Mark, I installed it just by downloading tcnative src tar.gz file from tomcat website and issued ./configure --with-apr=/usr/local/apr --with-java-home=/usr/java/jdk1.7.0_79 -with-ssl=/usr/local/openssl && make && make install && make clean I'm not sure how to specify any ocsp related configure options when building tomcat native from source
________________________________ От: Mark Thomas <ma...@apache.org> Отправлено: 22 мая 2019 г. 13:41 Кому: users@tomcat.apache.org Тема: Re: OCSP with openSSL On 22/05/2019 11:28, Усманов Азат Анварович wrote: > Hi everyone! I have a web app running on tomcat and java 7 using apr for TLS > related issues. I m still unable to have OCSP verification working with > tomcat. <snip/> > I have tried running tcpdump on the server but don't' see any Comodo related > IP addresses in the output when I access the server in question in the > browser. > At this point I don't know what else to do, If it was java I would just put > some System.out.println statements in OCSP SSL related source code and > recompile the tomcat source, but since in my case tomcat uses OpenSSL and > tomcat native I'm not sure how/where to do that. the only places I found in > the TC-native source that mentions OCSP is sslutils.c source file. I'm not > sure when/ if it is actually gets called in my case. Maybe be someone with > more c experience c++ would help me with that. I really want to get to the > bottom of this. Any help is appreciated > my tomcat version is 8.5.39 > APR based Apache Tomcat Native library [1.2.21] using APR version [1.6.5]. > Openssl version is [OpenSSL 1.1.1a 20 Nov 2018 > OS: Linux RHEL 6.6 How did you build the Tomcat Native library? Was OCSP enabled? Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
