Hi Eric, I may be mistaken but > keystoreFile="C:\Documents and Settings\Administrator\.keystore" > keystorePass="changeit" keystoreType="JKS" />
looks to me as if you are trying to configure a JSSE keystore. The error message referring to org.apache.tomcat.util.net.AprEndpoint suggests to me that your Tomcat is configured to use the APR, and then Tomcat is going to use OpenSSL - the configuration for OpenSSL is different (see http://tomcat.apache.org/tomcat-5.5-doc/apr.html). -----Original Message----- From: Jay Burgess [mailto:[EMAIL PROTECTED] Sent: Thursday, June 29, 2006 16:03 To: users@tomcat.apache.org Subject: RE: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat Sorry, but I have no idea what that means. Have you checked Bugzilla to see if there's an outstanding issue with SSL and this version of Tomcat? Unfortunately, we're using TC 5.0.19, so I don't have any experience with TC 5.5. Good luck. And maybe someone else will jump in with some guidance. Jay http://www.vtgroup.com/ -----Original Message----- From: Erik Matthew Brakke [mailto:[EMAIL PROTECTED] Sent: Wednesday, June 28, 2006 5:00 PM To: Tomcat Users List Subject: Re: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat Ah! When I added debug="9" this appears in stdout.log: Exception in thread "http-8443-1" java.lang.IllegalMonitorStateException: current thread not owner at java.lang.Object.notifyAll(Native Method) at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:1216) at java.lang.Thread.run(Thread.java:595) Now... any ideas what to do (!) ?? Thanks!! Erik ----- Original Message ----- From: "Jay Burgess" <[EMAIL PROTECTED]> To: <users@tomcat.apache.org> Sent: Wednesday, June 28, 2006 2:28 PM Subject: RE: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat > I'm not an expert in this, but I thought I'd compare your setup with our > working > setup and see if I could spot any differences. A couple of observations: > > * Have you tried using a keystoreFile location that doesn't contain > spaces? > I've gotten bitten in other apps where a space in the path isn't handled > correctly. > > * Do you have lines like the following in stdout.log? > > INFO: Initializing Coyote HTTP/1.1 on port 443 > INFO: Starting Coyote HTTP/1.1 on port 443 > > * I've also got debug="9" set in my <Connector> definition, but I'm not > sure if > that really adds any logging or not. > > Jay > http://www.vtgroup.com/ > > > -----Original Message----- > From: Erik Matthew Brakke [mailto:[EMAIL PROTECTED] > Sent: Wednesday, June 28, 2006 2:12 PM > To: Tomcat Users List > Subject: Re: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat > > Hi, its the default connector statement in server.xml, but I've tried > adding > the arguments: keystoreFile, keystorePass, keystoreType. > > <Connector port="8443" maxHttpHeaderSize="8192" maxThreads="150" > minSpareThreads="25" maxSpareThreads="75" enableLookups="false" > disableUploadTimeout="true" acceptCount="100" scheme="https" > secure="true" clientAuth="false" sslProtocol="TLS" > keystoreFile="C:\Documents and Settings\Administrator\.keystore" > keystorePass="changeit" keystoreType="JKS" /> > > Thanks! > E > > ----- Original Message ----- > From: "Jay Burgess" <[EMAIL PROTECTED]> > To: <users@tomcat.apache.org> > Sent: Wednesday, June 28, 2006 1:55 PM > Subject: RE: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat > > >> Can you include your <Connector> definition so we can take a look? >> >> Jay >> http://www.vtgroup.com/ >> >> >> -----Original Message----- >> From: Erik Matthew Brakke [mailto:[EMAIL PROTECTED] >> Sent: Wednesday, June 28, 2006 1:48 PM >> To: Tomcat Users List >> Subject: Re: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat >> >> Hi, >> >> Someone asked that I try Firefox to see if it was a certificate issue >> with >> MSIE. I'm still having the same issue with Firefox: no response at all >> from >> Tomcat 5.5.17 over the HTTPS connector. HTTP is fine. Netstat shows >> established connection by TCP/IP, just no response from TC. >> >> I've tried: >> changing ports between 443 and 8443, >> explicit path for .keystore, >> switching from TLS to SSL, >> explicit keystore type (JKS), >> explicit keystore password (changeit), >> >> any more ideas? >> >> Thanks >> E >> >> >> ----- Original Message ----- >> From: "Erik Brakke" <[EMAIL PROTECTED]> >> To: <users@tomcat.apache.org> >> Sent: Friday, June 23, 2006 2:52 PM >> Subject: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat >> >> >>> Hi, >>> >>> I have set up standalone Tomcat 5.5.17 on Windows 2000 + J2EE 5 JDK and >>> get the default ROOT webapp. I cannot access the ROOT webapp using >>> HTTPS. >>> >>> I set up SSL using the HOW-TO: generate a self-signed JKS .keystore >>> file >>> and enabled the HTTPS connector in server.xml. >>> >>> I'll open https://localhost:8443 in my browser, it connects (I can see >>> it >>> established with netstat), the browser states it is opening the page, >>> but >>> Tomcat does not respond, I do not get a certificate warning or the ROOT >>> webapp. >>> >>> I can't find any errors in /logs. The access log shows activity on >>> HTTP >>> but nothings shows for HTTPS. >>> >>> I have tried changing ports between 443 and 8443, >>> tried explicit path for .keystore, >>> tried switching from TLS to SSL. >>> >>> Any ideas? I tried upping logging to debug in server.xml but still no >>> error messages. >>> >>> THANKS!! >>> Erik >>> >>> >>> --------------------------------------------------------------------- >>> To start a new topic, e-mail: users@tomcat.apache.org >>> To unsubscribe, e-mail: [EMAIL PROTECTED] >>> For additional commands, e-mail: [EMAIL PROTECTED] >>> --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
