On 2024/05/15 01:51:41 Andy Arismendi wrote: > ADDITIONAL ENVIRONMENT INFO UPDATE: > > libtcnative: org.apache.catalina.core.AprLifecycleListener.lifecycleEvent > Loaded Apache Tomcat Native library [1.3.0] using APR version [1.7.4]. > > CRASH LOG > > See enclosed: hs_err_pid4464.log > > c_rehash.pl > > I didn’t have perl, tried strawberry perl, it didn’t seem to create symlinks > on Windows so I do it with a powershell using "openssl x509 -subject_hash > -fingerprint -noout -in <PEM path>" making symlinks in the same directory for > each CA cert PEM e.g. a655d288.0 (link) -> cert.pem (file). This didn’t seem > to make a difference though, JVM still crashed.
To make sure I have just tried: > 8981 2024-05-15T10:26:58.717 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log Server version name: > Apache Tomcat/9.0.89 > 8982 2024-05-15T10:26:58.722 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log Server built: > May 3 2024 20:22:11 UTC > 8983 2024-05-15T10:26:58.722 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log Server version number: > 9.0.89.0 > 8984 2024-05-15T10:26:58.722 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log OS Name: > HP-UX > 8985 2024-05-15T10:26:58.723 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log OS Version: > B.11.31 > 8986 2024-05-15T10:26:58.723 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log Architecture: > IA64N > 8987 2024-05-15T10:26:58.723 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log Java Home: > /opt/java8/jre > 8988 2024-05-15T10:26:58.723 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log JVM Version: > 1.8.0.27-hp-ux-b1 > 8989 2024-05-15T10:26:58.724 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log JVM Vendor: > Hewlett Packard Enterprise Company > 8990 2024-05-15T10:26:58.724 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log CATALINA_BASE: > /var/opt/tomcat-services > 8991 2024-05-15T10:26:58.724 INFORMATION [main] > org.apache.catalina.startup.VersionLoggerListener.log CATALINA_HOME: > /opt/ports/apache-tomcat-9.0.89 > 9015 2024-05-15T10:26:58.733 INFORMATION [main] > org.apache.catalina.core.AprLifecycleListener.lifecycleEvent Loaded Apache > Tomcat Native library [1.3.0] using APR version [1.7.4]. > 9016 2024-05-15T10:26:58.733 INFORMATION [main] > org.apache.catalina.core.AprLifecycleListener.lifecycleEvent APR > capabilities: IPv6 [true], sendfile [true], accept filters [false], random > [true], UDS [true]. > 9017 2024-05-15T10:26:58.733 INFORMATION [main] > org.apache.catalina.core.AprLifecycleListener.lifecycleEvent APR/OpenSSL > configuration: useAprConnector [true], useOpenSSL [true] > 9018 2024-05-15T10:26:58.816 INFORMATION [main] > org.apache.catalina.core.AprLifecycleListener.initializeSSL OpenSSL > successfully initialized [OpenSSL 3.0.13 30 Jan 2024] With my smartcard it just works: > <Connector port="18444" connectionTimeout="20000" keepAliveTimeout="7200000" > maxParameterCount="1000" > maxHttpHeaderSize="24576" maxThreads="250" > SSLEnabled="true" scheme="https" secure="true" > defaultSSLHostConfigName="..."> > <SSLHostConfig hostName="..." protocols="TLSv1.2+TLSv1.3" > honorCipherOrder="true" disableSessionTickets="true" > certificateVerification="optional" certificateVerificationDepth="5" > > ciphers="HIGH:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK:!DSS:!SHA1:!SHA256:!SHA384" > caCertificatePath="/opt/openssl/certs"> > <Certificate certificateFile="/opt/openssl/.../cert.crt" > certificateKeyFile="/opt/openssl/.../key.crt" > certificateKeyPasswordFile="/opt/openssl/.../password" type="RSA" > /> > <OpenSSLConf> > <OpenSSLConfCmd name="RequestCAFile" > value="/opt/openssl/siemens-medium+strong-clientcert-cacerts.crt" /> > <OpenSSLConfCmd name="NO_OCSP_CHECK" value="true" /> > </OpenSSLConf> > </SSLHostConfig> > </Connector> M --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
