Disabling APR did it! Thanks for spotting that in the exception.
I knew APR meant using OpenSSL, but the documentation led me to believe it
was disabled by default.
Thanks everyone!!
Erik
----- Original Message -----
From: "Holst, Martina" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <users@tomcat.apache.org>
Sent: Thursday, June 29, 2006 9:41 AM
Subject: RE: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat
Hi Eric, I may be mistaken but
keystoreFile="C:\Documents and Settings\Administrator\.keystore"
keystorePass="changeit" keystoreType="JKS" />
looks to me as if you are trying to configure a JSSE keystore. The error
message referring to org.apache.tomcat.util.net.AprEndpoint suggests to
me that your Tomcat is configured to use the APR, and then Tomcat is
going to use OpenSSL - the configuration for OpenSSL is different (see
http://tomcat.apache.org/tomcat-5.5-doc/apr.html).
-----Original Message-----
From: Jay Burgess [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 29, 2006 16:03
To: users@tomcat.apache.org
Subject: RE: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat
Sorry, but I have no idea what that means. Have you checked Bugzilla to
see if there's an outstanding issue with SSL and this version of Tomcat?
Unfortunately, we're using TC 5.0.19, so I don't have any experience
with TC 5.5.
Good luck. And maybe someone else will jump in with some guidance.
Jay
http://www.vtgroup.com/
-----Original Message-----
From: Erik Matthew Brakke [mailto:[EMAIL PROTECTED]
Sent: Wednesday, June 28, 2006 5:00 PM
To: Tomcat Users List
Subject: Re: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat
Ah! When I added debug="9" this appears in stdout.log:
Exception in thread "http-8443-1"
java.lang.IllegalMonitorStateException: current thread not owner at
java.lang.Object.notifyAll(Native Method) at
org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:1216)
at java.lang.Thread.run(Thread.java:595)
Now... any ideas what to do (!) ??
Thanks!!
Erik
----- Original Message -----
From: "Jay Burgess" <[EMAIL PROTECTED]>
To: <users@tomcat.apache.org>
Sent: Wednesday, June 28, 2006 2:28 PM
Subject: RE: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat
I'm not an expert in this, but I thought I'd compare your setup with
our
working
setup and see if I could spot any differences. A couple of
observations:
* Have you tried using a keystoreFile location that doesn't contain
spaces?
I've gotten bitten in other apps where a space in the path isn't
handled
correctly.
* Do you have lines like the following in stdout.log?
INFO: Initializing Coyote HTTP/1.1 on port 443
INFO: Starting Coyote HTTP/1.1 on port 443
* I've also got debug="9" set in my <Connector> definition, but I'm
not
sure if
that really adds any logging or not.
Jay
http://www.vtgroup.com/
-----Original Message-----
From: Erik Matthew Brakke [mailto:[EMAIL PROTECTED]
Sent: Wednesday, June 28, 2006 2:12 PM
To: Tomcat Users List
Subject: Re: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat
Hi, its the default connector statement in server.xml, but I've tried
adding
the arguments: keystoreFile, keystorePass, keystoreType.
<Connector port="8443" maxHttpHeaderSize="8192" maxThreads="150"
minSpareThreads="25" maxSpareThreads="75" enableLookups="false"
disableUploadTimeout="true" acceptCount="100" scheme="https"
secure="true" clientAuth="false" sslProtocol="TLS"
keystoreFile="C:\Documents and Settings\Administrator\.keystore"
keystorePass="changeit" keystoreType="JKS" />
Thanks!
E
----- Original Message -----
From: "Jay Burgess" <[EMAIL PROTECTED]>
To: <users@tomcat.apache.org>
Sent: Wednesday, June 28, 2006 1:55 PM
Subject: RE: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat
Can you include your <Connector> definition so we can take a look?
Jay
http://www.vtgroup.com/
-----Original Message-----
From: Erik Matthew Brakke [mailto:[EMAIL PROTECTED]
Sent: Wednesday, June 28, 2006 1:48 PM
To: Tomcat Users List
Subject: Re: Setting up SSL on Tomcat 5.5.17 - no response from
Tomcat
Hi,
Someone asked that I try Firefox to see if it was a certificate issue
with
MSIE. I'm still having the same issue with Firefox: no response at
all
from
Tomcat 5.5.17 over the HTTPS connector. HTTP is fine. Netstat shows
established connection by TCP/IP, just no response from TC.
I've tried:
changing ports between 443 and 8443,
explicit path for .keystore,
switching from TLS to SSL,
explicit keystore type (JKS),
explicit keystore password (changeit),
any more ideas?
Thanks
E
----- Original Message -----
From: "Erik Brakke" <[EMAIL PROTECTED]>
To: <users@tomcat.apache.org>
Sent: Friday, June 23, 2006 2:52 PM
Subject: Setting up SSL on Tomcat 5.5.17 - no response from Tomcat
Hi,
I have set up standalone Tomcat 5.5.17 on Windows 2000 + J2EE 5 JDK
and
get the default ROOT webapp. I cannot access the ROOT webapp using
HTTPS.
I set up SSL using the HOW-TO: generate a self-signed JKS .keystore
file
and enabled the HTTPS connector in server.xml.
I'll open https://localhost:8443 in my browser, it connects (I can
see
it
established with netstat), the browser states it is opening the
page,
but
Tomcat does not respond, I do not get a certificate warning or the
ROOT
webapp.
I can't find any errors in /logs. The access log shows activity on
HTTP
but nothings shows for HTTPS.
I have tried changing ports between 443 and 8443,
tried explicit path for .keystore,
tried switching from TLS to SSL.
Any ideas? I tried upping logging to debug in server.xml but still
no
error messages.
THANKS!!
Erik
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
