Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

sent --- SSL handshake has read 0 bytes and written 0 bytes --- New, (NONE), Cipher is (NONE) Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE --- On Sat, Jan 4, 2014 at 4:48 AM, Mark Eggers wrote: > On 1/3/2014 2:43 PM, Caldarale, Charles R wrote: > >> From

RE: TLS is not working in 6.0.37, 7.0.42, 7.0.47

Again, we have to submit this as a bug.TLS 1.2 is not working in Tomcat On Jan 4, 2014 3:16 AM, "Caldarale, Charles R" wrote: > > From: Mudassir Aftab [mailto:withmudas...@gmail.com] > > Subject: Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47 > > > Did yo

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

Did you get wireshark filtered output ? Mudassir On Sat, Jan 4, 2014 at 2:50 AM, Mudassir Aftab wrote: > Please find attached wireshark file. > > > On Sat, Jan 4, 2014 at 1:59 AM, Caldarale, Charles R < > chuck.caldar...@unisys.com> wrote: > >> > From:

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

Hi , I have compiled tomcat-native-1.1.29-src.tar.gz with 1.0.1e-3ubuntu1 and test it with fresh apache-tomcat-7.0.47.tar.gz. and with following connector settings Tomcat Logs: Jan 03, 2014 8:25:32 PM org.apache.catalina.core.AprLifecycleListener init INFO: Loaded APR based Apache Tomcat Native

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

Hi, I am getting following error while compiling tomcat-native-1.1.29-src with 1.0.1e-3ubuntu1, shell i ignore this ? src/sslcontext.c: In function 'Java_org_apache_tomcat_jni_SSLContext_make': src/sslcontext.c:77:17: warning: passing argument 1 of 'SSL_CTX_new' makes pointer from integer without

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

Hi, I just bold it from GMAIL :)

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

*Connector Settings:* *Tomcat Logs:* Jan 03, 2014 5:09:49 PM org.apache.catalina.core.AprLifecycleListener init INFO: Loaded APR based Apache Tomcat Native library 1.1.29 using APR version 1.5.0. Jan 03, 2014 5:09:49 PM org.apache.catalina.core.AprLifecycleListener init INFO: APR capabilities: I

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

then what could be the working config !!! , can u edit and send it to me ? Regards, Mudassir Aftab

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

also following setting is working for TLS v1 but not with TLS v1.2, so its a bug !!! On Fri, Jan 3, 2014 at 6:56 PM, Mudassir Aftab wrote: > HI, > > That was just typo error but on system it is fine and i am keep checking > logs, no warning in it > > also what ab

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

ES256-SHA384 TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256ECDH-ECDSA-AES128-GCM-SHA256 TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384ECDH-ECDSA-AES256-GCM-SHA384 On Fri, Jan 3, 2014 at 6:00 PM, David kerber wrote: > On 1/3/2014 3:28 AM, Mudassir Aftab wrote: > >> Hi, >> >>

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

Hi, Sorry for asking u same thing again and again, i have tried many things from above document, but nothing works for me, also no errors in the log SSCipherSuit="ECDH-ECDSA-AES128-GCM-SHA256" I really appreciate your help

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

Should i use following APR connector attribute ?

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

How can i specify AES256-SHA256 cipher in tomcat connector? or where should i specify this ? Regards, Mudassir Aftab

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

- WEAK 40 bits ** ** SSLv3:ADH-AES256-SHA - ENABLED - WEAK 256 bits ** ** SSLv3:ADH-DES-CBC3-SHA - ENABLED - WEAK 168 bits ** ** SSLv3:ADH-DES-CBC-SHA - ENABLED - WEAK 56 bits ** ** SSLv3:ADH-RC4-MD5 - ENABLED - WEAK 128 bits ** On Fri, Jan 3, 2014 at 5:58 AM, Mudassir Aftab wrote: > How can i t

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

How can i test this ? can i test this with Firefox 25 ? Regards, Mudassir Aftab On Fri, Jan 3, 2014 at 5:41 AM, Mudassir Aftab wrote: > Thanks for keep replying, is there any way to restrict the cipher suite > in the connector configuration? > > > ECDHE-RSA-AES256-GCM-SHA

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

-SHA:EXP-RC2-CBC-MD5:EXP-RC4-MD5 On Fri, Jan 3, 2014 at 5:35 AM, Mudassir Aftab wrote: > I have just configured latest version , following is the log > > Jan 03, 2014 12:33:58 AM org.apache.catalina.core.AprLifecycleListener init > INFO: Loaded APR based Apache Tomcat Native library 1.1.

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

lHandler ["ajp-apr-8009"] Jan 03, 2014 12:34:07 AM org.apache.catalina.startup.Catalina start INFO: Server startup in 7422 ms On Fri, Jan 3, 2014 at 5:31 AM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Mud

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

I have also tried to apply following patch in tomcat native but it did not helped. https://issues.apache.org/bugzilla/attachment.cgi?id=30150 tomcat-native-1.1.29-src.tar.gz On Fri, Jan 3, 2014 at 5:21 AM, Mudassir Aftab wrote: > Hi , > > Thanks for reply, > > I am using follow

Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

/bin/apr-1-config --with-java-home=$JAVA_HOME --with-ssl=yes --prefix=$CATALINA_HOME export LD_LIBRARY_PATH="$LD_LIBRARY_PATH:/opt/tomcat7/lib" Server.xml: Regards, Mudassir Aftab On Fri, Jan 3, 2014 at 2:28 AM, Caldarale, Charles R < chuck.caldar...@unisys.com> wrote: &g

TLS is not working in 6.0.37, 7.0.42, 7.0.47

I need TLSv1.2 support for tomcat, can any one help me by providing TLS v1.2 patch, also where should i actually apply the patch, in JDK / Tomcat / Tomcat Native ?? Also what will be the preferable connector settings ? I am using following connector in Apache Tomcat/7.0.42 An error occurred dur