java - Tomcat 8 + Providing keystoreProvider in connector tag for SSL -


i want specify provider used tomcat connector default taken java.security file.

as per tomcat documentation:

the name of keystore provider used server certificate. if not specified, list of registered providers traversed in preference order , first provider supports keystoretype used.

<connector algorithm="sunx509" port="9443" keystoreprovider="" truststoreprovider="sunprovider"  protocol="org.apache.coyote.http11.http11nioprotocol" sslenabled="true"                 maxthreads="100" minsparethreads="10" maxconnections="1000" scheme="https" secure="true"                 keystorefile="xxx.jks" keystorepass="xxx" keystoretype="jks"                 truststorefile="yyy.jks" truststorepass="yy" truststoretype="jks"                 clientauth="want" sslprotocol="tlsv1.2">

but not aware of teh possible values put attribute. tried this, getting error:

org.apache.tomcat.util.net.jsse.jssesocketfactory.getstore failed load keystore type jks path /app/tomcat/conf/jks/xxx.jks due no such provider: sunprovider  java.security.nosuchproviderexception: no such provider: sunprovider         @ sun.security.jca.getinstance.getservice(getinstance.java:83)         @ sun.security.jca.getinstance.getinstance(getinstance.java:206)         @ java.security.security.getimpl(security.java:698)         @ java.security.keystore.getinstance(keystore.java:896)         @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getstore(jssesocketfactory.java:424)         @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getkeystore(jssesocketfactory.java:339)         @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getkeymanagers(jssesocketfactory.java:597)         @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getkeymanagers(jssesocketfactory.java:537)         @ org.apache.tomcat.util.net.nioendpoint.bind(nioendpoint.java:358)         @ org.apache.tomcat.util.net.abstractendpoint.init(abstractendpoint.java:737)         @ org.apache.coyote.abstractprotocol.init(abstractprotocol.java:457)         @ org.apache.coyote.http11.abstracthttp11jsseprotocol.init(abstracthttp11jsseprotocol.java:120)

the java,security file me as below:

# # list of providers , preference orders (see above): # security.provider.1=sun.security.provider.sun security.provider.2=sun.security.rsa.sunrsasign security.provider.4=sun.security.ec.sunec security.provider.5=com.sun.net.ssl.internal.ssl.provider security.provider.6=com.sun.crypto.provider.sunjce security.provider.7=sun.security.jgss.sunprovider security.provider.8=com.sun.security.sasl.provider security.provider.9=org.jcp.xml.dsig.internal.dom.xmldsigri security.provider.10=sun.security.smartcardio.sunpcsc security.provider.3=com.safenetinc.luna.provider.lunaprovider

edit:-

i tried using sunjsse provider, geeting jks not found error that.

java.security.keystoreexception: jks not found     @ java.security.keystore.getinstance(keystore.java:899)     @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getstore(jssesocketfactory.java:424)     @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getkeystore(jssesocketfactory.java:339)     @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getkeymanagers(jssesocketfactory.java:597)     @ org.apache.tomcat.util.net.jsse.jssesocketfactory.getkeymanagers(jssesocketfactory.java:537)     @ org.apache.tomcat.util.net.nioendpoint.bind(nioendpoint.java:358)     @ org.apache.tomcat.util.net.abstractendpoint.init(abstractendpoint.java:737)     @ org.apache.coyote.abstractprotocol.init(abstractprotocol.java:457)     @ org.apache.coyote.http11.abstracthttp11jsseprotocol.init(abstracthttp11jsseprotocol.java:120)     @ org.apache.catalina.connector.connector.initinternal(connector.java:960)     @ org.apache.catalina.util.lifecyclebase.init(lifecyclebase.java:102)     @ org.apache.catalina.core.standardservice.initinternal(standardservice.java:567)     @ org.apache.catalina.util.lifecyclebase.init(lifecyclebase.java:102)     @ org.apache.catalina.core.standardserver.initinternal(standardserver.java:851)     @ org.apache.catalina.util.lifecyclebase.init(lifecyclebase.java:102)     @ org.apache.catalina.startup.catalina.load(catalina.java:576)     @ org.apache.catalina.startup.catalina.load(catalina.java:599)     @ sun.reflect.nativemethodaccessorimpl.invoke0(native method)     @ sun.reflect.nativemethodaccessorimpl.invoke(nativemethodaccessorimpl.java:62)     @ sun.reflect.delegatingmethodaccessorimpl.invoke(delegatingmethodaccessorimpl.java:43)     @ java.lang.reflect.method.invoke(method.java:497)     @ org.apache.catalina.startup.bootstrap.load(bootstrap.java:310)     @ org.apache.catalina.startup.bootstrap.main(bootstrap.java:484) caused by: java.security.nosuchalgorithmexception: no such algorithm: jks provider sunjsse     @ sun.security.jca.getinstance.getservice(getinstance.java:87)     @ sun.security.jca.getinstance.getinstance(getinstance.java:206)     @ java.security.security.getimpl(security.java:698)     @ java.security.keystore.getinstance(keystore.java:896)     ... 22 more


Comments

Post a Comment

Popular posts from this blog

aws api gateway - SerializationException in posting new Records via Dynamodb Proxy Service in API -

i getting "__type": "com.amazon.coral.service#serializationexception" as reply in postman & in test console in api gateway trying post record directly dynamodb using api proxy services.. referring aws article - https://aws.amazon.com/blogs/compute/using-amazon-api-gateway-as-a-proxy-for-dynamodb/ here's mapping { "tablename": "tablenamegoeshere", "item": { "id" : "$context.requestid" "eventname" : "$input.path('$.eventname')", "timestamp" : $input.path('$.timestamp'), "answers": "$util.parsejson($input.path('$.answers'))" } } update: did asked ... , worked if try add array of json objects gives me above same error - here's trying now. please - couldnt find on google well #set($inputroot = $input.path('$')) { "tablename": "answer", "item": {
Read more

asp.net - Problems sending emails from forum -

i have been redesigning site has message board, has been written guy looked after site. it has few problems , written in .asp , uses .mdb files database. you can see whole thing here . feel free post if helps, test thing have set using original files , new database. the basic problem when posts message, supposed email sent them, have posted it. when replies, originator supposed message, replier has been posted. i’d have thought @ point in process there should script/file in postmessage.asp? the postmessage.asp page below. <% option explicit %> <!-- #include virtual="common/adovbs.inc" --> <html> <head> <meta http-equiv="content-type" content="text/html; charset=windows-1252"> <meta name="generator" content="microsoft frontpage 4.0"> <meta name="progid" content="frontpage.editor.document"> <title>new page 2</title> <base target="_self"
Read more