严重:由于 TomCat 6 启动时签名溢出,无法加载路径为 webapps/FT.keystore 的密钥库类型 JKS,字节 = 128
我正在尝试配置 Tomcat 以接受 HTTPS 请求。问题是,当我启动 Tomcat 时,出现以下异常:
SEVERE: Failed to load keystore type JKS with path webapps/FT.keystore due tosigned overrun, bytes = 128
我已经创建了keystore FT.keystore 并将其放置在 webapps/ 目录中。
这是我用于 HTTPS 连接器的配置 (xxx只是为了保密信息)
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
keystoreFile="webapps/xxx.keystore" keystorePass="xxxx"
clientAuth="false" sslProtocol="TLS" />
有人能帮我解决这个问题吗?我使用 keytool ($JAVA_HOME/bin) 生成我的密钥库和 RSA 算法。 多谢。
I am trying to configure Tomcat so as to accept HTTPS requests. The problem is that when I start Tomcat, I have the following exception :
SEVERE: Failed to load keystore type JKS with path webapps/FT.keystore due to signed overrun, bytes = 128
I have already created the keystore FT.keystore and placed it in webapps/ directory.
Here is the configuration I use for the HTTPS connector
(The xxx are only to keep informations private)
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
keystoreFile="webapps/xxx.keystore" keystorePass="xxxx"
clientAuth="false" sslProtocol="TLS" />
Could any one help me solve this problem? I used keytool ($JAVA_HOME/bin) to generate my keystore and the RSA algorithm.
Thanks a lot.
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
您的连接器配置看起来不错,因此我怀疑生成的密钥库有问题。您确定您按照 Tomcat 6 SSL 配置方法<中的说明生成了它吗< /a>?该命令应如下所示:(
注意
-alias tomcat参数 - 我发现一些参考资料表明,将其省略会导致您遇到的“签名溢出”问题。)Your connector configuration looks good, so I suspect there's something wrong with the generated keystore. Are you sure you generated it as instructed in Tomcat 6 SSL Configuration HOW-TO? The command should look like this:
(Pay attention to the
-alias tomcatparameter - I found some references which indicate that leaving it out would cause the "signed overrun" problem you're having.)