionUtils.callMethodN(IntrospectionUtils.java:447)


at 
org.apache.tomcat.util.descriptor.web.CallMethodMultiRule.end(WebRuleSet.java:1046)


at 
org.apache.tomcat.util.digester.Digester.endElement(Digester.java:1001)


at 
com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endElement(AbstractSAXParser.java:609)


at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanEndElement(XMLDocumentFragmentScannerImpl.java:1782)


at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl$FragmentContentDriver.next(XMLDocumentFragmentScannerImpl.java:2973)


at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl.next(XMLDocumentScannerImpl.java:606)


at 
com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:510)


at 
com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)


at 
com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)


at 
com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)


at 
com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)


at 
com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:649)


at org.apache.tomcat.util.digester.Digester.parse(Digester.java:1496)

at 
org.apache.tomcat.util.descriptor.web.WebXmlParser.parseWebXml(WebXmlParser.java:119)


at 
org.apache.catalina.startup.ContextConfig.webConfig(ContextConfig.java:1067)


at 
org.apache.catalina.startup.ContextConfig.configureStart(ContextConfig.java:779)


at 
org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:299)


at 
org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:123)


at 
org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5130)


at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)

at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1429)


at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1419)


at java.util.concurrent.FutureTask.run(FutureTask.java:266)

at 
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)


at 
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)


at java.lang.Thread.run(Thread.java:745)

Caused by: java.lang.IllegalArgumentException: The servlets named 
[reportservlet] and [reportservlet] are both mapped to the 
url-pattern [/repinvenduti/reportservlet] which is not permitted


at 
org.apache.tomcat.util.descriptor.web.WebXml.addServletMappingDecoded(WebXml.java:340)


at 
org.apache.tomcat.util.descriptor.web.WebXml.addServletMapping(WebXml.java:333)


... 30 more

ott 09, 2023 10:03:10 PM 
org.apache.tomcat.util.descriptor.web.WebXmlParser parseWebXml


GRAVE: Parse error in application web.xml file at 
[file:/D:/ivano/Met/EclipseWorkspace202109/.metadata/.plugins/org.eclipse.wst.server.core/tmp0/wtpwebapps/METLocale/WEB-INF/web.xml]


org.xml.sax.SAXParseException; systemId: 
file:/D:/ivano/Met/EclipseWorkspace202109/.metadata/.plugins/org.eclipse.wst.server.core/tmp0/wtpwebapps/METLocale/WEB-INF/web.xml; 
lineNumber: 730; columnNumber: 21; Error at (730, 21) : The servlets 
named [reportservlet] and [reportservlet] are both mapped to the 
url-pattern [/repinvenduti/reportservlet] which is not permitted


at 
org.apache.tomcat.util.digester.Digester.createSAXException(Digester.java:1932)


at 
org.apache.tomcat.util.digester.Digester.createSAXException(Digester.java:1964)


at 
org.apache.tomcat.util.digester.Digester.endElement(Digester.java:1004)


at 
com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endElement(AbstractSAXParser.java:609

Re: deploying war with tomcat manage fails with no significative errors in logs

2023-10-09 Thread Ivano Luberti

(XMLDocumentFragmentScannerImpl.java:510)


at 
com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)


at 
com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)


at 
com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)


at 
com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)


at 
com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:649)


at org.apache.tomcat.util.digester.Digester.parse(Digester.java:1496)

at 
org.apache.tomcat.util.descriptor.web.WebXmlParser.parseWebXml(WebXmlParser.java:119)


at 
org.apache.catalina.startup.ContextConfig.webConfig(ContextConfig.java:1067)


at 
org.apache.catalina.startup.ContextConfig.configureStart(ContextConfig.java:779)


at 
org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:299)


at 
org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:123)


at 
org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5130)


at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)

at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1429)


at 
org.apache.catalina.core.ContainerBase$StartChild.call(ContainerBase.java:1419)


at java.util.concurrent.FutureTask.run(FutureTask.java:266)

at 
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)


at 
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)


at java.lang.Thread.run(Thread.java:745)

Caused by: java.lang.IllegalArgumentException: The servlets named 
[reportservlet] and [reportservlet] are both mapped to the url-pattern 
[/repinvenduti/reportservlet] which is not permitted


at 
org.apache.tomcat.util.descriptor.web.WebXml.addServletMappingDecoded(WebXml.java:340)


at 
org.apache.tomcat.util.descriptor.web.WebXml.addServletMapping(WebXml.java:333)


at sun.reflect.GeneratedMethodAccessor23.invoke(Unknown Source)

at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)


at java.lang.reflect.Method.invoke(Method.java:497)

at 
org.apache.tomcat.util.IntrospectionUtils.callMethodN(IntrospectionUtils.java:447)


at 
org.apache.tomcat.util.descriptor.web.CallMethodMultiRule.end(WebRuleSet.java:1046)


at org.apache.tomcat.util.digester.Digester.endElement(Digester.java:1001)

... 24 more



Il 09/10/2023 20:34, Deepak Lalchandani ha scritto:

I'm facing a similar problem with basic tomcat installing too

On Mon, 9 Oct 2023, 8:00 pm Ivano Luberti,
wrote:


Hi, I was trying to update a web application deploying a war file.

The manager says that is able to deploy the war but the application
fails to start

I had saved the previous war file and tried to redeploy it that was
correctly running (update was a bug fixing), but I'm getting the same
error.

This what I find in the log files. Nothing serious in my opinion.

I compared the war file with the one of a different war containing the
same application with different configurations such as db connection,
css files to see if the old war has significative differences , but
can't find anything.

Any ideas? Even on how to get more information from the logs

-

   09-Oct-2023 15:59:28.924 INFO [http-nio-8080-exec-174]
org.apache.catalina.startup.HostConfig.deployDescriptor Deploying
deployment descriptor
[/opt/tomcat/conf/Catalina/localhost/METComuneAlba.xml]
09-Oct-2023 15:59:28.930 WARNING [http-nio-8080-exec-174]
org.apache.tomcat.util.digester.SetPropertiesRule.begin
[SetPropertiesRule]{Context/Valve} Setting property 'resolveHosts' to
'false' did not find a matching property.
09-Oct-2023 15:59:28.931 WARNING [http-nio-8080-exec-174]
org.apache.tomcat.util.digester.Digester.endElement   No rules found
matching 'Context/Logger'.
09-Oct-2023 15:59:29.577 SEVERE [http-nio-8080-exec-174]
org.apache.catalina.startup.ContextConfig.configureStart Marking this
application unavailable due to previous error(s)
09-Oct-2023 15:59:29.579 SEVERE [http-nio-8080-exec-174]
org.apache.catalina.core.StandardContext.startInternal One or more
components marked the context as not correctly configured
09-Oct-2023 15:59:29.580 SEVERE [http-nio-8080-exec-174]
org.apache.catalina.core.StandardContext.startInternal Context
[/METComuneAlba] startup failed due to previous errors
09-Oct-2023 15:59:29.598 INFO [http-nio-8080-exec-174]
org.apache.catalina.startup.HostConfig.deployDescriptor Deployment of
deployment descriptor
[/opt/tomcat/conf/Catalina/localhost/METComuneAlba.xml] has finished in
[674] ms




--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno
2003 n. 196
per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa
<
http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf
d

deploying war with tomcat manage fails with no significative errors in logs

2023-10-09 Thread Ivano Luberti


Hi, I was trying to update a web application deploying a war file.

The manager says that is able to deploy the war but the application 
fails to start


I had saved the previous war file and tried to redeploy it that was 
correctly running (update was a bug fixing), but I'm getting the same error.


This what I find in the log files. Nothing serious in my opinion.

I compared the war file with the one of a different war containing the 
same application with different configurations such as db connection, 
css files to see if the old war has significative differences , but 
can't find anything.


Any ideas? Even on how to get more information from the logs

-

 09-Oct-2023 15:59:28.924 INFO [http-nio-8080-exec-174] 
org.apache.catalina.startup.HostConfig.deployDescriptor Deploying 
deployment descriptor 
[/opt/tomcat/conf/Catalina/localhost/METComuneAlba.xml]
09-Oct-2023 15:59:28.930 WARNING [http-nio-8080-exec-174] 
org.apache.tomcat.util.digester.SetPropertiesRule.begin 
[SetPropertiesRule]{Context/Valve} Setting property 'resolveHosts' to 
'false' did not find a matching property.
09-Oct-2023 15:59:28.931 WARNING [http-nio-8080-exec-174] 
org.apache.tomcat.util.digester.Digester.endElement   No rules found 
matching 'Context/Logger'.
09-Oct-2023 15:59:29.577 SEVERE [http-nio-8080-exec-174] 
org.apache.catalina.startup.ContextConfig.configureStart Marking this 
application unavailable due to previous error(s)
09-Oct-2023 15:59:29.579 SEVERE [http-nio-8080-exec-174] 
org.apache.catalina.core.StandardContext.startInternal One or more 
components marked the context as not correctly configured
09-Oct-2023 15:59:29.580 SEVERE [http-nio-8080-exec-174] 
org.apache.catalina.core.StandardContext.startInternal Context 
[/METComuneAlba] startup failed due to previous errors
09-Oct-2023 15:59:29.598 INFO [http-nio-8080-exec-174] 
org.apache.catalina.startup.HostConfig.deployDescriptor Deployment of 
deployment descriptor 
[/opt/tomcat/conf/Catalina/localhost/METComuneAlba.xml] has finished in 
[674] ms





--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: question about tomcat manager Server Status page

2023-09-08 Thread Ivano Luberti


Thanks Christopher

Il 08/09/2023 17:51, Christopher Schultz ha scritto:

Ivano,

On 9/8/23 11:17, Ivano Luberti wrote:

Hi, looking at Server Status and Complete Server Status Page

I can see the following line:

Max threads: 200 Current thread count: 11 Current threads busy: 1 
Keep alive sockets count: 1


But looking at the thread list under the line I can count 24 lines.

So what is the number of thread currently instantiated by tomcat? 11 
or 24?


This is a good question. When I check my localhost Manager running 
8.5.x, I see this:


Max threads: -1 Current thread count: 4 Current threads busy: 1 Keep 
alive sockets count: 1


The number of threads shown in the http-nio-host-port section shows 5 
threads, 4 in the R state and one in the S state.


When running jstack against my JVM, I can see that there are only 4 
exec threads running.


So I think the claim that there are only 11 threads in your JVM is 
correct. I believe the 24 lines you are seeing are something buggy in 
the Manager's view. I'll see if I can play around with it a little bit 
to see what's happening.


-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: Strange problem involving the word "localhost"

2023-09-08 Thread Ivano Luberti

I had similar problem with mod_security installed on servers and apache 
used as proxy.


mod_security intercept the request and if considers it suspicious 
generate a 403 error


Il 08/09/2023 17:25, James H. H. Lampert ha scritto:
Yesterday, I discovered that our Tomcat-based webapp (running on a 
Amazon AWS) doesn't like the word "localhost."


If I enter it in a text field, through the UI, it won't save the 
record, and if I feed it into our web services, it comes back with a 
403:Forbidden.


My primary hypothesis is that the 403 is coming from an AWS firewall 
rule, because that was the cause of our last 403 problem.


But is there anything in Tomcat that could be doing this?

--
JHHL

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

question about tomcat manager Server Status page

2023-09-08 Thread Ivano Luberti


Hi, looking at Server Status and Complete Server Status Page

I can see the following line:

Max threads: 200 Current thread count: 11 Current threads busy: 1 Keep 
alive sockets count: 1


But looking at the thread list under the line I can count 24 lines.

So what is the number of thread currently instantiated by tomcat? 11 or 24?



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

solved: java.lang.ClassNotFoundException for listener class

2023-09-07 Thread Ivano Luberti

I was wong, the deployed context under eclipse and under tomcat 
autonomous instance were not identical at all.


Form some reason when eclipse deploys the web application copy the class 
files under WEB-INF/services/  under WEB-INF/classes, so 
the tomcat class loading finds classes were expected




--

Hello all.

I have developed a web application using Eclipse as an IDE and test 
environment and it runs as expected.


Then I have built a war file and deployed it under another Tomcat instance.

In both case tomcat version is 8.5

Under this last instance the application can't start and in the log 
files I find:


07-Sep-2023 07:48:18.173 SEVERE [http-nio-8080-exec-129] 
org.apache.catalina.core.StandardContext.listenerStart Error 
configuring application listener of class 
[it.archimede.met.obliterazione.zse.servlet.CreaConnessione]
    java.lang.ClassNotFoundException: 
it.archimede.met.obliterazione.zse.servlet.CreaConnessione
        at 
org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1358)
        at 
org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1180)
        at 
org.apache.catalina.core.DefaultInstanceManager.loadClass(DefaultInstanceManager.java:545)
        at 
org.apache.catalina.core.DefaultInstanceManager.loadClassMaybePrivileged(DefaultInstanceManager.java:526)
        at 
org.apache.catalina.core.DefaultInstanceManager.newInstance(DefaultInstanceManager.java:150)
        at 
org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:4613)
        at 
org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5155)
        at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
        at 
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:743)
        at 
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:719)
        at 
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:705)
        at 
org.apache.catalina.startup.HostConfig.deployDescriptor(HostConfig.java:614)
        at 
org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:486)
        at 
org.apache.catalina.startup.HostConfig.check(HostConfig.java:1634)

        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
        at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

        at java.lang.reflect.Method.invoke(Method.java:607)
        at 
org.apache.tomcat.util.modeler.BaseModelMBean.invoke(BaseModelMBean.java:286)
        at 
com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:819)
        at 
com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:801)
        at 
org.apache.catalina.manager.ManagerServlet.check(ManagerServlet.java:1562)
        at 
org.apache.catalina.manager.ManagerServlet.deploy(ManagerServlet.java:990)
        at 
org.apache.catalina.manager.HTMLManagerServlet.deployInternal(HTMLManagerServlet.java:320)
        at 
org.apache.catalina.manager.HTMLManagerServlet.doPost(HTMLManagerServlet.java:209)

        at javax.servlet.http.HttpServlet.service(HttpServlet.java:652)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:733)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.catalina.filters.CsrfPreventionFilter.doFilter(CsrfPreventionFilter.java:211)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.catalina.filters.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingFilter.java:109)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199)
        at 
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)
        at 
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:668)
        at 
org.apache.catalina.valves.RequestFilterValve.process(RequestFilterValve.java:348)
        at

java.lang.ClassNotFoundException for listener class

2023-09-07 Thread Ivano Luberti


Hello all.

I have developed a web application using Eclipse as an IDE and test 
environment and it runs as expected.


Then I have built a war file and deployed it under another Tomcat instance.

In both case tomcat version is 8.5

Under this last instance the application can't start and in the log 
files I find:


07-Sep-2023 07:48:18.173 SEVERE [http-nio-8080-exec-129] 
org.apache.catalina.core.StandardContext.listenerStart Error 
configuring application listener of class 
[it.archimede.met.obliterazione.zse.servlet.CreaConnessione]
    java.lang.ClassNotFoundException: 
it.archimede.met.obliterazione.zse.servlet.CreaConnessione
        at 
org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1358)
        at 
org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1180)
        at 
org.apache.catalina.core.DefaultInstanceManager.loadClass(DefaultInstanceManager.java:545)
        at 
org.apache.catalina.core.DefaultInstanceManager.loadClassMaybePrivileged(DefaultInstanceManager.java:526)
        at 
org.apache.catalina.core.DefaultInstanceManager.newInstance(DefaultInstanceManager.java:150)
        at 
org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:4613)
        at 
org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5155)
        at 
org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183)
        at 
org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:743)
        at 
org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:719)
        at 
org.apache.catalina.core.StandardHost.addChild(StandardHost.java:705)
        at 
org.apache.catalina.startup.HostConfig.deployDescriptor(HostConfig.java:614)
        at 
org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:486)
        at 
org.apache.catalina.startup.HostConfig.check(HostConfig.java:1634)

        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
        at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

        at java.lang.reflect.Method.invoke(Method.java:607)
        at 
org.apache.tomcat.util.modeler.BaseModelMBean.invoke(BaseModelMBean.java:286)
        at 
com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:819)
        at 
com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:801)
        at 
org.apache.catalina.manager.ManagerServlet.check(ManagerServlet.java:1562)
        at 
org.apache.catalina.manager.ManagerServlet.deploy(ManagerServlet.java:990)
        at 
org.apache.catalina.manager.HTMLManagerServlet.deployInternal(HTMLManagerServlet.java:320)
        at 
org.apache.catalina.manager.HTMLManagerServlet.doPost(HTMLManagerServlet.java:209)

        at javax.servlet.http.HttpServlet.service(HttpServlet.java:652)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:733)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.catalina.filters.CsrfPreventionFilter.doFilter(CsrfPreventionFilter.java:211)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.catalina.filters.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingFilter.java:109)
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
        at 
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199)
        at 
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)
        at 
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:668)
        at 
org.apache.catalina.valves.RequestFilterValve.process(RequestFilterValve.java:348)
        at 
org.apache.catalina.valves.RemoteAddrValve.invoke(RemoteAddrValve.java:52)
        at 
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:139)
        at 
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81)
        at 
org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:690)
        at

Re: OT: where does JSTL set thsi cookie? javax.servlet.jsp.jstl.fmt.request.charset

2023-08-28 Thread Ivano Luberti

Progressing in my seach for a solution on how to deal with character
encoding in Tomcat request and responses I have found this very useful link

https://cwiki.apache.org/confluence/display/TOMCAT/Character+Encoding

I thought it was sensible to mention here since is not in the
traditional Tomcat docs but is nonetheles official documentation

Thank you all, and particularly to Thomas who pointed me to the answer.

Il 25/08/2023 18:09, Mark Thomas ha scritto:

On 25/08/2023 07:50, Ivano Luberti wrote:
Hi, I understand that this question can be OT but I don't know where
to search for.

Looking into tomcat manager sessions I see this cookie set in each
session

javax.servlet.jsp.jstl.fmt.request.charset ISO-8859-1

The value ISO-8859-1 i set even though the file encoding of the java
launch option is set to UTF-8

There is someone who knows how JSTL decides the value of the cookie?

Or can you point me to some useful resource?

https://github.com/apache/tomcat-taglibs-standard/blob/main/impl/src/main/java/org/apache/taglibs/standard/tag/common/fmt/SetLocaleSupport.java#L138

Mark

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>

dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: OT: where does JSTL set thsi cookie? javax.servlet.jsp.jstl.fmt.request.charset

2023-08-28 Thread Ivano Luberti


Thank you all, and particularly to Thomas who pointed me to the answer.

Il 25/08/2023 18:09, Mark Thomas ha scritto:



On 25/08/2023 07:50, Ivano Luberti wrote:
Hi, I understand that this question can be OT but I don't know where 
to search for.


Looking into tomcat manager sessions I see this cookie set in each 
session



     javax.servlet.jsp.jstl.fmt.request.charset     ISO-8859-1


The value ISO-8859-1 i set even though the file encoding of the java 
launch option is set to UTF-8


There is someone who knows how JSTL decides the value of the cookie?

Or can you point me to some useful resource?


https://github.com/apache/tomcat-taglibs-standard/blob/main/impl/src/main/java/org/apache/taglibs/standard/tag/common/fmt/SetLocaleSupport.java#L138 



Mark

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

OT: where does JSTL set thsi cookie? javax.servlet.jsp.jstl.fmt.request.charset

2023-08-25 Thread Ivano Luberti

Hi, I understand that this question can be OT but I don't know where to 
search for.


Looking into tomcat manager sessions I see this cookie set in each session


    javax.servlet.jsp.jstl.fmt.request.charset     ISO-8859-1


The value ISO-8859-1 i set even though the file encoding of the java 
launch option is set to UTF-8


There is someone who knows how JSTL decides the value of the cookie?

Or can you point me to some useful resource?




--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: tomcat timeouts on startup and on context deployment

2023-08-19 Thread Ivano Luberti

Christopher, Maxim

To clarify , I have never hit a timeout in production , but it happened
in Eclipse and since this timeout is configurable in Eclipse Tomcat
Launch configuration I have guessed such a timeout is a tomcat property
hidden somewhere.

AFAIK the list server doesn't allow attachment so I put here a dropbox
link of a picture of the Eclipse interface I'm talking about.

I hope this make me able to let you understand what I mean

https://www.dropbox.com/scl/fi/vg4ygu8pggkz3tpa1a0wo/EclipseTomcatTimeotConfig.PNG?rlkey=ztt0n6axy2hohi47ix3zjvzif=0

Il 19/08/2023 06:27, Maxim Solodovnik ha scritto:

from mobile (sorry for typos ;)

On Sat, Aug 19, 2023, 10:49 Christopher Schultz <
ch...@christopherschultz.net> wrote:

Ivano,

On 8/18/23 18:17, Ivano Luberti wrote:

It seems I had explained myself badly. I'll try again.

I need to know if there is and it is configurable a timeout on tomcat
startup (in Eclipse you can configure it in the server configuration
interface)

I need also to know if there is and it is configurable a timeout on
application deployment when you use tomcat manager to deploy a war file
or application start, fom tomcat manager interface as well

Tomcat doesn't wait for anything on startup except for the web
applications to deploy. If your application takes long to start, Tomcat
will take long to start. But Tomcat won't say "it's been 60 seconds,
sorry, I'm killing the application" or anything like that.

If you use the Manager web application to deploy an application, it's
possible that the tool you use for deployment (e.g. curl, or whatever
makes the call to Tomcat's manager-deploy action) will have an HTTP
timeout. Tomcat will complete the deployment work, but the
deploying-client might not get a successful HTTP response within that
time period.

But that's a timeout on the client end, not on Tomcat's end.

I'm just guessing at what timeout you are talking about, here. I may be
totally off.

You said that Eclipse had a configurable timeout. What is that for /
what is it called / what does it do?

Initializing of SecureRandom might cause long tomcat start
You can switch to /dev/urandom (less secure)

-chris

Il 18/08/2023 22:57, Christopher Schultz ha scritto:

Ivano,

On 8/18/23 10:18, Ivano Luberti wrote:

Hello eveybody, in one of my use case, when upgrading a web
application it coult happen that on startup the application has to
perform some database operation that could require some time, even
some minutes.

This happens typically when deploying the application via tomcat
manager but could possibly happen when starting tomcat if the war
file has been replaced while tomcat was down.

Where can I configure these timeouts?

What timeouts, specifically?

-chris

-
To unsubscribe, e-mail:users-unsubscr...@tomcat.apache.org
For additional commands, e-mail:users-h...@tomcat.apache.org

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>

dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: tomcat timeouts on startup and on context deployment

2023-08-18 Thread Ivano Luberti


Hi Christopher.

It seems I had explained myself badly. I'll try again.

I need to know if there is and it is configurable a timeout on tomcat 
startup (in Eclipse you can configure it in the server configuration 
interface)


I need also to know if there is and it is configurable a timeout on 
application deployment when you use tomcat manager to deploy a war file 
or application start, fom tomcat manager interface as well


Il 18/08/2023 22:57, Christopher Schultz ha scritto:

Ivano,

On 8/18/23 10:18, Ivano Luberti wrote:
Hello eveybody, in one of my use case, when upgrading a web 
application it coult happen that on startup the application has to 
perform some database operation that could require some time, even 
some minutes.


This happens typically when deploying the application via tomcat 
manager but could possibly happen when starting tomcat if the war 
file has been replaced while tomcat was down.


Where can I configure these timeouts?


What timeouts, specifically?

-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

tomcat timeouts on startup and on context deployment

2023-08-18 Thread Ivano Luberti

Hello eveybody, in one of my use case, when upgrading a web application 
it coult happen that on startup the application has to perform some 
database operation that could require some time, even some minutes.


This happens typically when deploying the application via tomcat manager 
but could possibly happen when starting tomcat if the war file has been 
replaced while tomcat was down.


Where can I configure these timeouts?

In eclipse I have found the timeout for the tomcat server but via the 
eclipse interface.


I have searched tomcat documentation but to no avail..

I'm using tomcat 8.5 and tomcat 9

TIA


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: problem with SSL connection java.security.NoSuchAlgorithmException: Error constructing implementation

2023-07-09 Thread Ivano Luberti


Hi all.

Finally found out the issue.

And had nothing to do with tomcat.

There are two web applications under this particular instance of tomcat

Both of them contain an http client that issues https connections.

Application A  sets explicitly the certificate store type to PKCS

Application B does not, so is expecting JKS.

The JDK instance has a JKS certificate store.

Launching application A causes an exception when it tries to connect via 
HTTPS


Application B then fails because finds in SystemProperty that the 
certificate store is PKCS but actually it is JKS.


I'm writing this to underline that as predictable it was not a problem 
with tomcat


Thanks to everyone spent time into this, especially Chris


Il 27/06/2023 16:35, Christopher Schultz ha scritto:

Ivano,

On 6/27/23 09:15, Ivano Luberti wrote:
We had another Linux server that should have been identical to the 
one where the problem was occuring. Tested the same software on that 
without the issue.


So we cloned the latter and replaced the former.

>

Now everything works as expected.


Hah.

Before the replacement we tried to find out any difference between 
the two servers, especially with regard to JDK and Tomcat 
installations but to no avail: they looked identical file by file, 
not only by version. I had supposed the cacert file was corrupted but 
it was identical to the one on the working machine.


Having found a practical solution we have decided to give up 
investigating.


Thank you again to you and the other that paid attention to my issue.


Of course.

Someone recently posted a similar issue that has no explanation which 
magically went-away after (essentially) re-building the server. There 
was nothing specific that could be pointed-to as a likely source of 
the problem, but now it's just /gone/.


It's not entirely satisfying from a "what if it happens again" 
perspective, but "you can't argue with results."


-chris


Il 26/06/2023 18:50, Christopher Schultz ha scritto:

Ivano,

On 6/8/23 06:10, Ivano Luberti wrote:

Hi, all I have the following problem.


[snip]

My guess is that looking at the code in this general area would be 
helpful. If you are able to add debug logging in there to spoit-out 
some of the crypto configuration being used, I'm sure it would help:



it.sella.ecomm.WSCryptDecryptStub,encrypt,197
it.archicoop.met.sistemapagamento.bancasella.wscryptdecryptclient.WSClient,encrypt,61 


it.archimede.met.backoffice.pagamento.GestionePagamento,encrypt,75
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,encrypt,379


Sorry, I don't think anybody here will be able to help much further 
without a lot more information.


-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: problem with SSL connection java.security.NoSuchAlgorithmException: Error constructing implementation

2023-06-27 Thread Ivano Luberti


Hi Chris, thank you for your dedication.

We had another Linux server that should have been identical to the one 
where the problem was occuring. Tested the same software on that without 
the issue.


So we cloned the latter and replaced the former.

Now everything works as expected.

Before the replacement we tried to find  out any difference between the 
two servers, especially with regard to JDK and Tomcat installations but 
to no avail: they looked identical file by file, not only by version. I 
had supposed the cacert file was corrupted but it was identical to the 
one on the working machine.


Having found a practical solution we have decided to give up investigating.

Thank you again to you and the other that paid attention to my issue.





Il 26/06/2023 18:50, Christopher Schultz ha scritto:

Ivano,

On 6/8/23 06:10, Ivano Luberti wrote:

Hi, all I have the following problem.


[snip]

My guess is that looking at the code in this general area would be 
helpful. If you are able to add debug logging in there to spoit-out 
some of the crypto configuration being used, I'm sure it would help:



it.sella.ecomm.WSCryptDecryptStub,encrypt,197
it.archicoop.met.sistemapagamento.bancasella.wscryptdecryptclient.WSClient,encrypt,61 


it.archimede.met.backoffice.pagamento.GestionePagamento,encrypt,75
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,encrypt,379


Sorry, I don't think anybody here will be able to help much further 
without a lot more information.


-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: problem with SSL connection java.security.NoSuchAlgorithmException: Error constructing implementation

2023-06-24 Thread Ivano Luberti


Hi Chris, thanks for that.

No,  don't make nay configuration regarding use of any algorithm.

I launch Java with same options in tomcat and in the stand alone client 
and I get two different behaviours


Il 23/06/2023 21:51, Christopher Schultz ha scritto:

Ivano,

On 6/8/23 06:10, Ivano Luberti wrote:
My web application executes an SSL connection but fails with the 
following exception


 AxisFault: java.security.NoSuchAlgorithmException: Error 
constructing implementation (algorithm: Default, provider: SunJSSE, 
class: sun.security.ssl.SSLContextImpl$DefaultSSLContext)


That "algorithm: Default" looks suspicious. Do you have the word 
"Default" in any configuration / code that maybe should be either null 
or unspecified, to get the /actual/ default?


-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: AW: problem with SSL connection java.security.NoSuchAlgorithmException: Error constructing implementation

2023-06-08 Thread Ivano Luberti


Hi Thomas thank for the advice.

I agree is not Tomcat by itself responsible for the issue

But, since I'm able to make the same connection to the same server, 
using a standalone client that implements the same request using the 
same library (Axis2) and the same code (the connection is made by a 
client written by me that the web application uses as a library) I 
cannot understand where is the difference in using SSL by the two 
clients (the one inside Tomcat and other running standalone).


Since I'm not expert in SSL matters I don't know how to search for 
differences between the two java execution.


I understand is not a matter of Tomcat configuration using SSL (BTW this 
instance is not configured for SSL since is secure connection is 
implemented by a reverse proxy)


In the tomcat case Java is NOT able to  use the algorithm while 
launching a Java main class that implements the same behaviour it succeeds.


And that happens using the same JVM. Here is the command line for the 
stand alone


/usr/lib/jvm/jre/bin/java -Djava.security.egd=file:///dev/urandom 
-Djavax.net.debug=ssl"


here is the configuration of tomcat (BTW is tomcat9)


[Service]
Type=forking

User=tomcat
Group=tomcat

Environment="JAVA_HOME=/usr/lib/jvm/jre"
Environment="JAVA_OPTS=-Djava.security.egd=file:///dev/urandom 
-Djavax.net.debug=ssl"

Environment="CATALINA_BASE=/opt/tomcat"
Environment="CATALINA_HOME=/opt/tomcat"
Environment="CATALINA_PID=/opt/tomcat/temp/tomcat.pid"
Environment="CATALINA_OPTS=-Xms512M -Xmx1024M -server -XX:+UseParallelGC"

ExecStart=/opt/tomcat/bin/startup.sh
ExecStop=/opt/tomcat/bin/shutdown.sh

[Install]
WantedBy=multi-user.target

I cannot spot a significative difference.

Could startup.sh contain some option that could create a difference with 
respect to this matter?




Il 08/06/2023 16:39, Thomas Hoffmann (Speed4Trade GmbH) ha scritto:

Hello Ivano,


-Ursprüngliche Nachricht-
Von: Ivano Luberti
Gesendet: Donnerstag, 8. Juni 2023 12:10
An:users@tomcat.apache.org
Betreff: problem with SSL connection
java.security.NoSuchAlgorithmException: Error constructing implementation

Hi, all I have the following problem.

My web application executes an SSL connection but fails with the following
exception


  AxisFault: java.security.NoSuchAlgorithmException: Error constructing
implementation (algorithm: Default, provider: SunJSSE, class:
sun.security.ssl.SSLContextImpl$DefaultSSLContext)
org.apache.axis2.AxisFault,makeFault,430
org.apache.axis2.transport.http.HTTPSender,sendViaPost,197
org.apache.axis2.transport.http.HTTPSender,send,75


org.apache.axis2.transport.http.CommonsHTTPTransportSender,writeMessa
g

eWithCommons,404



Here it is visible, that the Axis Client can't connect to the server.
It has nothing to do with Tomcat in my opinion.
The crypt algorithms are provided by the JDK (or separate libraries).

Your program acts as a client, connecting to a server. Therefore Tomcat is not 
involved in this case.

If the endpoint of the service is public available, you can do a scan with 
e.g.https://www.ssllabs.com/ssltest/  to inspect the offered ciphers.
Also check, if the certificates are available and that the server is configured 
with the intermediates.


org.apache.axis2.transport.http.CommonsHTTPTransportSender,invoke,231

org.apache.axis2.engine.AxisEngine,send,443
org.apache.axis2.description.OutInAxisOperationClient,send,406
org.apache.axis2.description.OutInAxisOperationClient,executeImpl,229
org.apache.axis2.client.OperationClient,execute,165
it.sella.ecomm.WSCryptDecryptStub,encrypt,197
it.archicoop.met.sistemapagamento.bancasella.wscryptdecryptclient.WSCl
ient,encrypt,61
it.archimede.met.backoffice.pagamento.GestionePagamento,encrypt,75
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,encrypt,379
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,pagaConCartaDiCre
dito,328
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,paga,112
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,pagaHiddenIframe,
452
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,doGet,585
javax.servlet.http.HttpServlet,service,670
javax.servlet.http.HttpServlet,service,779
org.apache.catalina.core.ApplicationFilterChain,internalDoFilter,227
org.apache.catalina.core.ApplicationFilterChain,doFilter,162
org.apache.tomcat.websocket.server.WsFilter,doFilter,53
org.apache.catalina.core.ApplicationFilterChain,internalDoFilter,189
org.apache.catalina.core.ApplicationFilterChain,doFilter,162
org.apache.catalina.core.StandardWrapperValve,invoke,197
org.apache.catalina.core.StandardContextValve,invoke,97
org.apache.catalina.authenticator.AuthenticatorBase,invoke,541
org.apache.catalina.valves.AbstractAccessLogValve,invoke,687
org.apache.catalina.core.StandardHostValve,invoke,135
org.apache.catalina.valves.ErrorReportValve,invoke,92
org.apache.catalina.valves.AbstractAccessLogValve,invoke,687
org.apache.catalina.core.StandardEngineValve,

problem with SSL connection java.security.NoSuchAlgorithmException: Error constructing implementation

2023-06-08 Thread Ivano Luberti


Hi, all I have the following problem.

My web application executes an SSL connection but fails with the 
following exception


 AxisFault: java.security.NoSuchAlgorithmException: Error constructing 
implementation (algorithm: Default, provider: SunJSSE, class: 
sun.security.ssl.SSLContextImpl$DefaultSSLContext)

org.apache.axis2.AxisFault,makeFault,430
org.apache.axis2.transport.http.HTTPSender,sendViaPost,197
org.apache.axis2.transport.http.HTTPSender,send,75
org.apache.axis2.transport.http.CommonsHTTPTransportSender,writeMessageWithCommons,404
org.apache.axis2.transport.http.CommonsHTTPTransportSender,invoke,231
org.apache.axis2.engine.AxisEngine,send,443
org.apache.axis2.description.OutInAxisOperationClient,send,406
org.apache.axis2.description.OutInAxisOperationClient,executeImpl,229
org.apache.axis2.client.OperationClient,execute,165
it.sella.ecomm.WSCryptDecryptStub,encrypt,197
it.archicoop.met.sistemapagamento.bancasella.wscryptdecryptclient.WSClient,encrypt,61
it.archimede.met.backoffice.pagamento.GestionePagamento,encrypt,75
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,encrypt,379
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,pagaConCartaDiCredito,328
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,paga,112
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,pagaHiddenIframe,452
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,doGet,585
javax.servlet.http.HttpServlet,service,670
javax.servlet.http.HttpServlet,service,779
org.apache.catalina.core.ApplicationFilterChain,internalDoFilter,227
org.apache.catalina.core.ApplicationFilterChain,doFilter,162
org.apache.tomcat.websocket.server.WsFilter,doFilter,53
org.apache.catalina.core.ApplicationFilterChain,internalDoFilter,189
org.apache.catalina.core.ApplicationFilterChain,doFilter,162
org.apache.catalina.core.StandardWrapperValve,invoke,197
org.apache.catalina.core.StandardContextValve,invoke,97
org.apache.catalina.authenticator.AuthenticatorBase,invoke,541
org.apache.catalina.valves.AbstractAccessLogValve,invoke,687
org.apache.catalina.core.StandardHostValve,invoke,135
org.apache.catalina.valves.ErrorReportValve,invoke,92
org.apache.catalina.valves.AbstractAccessLogValve,invoke,687
org.apache.catalina.core.StandardEngineValve,invoke,78
org.apache.catalina.connector.CoyoteAdapter,service,360
org.apache.coyote.http11.Http11Processor,service,399
org.apache.coyote.AbstractProcessorLight,process,65
org.apache.coyote.AbstractProtocol$ConnectionHandler,process,893
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor,doRun,1789
org.apache.tomcat.util.net.SocketProcessorBase,run,49
org.apache.tomcat.util.threads.ThreadPoolExecutor,runWorker,1191
org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker,run,659
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable,run,61
java.lang.Thread,run,750
it.archimede.met.backoffice.pagamento.GestionePagamento,encrypt,109
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,encrypt,379
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,pagaConCartaDiCredito,328
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,paga,112
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,pagaHiddenIframe,452
it.archimede.met.turisti.servlet.NuovoOrdineAcquista,doGet,585
javax.servlet.http.HttpServlet,service,670
javax.servlet.http.HttpServlet,service,779
org.apache.catalina.core.ApplicationFilterChain,internalDoFilter,227
org.apache.catalina.core.ApplicationFilterChain,doFilter,162
org.apache.tomcat.websocket.server.WsFilter,doFilter,53
org.apache.catalina.core.ApplicationFilterChain,internalDoFilter,189
org.apache.catalina.core.ApplicationFilterChain,doFilter,162
org.apache.catalina.core.StandardWrapperValve,invoke,197
org.apache.catalina.core.StandardContextValve,invoke,97
org.apache.catalina.authenticator.AuthenticatorBase,invoke,541
org.apache.catalina.valves.AbstractAccessLogValve,invoke,687
org.apache.catalina.core.StandardHostValve,invoke,135
org.apache.catalina.valves.ErrorReportValve,invoke,92
org.apache.catalina.valves.AbstractAccessLogValve,invoke,687
org.apache.catalina.core.StandardEngineValve,invoke,78
org.apache.catalina.connector.CoyoteAdapter,service,360
org.apache.coyote.http11.Http11Processor,service,399
org.apache.coyote.AbstractProcessorLight,process,65
org.apache.coyote.AbstractProtocol$ConnectionHandler,process,893
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor,doRun,1789
org.apache.tomcat.util.net.SocketProcessorBase,run,49
org.apache.tomcat.util.threads.ThreadPoolExecutor,runWorker,1191
org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker,run,659
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable,run,61
java.lang.Thread,run,750


I have built a standalone client that makes the same connection and it 
succeeds on the same server calling the same JVM


/usr/lib/jvm/java-1.8.0-openjdk-1.8.0.352.b08-2.el8_6.x86_64/jre/bin/java

I tried to extend ssl logging in tomcat adding -Djavax.net.debug=ssl to 
see any root cause but to no avail


Here is how the tomcat

Re: how to make tomcat 9 remember which application where stopped before shutdown

2023-03-20 Thread Ivano Luberti


Thanks Mark.

I have to move a few applications from one tomcat to another.

The new tomcat is ready and the applications are already deployed but 
working on test data.


Now i would like to, one application at a time, switch them to 
production data.


Say I have applications A.0, A.1, A.2, B.0, B.1, B.2, B.3

A.x work on same data

B.x work on a different set of data.

So I want to start A.0 , test it and the A.1 e A.2

The same for B.x

Obviously I can deploy A.1, A.2 etc only after testing but start would 
be much quicker.


I hope I have been clear eough


Il 20/03/2023 12:27, Mark Thomas ha scritto:

On 20/03/2023 10:09, Ivano Luberti wrote:
Hi all , I would like to find a way to start tomcat with all the 
application stopped except the manager.


My colleagues made a test manually  stopping an application and 
restarting tomcat.


After the service restarted the application was up and running.

Is there a way to make Tomcat remember which application were stopped 
at shutdown and keep them stopped at restart?


No.

What you can do is set deployOnStartup="false" on the Host. But to 
have the Manager app always start, you'd have to define the Manager 
Context in server.xml which means any changes to the Manager 
configuration would require a full Tomcat restart.


What problem are you trying to solve? There may be other options 
available.


Mark

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

how to make tomcat 9 remember which application where stopped before shutdown

2023-03-20 Thread Ivano Luberti

Hi all , I would like to find a way to start tomcat with all the 
application stopped except the manager.


My colleagues made a test manually  stopping an application and 
restarting tomcat.


After the service restarted the application was up and running.

Is there a way to make Tomcat remember which application were stopped at 
shutdown and keep them stopped at restart?


TIA

--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: Tomcat 9 crashes because of a Windows update

2023-03-02 Thread Ivano Luberti

Katie, you should look into tomcat logs and in windows logs and report 
if you find meaningful messages


Il 02/03/2023 11:10, Mark Thomas ha scritto:

On 02/03/2023 08:49, Katie S wrote:

Sorry for being unclear and thank you for your answer.

I can start Tomcat but after a few minutes it stops working. And 
everytime

I restart it, the behavior is the same.


Again, define "stops working".

Mark



- Katie

Le jeu. 2 mars 2023 à 09:39, Mark Thomas  a écrit :


On 02/03/2023 08:28, Katie S wrote:

Hello,

Do you have any information on Tomcat 9 not working after some Windows
Updates ?
We have installed the KB5022838 on our Windows Server 2016 Standard 
and

since this we can restart Tomcat but it stops working after only few
minutes.


Define "stops working". The subject says "crashes". We need specifics.

We are sure about the fact that the Windows update is guilty as it 
worked

properly when we restored the VMware snapshot.


That is a useful data point.

Mark

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org






-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: AW: JSessionId secure attribute not set if RemoteIpFilter with X-Forwarded-Proto https is used

2023-02-15 Thread Ivano Luberti

Hi Reto, fortunately I use RemoteIpValve but I would like to know, if 
you have time, what advantages there would be using RemoteIpFilter.


TIA


Il 09/02/2023 08:50, Reto Weiss ha scritto:

Hi Mark

Reported ashttps://bz.apache.org/bugzilla/show_bug.cgi?id=66471

Regards

Reto

-
To unsubscribe, e-mail:users-unsubscr...@tomcat.apache.org
For additional commands, e-mail:users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: [ANN] End of life for Apache Tomcat 8.5.x

2022-12-13 Thread Ivano Luberti


Sorry I saw too late the correction



Mark did you mean 2023?

Il 13/12/2022 15:41, Mark Thomas ha scritto:

It is anticipated that the final 8.5.x release will be made shortly
before 31 March 2021. 



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: [ANN] End of life for Apache Tomcat 8.5.x

2022-12-13 Thread Ivano Luberti


Mark did you mean 2023?

Il 13/12/2022 15:41, Mark Thomas ha scritto:

It is anticipated that the final 8.5.x release will be made shortly
before 31 March 2021. 



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: setenv.sh not loaded

2022-11-04 Thread Ivano Luberti


I follow with the conclusion on this matter.

Installing Tomcat with yum and epel repository,so doing

yum install epel-release

yum install tomcat

leads to a tomcat installation with no catalina.sh present in either 
usr/share/tomcat or var/lib/tomcat


Consequently tomcat is installed as a service with a service file that 
launches tomcat without reference to catalina.sh and instead loads a 
configuration file in  etc/tomcat/ (not sure about this dir but it has 
been erased and I can't verify)  where you can put your JAVA_OPTS



Il 02/11/2022 14:08, Ivano Luberti ha scritto:


Tomcat ahas benne installed using yum

I cannot find any catalina.sh file on the system.

So I have to check with the sysadmin how  he configured tomcat.

Il 02/11/2022 13:46, Olaf Kock ha scritto:


On 02.11.22 12:43, Ivano Luberti wrote:
Hi, I have been given an Oracle Linux instance with tomcat 9.0.65 
installed as a service.


Tomcat is running correctly

I have tried to create a setenv.sh file to tune the JVM, but using 
the tomcat manager application and the catalina.log file it seems 
that my java configuration is not loaded.


Any suggestion on how to debug this?


You're saying "installed as a service". This might mean that 
tomcat/bin/catalina.sh is also never executed, or that it has been 
altered from the default.


Ivano's suggestion is great already. On top, you might want to

* check how Tomcat is started by the system (e.g. does it go through 
catalina.sh at all?)


* check if anything in its installation directory is altered from 
default. Just inspect a diff between stock 9.0.65 and what you find 
in your installation.


Olaf








-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 
giugno 2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: setenv.sh not loaded

2022-11-02 Thread Ivano Luberti


Tomcat ahas benne installed using yum

I cannot find any catalina.sh file on the system.

So I have to check with the sysadmin how  he configured tomcat.

Il 02/11/2022 13:46, Olaf Kock ha scritto:


On 02.11.22 12:43, Ivano Luberti wrote:
Hi, I have been given an Oracle Linux instance with tomcat 9.0.65 
installed as a service.


Tomcat is running correctly

I have tried to create a setenv.sh file to tune the JVM, but using 
the tomcat manager application and the catalina.log file it seems 
that my java configuration is not loaded.


Any suggestion on how to debug this?


You're saying "installed as a service". This might mean that 
tomcat/bin/catalina.sh is also never executed, or that it has been 
altered from the default.


Ivano's suggestion is great already. On top, you might want to

* check how Tomcat is started by the system (e.g. does it go through 
catalina.sh at all?)


* check if anything in its installation directory is altered from 
default. Just inspect a diff between stock 9.0.65 and what you find in 
your installation.


Olaf








-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: AW: setenv.sh not loaded

2022-11-02 Thread Ivano Luberti


Hi Johann where should I insert the echo?

In setenv.sh , right?

If so, no file has been created, so stenv.sh seems is not called

Il 02/11/2022 13:36, aon.913111...@aon.at ha scritto:

Hello,

recommended approach: Insert as last but one line (last line might contain a 
call of catalina.sh – normally)

echo „setenv.sh executed successfully“ > $TOMCAT_HOME/log/debug.txt

and check existence of this created file after having initiated a restart of 
the Tomcat process.

BR, Johann


Von: Ivano Luberti
Gesendet: Mittwoch, 2. November 2022 12:43
An:users@tomcat.apache.org
Betreff: setenv.sh not loaded

Hi, I have been given an Oracle Linux instance with tomcat 9.0.65
installed as a service.

Tomcat is running correctly

I have tried to create a setenv.sh file to tune the JVM, but using the
tomcat manager application and the catalina.log file it seems that my
java configuration is not loaded.

Any suggestion on how to debug this?



-
To unsubscribe, e-mail:users-unsubscr...@tomcat.apache.org
For additional commands, e-mail:users-h...@tomcat.apache.org





--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

setenv.sh not loaded

2022-11-02 Thread Ivano Luberti

Hi, I have been given an Oracle Linux instance with tomcat 9.0.65 
installed as a service.


Tomcat is running correctly

I have tried to create a setenv.sh file to tune the JVM, but using the 
tomcat manager application and the catalina.log file it seems that my 
java configuration is not loaded.


Any suggestion on how to debug this?



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: certificate re-loading for apache tomcat without the apache restart

2022-09-26 Thread Ivano Luberti

Agree

Here you can find documentation of what Peter says

https://tomcat.apache.org/tomcat-10.0-doc/manager-howto.html#Reload_TLS_configuration

using a call to the manager app.

It doesn't take into account new certificates but only existing ones,
because it dosn't reparse server.xml

Il 26/09/2022 09:18, l...@kreuser.name ha scritto:

Raghavendran,

Am 26.09.2022 um 08:54 schrieb Ragavendhiran Bhiman
(rabhiman):

Hi All,

I have a scenario where I need to reload the certificates which are newly
updated in the NSS DB without restarting the apache – tomcat.
Is there any way to do it?

Kindly share some piece of code to achieve the reloading of the certificates
without restarting the apache tomcat service itself.

curl -u -p
"https://myserver.mydomain/manager/jmxproxy?invoke=Catalina:type=ProtocolHandler,port==reloadSslHostConfig="

you need that with at least roles="manager-jmx" in tomcat-users.xml

Note : Trial from my side : Tried to restart the Apache connector, but still it
is reloading the old certificates only and not the new certificates.
If possible how to achieve the loading of the new one?

Many Thanks for your help.

Regards,

Raghavendran

Hope this helps

Peter

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa

dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: [ANN] New committer: Han Li

2022-09-06 Thread Ivano Luberti


Cheers!!!

Il 06/09/2022 13:45, Rémy Maucherat ha scritto:

On Tue, Sep 6, 2022 at 9:39 AM Mark Thomas  wrote:

On behalf of the Tomcat committers I am delighted to announce that
Han Li (lihan) has been voted in as a new Tomcat committer.

Please join me in congratulating Han.

Welcome ! :)

Remy


Kind regards,

Mark

-
To unsubscribe, e-mail:users-unsubscr...@tomcat.apache.org
For additional commands, e-mail:users-h...@tomcat.apache.org


-
To unsubscribe, e-mail:users-unsubscr...@tomcat.apache.org
For additional commands, e-mail:users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: Configuring TLS JSSE vs OpenSSL

2022-01-19 Thread Ivano Luberti


Christopher,

Il 19/01/2022 20:32, Christopher Schultz ha scritto:

Ivano,

On 1/19/22 10:58, Ivano Luberti wrote:

Mark, Christopher


Il 19/01/2022 15:31, Christopher Schultz ha scritto:

Mark,

On 1/19/22 05:00, Mark Thomas wrote:

On 18/01/2022 23:16, Christopher Schultz wrote:

All,

There are a bunch of parameters in SSLHostConfig which are 
documented[1] to be "OpenSSL Only" and "JSSE only". I thought we 
made it so either configuration could be used with either 
underlying crypto engine. Is that not true? Or is it only true if 
you are using JSSE with OpenSSL as the JSSE-provider??


You can configure TLS using JSSE style configuration or OpenSSL 
style configuration. That configuration style choice is independent 
of implementation.


So you can have any of:
- JSSE style config with NIO(2)+JSSE
- JSSE style config with NIO(2)+OpenSSL
- JSSE style config with APR/Native
- OpenSSL style config with NIO(2)+JSSE
- OpenSSL style config with NIO(2)+OpenSSL
- OpenSSL style config with APR/Native

What you can't do is mix JSSE configuration with OpenSSL 
configuration. You have to pick a single configuration style.


To slightly complicate things, some configuration settings work 
with JSSE or OpenSSL. What that means if you use a "JSSE only" 
setting then you can't also use an "OpenSSL only" setting (and vice 
versa).


Thanks.

How can we adjust the documentation to make it clear that you can 
choose either style of configuration, but that you have to be 
consistent?


Maybe two separate sections of the documentation with an 
introduction saying "there are two styles of config: pick one" and 
then remove the "JSSE Only" or "OpenSSL Only" notes on each?


-chris


I was greatly misled by that documentation when I had to study and 
apply it, so I agree it should be modified.


But it would make even more sense to me, if is only a matter of 
style, that one of the two styles is removed: we are talking about 
configuration not poetry: I cannot see any usefulness in having more 
than one way to express the same configuration


We can't remove configuration elements from a release in the way you 
describe. Perhaps in 10.1 as it's still in alpha-phase.


I understand your point and the rest of the reasoning.

But at least documentation should describe the situation as you do in 
this mail, so to better orienting the reader



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: Configuring TLS JSSE vs OpenSSL

2022-01-19 Thread Ivano Luberti


Mark, Christopher


Il 19/01/2022 15:31, Christopher Schultz ha scritto:

Mark,

On 1/19/22 05:00, Mark Thomas wrote:

On 18/01/2022 23:16, Christopher Schultz wrote:

All,

There are a bunch of parameters in SSLHostConfig which are 
documented[1] to be "OpenSSL Only" and "JSSE only". I thought we 
made it so either configuration could be used with either underlying 
crypto engine. Is that not true? Or is it only true if you are using 
JSSE with OpenSSL as the JSSE-provider??


You can configure TLS using JSSE style configuration or OpenSSL style 
configuration. That configuration style choice is independent of 
implementation.


So you can have any of:
- JSSE style config with NIO(2)+JSSE
- JSSE style config with NIO(2)+OpenSSL
- JSSE style config with APR/Native
- OpenSSL style config with NIO(2)+JSSE
- OpenSSL style config with NIO(2)+OpenSSL
- OpenSSL style config with APR/Native

What you can't do is mix JSSE configuration with OpenSSL 
configuration. You have to pick a single configuration style.


To slightly complicate things, some configuration settings work with 
JSSE or OpenSSL. What that means if you use a "JSSE only" setting 
then you can't also use an "OpenSSL only" setting (and vice versa).


Thanks.

How can we adjust the documentation to make it clear that you can 
choose either style of configuration, but that you have to be consistent?


Maybe two separate sections of the documentation with an introduction 
saying "there are two styles of config: pick one" and then remove the 
"JSSE Only" or "OpenSSL Only" notes on each?


-chris


I was greatly misled by that documentation when I had to study and apply 
it, so I agree it should be modified.


But it would make even more sense to me, if is only a matter of style, 
that one of the two styles is removed: we are talking about 
configuration not poetry: I cannot see any usefulness in having more 
than one way to express the same configuration


My 2c

Best regards





-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: Upgrade Apache- Tomcat and HTTPD

2021-10-21 Thread Ivano Luberti


Hi, Tomcat 8.5 still runs on JDK 1.7

Documentation about migration from one version to another can be found here:

https://tomcat.apache.org/migration.html


Il 21/10/2021 18:45, Kumawat, Priyanka ha scritto:

Hi Team ,

We have received some vulnerabilities for our Tomcat and Apache -httpd , as 
there multiple vulnerabilities reported we needs to upgrade the software.

Is there any documentation/process is available for the tomcat and Apache 
upgrade or any tool which we can use to perform the upgrade .

Also wat java version we will require for the Tomcat 8.0 and 8.5 version.

Thankyou!

Thanks & Regards,

Priyanka Kumawat | Middleware Admin
T +91.7879364483
EMail - priyanka.kuma...@dxc.com
DL - 
ams-leveraged-webadmin-offsh...@dxc.com

DXC Technology






DXC Technology Company -- This message is transmitted to you by or on behalf of 
DXC Technology Company or one of its affiliates. It is intended exclusively for 
the addressee. The substance of this message, along with any attachments, may 
contain proprietary, confidential or privileged information or information that 
is otherwise legally exempt from disclosure. Any unauthorized review, use, 
disclosure or distribution is prohibited. If you are not the intended recipient 
of this message, you are not authorized to read, print, retain, copy or 
disseminate any part of this message. If you have received this message in 
error, please destroy and delete all copies and notify the sender by return 
e-mail. Regardless of content, this e-mail shall not operate to bind DXC 
Technology Company or any of its affiliates to any order or other contract 
unless pursuant to explicit written agreement or government initiative 
expressly permitting the use of e-mail for such purpose.


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

reloading tls configuration programmatically

2021-08-04 Thread Ivano Luberti

Hello, in order to improve management of our servers I would like to 
implement the ability to timely reload Tomcat TLS configuration so to 
make tomcat aware of renewed certificates


I have seen that in the manager web application I can reload TLS 
configuration with the Re Read button in the Re-read TLS configuration 
files section.


Reading documentation at

https://tomcat.apache.org/tomcat-8.5-doc/manager-howto.html#Reload_TLS_configuration

I have seen that it doesn't parse server.xml, so I guess this function 
is not going to load new certificates if a SSLHostConfig is added to 
server.xml . Right?


So my questions are:

1) has anyone tried to write something callable outside tomcat to induce 
it to reload certificates starting form the code in 
ManagerServlet.java.sslReload method?


2) if no one is aware of such a try, I guess that the shortest path 
would be to not reimplement the whole process but write a script that calls


http://localhost:8080/manager/text/sslReload?tlsHostName=name

Am I right ? Better suggestions?

3) However If this is not going to load new certificates  It would solve 
only (a certainly big) part of my problem. Is there any suggestion or 
starting point to implement also this feature?


TIA in advance



--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: tomcat 8.5.57 stops killing sessions after some time

2021-08-03 Thread Ivano Luberti



Il 30/07/2021 14:54, Konstantin Kolinko ha scritto:


Additional note: the "backgroundProcessorDelay"  on a Context can be
used to make a web application use its own background thread (instead
of reusing the one inherited from its parent container).  It won't
help with fixing a deadlock in a particular web application,  but it
will isolate the failure so that other web applications on the same
server won't suffer.


Good suggestion Kostantin, thanks




https://tomcat.apache.org/tomcat-8.5-doc/config/context.html

Best regards,
Konstantin Kolinko

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 



dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: tomcat 8.5.57 stops killing sessions after some time

2021-07-27 Thread Ivano Luberti


Thanks Chris.

In this case is a bug in the (old version of the) Axis2 library we use 
to build and run a web service client.


I have upgraded Axis2 and waiting to see if the issue resurfaces.

The idea to use a new thread to manage the session event handles doesn't 
apply here cause of application constraints and because operations are 
quite simple.


But thanks for the advice.

Cheers

Il 26/07/2021 23:15, Christopher Schultz ha scritto:

Ivano,

On 7/23/21 02:20, Ivano Luberti wrote:
I have found the issue: one of the webapps has several thread locked 
on a MultiThreadedHttpConnectionManager during sessionUnbound and 
unboundEvents.


So the background process killing the sessions is stuck as well.


This is a very easy problem to encounter. Session event-handlers 
really need to be bulletproof and execute very quickly.


If you need a long-running process to trigger, use an executor service 
or something where you can capture the information to be used and 
off-load it onto another thread. Remember that the session cannot be 
used after the event-handler completes, so capture whatever 
information you need from the session FIRST, then dispatch to another 
thread, then return from the event-handler.


-chris


Il 21/07/2021 18:13, Mark Thomas ha scritto:

On 21/07/2021 16:00, Ivano Luberti wrote:


Il 21/07/2021 16:44, Mark Thomas ha scritto:
Take 3 thread dumps 5 seconds apart and post them here. 


How to take thread dumps?

  kill -3  ?


That will work. There are lots of ways. This is most of them:

https://www.baeldung.com/java-thread-dump

Mark

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: tomcat 8.5.57 stops killing sessions after some time

2021-07-23 Thread Ivano Luberti

I have found the issue: one of the webapps has several thread locked on 
a MultiThreadedHttpConnectionManager during sessionUnbound and 
unboundEvents.


So the background process killing the sessions is stuck as well.

Thanks for your support.



Il 21/07/2021 18:13, Mark Thomas ha scritto:

On 21/07/2021 16:00, Ivano Luberti wrote:


Il 21/07/2021 16:44, Mark Thomas ha scritto:
Take 3 thread dumps 5 seconds apart and post them here. 


How to take thread dumps?

  kill -3  ?


That will work. There are lots of ways. This is most of them:

https://www.baeldung.com/java-thread-dump

Mark

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


--

Archimede Informatica tratta i dati personali in conformità a quanto
stabilito dal Regolamento UE n. 2016/679 (GDPR) e dal D. Lgs. 30 giugno 
2003 n. 196

per come modificato dal D.Lgs. 10 agosto 2018 n. 101.
Informativa completa 
<http://www.archicoop.it/fileadmin/pdf/InformativaTrattamentoDatiPersonali.pdf>


dott. Ivano Mario Luberti

Archimede Informatica società cooperativa a r. l.
Via Gereschi 36, 56127 Pisa

tel.: +39 050/580959 | fax: +39 050/8932061

web: www.archicoop.it
linkedin: www.linkedin.com/in/ivanoluberti
facebook: www.facebook.com/archimedeinformaticapisa/

Re: tomcat 8.5.57 stops killing sessions after some time

2021-07-21 Thread Ivano Luberti




Il 21/07/2021 16:44, Mark Thomas ha scritto:
Take 3 thread dumps 5 seconds apart and post them here. 


How to take thread dumps?

 kill -3  ?



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

tomcat 8.5.57 stops killing sessions after some time

2021-07-21 Thread Ivano Luberti

Hello, I'm new to the list but befeore writing this I have searched the 
users mailing list without finding anything useful.


I have an instance of Apache Tomcat/8.5.57 running on a CentOS machine 
with java 1.7.0_261


Several webapps run on this instance.

I have noticed that after a few days tomcat stops killing expired sessions.

Trying to understand where the issue is located , I have enabled debug 
logging of  org.apache.catalina.session package with:


java.util.logging.ConsoleHandler.level = FINEST

org.apache.catalina.session.level = FINEST

So after the latest restart i could observe in catalina.out many log 
rows like


21-Jul-2021 10:02:00.702 FINE 
[ContainerBackgroundProcessor[StandardEngine[Catalina]]] 
org.apache.catalina.session.ManagerBase.processExpires Start expire 
sessions StandardManager at 1626861720702 sessioncount 1
21-Jul-2021 10:02:00.702 FINE 
[ContainerBackgroundProcessor[StandardEngine[Catalina]]] 
org.apache.catalina.session.ManagerBase.processExpires End expire 
sessions StandardManager processingTime 0 expired sessions: 0


Today, after 4 days without issues tomcat stopped again killing expired 
sessions and at the same time no more logs of


org.apache.catalina.session.ManagerBase.processExpires

are reported.

There is no other related log event , simply the last row reported is

21-Jul-2021 12:38:39.370 FINE 
[ContainerBackgroundProcessor[StandardEngine[Catalina]]] 
org.apache.catalina.session.ManagerBase.processExpires Start expire 
sessions StandardManager at 1626871119370 sessioncount 7


Any clue on why org.apache.catalina.session.ManagerBase is not called 
anymore?


Suggestion on how to diagnose?

Any chance that some exception occurring in

HttpSessionListener.sessionCreated

or

HttpSessionListener.sessionDestroyed

or

HttpSessionBindingListener.valueBound

or

HttpSessionBindingListener.valueUnbound

can terminate ManagerBase but without generating any logging?

Those are the only interaction with session handling I'm aware of.

I have the same webapps running on other tomcat instances, but on older 
tomcat version and there I have no issue of ths kind.


TIA for any hint.




-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

47 matches

Mail list logo