I am really not sure what's wrong with the implementation. It didn't work for me either :( We might be missing something here..
I tried using a different client and it worked. Seems like the client didn't even invoked SSL handshake. Will try to debug this further, whenever I can. Meanwhile, you can use package org.apache.mina.filter.ssl.SslTest to experiment further. Anyone else can shed some light here? thanks ashish 2010/8/25 André Rodrigues <gur...@gmail.com>: > Sure, I'm sending the Eclipse project attached. > > > > I've changed the bogus.cert to tcc.keystore and I'm also using a different > password, so these lines have to be updated in the echoserver if you're > going to use the same tcc.keystore I'm sending: > > > > private static final String KEYSTORE = "tcc.keystore"; > > private static final char[] KEYSTOREPASS_PW = { '6', '1', '9', '1', '5', > '3', '0', '2' }; > > > > The keystore is located on > \Client\src\org\apache\mina\example\echoserver\ssl. > > > > Thanks again for the help! > > André de C. Rodrigues > (11) 7588-9992 > > > 2010/8/25 Ashish <paliwalash...@gmail.com> >> >> can you post your client code? >> >> 2010/8/25 André Rodrigues <gur...@gmail.com>: >> > Alright, thanks ! >> > >> > >> > >> > >> > >> > 2010/8/24 Ashish <paliwalash...@gmail.com> >> > >> >> Let me try the sample at my end ... >> >> >> >> Will revert back as soon as I can. >> >> >> >> thanks >> >> ashish >> >> >> >> 2010/8/24 André Rodrigues <gur...@gmail.com>: >> >> > Hi, thanks for your answer! >> >> > >> >> > I'm using MINA 2.0, and the SSLFilter is the only filter I'm using. >> >> > >> >> > I'll post the System.out output for both the client and the server >> >> > after >> >> > setting the parameter you suggested: >> >> > >> >> > *Server*: >> >> > ***** >> >> > *found key for : tcc* >> >> > *chain [0] = [* >> >> > *[* >> >> > * Version: V3* >> >> > * Subject: CN=ARodrigues, OU=PCS, O=USP, L=Sao Paulo, ST=SP, C=BR* >> >> > * Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5* >> >> > * >> >> > * >> >> > * Key: Sun RSA public key, 512 bits* >> >> > * modulus: >> >> > >> >> >> >> 10699587961921137697482935243108826057317291820617624621055730301315871690894991650505863331589895001390221434496768846223107228977238263236946761412706449 >> >> > * >> >> > * public exponent: 65537* >> >> > * Validity: [From: Wed Aug 18 14:43:58 BRT 2010,* >> >> > * To: Sat Aug 15 14:43:58 BRT 2020]* >> >> > * Issuer: CN=ARodrigues, OU=PCS, O=USP, L=Sao Paulo, ST=SP, C=BR* >> >> > * SerialNumber: [ 4c6c1bde]* >> >> > * >> >> > * >> >> > *]* >> >> > * Algorithm: [SHA1withRSA]* >> >> > * Signature:* >> >> > *0000: 85 69 A4 E7 D8 A7 C9 5E 16 90 B7 14 C5 EF 7C 6E >> >> .i.....^.......n* >> >> > *0010: F0 E4 4A 18 B8 BE 11 3B 0D 4A E2 90 E8 B6 89 AF >> >> ..J....;.J......* >> >> > *0020: 29 88 96 DE 25 6E DF 4B FF B7 FE 12 C9 ED E5 9F >> >> )...%n.K........* >> >> > *0030: 8A B3 F0 A0 8A 40 39 87 C1 E5 57 FA 73 74 3A 2D >> >> .....@9...w.st:-* >> >> > * >> >> > * >> >> > *]* >> >> > ***** >> >> > *trigger seeding of SecureRandom* >> >> > *done seeding SecureRandom* >> >> > *SSL ON* >> >> > *Listening on port 8080* >> >> > *R: 0.0, W: 0.0* >> >> > *Using SSLEngineImpl.* >> >> > *log4j:WARN No appenders could be found for logger >> >> > (org.apache.mina.example.echoserver.EchoProtocolHandler).* >> >> > *log4j:WARN Please initialize the log4j system properly.* >> >> > *log4j:WARN See >> >> > http://logging.apache.org/log4j/1.2/faq.html#noconfigfor >> >> > more info.* >> >> > *R: 0.0, W: 0.0* >> >> > *R: 0.0, W: 0.0* >> >> > *R: 0.0, W: 0.0* >> >> > *R: 0.0, W: 0.0* >> >> > *R: 0.0, W: 0.0* >> >> > >> >> > *Client:* >> >> > * >> >> > trigger seeding of SecureRandom >> >> > done seeding SecureRandom >> >> > SSL ON >> >> > Using SSLEngineImpl. >> >> > test >> >> > >> >> > * >> >> > >> >> > Thanks again, >> >> > André de C. Rodrigues >> >> > (11) 7588-9992 >> >> > >> >> > >> >> > >> >> > 2010/8/23 Ashish <paliwalash...@gmail.com> >> >> > >> >> >> What's the error? MINA version? >> >> >> >> >> >> Try passing this JVM srgument -Djavax.net.debug=all or >> >> >> -Djavax.net.debug=ssl it will show all the SSL communication >> >> >> happening. >> >> >> Its would be easy to point the error. >> >> >> >> >> >> AFAIK, SSL Filter should be the first filter in the chain. Since you >> >> >> are using provided example you should be good. >> >> >> >> >> >> thanks >> >> >> ashish >> >> >> >> >> >> 2010/8/24 André Rodrigues <gur...@gmail.com>: >> >> >> > Hi everyone! >> >> >> > >> >> >> > I'm trying to fix up a simple MINA example using SSL and I'm >> >> >> > having >> >> some >> >> >> > trouble. Here's what I did: >> >> >> > >> >> >> > 1) I'm running the EchoServer example with SSL turned on. I >> >> >> > generated >> >> the >> >> >> > bogus.cert keystore using keytool as described in the >> >> >> > documentation. >> >> >> > 2) I created a simple MINA client that connects to the EchoServer >> >> >> > and >> >> >> starts >> >> >> > a new thread to capture keyboard input and send it to the >> >> >> > EchoServer. >> >> The >> >> >> > client also prints out received messages. >> >> >> > 3) I'm using the ssl package from the EchoServer in my MINA client >> >> >> > and >> >> >> using >> >> >> > the same keystore I generated with keytool in step 1. >> >> >> > 4) I'm adding a SSLFilter to the client filter chain using the >> >> >> > BogusSSLContextFactory from the EchoServer example (new >> >> >> > SslFilter(SslContextFactory.getInstance(false)). >> >> >> > >> >> >> > This, however, does not seem to work... does anybody have any idea >> >> why? >> >> >> > >> >> >> > Sorry if this comes off as a rookie question, but I'm just getting >> >> into >> >> >> > programming. >> >> >> > >> >> >> > Thanks in advance, >> >> >> > andre >> >> >> >> >> > >> >> >> >> >> >> >> >> -- >> >> thanks >> >> ashish >> >> >> >> Blog: http://www.ashishpaliwal.com/blog >> >> My Photo Galleries: http://www.pbase.com/ashishpaliwal >> >> >> > >> >> >> >> -- >> thanks >> ashish >> >> Blog: http://www.ashishpaliwal.com/blog >> My Photo Galleries: http://www.pbase.com/ashishpaliwal > > -- thanks ashish Blog: http://www.ashishpaliwal.com/blog My Photo Galleries: http://www.pbase.com/ashishpaliwal