I am really not sure what's wrong with the implementation. It didn't
work for me either :(
We might be missing something here..
I tried using a different client and it worked. Seems like the client
didn't even invoked SSL handshake.
Will try to debug this further, whenever I can.
Meanwhile, you can use package org.apache.mina.filter.ssl.SslTest to
experiment further.
Anyone else can shed some light here?
thanks
ashish
2010/8/25 André Rodrigues <gur...@gmail.com>:
> Sure, I'm sending the Eclipse project attached.
>
>
>
> I've changed the bogus.cert to tcc.keystore and I'm also using a different
> password, so these lines have to be updated in the echoserver if you're
> going to use the same tcc.keystore I'm sending:
>
>
>
> private static final String KEYSTORE = "tcc.keystore";
>
> private static final char[] KEYSTOREPASS_PW = { '6', '1', '9', '1', '5',
> '3', '0', '2' };
>
>
>
> The keystore is located on
> \Client\src\org\apache\mina\example\echoserver\ssl.
>
>
>
> Thanks again for the help!
>
> André de C. Rodrigues
> (11) 7588-9992
>
>
> 2010/8/25 Ashish <paliwalash...@gmail.com>
>>
>> can you post your client code?
>>
>> 2010/8/25 André Rodrigues <gur...@gmail.com>:
>> > Alright, thanks !
>> >
>> >
>> >
>> >
>> >
>> > 2010/8/24 Ashish <paliwalash...@gmail.com>
>> >
>> >> Let me try the sample at my end ...
>> >>
>> >> Will revert back as soon as I can.
>> >>
>> >> thanks
>> >> ashish
>> >>
>> >> 2010/8/24 André Rodrigues <gur...@gmail.com>:
>> >> > Hi, thanks for your answer!
>> >> >
>> >> > I'm using MINA 2.0, and the SSLFilter is the only filter I'm using.
>> >> >
>> >> > I'll post the System.out output for both the client and the server
>> >> > after
>> >> > setting the parameter you suggested:
>> >> >
>> >> > *Server*:
>> >> > *****
>> >> > *found key for : tcc*
>> >> > *chain [0] = [*
>> >> > *[*
>> >> > * Version: V3*
>> >> > * Subject: CN=ARodrigues, OU=PCS, O=USP, L=Sao Paulo, ST=SP, C=BR*
>> >> > * Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5*
>> >> > *
>> >> > *
>> >> > * Key: Sun RSA public key, 512 bits*
>> >> > * modulus:
>> >> >
>> >>
>> >> 10699587961921137697482935243108826057317291820617624621055730301315871690894991650505863331589895001390221434496768846223107228977238263236946761412706449
>> >> > *
>> >> > * public exponent: 65537*
>> >> > * Validity: [From: Wed Aug 18 14:43:58 BRT 2010,*
>> >> > * To: Sat Aug 15 14:43:58 BRT 2020]*
>> >> > * Issuer: CN=ARodrigues, OU=PCS, O=USP, L=Sao Paulo, ST=SP, C=BR*
>> >> > * SerialNumber: [ 4c6c1bde]*
>> >> > *
>> >> > *
>> >> > *]*
>> >> > * Algorithm: [SHA1withRSA]*
>> >> > * Signature:*
>> >> > *0000: 85 69 A4 E7 D8 A7 C9 5E 16 90 B7 14 C5 EF 7C 6E
>> >> .i.....^.......n*
>> >> > *0010: F0 E4 4A 18 B8 BE 11 3B 0D 4A E2 90 E8 B6 89 AF
>> >> ..J....;.J......*
>> >> > *0020: 29 88 96 DE 25 6E DF 4B FF B7 FE 12 C9 ED E5 9F
>> >> )...%n.K........*
>> >> > *0030: 8A B3 F0 A0 8A 40 39 87 C1 E5 57 FA 73 74 3A 2D
>> >> .....@9...w.st:-*
>> >> > *
>> >> > *
>> >> > *]*
>> >> > *****
>> >> > *trigger seeding of SecureRandom*
>> >> > *done seeding SecureRandom*
>> >> > *SSL ON*
>> >> > *Listening on port 8080*
>> >> > *R: 0.0, W: 0.0*
>> >> > *Using SSLEngineImpl.*
>> >> > *log4j:WARN No appenders could be found for logger
>> >> > (org.apache.mina.example.echoserver.EchoProtocolHandler).*
>> >> > *log4j:WARN Please initialize the log4j system properly.*
>> >> > *log4j:WARN See
>> >> > http://logging.apache.org/log4j/1.2/faq.html#noconfigfor
>> >> > more info.*
>> >> > *R: 0.0, W: 0.0*
>> >> > *R: 0.0, W: 0.0*
>> >> > *R: 0.0, W: 0.0*
>> >> > *R: 0.0, W: 0.0*
>> >> > *R: 0.0, W: 0.0*
>> >> >
>> >> > *Client:*
>> >> > *
>> >> > trigger seeding of SecureRandom
>> >> > done seeding SecureRandom
>> >> > SSL ON
>> >> > Using SSLEngineImpl.
>> >> > test
>> >> >
>> >> > *
>> >> >
>> >> > Thanks again,
>> >> > André de C. Rodrigues
>> >> > (11) 7588-9992
>> >> >
>> >> >
>> >> >
>> >> > 2010/8/23 Ashish <paliwalash...@gmail.com>
>> >> >
>> >> >> What's the error? MINA version?
>> >> >>
>> >> >> Try passing this JVM srgument -Djavax.net.debug=all or
>> >> >> -Djavax.net.debug=ssl it will show all the SSL communication
>> >> >> happening.
>> >> >> Its would be easy to point the error.
>> >> >>
>> >> >> AFAIK, SSL Filter should be the first filter in the chain. Since you
>> >> >> are using provided example you should be good.
>> >> >>
>> >> >> thanks
>> >> >> ashish
>> >> >>
>> >> >> 2010/8/24 André Rodrigues <gur...@gmail.com>:
>> >> >> > Hi everyone!
>> >> >> >
>> >> >> > I'm trying to fix up a simple MINA example using SSL and I'm
>> >> >> > having
>> >> some
>> >> >> > trouble. Here's what I did:
>> >> >> >
>> >> >> > 1) I'm running the EchoServer example with SSL turned on. I
>> >> >> > generated
>> >> the
>> >> >> > bogus.cert keystore using keytool as described in the
>> >> >> > documentation.
>> >> >> > 2) I created a simple MINA client that connects to the EchoServer
>> >> >> > and
>> >> >> starts
>> >> >> > a new thread to capture keyboard input and send it to the
>> >> >> > EchoServer.
>> >> The
>> >> >> > client also prints out received messages.
>> >> >> > 3) I'm using the ssl package from the EchoServer in my MINA client
>> >> >> > and
>> >> >> using
>> >> >> > the same keystore I generated with keytool in step 1.
>> >> >> > 4) I'm adding a SSLFilter to the client filter chain using the
>> >> >> > BogusSSLContextFactory from the EchoServer example (new
>> >> >> > SslFilter(SslContextFactory.getInstance(false)).
>> >> >> >
>> >> >> > This, however, does not seem to work... does anybody have any idea
>> >> why?
>> >> >> >
>> >> >> > Sorry if this comes off as a rookie question, but I'm just getting
>> >> into
>> >> >> > programming.
>> >> >> >
>> >> >> > Thanks in advance,
>> >> >> > andre
>> >> >>
>> >> >
>> >>
>> >>
>> >>
>> >> --
>> >> thanks
>> >> ashish
>> >>
>> >> Blog: http://www.ashishpaliwal.com/blog
>> >> My Photo Galleries: http://www.pbase.com/ashishpaliwal
>> >>
>> >
>>
>>
>>
>> --
>> thanks
>> ashish
>>
>> Blog: http://www.ashishpaliwal.com/blog
>> My Photo Galleries: http://www.pbase.com/ashishpaliwal
>
>
--
thanks
ashish
Blog: http://www.ashishpaliwal.com/blog
My Photo Galleries: http://www.pbase.com/ashishpaliwal
