Quantcast
Viewing all articles
Browse latest Browse all 1603

Is it possible to enable HTTPS/TLS for Tomcat using OpenSSL without requiring Native Libraries and APR?

August 6, 2024, 10:44 am
$
0
0

I am trying to get HTTPS/TLS enabled for Tomacat (8.x) preferring the OpenSSL alternative because the cert/key configuration is simpler (compared to the usual JSSE with keystore).

Followed the offical documentation and enabled the connector section like this:

<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"          sslImplementationName="org.apache.tomcat.util.net.openssl.OpenSSLImplementation"          maxThreads="150" SSLEnabled="true" scheme="https" secure="true"><SSLHostConfig protocols="TLSv1.2"><Certificate                certificateKeyFile="conf/MyKey.key"               certificateFile="conf/MyCertificate.crt"               type="RSA" /></SSLHostConfig></Connector>

NOTE that I am still using Http11NioProtocol and not APR Http11AprProtocol connector.

However, startup fails with this configuration as this combination of configuration seems to require Tomcat native libraries to be built and configured:

14-Jun-2019 10:38:46.363 SEVERE [main] org.apache.catalina.core.StandardService.initInternal Failed to initialize connector [Connector[HTTP/1.1-8443]] org.apache.catalina.LifecycleException: Failed to initialize component [Connector[HTTP/1.1-8443]]    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:112)    at org.apache.catalina.core.StandardService.initInternal(StandardService.java:549)    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:107)    at org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:875)    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:107)    at org.apache.catalina.startup.Catalina.load(Catalina.java:621)    at org.apache.catalina.startup.Catalina.load(Catalina.java:644)    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)    at java.lang.reflect.Method.invoke(Method.java:498)    at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:309)    at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:492)Caused by: java.lang.UnsatisfiedLinkError: org.apache.tomcat.jni.Pool.create(J)J    at org.apache.tomcat.jni.Pool.create(Native Method)    at org.apache.tomcat.util.net.openssl.OpenSSLEngine.<clinit>(OpenSSLEngine.java:70)    at org.apache.tomcat.util.net.openssl.OpenSSLUtil.getImplementedProtocols(OpenSSLUtil.java:61)    at org.apache.tomcat.util.net.SSLUtilBase.<init>(SSLUtilBase.java:53)    at org.apache.tomcat.util.net.openssl.OpenSSLUtil.<init>(OpenSSLUtil.java:41)    at org.apache.tomcat.util.net.openssl.OpenSSLImplementation.getSSLUtil(OpenSSLImplementation.java:36)    at org.apache.tomcat.util.net.AbstractJsseEndpoint.createSSLContext(AbstractJsseEndpoint.java:104)    at org.apache.tomcat.util.net.AbstractJsseEndpoint.initialiseSsl(AbstractJsseEndpoint.java:87)    at org.apache.tomcat.util.net.NioEndpoint.bind(NioEndpoint.java:225)    at org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.java:1082)    at org.apache.tomcat.util.net.AbstractJsseEndpoint.init(AbstractJsseEndpoint.java:267)    at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:581)    at org.apache.coyote.http11.AbstractHttp11Protocol.init(AbstractHttp11Protocol.java:66)    at org.apache.catalina.connector.Connector.initInternal(Connector.java:993)    at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:107)

I did build and install Tomcat native+APR library and configured in Tomcat env class path which fixed the issue, but that is besides the point. Point is, shouldn't APR/native libraries be only required if I am using Http11AprProtocol which I am not using? What am I missing? Any pointers/help will be much appreciated. Thanks!

Search
Viewing all articles
Browse latest Browse all 1603

Trending Articles

The Smurfs 2011 WORKPRINT 720p BluRay x264-AVS720

October 19, 2011, 3:04 am

St Austell woman 'wanted to cut her heart out' in supermarket

September 20, 2013, 1:13 am

Throw Back: 2Toff “Ye Na Bra” Ft. Castro

February 19, 2015, 2:43 am

LAG, Lacp configuration on Mellanox switches

January 28, 2015, 3:27 pm

Sarah Samis, Emil Bove III

November 17, 2012, 9:36 pm

Muloraki Au

June 22, 2016, 1:44 am

Kanulanu Thaake Lyrics and translation | Manam (2014)

May 9, 2014, 5:45 am

MSAADA WA JOINING INSTRUCTION YA LUSANGA SECONDARY SCHOOL MOROGORO

June 3, 2019, 1:29 am

Lady Gaga – MAYHEM (Bonus Tracks Version) [iTunes Rip M4A]

March 7, 2025, 11:07 am

The 10 Tennessee Cities With The Largest Black Population For 2021

December 21, 2020, 10:12 am

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

The man who tried to murder John Gilligan

January 10, 2015, 12:00 pm

Soo....where ya from? Melissa, David, Isabella, Derek, and Angelina Perizzolo...

June 22, 2012, 5:17 pm

MAN SUBJECTED NEIGHBOURS TO REIGN OF TERROR FOR ALMOST TWO DECADES

May 28, 2015, 12:36 am

Wanted Gloucester man Jamal Tyne arrested and returned to prison

April 3, 2014, 8:01 am

Colombo Mob Capo ‘Jersey Sal’ Profaci Cashes In Chips, Legendary NY Mafia...

March 26, 2018, 2:39 pm

ZARIA CUMMINGS

February 20, 2017, 7:44 pm

Scan-Inventory -> Test-Compliance... Operation is not valid due to the...

July 8, 2016, 12:48 am

Shelton drug dealer caught with cannabis during police bust

October 5, 2016, 9:00 pm

3 Bathview, Mallow, Co. Cork. - €40,000

February 19, 2016, 5:58 am
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>