Strange error in catalina.out: "SEVERE: Error initializing endpoint java.net.BindException: Address already in use <null>:8443"
Christian Munive
christian.munive at gmail.com
Mon Sep 15 18:27:43 EDT 2014
Hi. I'm still relatively new to Shibboleth SW. I could succesfully set up
some IdP and SP's (with their optional EDS's) and a CDS. So far, so good.
But I noticed a some errors in my catalina.out, that I didn't notice before
(since the servers where up and running). The error is the following:
"SEVERE: Error initializing endpoint java.net.BindException: Address
already in use <null>:8443"
(The original in spanish is: "GRAVE: Error inicializando punto final
(endpoint) java.net.BindException: La dirección ya se está usando
<null>:8443")
And it it in every IdP I configured. The basic set up of my IdP machines
(either virtual or real) is:
- 64 bit architecture, 1 GB RAM minimun, 32 GB HD minimun
- Ubuntu Server 14.04.1
- Apache 2.4.7
- Tomcat 6.0.39
- Oracle Java 1.7.0_67
- OpenLDAP 2.4.31
- Shibboleth IdP 2.4.1
I'm using the recommended library "tomcat6-dta-ssl-1.0.0.jar" for SOAP
endpoints.
Some interesting bits of the confguration files:
/etc/tomcat6/server.xml
<Connector port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
URIEncoding="UTF-8"
redirectPort="8443" />
<Connector port="8443"
protocol="org.apache.coyote.http11.Http11Protocol"
sslImplementationName="edu.internet2.middleware.security.tomcat6$
scheme="https" SSLEnabled="true" clientAuth="want"
keystoreFile="/opt/shibboleth-idp/credentials/idp.jks"
keystorePass="changeit" />
<Connector port="8009" address="127.0.0.1" enableLookups="false"
redirectPort="8443" protocol="AJP/1.3"
tomcatAthentication="false" />
/etc/apache2/sites-enabled/idp.conf
Listen 443
<VirtualHost _default_:443>
ServerName ubuntu-workstation.inictel-uni.edu.pe:433
ServerAdmin cmunive at inictel-uni.edu.pe
ErrorLog ${APACHE_LOG_DIR}/idp_443_error.log
TransferLog ${APACHE_LOG_DIR}/idp_443_transfer.log
CustomLog ${APACHE_LOG_DIR}/idp_443_custom.log combined
LogLevel warn
SSLEngine on
SSLOptions -StdEnvVars +ExportCertData
SSLCertificateFile /etc/apache2/ssl/apache.crt
SSLCertificateKeyFile /etc/apache2/ssl/apache.key
ProxyRequests Off
<Proxy ajp://localhost:8009>
Allow from all
</Proxy>
ProxyPass /idp ajp://localhost:8009/idp retry=5
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>
<Directory "/var/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
</VirtualHost>
Listen 8443
<VirtualHost _default_:8443>
ServerName ubuntu-workstation.inictel-uni.edu.pe:8443
ServerAdmin cmunive at inictel-uni.edu.pe
SSLEngine on
SSLOptions -StdEnvVars +ExportCertData
SSLCertificateFile /opt/shibboleth-idp/credentials/idp.crt
SSLCertificateKeyFile /opt/shibboleth-idp/credentials/idp.key
ErrorLog ${APACHE_LOG_DIR}/idp_8443_error.log
TransferLog ${APACHE_LOG_DIR}/idp_8443_transfer.log
CustomLog ${APACHE_LOG_DIR}/idp_8443_custom.log combined
LogLevel warn
ProxyPass /idp ajp://localhost:8009/idp retry=2
ProxyPassReverse /idp ajp://localhost:8009/idp
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>
<Directory "/var/www/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
</VirtualHost>
Like I said, it's not a problem that prevents the normal procedures; I can
log in to secured resources from those IdP's... but those errors shouldn't
be there; I probably missed something while configuring those machines.
Please, help me. If you guys need any other info, I'll try to post it as
soon as I can. Thanks in advance.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20140915/a939e2c3/attachment-0001.html
More information about the users
mailing list