From owner-freebsd-java Fri Mar 21 7:41:13 2003 Delivered-To: freebsd-java@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4D32D37B404 for ; Fri, 21 Mar 2003 07:41:11 -0800 (PST) Received: from relay1.cris.net (relay1.cris.net [212.110.128.64]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4B47A43F3F for ; Fri, 21 Mar 2003 07:41:08 -0800 (PST) (envelope-from ml@phantom.cris.net) Received: from phantom.cris.net (root@phantom.cris.net [212.110.130.74]) by relay1.cris.net (8.12.6/8.12.6) with ESMTP id h2LHsrmJ056965; Fri, 21 Mar 2003 17:54:53 GMT Received: (from ml@localhost) by phantom.cris.net (8.12.6/8.12.2) id h2LFlmVm034732; Fri, 21 Mar 2003 17:47:48 +0200 (EET) (envelope-from ml) Date: Fri, 21 Mar 2003 17:47:48 +0200 From: Alexey Zelkin To: Westbay Family Cc: freebsd-java@FreeBSD.ORG Subject: Re: keytool and Tomcat https under 1.4.1 Message-ID: <20030321174748.A34710@phantom.cris.net> References: <950A308E-5B42-11D7-A432-000A9575BE46@seaple.icc.ne.jp> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <950A308E-5B42-11D7-A432-000A9575BE46@seaple.icc.ne.jp>; from westbay@seaple.icc.ne.jp on Fri, Mar 21, 2003 at 11:12:35AM +0900 X-Operating-System: FreeBSD 4.7-STABLE i386 Sender: owner-freebsd-java@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org hi, Yep. Very possible. SSL support is known to be poor as for -p3 state. I was concentrated on more priority items and did not pay it attention yet. Sorry for not saying anything positive, but until I have SSL fixed I'd not suggest you to use it. BTW, which problems you have had with LANG variable set ? On Fri, Mar 21, 2003 at 11:12:35AM +0900, Westbay Family wrote: > List, > > I was excited to hear that the JDK 1.4.1 was working well with Tomcat > and decided to give it a try. I had no problem building JDK 1.4.1 > (after unsetting the LANG variables). > > However, when trying to get Tomcat to run with the HTTPS connector, > I've run into nothing but trouble. > > First of all, running > > % keytool -keygen -alias tomcat -keyalg RSA > > prompts for all the right questions then, when it should be making the > .keystore, just spins its wheels at 0.00% CPU usage until the process > is killed. > > Second, after creating a server.keystore with JDK 1.3.1 or on Mac OSX's > JDK 1.4.1 (tried keystores generated from both) and modifying > conf/server.xml like so: > > port="8443" minProcessors="5" maxProcessors="75" > enableLookups="true" > acceptCount="100" debug="0" scheme="https" secure="true" > useURIValidationHack="false" disableUploadTimeout="true"> > className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory" > clientAuth="false" protocol="TLS" > keystoreFile="conf/server.keystore" > keystorePass="changeit"/> > > > Neither 8080 (8180 for versions installed from ports) nor 8443 are > accessible. There are not warnings or exceptions thrown in logs/* to > indicate what is wrong. (Although if I enter keystorePass to something > invalid, I do get exceptions telling me so.) > > Has anyone else gotten Tomcat https to work with the native JDK 1.4.1? > > --- > Michael Westbay > Work: Beacon-IT http://www.beacon-it.co.jp/ > Home: http://www1.seaple.icc.ne.jp/westbay > Commentary: http://www.japanesebaseball.com/forum/ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-java" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-java" in the body of the message