[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[iaik-ssl]cu|| SSL Exception question
I am running a JacORB SSL Client that connects to an CORBA SSL Server
(vendor unknown) which requires client authentication to successfully
authenticate the connection. I have the client SSL key/cert loaded into a
IAIK cert file and I have the servers certificate loaded into a separate
trustee file these files are referenced as follows:
CLIENT KEY AND CERT IS:
jacorb.security.keystore=./keystore.iaik.cacerts
SERVERS CERT IS: jacorb.security.trustees=./SBC.cer
I know I am establishing a good TCP/IP connection and that it begins
negotiating SSL, but for some reason SSL fails to authenticate. What does
the SSL exception found at the end of this e-mail mean and what are possible
reasons for getting this exception? Also, is there a way to capture the
Servers Certificate during runtime so I can compare it to the certificate I
have stored in my trustee certificate file? I would like to be sure that
the server certificate I am authenticating against matches the one they sent
me.
Thanks.
EXCEPTION FOLLOWS:
[ starting authentication ]
[ added Provider IAIK ]
[ authentication succeeded ]
[ AuthenticationStatus.SecAuthSuccess ]
############################ StackTrace ############################
iaik.security.ssl.SSLException: Peer sent alert: Alert Fatal: certificate
unknown
at iaik.security.ssl.r.f(Unknown Source)
at iaik.security.ssl.x.b(Unknown Source)
at iaik.security.ssl.x.a(Unknown Source)
at iaik.security.ssl.r.d(Unknown Source)
at iaik.security.ssl.SSLTransport.startHandshake(Unknown Source)
at iaik.security.ssl.SSLTransport.getInputStream(Unknown Source)
at iaik.security.ssl.SSLSocket.getInputStream(Unknown Source)
at org.jacorb.orb.connection.ClientConnection.<init>(Unknown Source)
at
org.jacorb.orb.connection.ConnectionManager._getConnection(Unknown Source)
at
org.jacorb.orb.connection.ConnectionManager._getConnection(Unknown Source)
at org.jacorb.orb.connection.ConnectionManager.getConnection(Unknown
Source)
at org.jacorb.orb.Delegate.bind(Unknown Source)
at org.jacorb.orb.Delegate.request(Unknown Source)
at org.omg.CORBA.portable.ObjectImpl._request(ObjectImpl.java:433)
at
ansi_t1_267.LSOG6._CustomerServiceInformationStub.submit(_CustomerServiceInf
ormationStub.java:28)
at
com.Birch.Preorder.TestClient.ClientMain_JacORB_iaik.main(ClientMain_JacORB_
iaik.java:271)
####################################################################
[ Retrying connection to 155.179.117.233:28586 ]
<<<< This exception repeats 5 more times and then the following exception is
thrown>>>>>>>>>>>>
org.omg.CORBA.TRANSIENT: Retries exceeded, couldn't connect to
155.179.117.233:28586 minor code: 0 completed: No
at
org.jacorb.orb.connection.ConnectionManager._getConnection(Unknown Source)
at
org.jacorb.orb.connection.ConnectionManager._getConnection(Unknown Source)
at org.jacorb.orb.connection.ConnectionManager.getConnection(Unknown
Source)
at org.jacorb.orb.Delegate.bind(Unknown Source)
at org.jacorb.orb.Delegate.request(Unknown Source)
at org.omg.CORBA.portable.ObjectImpl._request(ObjectImpl.java:433)
at
ansi_t1_267.LSOG6._CustomerServiceInformationStub.submit(_CustomerServiceInf
ormationStub.java:28)
at
com.Birch.Preorder.TestClient.ClientMain_JacORB_iaik.main(ClientMain_JacORB_
iaik.java:271)
Jim Stickley
Birch Telecom
jstickley@birch.com
office: (816) 300-6743
mobile: (816) 213-4878
--
Mailinglist-archive at http://jcewww.iaik.at/mailarchive/iaik-ssl/sslthreads.html
To unsubscribe send an email to listserv@iaik.at with the folowing content: UNSUBSCRIBE iaik-ssl