You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by "Harondel J. Sibble" <he...@pdscc.com> on 2008/08/28 19:42:08 UTC

tomcat ssl problems with funambol 7.0.4 bundle

Okay, working to get the Funambol linux server bundle to work with ssl for 
syncing email with my pda/cellphone

https://www.forge.funambol.org/download/

It uses tomcat and I've followed the instructions here 

https://wiki.objectweb.org/sync4j/Wiki.jsp?page=HowtouseHttps
http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html

and here

http://blogs.sun.com/swchan/entry/how_to_use_verisign_cert

I've created a keystore file as

/opt/Funambol/tools/tomcat/conf/keystore.jks

I've imported the ca chained cert (godaddy) and the actual cert into the said 



keystore, the relevant section in 

/opt/Funambol/tools/tomcat/conf/server.xml 

    <Connector
           port="8443" maxHttpHeaderSize="8192"
           maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
           enableLookups="false" disableUploadTimeout="true"
           acceptCount="100" scheme="https" secure="true"
           keystorefile="/opt/Funambol/tools/tomcat/conf/keystore.jks"
           clientAuth="false" sslProtocol="TLS" />

I've restarted funambol using the supplied init scrip which restarts tomcat, 
but when I goto

lynx https://localhost:8443/funambol/ds

I get

lynx https://localhost:8443/funambol

Looking up localhost:8443
Making HTTPS connection to localhost:8443
Retrying connection without TLS.
Looking up localhost:8443
Making HTTPS connection to localhost:8443
Alert!: Unable to make secure connection to remote host.
lynx: Can't access startfile https://localhost:8443/funambol


https://servername (same as cert CN):8443/funambol/ds

or 

https://ipaddress:8443/funambol/ds

I just get a message in the browser (ff 2.x)that the connection was 
interrupted, same class of error in any other browser

>From the end of  

cat ../../tomcat/logs/catalina.out


Aug 27, 2008 11:58:45 PM org.apache.catalina.loader.WebappClassLoader 
validateJarFile
INFO: validateJarFile(/opt/Funambol/tools/tomcat/webapps/webdemo/WEB-
INF/lib/servlet-api-2.3.jar) - jar not loaded. See Servlet Spec 2.3, section 
9.7.2. Offending class: javax/servlet/Servlet.class
Starting configuration monitor [funambol-directory-monitor-17ba38f] on: 
/opt/Funambol/config
Aug 27, 2008 11:58:47 PM org.apache.coyote.http11.Http11Protocol start
INFO: Starting Coyote HTTP/1.1 on http-8080
Aug 27, 2008 11:58:48 PM org.apache.coyote.http11.Http11Protocol start
INFO: Starting Coyote HTTP/1.1 on http-8443
log4j:WARN No appenders could be found for logger 
(org.apache.axis.transport.http.AxisServlet).
log4j:WARN Please initialize the log4j system properly.
Aug 27, 2008 11:58:48 PM org.apache.jk.common.ChannelSocket init
INFO: JK: ajp13 listening on /0.0.0.0:8009
Aug 27, 2008 11:58:48 PM org.apache.jk.server.JkMain start
INFO: Jk running ID=0 time=0/191  config=null
Aug 27, 2008 11:58:48 PM org.apache.catalina.startup.Catalina start
INFO: Server startup in 9748 ms

The non ssl page works fine and shows what I would expect, and syncing 
without ssl works fine.


    Funambol DS Server
    Version 7.0.4

    Web Demo Client

    Terms & Conditions 

Any ideas what I am missing here, I've been banging my head against this for 
a couple of days and have done a LOT of reading




-- 
Harondel J. Sibble 
Sibble Computer Consulting
Creating solutions for the small business and home computer user.
help@pdscc.com (use pgp keyid 0x3AD5C11D) http://www.pdscc.com
(604) 739-3709 (voice/fax)      (604) 686-2253 (pager)


---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org