Bug 36853 - https
Summary: https
Status: RESOLVED WORKSFORME
Alias: None
Product: Tomcat 5
Classification: Unclassified
Component: Connector:HTTP (show other bugs)
Version: Nightly Build
Hardware: PC other
: P2 normal (vote)
Target Milestone: ---
Assignee: Tomcat Developers Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-09-29 03:48 UTC by yonmoon
Modified: 2006-08-29 20:35 UTC (History)
0 users



Attachments
my server config file (2.21 KB, text/plain)
2005-09-29 03:58 UTC, yonmoon
Details
Plain Vanilla server.xml NOT working with ssl enabled (18.21 KB, text/plain)
2006-03-01 06:40 UTC, Eric Jodoin
Details

Note You need to log in before you can comment on or make changes to this bug.
Description yonmoon 2005-09-29 03:48:57 UTC
https connector doesn't work form tomcat5.5.11
Comment 1 yonmoon 2005-09-29 03:58:21 UTC
Created attachment 16548 [details]
my server config file

tomcat 5.5.11 Https connector fails work with this config file,but
http://127.0.0.1:449 works correctly!
suprising!
Comment 2 Peter Rossbach 2005-09-29 09:21:56 UTC
Can you test your config with the following connector parameter:

<Connector port="449" 
           maxHttpHeaderSize="8192"
           maxThreads="150"
           minSpareThreads="25"
           maxSpareThreads="75"
           enableLookups="false" disableUploadTimeout="true"
           acceptCount="100" scheme="https" secure="true"
           clientAuth="false" sslProtocol="TLS" 
           xpoweredBy="true"
           keystoreFile="e:\jkparm\yonmoon.keystore"
           keystorePass="837876ab"
           keystoreType="JKS"
           algorithm="SunX509"
           ciphers="RSA"
/>

What your Log (console or catalina.log) say about the connector startup?
Comment 3 yonmoon 2005-09-29 10:46:58 UTC
Now, I return to tomcat 5.5.9,it workers fine in tomcat5.5.9 with the same 
config file.
Do the same thing with tomcat5.5.11 and tomcat 5.5.12,the log files report no 
error about https connector,except show a "dns not find" error in my explorer 
window.
Comment 4 Remy Maucherat 2005-09-29 11:30:43 UTC
The default configuration works very well (if the keystore has "changeit" as the
password):

    <Connector port="8443" maxHttpHeaderSize="8192"
               maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
               enableLookups="false" disableUploadTimeout="true"
               acceptCount="100" scheme="https" secure="true"
               clientAuth="false" sslProtocol="TLS" />

The APR/OpenSSL version also works. This looks invalid to me.
Comment 5 yonmoon 2005-09-29 13:33:06 UTC
hi
Comment 6 yonmoon 2005-09-29 13:38:41 UTC
12
Comment 7 Eric Jodoin 2006-03-01 06:36:56 UTC
I am also running into the same problem.  

The connector starts correctly but somehow the secure connection does not get 
established.  If I try http://localhost:443/ then I get to see the page but 
without the secure encryption.  If I try https://localhost or 
https://localhost:443 I get the Usual ie6 "The page cannot be displayed"

There is the revelant part of my catalina indiating that the protocol started:

1-Mar-2006 12:28:36 AM org.apache.coyote.http11.Http11AprProtocol start
INFO: Starting Coyote HTTP/1.1 on http-443

Also, the Manager server status shows the connections when going unsecure but 
not any of the failed connections when trying https...

Any idea anyone?

Comment 8 Eric Jodoin 2006-03-01 06:40:38 UTC
Created attachment 17810 [details]
Plain Vanilla server.xml NOT working with ssl enabled
Comment 9 Mark Thomas 2006-08-30 03:35:23 UTC
<Connector port="443" maxHttpHeaderSize="8192"
           maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
           enableLookups="false" disableUploadTimeout="true"
           acceptCount="100" scheme="https" secure="true"
           clientAuth="false" sslProtocol="TLS" keystoreFile="./conf/.localhost" />

Works for me. This looks like a configuration issue. Please follow up on Tomcat
user.

BTW, I assume you mean port="443" rather than port="449"