Re: Problems with SSLFilter

Fri, 09 May 2008 17:00:42 -0700 

Janardhanan,
It's certainly possible that this same problem is on the 1.0.x branch as well, though I haven't tested it. The JIRA bug indicates that it affected 1.0.3 and was fixed in 1.0.4, but like the 1.1.x branch it may have snuck back in (assuming again that this is in fact the problem). 


I found this post with the same issue from June 2007:  http://markmail.org/message/i4p374325cwnno66 
.  I tried using the JAR file provided by Trustin, and it worked.  Not  
sure if this related to that JIRA bug.


On May 9, 2008, at 4:00 PM, Janardhanan Vembunarayanan wrote:


Hi Kyle,


I am seeing SSL issues on 1.0.9 is this is an issue in this branch  
as well?
The issue is connection gets established and after which the data is  
not

read.
I have given the handshake information below.

1210272744747 sslfilter mr 503sessionid = 25
1210272744747 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_UNWRAP handshakeComplete = false
1210272744747 sslhandler unwrapHandshake 503sessionid = 25
1210272744747 sslhandler unwrap0 503sessionid = 25
1210272744747 sslhandler unwrap0 503sessionid = 25 handshakestatus =
NEED_TASK status = OK
1210272744747 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_TASK handshakeComplete = false
1210272744749 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_WRAP handshakeComplete = false
1210272744749 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_WRAP handshakeComplete = false
1210272744749 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_WRAP handshakeComplete = false
1210272744749 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_UNWRAP handshakeComplete = false
1210272744749 sslhandler unwrapHandshake 503sessionid = 25
1210272744749 sslhandler unwrap0 503sessionid = 25
1210272744749 sslhandler unwrap0 503sessionid = 25 handshakestatus =
NEED_UNWRAP status = BUFFER_UNDERFLOW
1210272744749 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_UNWRAP handshakeComplete = false
1210272744749 sslhandler unwrapHandshake 503sessionid = 25
1210272744749 sslhandler unwrap0 503sessionid = 25
1210272744749 sslhandler unwrap0 503sessionid = 25 handshakestatus =
NEED_UNWRAP status = BUFFER_UNDERFLOW
1210272744749 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_UNWRAP handshakeComplete = false
1210272744749 sslhandler unwrapHandshake 503sessionid = 25
1210272744749 sslhandler unwrap0 503sessionid = 25
1210272744749 sslhandler unwrap0 503sessionid = 25 handshakestatus =
NEED_UNWRAP status = BUFFER_UNDERFLOW

1210272744751 sslfilter mr 503sessionid = 25
1210272744751 sslhandler handshake 503sessionid = 25 handshakeStatus =
NEED_UNWRAP handshakeComplete = false
1210272744751 sslhandler unwrapHandshake 503sessionid = 25
1210272744752 sslhandler unwrap0 503sessionid = 25
1210272744752 sslhandler unwrap0 503sessionid = 25 handshakestatus =
NEED_UNWRAP status = OK
1210272744752 sslhandler unwrap0 503sessionid = 25
1210272744752 sslhandler unwrap0 503sessionid = 25 handshakestatus =
FINISHED status = OK
1210272744752 sslhandler unwrap0 503sessionid = 25
1210272744752 sslhandler unwrap0 503sessionid = 25 handshakestatus =
NOT_HANDSHAKING status = BUFFER_UNDERFLOW

1210272744752 sslfilter mr 503sessionid = 25
1210272744752 sslhandler handshake 503sessionid = 25 handshakeStatus =
FINISHED handshakeComplete = false
1210272744752 sslhandler handshake 503sessionid = 25 handshakeStatus =
FINISHED handshakeComplete = true


Regards,
Jana


On Fri, May 9, 2008 at 2:02 PM, Kyle Sampson <[EMAIL PROTECTED]>  
wrote:



It does seem to happen in 1.1.7 as well.


On May 9, 2008, at 1:50 PM, Emmanuel Lecharny wrote:

Hi, Kyle,


can you check with the latest releae, 1.1.7 ?

Thanks !

Kyle Sampson wrote:


I'm using MINA 1.1.3.  I added SSLFilter to both the client and  
server
in my application, and it seems to hang at some point while  
negotiating an

SSL connection.  I found a relevant JIRA issue:

https://issues.apache.org/jira/browse/DIRMINA-390.  This seems to  
have

been fixed in version 1.1.1.  I tried using the

mina-filter-ssl-1.1.1.jar in place of the 1.1.3 version, and it  
works
perfectly.  So it seems like whatever change was made to fix this  
bug was

reverted in a later version.


Has anyone else had similar problems?  This seems to happen only  
when you
use SSLFilter along with ProtocolCodecFilter.  This may affect  
only the

1.1.x branch, I'm not sure.

Kyle Sampson
[EMAIL PROTECTED]







--
--
cordialement, regards,
Emmanuel Lécharny
www.iktek.com
directory.apache.org




Kyle Sampson
[EMAIL PROTECTED]







--
www.vshareride.com
www.pragmaticinvesting.com
www.younag.com


Kyle Sampson
[EMAIL PROTECTED]

























					Reply via email to