I've been able to use JSSE servers with browser clients,
I would think that it would work the other way too: JSSE client to server.
The problems with JSSE ussually come with certificate management
keytool is and keystores seem to be the cause of most problems:
You have to explicitly specifiy RSA for key generation,
and algorthims at almost all stages of key generation and
certificate request, as it uses DSA by default.
There are also some problems with some of the JVM's that
donw't seem to have a full complement of encryption algorithms
though the latest jdk1.3 seems to work.
I have some notes at http://www.latif.org/ssl
and there are some other notes in the SSL doc
for the Enhydra app server at http://www.enhydra.org
steve
>>>>> "Donnat" == Donnat <iso-8859-1> writes:
>> My question is on how to connect JSSE (java based client) with
>> openssl based web engine server.
>>
>> I have tried so far and what I have got is that I could not
>> create SSL socket with my opensl server, which works fine with
>> my openssl client (even when I used JNI approach to use C
>> llibrary from Java.
Donnat> In fact i'm afraid you're wrigth ! I tried too to connect
Donnat> a browser with the JSSE 1.0.2 without success ! I havent
Donnat> try yet to connect a JSSE Client with an APAche Sever but
Donnat> i think it would give the same result ! It seemes to be a
Donnat> question of implementation ! During handshake JSSE packed
Donnat> each message in a CipheText or a PlainText insted of
Donnat> packing each group of message that's why handhsake fails !
Donnat> Maybe it's a difference between "OpenSSL" and "SSL & TLS"
Donnat> but i'm not sure and i can't find information about this !
Donnat> Regards Fred <!doctype html public "-//w3c//dtd html 4.0
Donnat> transitional//en"> <html> <br> <blockquote
Donnat> TYPE=CITE><font face="Arial"><font size=-1>My question is
Donnat> on how to connect JSSE (java based client) with openssl
Donnat> based web</font></font> <br><font face="Arial"><font
Donnat> size=-1>engine server.</font></font> <p><font
Donnat> face="Arial"><font size=-1>I have tried so far and what I
Donnat> have got is that I could not create SSL socket with
Donnat> my</font></font> <br><font face="Arial"><font
Donnat> size=-1>opensl server, which works fine with
Donnat> my openssl client (even when I used JNI</font></font>
Donnat> <br><font face="Arial"><font size=-1>approach to use C
Donnat> llibrary from Java.</font></font></blockquote>
Donnat> <p><br>In fact i'm afraid you're wrigth ! <br>I tried too
Donnat> to connect a browser with the JSSE 1.0.2 without success !
Donnat> <br>I havent try yet to connect a JSSE Client with an
Donnat> APAche Sever but i think it would give the same result !
Donnat> <br>It seemes to be a question of implementation !
Donnat> <br>During handshake JSSE packed each message in a
Donnat> CipheText or a PlainText insted of packing each group of
Donnat> message that's why handhsake fails ! <br>Maybe it's a
Donnat> difference between "OpenSSL" and "SSL & TLS" but i'm
Donnat> not sure and i can't find information about this !
Donnat> <p>Regards Fred</html>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
