Bug 1008456
Summary: | java.security.ProviderException: Could not initialize NSS on EWS2 | |||
---|---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Michal Haško <mhasko> | |
Component: | nss | Assignee: | Elio Maldonado Batiz <emaldona> | |
Status: | CLOSED NOTABUG | QA Contact: | BaseOS QE Security Team <qe-baseos-security> | |
Severity: | unspecified | Docs Contact: | ||
Priority: | unspecified | |||
Version: | 6.5 | CC: | jclere, mharmsen, mhasko, pcheung, pslavice, rrelyea, sforsber, tmraz, weli | |
Target Milestone: | rc | |||
Target Release: | --- | |||
Hardware: | Unspecified | |||
OS: | Unspecified | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | Bug Fix | ||
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 1022950 (view as bug list) | Environment: | ||
Last Closed: | 2013-09-17 08:44:49 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 1022950 |
Description
Michal Haško
2013-09-16 11:44:35 UTC
OK, the errors produced in catalina.out was probably caused by OpenJDK1.7. I managed to get the org.apache.coyote.http11.Http11NioProtocol connector working with OracleJDK1.7. But there is still something fishy going on with tomcat/ssl: # wget -O - https://localhost:8443/ --2013-09-16 10:52:44-- https://localhost:8443/ Resolving localhost... ::1, 127.0.0.1 Connecting to localhost|::1|:8443... connected. OpenSSL: error:100AE081:elliptic curve routines:EC_GROUP_new_by_curve_name:unknown group OpenSSL: error:1408D010:SSL routines:SSL3_GET_KEY_EXCHANGE:EC lib Unable to establish SSL connection. What were the versions of nss, nss-softokn, nss-util installed? That looks like a configuration error protocol="org.apache.coyote.http11.Http11NioProtocol" doesn't need native so you need to comment out the: <Listener className="org.apache.catalina.core.AprLifecycleListener"/> is you are not using native for another connector you need to configure the listener correctly. the wget error looks like a problem in the box doing the wget, could you try with a browser and/or from another box? As Jean-Frédéric pointed out, this is not a problem with the tomcat. Wget from a different box works just fine. I am closing this bug for the sake of the original issue. |