9/4/2023 0 Comments Tomcat supported versions![]() ![]() Working TLSv1.3 Configuration (without HTTP/2): Working HTTP/2 Configuration (without TLSv1.3): We installed the OpenSSL and APR binaries but when we try to run with only TLSv1.3 configured (instead of TLSv1.2+TLSv1.3) we see the following error in our Tomcat logs: : Protocol handler initialization failedĪt .Connector.initInternal(Connector.java:935)Īt .LifecycleBase.init(LifecycleBase.java:136)Īt .StandardService.initInternal(StandardService.java:530)Īt .StandardServer.initInternal(StandardServer.java:852)Īt .Catalina.load(Catalina.java:633)Īt .Catalina.load(Catalina.java:656)Īt 0(Native Method)Īt (NativeMethodAccessorImpl.java:62)Īt (DelegatingMethodAccessorImpl.java:43)Īt .invoke(Method.java:498)Īt .Bootstrap.load(Bootstrap.java:306)Īt .Bootstrap.main(Bootstrap.java:491)Ĭaused by: : None of the specified are supported by the SSL engine : ]Īt .(SSLUtilBase.java:91)Īt .net.SSLUtilBase.(SSLUtilBase.java:55)Īt .(OpenSSLUtil.java:41)Īt .(OpenSSLImplementation.java:36)Īt .(AbstractJsseEndpoint.java:102)Īt .(AbstractJsseEndpoint.java:85)Īt .(NioEndpoint.java:216)Īt .(AbstractEndpoint.java:1043)Īt .init(AbstractProtocol.java:540)Īt 11.AbstractHttp11Protocol.init(AbstractHttp11Protocol.java:74)Īt .Connector.initInternal(Connector.java:932)īelow are the different variations we have tried for our server.xml. When we switch to OpenSSL based TLS we are able to get HTTP/2 working but we can't figure out how to get TLSv1.3 working. Note: We are not sure if the Zulu release of Java 8 that we are using lacks ALPN or not. According to Tomcat's documentation,īecause Java 8's TLS implementation does not support ALPN (which is required for HTTP/2 over TLS), you must be using an OpenSSL based TLS implementation to enable HTTP/2 support. However, when we try to add support for HTTP/2 we run into problems. With this configuration Tomcat uses TLS via JSSE. We are able to get TLSv1.3 working by configuring Tomcat to use Azul's Zulu Java 8 release. We are able to get HTTP/2 or TLSv1.3 working but not both together. The setup works fine for us using HTTP/1.1 and TLSv1.2 but we now want to use HTTP/2 and TLSv1.3. One of our applications runs on Tomcat 9.0 on Windows with Java 8. TL DR: How can we configure Tomcat running on Windows with Java 8 to support both TLSv1.3 and HTTP/2? ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |