Re: JNI memory leak?

s taking such a long time for the evidence to mount. So nothing to see here for this group. Just wanted to give a heads up. Mark On 4/6/20, 12:12 PM, "Christopher Schultz" wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 4/3/20 21:48, Mark

Re: JNI memory leak?

ary I can think of using JNI is BouncyCastle doing the SSL encryption/decryption, so maybe I'll switch my focus there. Thanks for taking the time to think along. Mark On 4/4/20, 5:50 AM, "calder" wrote: On Fri, Apr 3, 2020 at 8:48 PM Mark Boon wrote: >

JNI memory leak?

restart this service every two weeks to reclaim memory. Has anyone seen something like this? Any way it could be avoided? Mark Boon

Re: Can Tomcat log handshake failures, and where?

00 error originating after the handshake? I'd have to pass it by the compliance experts, but maybe even just this would be enough to convince them I don't need to use the javax.net.debug=ssl:handshake sledge-hammer. What version will this be in? Mark Boon Fro

Re: Can Tomcat log handshake failures, and where?

ndshake failures, and where? -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 7/29/19 17:45, Mark Boon wrote: > Apparently for compliance reasons we're required to log any failed > connection attempt. So I'd like to know if and how I can get > Tomcat to emit such informa

Can Tomcat log handshake failures, and where?

ts after a successful SSL handshake has taken place. Does anyone know any other method? Thanks, in advance. Mark Boon

Re: How to configure Tomcat for OCSP stapling?

Hi Mark Thomas, Thanks for the pointer. However, that comment you posted there is 4 years old. Any news on the matter since then at all? Has OCSP Stapling support for NIO connectors since made it into Java 9? Mark Boon On 5/30/18, 12:46 AM, "Mark Thomas" wrote:

How to configure Tomcat for OCSP stapling?

it to the client. Does anyone know of a place with instructions how to do something like this? Or possibly I’m not quite understanding the process of OCSP stapling, in which case any pointers on what it means and how it works with Tomcat would be much appreciated. Mark Boon Staff Engineer mb

Re: Insert key-store implementation into Tomcat Connector

Thank you for the information. Mark Boon On 5/2/18, 3:35 AM, "Mark Thomas" wrote: On 02/05/18 01:48, Mark Boon wrote: > In the Tomcat TLS Connecter configuration, there’s the trustManagerClassName that can be set to a Java implementation of the X509TrustManager inter

Insert key-store implementation into Tomcat Connector

provides an example how that is to be used, so I’m not sure that serves for what I’m looking for. Any pointer to how that could be accomplished would be highly appreciated. Mark Boon