diff options
| author | Endi Sukma Dewata <edewata@redhat.com> | 2013-03-11 21:17:53 -0400 |
|---|---|---|
| committer | Endi Sukma Dewata <edewata@redhat.com> | 2013-03-19 12:57:17 -0400 |
| commit | 22d50cc526c7fd4224a4d5a0ae9ebf66afd8e83a (patch) | |
| tree | 9bf60845d64b5268b5962d18ae2071cbffcba394 /base/tks | |
| parent | a3b4489e219d5807133e67b5f2b10c320ecaf8a4 (diff) | |
| download | pki-22d50cc526c7fd4224a4d5a0ae9ebf66afd8e83a.tar.gz pki-22d50cc526c7fd4224a4d5a0ae9ebf66afd8e83a.tar.xz pki-22d50cc526c7fd4224a4d5a0ae9ebf66afd8e83a.zip | |
Replaced Tomcat's random number generator.
By default Tomcat relies on /dev/random as a random number generator
to generate the session ID's. Under certain conditions /dev/random
may block, which will block Tomcat as well. To solve the problem all
webapps in Tomcat have been configured to use the random number
generator provided by JSS.
Ticket #524
Diffstat (limited to 'base/tks')
| -rw-r--r-- | base/tks/shared/webapps/tks/META-INF/context.xml | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/base/tks/shared/webapps/tks/META-INF/context.xml b/base/tks/shared/webapps/tks/META-INF/context.xml index 975ecabf1..032fd14c9 100644 --- a/base/tks/shared/webapps/tks/META-INF/context.xml +++ b/base/tks/shared/webapps/tks/META-INF/context.xml @@ -24,7 +24,11 @@ --> <Context crossContext="true" allowLinking="true"> - <Valve className="com.netscape.cms.tomcat.SSLAuthenticatorWithFallback" /> + <Manager + secureRandomProvider="Mozilla-JSS" secureRandomAlgorithm="pkcs11prng"/> + + <Valve className="com.netscape.cms.tomcat.SSLAuthenticatorWithFallback" + secureRandomProvider="Mozilla-JSS" secureRandomAlgorithm="pkcs11prng"/> <Realm className="com.netscape.cms.tomcat.ProxyRealm" /> |