Ok the machine I was running on had an out of date version of java - updating to latest fixes it. Sorry for the noise.
On Fri, Mar 1, 2013 at 1:43 PM, Mark Wyszomierski <[email protected]> wrote: > Ok thanks Joakim, I have to look into upgrading as a first step then. > > > On Fri, Mar 1, 2013 at 12:39 PM, Joakim Erdfelt <[email protected]>wrote: > >> Some stackoverflow questions and answers that might help you. >> >> >> http://stackoverflow.com/questions/8154617/how-to-troubleshoot-ssl-bad-record-mac-exception >> >> http://stackoverflow.com/questions/4496941/curl-php-request-executes-50-of-the-time >> >> -- >> Joakim Erdfelt <[email protected]> >> webtide.com <http://www.webtide.com/> >> Developer advice, services and support >> from the Jetty & CometD experts >> eclipse.org/jetty - cometd.org >> >> >> On Fri, Mar 1, 2013 at 10:37 AM, Joakim Erdfelt <[email protected]>wrote: >> >>> "Bad record mac" looks like a TLS Alert. >>> >>> Typical explanations for this alert is "Possibly a bad SSL >>> implementation, or payload has been tampered with" >>> >>> I had some buggy versions of openssl that had this bug, but once I >>> upgraded to 1.0.1e it went away. >>> >>> -- >>> Joakim Erdfelt <[email protected]> >>> webtide.com <http://www.webtide.com/> >>> Developer advice, services and support >>> from the Jetty & CometD experts >>> eclipse.org/jetty - cometd.org >>> >>> >>> On Fri, Mar 1, 2013 at 10:29 AM, Mark Wyszomierski <[email protected]>wrote: >>> >>>> Hi all, >>>> >>>> I've been trying to get an ios UIWebView to establish an https >>>> connection with a jetty instance (v7.6.9 on a windows machine). The jetty >>>> instance is loading an ssl certificate I got from godaddy. For what it's >>>> worth, firefox/chrome/safari work just fine with the same endpoint, they >>>> don't have any problems with the certificate. >>>> >>>> Mobile safari exhibits a similar problem, though. I don't have log >>>> output for that yet. The browser will just timeout. >>>> >>>> With debug logging on, I can see an SSLException is thrown when the >>>> UIWebView attempts to connect. I have the full log, can post it if it >>>> helps. Here's a snippet: >>>> >>>> >>>> ... (note: ip addresses masked) ... >>>> 2013-03-01 11:32:47.015:DBUG:oejh.HttpParser:filled 0/0 >>>> 2013-03-01 11:32:47.015:DBUG:oejin.ssl:[Session-1, >>>> SSL_NULL_WITH_NULL_NULL] SslConnection@f44fe SSL NOT_HANDSHAKING >>>> i/o/u=0/0/0 ishut=false oshut=false >>>> {AsyncHttpConnection@1de0733,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0} >>>> NOT_HANDSHAKING filled=0/0 flushed=0/0 >>>> 2013-03-01 11:32:47.030:DBUG:oejin.ssl:[Session-1, >>>> SSL_NULL_WITH_NULL_NULL] handle SslConnection@f44fe SSL >>>> NOT_HANDSHAKING i/o/u=0/0/0 ishut=false oshut=false >>>> {AsyncHttpConnection@1de0733,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0} >>>> progress=false >>>> 2013-03-01 11:32:47.046:DBUG:oejin.ssl:[Session-1, >>>> SSL_NULL_WITH_NULL_NULL] SslConnection@f44fe SSL NOT_HANDSHAKING >>>> i/o/u=389/0/0 ishut=false oshut=false >>>> {AsyncHttpConnection@1de0733,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0} >>>> NOT_HANDSHAKING filled=389/389 flushed=0/0 >>>> 2013-03-01 11:32:47.046:DBUG:oejin.ssl:SCEP@12e1b7f{l(/xx >>>> .xxx.xxx.xxx:61378 <http://67.151.197.130:61378> >>>> )<->r(/xx.xx.xx.xxx:8443),d=true,open=true,ishut=false,oshut=false,rb=false,wb=false,w=true,i=1r}-{SslConnection@f44feSSL >>>> NEED_WRAP i/o/u=389/0/0 ishut=false oshut=false >>>> {AsyncHttpConnection@1de0733 >>>> ,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0}} >>>> javax.net.ssl.SSLException: bad record MAC >>>> at sun.security.ssl.Alerts.getSSLException(Unknown Source) >>>> at sun.security.ssl.SSLEngineImpl.fatal(Unknown Source) >>>> at sun.security.ssl.SSLEngineImpl.fatal(Unknown Source) >>>> at sun.security.ssl.SSLEngineImpl.readRecord(Unknown Source) >>>> at sun.security.ssl.SSLEngineImpl.readNetRecord(Unknown Source) >>>> at sun.security.ssl.SSLEngineImpl.unwrap(Unknown Source) >>>> at javax.net.ssl.SSLEngine.unwrap(Unknown Source) >>>> at org.eclipse.jetty.io.nio.SslConnection.unwrap(SslConnection.java:524) >>>> at >>>> org.eclipse.jetty.io.nio.SslConnection.process(SslConnection.java:359) >>>> at >>>> org.eclipse.jetty.io.nio.SslConnection.access$900(SslConnection.java:48) >>>> at >>>> org.eclipse.jetty.io.nio.SslConnection$SslEndPoint.fill(SslConnection.java:666) >>>> at org.eclipse.jetty.http.HttpParser.fill(HttpParser.java:1040) >>>> at org.eclipse.jetty.http.HttpParser.parseNext(HttpParser.java:280) >>>> at org.eclipse.jetty.http.HttpParser.parseAvailable(HttpParser.java:235) >>>> at >>>> org.eclipse.jetty.server.AsyncHttpConnection.handle(AsyncHttpConnection.java:82) >>>> at org.eclipse.jetty.io.nio.SslConnection.handle(SslConnection.java:196) >>>> at >>>> org.eclipse.jetty.io.nio.SelectChannelEndPoint.handle(SelectChannelEndPoint.java:628) >>>> at >>>> org.eclipse.jetty.io.nio.SelectChannelEndPoint$1.run(SelectChannelEndPoint.java:52) >>>> at >>>> org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:608) >>>> at >>>> org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:543) >>>> at java.lang.Thread.run(Unknown Source) >>>> >>>> Any idea where I should continue looking? >>>> >>>> Thanks >>>> >>>> _______________________________________________ >>>> jetty-users mailing list >>>> [email protected] >>>> https://dev.eclipse.org/mailman/listinfo/jetty-users >>>> >>>> >>> >> >> _______________________________________________ >> jetty-users mailing list >> [email protected] >> https://dev.eclipse.org/mailman/listinfo/jetty-users >> >> >
_______________________________________________ jetty-users mailing list [email protected] https://dev.eclipse.org/mailman/listinfo/jetty-users
