From: Christopher Schultz <ch...@christopherschultz.net> To: Tomcat Users List <users@tomcat.apache.org> Date: 17-08-2015 18:32 Subject: Re: Tomcat hanged on window server 2012
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Dear Chris, Thanks for the reply, our response to ur questions are highlighted in blue. Any help is greatly appreciated. On 8/17/15 7:13 AM, dku...@ccilindia.co.in wrote: > Our application worked fine on tomcat 8.0.22 on windows server 2003 > server. The tomcat server is restarted daily using a scheduler on > shutdown.bat (at night) and startup.bat files (in the morning). I'm curious, why do you take-down your service overnight? 1.We have downtime for our website. > We have now upgraded our machine to windows server 2012 64 bit and > now facing some serious issues like the tomcat remains in hanged > stage( not responding state.).Once we restart the tomcat server, > everything works fine.And this happens only once in a day. After > the restart of tomcat,(manually by double click on shutdown.bat > file and startup.bat file) it never repeats. When you manually run shutown.bat/startup.bat, what is the effective user? When the scheduler runs, what is the effective user? Perhaps the environment is not configured correctly for one or the other of those. 2. Manually clicking on the shutdown.bat file and letting it happen through a scheduler is done by the same user credentials. > We have not found any error in all the relevant log files. > > We have made the below changes while migration. 1. java upgrade > from 1.7.0_40 to 1.8.0_25 2.Removed the tomcat-native.dll file from > the bin folder. Why did you remove tomcat-native.dll? You could use the 64-bit version instead of the 32-bit version if you'd like. 3. We have removed tomcat-native.dll file , because we were getting " org.apache.catalina.core.AprLifecycleListener.lifecycleEvent Loaded APR based Apache Tomcat Native library 1.1.32 using APR version 1.5.1." which was indicated as vullnerability by our security team. Also we are using NIO connector and not APR. > The configuration of new windows server 2012 is as follows: OS > Name: Windows Server 2012-64 bit OS Version: > 6.2 java 1.8.0_25 (32 bit) > > However, we have observed the below error in the windows event > viewer log > > "A fatal alert was generated and sent to the remote endpoint. This > may result in termination of the connection. The TLS protocol > defined fatal error code is 10. The Windows SChannel error state is > 10." Check https://msdn.microsoft.com/en-us/library/windows/desktop/dd721886%28v=vs .85%29.aspx Error 10 is "unexpected message", which might happen if your client was trying to connect using SSLv3 or some other unsupported protocol. What does your <Connector> look like? 4. Our connector tag is as shown below. <Connector protocol ="org.apache.coyote.http11.Http11NioProtocol" port="XXX" maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25" enableLookups="false" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" sslEnabledProtocols="TLSv1.2,TLSv1.1,TLSv1" SSLEnabled="true" allowUnsafeLegacyRenegotiation="false" ciphers="XXXXXXXXXXXXXXX" keystoreFile="XXXXX " keystorePass="XXXX" server=" "> </Connector> > Is this error responsible for the hanging of tomcat server or Is it > due to absence of tomcat-native.dll file ??? or is there any other > reason why the tomcat server goes into hanging state ??? A thread dump or two would be helpful: http://wiki.apache.org/tomcat/HowTo#If_you_are_running_on_Microsoft_Wind ows What you say that Tomcat has "hung" what do you mean? Will it respond to HTTP requests? If you run shutdown.bat, will it shutdown cleanly, or do you have to kill the process? 5. Tomcat has "hung" means,the web page was not available and not responding for the end users .We had to kill it from the task manager as it was not shutting down using shutdown.bat file. - -chris -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJV0ds2AAoJEBzwKT+lPKRYBtAQAIyPltQAUPX/ybDt63qTCiSb CRr9vSKJzyYkLbP2RM3AUsXbEZ40sJumNtkcAa8nNRPUDdNhijYUTRiFPpxtBYzD lKgafbOPLxh+oCeOmTTM1yIHYxAQI+4Ajy0cRR64YTVdtQ6uM0T/v2qbaidii0zX Y8yCMSCdZ4YFYG2j5Ix6ezN4O/ixNNV+iiQCnKVJgC/WKSJBlnrUkQLHLR80fHvE MCAncgiHMXPEUwOE297aw/7zBwlXeMe9T+aOAOIMFqhirCwf9KLYqn68Nk77gxfT uwuDZLFgIh6DEBfkLSbOFoJai4IneHjdy+voJXZw58VStj2IBbwGWuc6uOv6XAke zsqhnJpBlClncjXol4VgJKvivF0RM070RvISRPNh6HfCF3staaom/Luv2v5NQDFB mInXhPEH/GgruY0z3KPmX/il1uRZAxNVVZ6RRtK+IgxE1GsX6OR8sgLs5OZG8Ncv InPFe+3e04ZWjJOvfWdBilC34soH8b4VNwlZpyOWad9HTxLnzzYecwJo3On2vbtO eKyMT0lS0aUZYcXwnkyBXPdd5OoHoxCs4g/C3/GBCBtqqwHkarkC2QKD5EkwzmHn NqPeUjQln36tA39KCXt7K0vmsh7Ne7VUSOBv+ZsDqfNcaYgYo94vFQwtNLbGP+DH 2Zs6zTaZOaiR++PgkAgz =Hqri -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org "Disclaimer and confidentiality clause - This message and any attachments relating to official business of CCIL OR ANY OF IT'S SUBSIDIARIES is proprietary to CCIL and intended for the original addressee only. The message may contain information that is confidential and subject to legal privilege. Any views expressed in this message are those of the individual sender. If you have received this message in error, please notify the original sender immediately and destroy the message and copies thereof and any attachments contained in it . If you are not the intended recipient of this message, you are hereby notified that you must not disseminate, copy, use, distribute, or take any action in connection therewith. CCIL cannot ensure that the integrity of this communication has been maintained nor that it is free of errors, viruses, interception and/or interference. CCIL is not liable whatsoever for loss or damage resulting from the opening of this message and/or attachments and/or the use of the information contained in this message and/or attachments."
