RE: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-10 Thread John.E.Gregg
> -Original Message- > From: Mark Thomas > Sent: Sunday, August 09, 2020 2:19 PM > To: Tomcat Users List > Subject: Re: Tomcat 8.5.(x > 5) & SSL Connections > (sun.security.provider.certpath.SunCertPathBuilderException) > > On August 8, 2020 6:5

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-10 Thread David Filip
Mark, Thanks for the feedback! If you do want do dig into this, have a look at the httpd virtual host configuration. Depending on configuration, httpd will use the host header or the IP address on which the connection was received to select the virtual host. It will then send the cert relevant

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-10 Thread Mark Thomas
On 09/08/2020 21:04, David Filip wrote: > Mark, > >> If the code works in a standalone Java app, it will work in a Servlet >> assuming the code is thread safe (I don't see why it wouldn't be but worth >> double checking any library being used) and configuration information is >> accessible. >

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-09 Thread David Filip
Mark, > If the code works in a standalone Java app, it will work in a Servlet > assuming the code is thread safe (I don't see why it wouldn't be but worth > double checking any library being used) and configuration information is > accessible. All things being equal, that makes sense, and is

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-09 Thread Mark Thomas
On August 8, 2020 6:59:23 PM UTC, David Filip wrote: >Hello Everyone! > >I spent a large part of yesterday and this morning trying to debug an >SSL problem on Tomcat 8.5.57 to no avail. I've seen some discussion on >either this problem or something related back in 2016, but wanted to >confirm

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-09 Thread Felix Schumacher
Hi David, when debugging SSL problems, it is important to know, which certs are the troublemakers. Are those errors reported when tomcat is used as a client as a server? Try to get more information about the cert that is making problems. I always try to get the cert with an openssl command like

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-08 Thread David Filip
Well, it is not consistent ... sometimes when I stop and start it from the command line it works, and other times it doesn't, but every time it is getting the -Djavax.net .ssl.trustStore parameter ... which I check by doing a: $ ps -aef | grep java | tr ' ' '\n' which

Re: Tomcat 8.5.(x > 5) & SSL Connections (sun.security.provider.certpath.SunCertPathBuilderException)

2020-08-08 Thread calder
On Sat, Aug 8, 2020, 13:59 David Filip wrote: > Hello Everyone! > > I spent a large part of yesterday and this morning trying to debug an SSL > problem on Tomcat 8.5.57 to no avail. I've seen some discussion on either > this problem or something related back in 2016, but wanted to confirm what