java 1.4.2 support tls1.1 problem

classic Classic list List threaded Threaded
10 messages Options
Reply | Threaded
Open this post in threaded view
|

java 1.4.2 support tls1.1 problem

Huangfu
I use java jdk 1.4.2 and new JCE and bcprov-jdk14-159.jar ,I send request to
Https webservice to decrypt,if web server use tls1.0, it can be decrypted.
But use tls1.1 above version, it can not be decrypted, and show error
message below:
{http://xml.apache.org/axis/}stackTrace:javax.net.ssl.SSLHandshakeException:
Received fatal alert: handshake_failure
        at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA12275)
        at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.b(DashoA12275)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA12275)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA12275)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA12275)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA12275)
        at
org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:186)
        at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:191)
        at org.apache.axis.transport.http
五月 03 03:45:53 2018: .HTTPSender.writeToSocket(HTTPSender.java:404)
        at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:138)
        at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
        at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
        at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
        at org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
        at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
        at org.apache.axis.client.Call.invoke(Call.java:2767)
        at org.apache.axis.client.Call.invoke(Call.java:2443)
        at org.apache.axis.client.Call.invoke(Call.java:2366)
        at org.apache.axis.client.Call.invoke(Call.java:1812)
How to solve this problem? to  set use tls1.1 above version?How to set up
again?
If you upgrade to jdk1.5? how to set?
Regards,
Huangfu






--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html

Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

David Hook-3

If you can update to Java 1.5, I'd definitely do that. Once you are at
1.5 you can use the BCJSSE instead.

Regards,

David

On 08/05/18 17:14, Huangfu wrote:

> I use java jdk 1.4.2 and new JCE and bcprov-jdk14-159.jar ,I send request to
> Https webservice to decrypt,if web server use tls1.0, it can be decrypted.
> But use tls1.1 above version, it can not be decrypted, and show error
> message below:
> {http://xml.apache.org/axis/}stackTrace:javax.net.ssl.SSLHandshakeException:
> Received fatal alert: handshake_failure
> at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA12275)
> at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.b(DashoA12275)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA12275)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA12275)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA12275)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA12275)
> at
> org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:186)
> at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:191)
> at org.apache.axis.transport.http
> 五月 03 03:45:53 2018: .HTTPSender.writeToSocket(HTTPSender.java:404)
> at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:138)
> at
> org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
> at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
> at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
> at org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
> at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
> at org.apache.axis.client.Call.invoke(Call.java:2767)
> at org.apache.axis.client.Call.invoke(Call.java:2443)
> at org.apache.axis.client.Call.invoke(Call.java:2366)
> at org.apache.axis.client.Call.invoke(Call.java:1812)
> How to solve this problem? to  set use tls1.1 above version?How to set up
> again?
> If you upgrade to jdk1.5? how to set?
> Regards,
> Huangfu
>
>
>
>
>
>
> --
> Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html
>
>


Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Huangfu
In reply to this post by Huangfu
I try to use jdk1.5.0_01 and bcprov-jdk15on-159.jar,bctls-jdk15on-159.jar
,java.security set
///
security.provider.1=sun.security.provider.Sun
security.provider.2=org.bouncycastle.jsse.provider.BouncyCastleJsseProvider
security.provider.3=org.bouncycastle.jce.provider.BouncyCastleProvider
security.provider.4=sun.security.rsa.SunRsaSign
security.provider.5=com.sun.net.ssl.internal.ssl.Provider
security.provider.6=com.sun.crypto.provider.SunJCE
security.provider.7=sun.security.jgss.SunProvider
security.provider.8=com.sun.security.sasl.Provider
// and try to set
security.provider.1=sun.security.provider.Sun
security.provider.2=org.bouncycastle.jce.provider.BouncyCastleProvider
security.provider.3=sun.security.rsa.SunRsaSign
security.provider.4=com.sun.net.ssl.internal.ssl.Provider
security.provider.5=com.sun.crypto.provider.SunJCE
security.provider.6=sun.security.jgss.SunProvider
security.provider.7=com.sun.security.sasl.Provider


is reeturn error
faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
 faultSubcode:
 faultString: javax.net.ssl.SSLHandshakeException: Received fatal alert:
handshake_failure
 faultActor:
 faultNode:
 faultDetail:

{http://xml.apache.org/axis/}stackTrace:javax.net.ssl.SSLHandshakeException:
Received fatal alert: handshake_failure
        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:117)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:1542)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:863)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1038)
        at
org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:186)
        at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:191
五月 09 03:00:31 2018: )
        at
org.apache.axis.transport.http.HTTPSender.writeToSocket(HTTPSender.java:404)
        at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:138)
        at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
        at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
        at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
        at org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
        at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
        at org.apache.axis.client.Call.invoke(Call.java:2767)
        at org.apache.axis.client.Call.invoke(Call.java:2443)
        at org.apache.axis.client.Call.invoke(Call.java:2366)
        at org.apache.axis.client.Call.invoke(Call.java:1812)
        at
chb.ws.GoldServiceHttpBindingStub.informGoldValue(GoldServiceHttpBindingStub.java:197)
        at
chb.ws.GoldServicePortTypeProxy.informGoldValue(GoldServicePortTypeProxy.java:87)
        at
com.sybase.jsp.chb.UserStarSystem_0005fwssclient2$jsp._jspService(UserStarSystem_0005fwssclient2$jsp.java:277)
        at
五月 09 03:00:31 2018:
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
        at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.java:299)
        at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:492)
        at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:584)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
        at com.sybase.jaguar.servlet.JagServlet.service(JagServlet.java:718)
        at
com.sybase.jaguar.servlet.JagRequestDispatcher.service(JagRequestDispatcher.java:971)


Regards,
Huangfu







--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html

Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Eckenfels. Bernd
You can see from the Stacktrace that Axis was using „sun“ JSSE (via JSSESocketFactory.initFactory) and not BCTLS.
The JSSESocketFactory uses SecureSocketFactory.getDefault(). you can either overwrite this in your own Axis factory (set via properties) or configure the default to use BC via Security property ssl.SocketFactory.provider (same file you added the provider)

Greetings
Bernd
--
http://www.seeburger.com
________________________________________
From: Huangfu [[hidden email]]
Sent: Wednesday, May 09, 2018 05:09
To: [hidden email]
Subject: [dev-crypto] Re: java 1.4.2 support tls1.1  problem

I try to use jdk1.5.0_01 and bcprov-jdk15on-159.jar,bctls-jdk15on-159.jar
,java.security set
///
security.provider.1=sun.security.provider.Sun
security.provider.2=org.bouncycastle.jsse.provider.BouncyCastleJsseProvider
security.provider.3=org.bouncycastle.jce.provider.BouncyCastleProvider
security.provider.4=sun.security.rsa.SunRsaSign
security.provider.5=com.sun.net.ssl.internal.ssl.Provider
security.provider.6=com.sun.crypto.provider.SunJCE
security.provider.7=sun.security.jgss.SunProvider
security.provider.8=com.sun.security.sasl.Provider
// and try to set
security.provider.1=sun.security.provider.Sun
security.provider.2=org.bouncycastle.jce.provider.BouncyCastleProvider
security.provider.3=sun.security.rsa.SunRsaSign
security.provider.4=com.sun.net.ssl.internal.ssl.Provider
security.provider.5=com.sun.crypto.provider.SunJCE
security.provider.6=sun.security.jgss.SunProvider
security.provider.7=com.sun.security.sasl.Provider


is reeturn error
faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
 faultSubcode:
 faultString: javax.net.ssl.SSLHandshakeException: Received fatal alert:
handshake_failure
 faultActor:
 faultNode:
 faultDetail:

{http://xml.apache.org/axis/}stackTrace:javax.net.ssl.SSLHandshakeException:
Received fatal alert: handshake_failure
        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:117)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:1542)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:863)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
        at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1038)
        at
org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:186)
        at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:191
五月 09 03:00:31 2018: )
        at
org.apache.axis.transport.http.HTTPSender.writeToSocket(HTTPSender.java:404)
        at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:138)
        at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
        at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
        at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
        at org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
        at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
        at org.apache.axis.client.Call.invoke(Call.java:2767)
        at org.apache.axis.client.Call.invoke(Call.java:2443)
        at org.apache.axis.client.Call.invoke(Call.java:2366)
        at org.apache.axis.client.Call.invoke(Call.java:1812)
        at
chb.ws.GoldServiceHttpBindingStub.informGoldValue(GoldServiceHttpBindingStub.java:197)
        at
chb.ws.GoldServicePortTypeProxy.informGoldValue(GoldServicePortTypeProxy.java:87)
        at
com.sybase.jsp.chb.UserStarSystem_0005fwssclient2$jsp._jspService(UserStarSystem_0005fwssclient2$jsp.java:277)
        at
五月 09 03:00:31 2018:
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
        at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.java:299)
        at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:492)
        at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:584)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
        at com.sybase.jaguar.servlet.JagServlet.service(JagServlet.java:718)
        at
com.sybase.jaguar.servlet.JagRequestDispatcher.service(JagRequestDispatcher.java:971)


Regards,
Huangfu







--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html








SEEBURGER AG            Vorstand/SEEBURGER Executive Board:
Sitz der Gesellschaft/Registered Office:                Axel Haas, Michael Kleeberg, Friedemann Heinz, Dr. Martin Kuntz, Matthias Feßenbecker
Edisonstr. 1
D-75015 Bretten         Vorsitzende des Aufsichtsrats/Chairperson of the SEEBURGER Supervisory Board:
Tel.: 07252 / 96 - 0            Prof. Dr. Simone Zeuchner
Fax: 07252 / 96 - 2222
Internet: http://www.seeburger.de               Registergericht/Commercial Register:
e-mail: [hidden email]               HRB 240708 Mannheim


Dieses E-Mail ist nur für den Empfänger bestimmt, an den es gerichtet ist und kann vertrauliches bzw. unter das Berufsgeheimnis fallendes Material enthalten. Jegliche darin enthaltene Ansicht oder Meinungsäußerung ist die des Autors und stellt nicht notwendigerweise die Ansicht oder Meinung der SEEBURGER AG dar. Sind Sie nicht der Empfänger, so haben Sie diese E-Mail irrtümlich erhalten und jegliche Verwendung, Veröffentlichung, Weiterleitung, Abschrift oder jeglicher Druck dieser E-Mail ist strengstens untersagt. Weder die SEEBURGER AG noch der Absender (Eckenfels. Bernd) übernehmen die Haftung für Viren; es obliegt Ihrer Verantwortung, die E-Mail und deren Anhänge auf Viren zu prüfen.


This email is intended only for the recipient(s) to whom it is addressed. This email may contain confidential material that may be protected by professional secrecy. Any fact or opinion contained, or expression of the material herein, does not necessarily reflect that of SEEBURGER AG. If you are not the addressee or if you have received this email in error, any use, publication or distribution including forwarding, copying or printing is strictly prohibited. Neither SEEBURGER AG, nor the sender (Eckenfels. Bernd) accept liability for viruses; it is your responsibility to check this email and its attachments for viruses.

Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Huangfu
In reply to this post by Huangfu
thanks David and Eckenfels. Bernd reply:
Error code GoldServicePortTypeProxy.java

package chb.ws;

import java.sql.ResultSet;
import java.sql.Statement;

import org.apache.axis.EngineConfiguration;
import org.apache.axis.configuration.FileProvider;

import userstar.ConnBeanS;

public class GoldServicePortTypeProxy implements chb.ws.GoldServicePortType
{
  private String _endpoint = null;
  private chb.ws.GoldServicePortType goldServicePortType = null;
 
  public GoldServicePortTypeProxy() {
    _initGoldServicePortTypeProxy();
  }
 
  public GoldServicePortTypeProxy(String endpoint) {
    _endpoint = endpoint;
    _initGoldServicePortTypeProxy();
  }
  private Statement  Stmt=null;
  public  String getPortFile ()
  {
         
    String sql = "select * from tai_user where tai_user='009' ";  
    String address="";
    /*
    try {
                Stmt = ConnBeanS.getStatement();
                ResultSet rs=Stmt.executeQuery(sql);
                if(rs.first())
                {
                  address = rs.getString("file_dir");
                }
                ConnBeanS.setStatementClose(Stmt);
               
        } catch (Exception e) {
                // TODO Auto-generated catch block
                e.printStackTrace();
               
        }
        */
          return address ;
   
  }
 
  private void _initGoldServicePortTypeProxy() {
    try {
    String file_dir = getPortFile ();
    //EngineConfiguration config = new FileProvider(file_dir);
   
       EngineConfiguration config = new
FileProvider("C:\\UserStarSystem\\chb\\client_deploy.wsdd");
      goldServicePortType = (new
chb.ws.GoldServiceLocator(config)).getGoldServiceHttpPort();
      if (goldServicePortType != null) {
        if (_endpoint != null)
         
((javax.xml.rpc.Stub)goldServicePortType)._setProperty("javax.xml.rpc.service.endpoint.address",
_endpoint);
        else
          _endpoint =
(String)((javax.xml.rpc.Stub)goldServicePortType)._getProperty("javax.xml.rpc.service.endpoint.address");
      }
     
    }
    catch (javax.xml.rpc.ServiceException serviceException) {}
  }
 
  public String getEndpoint() {
    return _endpoint;
  }
 
  public void setEndpoint(String endpoint) {
    _endpoint = endpoint;
    if (goldServicePortType != null)
     
((javax.xml.rpc.Stub)goldServicePortType)._setProperty("javax.xml.rpc.service.endpoint.address",
_endpoint);
   
  }
 
  public chb.ws.GoldServicePortType getGoldServicePortType() {
    if (goldServicePortType == null)
      _initGoldServicePortTypeProxy();
    return goldServicePortType;
  }
 
  public chb.ws.GoldSell informGoldValue(chb.ws.Gold in0) throws
java.rmi.RemoteException{
    if (goldServicePortType == null)
      _initGoldServicePortTypeProxy();
    return
goldServicePortType.informGoldValue(in0);--->(GoldServicePortTypeProxy.java:87)
  }
 
}

//
client_deploy.wsdd
<deployment xmlns="http://xml.apache.org/axis/wsdd/"
xmlns:java="http://xml.apache.org/axis/wsdd/providers/java">

<transport name="http"
pivot="java:org.apache.axis.transport.http.HTTPSender"/>
<transport name="https"
pivot="java:org.apache.axis.transport.http.HTTPSender"/>
  <globalConfiguration >

    <requestFlow >

 

   </requestFlow >

  </globalConfiguration >

</deployment>
//
Whether to modify the client_deploy.wsdd to use BCJSSE, but how to use,
websservice client use axix1.4 architecture, whether to write a separate
decryption, but transport will have an impact?
Best Regards,
Huangfu






--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html

Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Huangfu
In reply to this post by Huangfu
Thanks Eckenfels. Bernd and David :
  My test certificate connection was successful,set
AxisProperties.setProperty("axis.socketSecureFactory",my.socketcliwent.class.getName())

regards
Huangfu




--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html

Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Huangfu
In reply to this post by Huangfu
If I want to  dynamic set
AxisProperties.setProperty("axis.socketSecureFactory",neclass) but is not
sucess,It a instance value,first to set the value is not to change ,or can
to use close the axis.socketSecureFactory to reset the value

regards
Hwangfu



--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html

Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Eckenfels. Bernd
In reply to this post by Huangfu
Hello,

you need to ask on the Axis user mailinglist about usage of Axis. This seems to be unrelated to BouncyCastle.

However, most likely if you want to use different sockets depending on the endpoint you would have to implement this logic in the socket factory. But I am not sure how easy that is, as you have not the full axis connection details available in this place.

Gruss
Bernd

-----Ursprüngliche Nachricht-----
Von: Huangfu [mailto:[hidden email]]
Gesendet: Montag, 14. Mai 2018 15:44
An: [hidden email]
Betreff: [dev-crypto] Re: java 1.4.2 support tls1.1 problem

If I want to  dynamic set
AxisProperties.setProperty("axis.socketSecureFactory",neclass) but is not sucess,It a instance value,first to set the value is not to change ,or can to use close the axis.socketSecureFactory to reset the value

regards
Hwangfu



--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html









SEEBURGER AG            Vorstand/SEEBURGER Executive Board:
Sitz der Gesellschaft/Registered Office:                Axel Haas, Michael Kleeberg, Friedemann Heinz, Dr. Martin Kuntz, Matthias Feßenbecker
Edisonstr. 1
D-75015 Bretten         Vorsitzende des Aufsichtsrats/Chairperson of the SEEBURGER Supervisory Board:
Tel.: 07252 / 96 - 0            Prof. Dr. Simone Zeuchner
Fax: 07252 / 96 - 2222
Internet: http://www.seeburger.de               Registergericht/Commercial Register:
e-mail: [hidden email]               HRB 240708 Mannheim


Dieses E-Mail ist nur für den Empfänger bestimmt, an den es gerichtet ist und kann vertrauliches bzw. unter das Berufsgeheimnis fallendes Material enthalten. Jegliche darin enthaltene Ansicht oder Meinungsäußerung ist die des Autors und stellt nicht notwendigerweise die Ansicht oder Meinung der SEEBURGER AG dar. Sind Sie nicht der Empfänger, so haben Sie diese E-Mail irrtümlich erhalten und jegliche Verwendung, Veröffentlichung, Weiterleitung, Abschrift oder jeglicher Druck dieser E-Mail ist strengstens untersagt. Weder die SEEBURGER AG noch der Absender (Eckenfels. Bernd) übernehmen die Haftung für Viren; es obliegt Ihrer Verantwortung, die E-Mail und deren Anhänge auf Viren zu prüfen.


This email is intended only for the recipient(s) to whom it is addressed. This email may contain confidential material that may be protected by professional secrecy. Any fact or opinion contained, or expression of the material herein, does not necessarily reflect that of SEEBURGER AG. If you are not the addressee or if you have received this email in error, any use, publication or distribution including forwarding, copying or printing is strictly prohibited. Neither SEEBURGER AG, nor the sender (Eckenfels. Bernd) accept liability for viruses; it is your responsibility to check this email and its attachments for viruses.


Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Huangfu
In reply to this post by Huangfu
hello
   I try use BCJSSE set to  connecttion asp.net webservice  Error message is
//
aultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
 faultSubcode:
 faultString: org.bouncycastle.crypto.tls.TlsNoCloseNotifyException: No
close_notify alert received before connection closed
 faultActor:
 faultNode:
 faultDetail:

{http://xml.apache.org/axis/}stackTrace:org.bouncycastle.crypto.tls.TlsNoCloseNotifyException:
No close_notify alert received before connection closed
        at org.bouncycastle.crypto.tls.TlsProtocol.safeReadRecord(Unknown Source)
        at org.bouncycastle.crypto.tls.TlsProtocol.readApplicationData(Unknown
Source)
        at org.bouncycastle.crypto.tls.TlsInputStream.read(Unknown Source)
        at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
        at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
        at java.io.FilterInputStream.read(FilterInputStream.java:111)
        at org.apache.crimson.parser.XmlReader$Utf8Reader.read(XmlReader.java:645)
        at org.apache.crimson.parser.InputEntity.fillbuf(InputEntity.java:1068)
        at org.apache.cr
五月 15 18:07:32 2018:
imson.parser.InputEntity.isXmlDeclOrTextDeclPrefix(InputEntity.java:914)
        at org.apache.crimson.parser.Parser2.maybeXmlDecl(Parser2.java:1009)
        at org.apache.crimson.parser.Parser2.parseInternal(Parser2.java:486)
        at org.apache.crimson.parser.Parser2.parse(Parser2.java:305)
        at org.apache.crimson.parser.XMLReaderImpl.parse(XMLReaderImpl.java:442)
        at javax.xml.parsers.SAXParser.parse(SAXParser.java:393)
        at
org.apache.axis.encoding.DeserializationContext.parse(DeserializationContext.java:227)
        at org.apache.axis.SOAPPart.getAsSOAPEnvelope(SOAPPart.java:696)
        at org.apache.axis.Message.getSOAPEnvelope(Message.java:435)
        at
org.apache.axis.handlers.soap.MustUnderstandChecker.invoke(MustUnderstandChecker.java:62)
        at org.apache.axis.client.AxisClient.invoke(AxisClient.java:206)
        at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
        at org.apache.axis.client.Call.invoke(Call.java:2767)
        at org.apache.axis.client.Call.invoke(Call.java:2443)
        at org.apache.axis.client.Call.invoke(Call.java:2366
五月 15 18:07:32 2018: )
        at org.apache.axis.client.Call.invoke(Call.java:1812)
        at
fubon.ws.GoldServiceHttpBindingStub.informGoldValue(GoldServiceHttpBindingStub.java:209)
        at
fubon.ws.GoldServicePortTypeProxy.informGoldValue(GoldServicePortTypeProxy.java:88)
        at
com.sybase.jsp.fubon.UserStarSystem_0005fwssclient2$jsp._jspService(UserStarSystem_0005fwssclient2$jsp.java:277)
        at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
        at
org.apache.jasper.servlet.JspServlet$JspServletWrapper.service(JspServlet.java:299)
        at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:492)
        at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:584)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
        at com.sybase.jaguar.servlet.JagServlet.service(JagServlet.java:718)
        at
com.sybase.jaguar.servlet.JagRequestDispatcher.service(JagRequestDispatcher.java:971)
        at com.sybase.jaguar.servlet.JagWebResource.service(JagWeb
五月 15 18:07:32 2018: Resource.java:90)
        at
com.sybase.jaguar.servlet.JagFilterChain.doFilter(JagFilterChain.java:133)
        at com.sybase.jaguar.servlet.ServletEngine._service(ServletEngine.java:867)
        at com.sybase.jaguar.servlet.ServletEngine.service(ServletEngine.java:365)
        at
com.sybase.jaguar.servlet.ServletServiceImpl.doService(ServletServiceImpl.java:58)
        at
com.sybase.jaguar.servlet._sk_JaguarServlet_ServletService.remoteInvoke(_sk_JaguarServlet_ServletService.java:218)
        at
com.sybase.jaguar.servlet._sk_JaguarServlet_ServletService.invoke(_sk_JaguarServlet_ServletService.java:125)

        {http://xml.apache.org/axis/}hostname:userbot-ugzbf6m
//
the Error in JSSE use connecttion is not appear
What should I do?
regards
HwangFu




--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html

Reply | Threaded
Open this post in threaded view
|

Re: java 1.4.2 support tls1.1 problem

Huangfu
In reply to this post by Huangfu
and I use eclipse to test connecttion ,is appear Error message
//
Caused by: org.w3c.dom.DOMException: NodeImpl Not found
        at org.apache.axis.message.NodeImpl.removeChild(NodeImpl.java:515)
        at org.apache.axis.message.NodeImpl.detachNode(NodeImpl.java:661)
        at org.apache.axis.message.NodeImpl.appendChild(NodeImpl.java:493)
        at org.apache.axis.message.NodeImpl.setParent(NodeImpl.java:792)
        at org.apache.axis.message.NodeImpl.setParentElement(NodeImpl.java:632)
        ... 14 more
2018/5/16 上午 12:12:52 org.apache.axis.encoding.DeserializationContext
pushNewElement
嚴重的: Exception:
javax.xml.soap.SOAPException: org.w3c.dom.DOMException: NodeImpl Not found
        at org.apache.axis.message.NodeImpl.setParentElement(NodeImpl.java:634)
        at
org.apache.axis.encoding.DeserializationContext.pushNewElement(DeserializationContext.java:774)
        at org.apache.axis.message.SOAPHandler.startElement(SOAPHandler.java:94)
        at
org.apache.axis.encoding.DeserializerImpl.startElement(DeserializerImpl.java:319)
        at
org.apache.axis.encoding.DeserializationContext.startElement(DeserializationContext.java:1048)
        at
org.apache.axis.message.SAX2EventRecorder.replay(SAX2EventRecorder.java:165)
        at
org.apache.axis.message.MessageElement.publishToHandler(MessageElement.java:1141)
        at org.apache.axis.message.RPCElement.deserialize(RPCElement.java:236)
        at org.apache.axis.message.RPCElement.getParams(RPCElement.java:384)
        at org.apache.axis.client.Call.invoke(Call.java:2467)
        at org.apache.axis.client.Call.invoke(Call.java:2366)
        at org.apache.axis.client.Call.invoke(Call.java:1812)
        at
fubon.ws.GoldServiceHttpBindingStub.informGoldValue(GoldServiceHttpBindingStub.java:210)
        at
fubon.ws.GoldServicePortTypeProxy.informGoldValue(GoldServicePortTypeProxy.java:88)
        at fubon.ws.wsbdemo.main(wsbdemo.java:93)
///
but At last the correct   message is  return ,Indicates successful
execution,What was the error message before that, and what caused the error
after the web app system was executed?

 Regards
HwangFu



--
Sent from: http://bouncy-castle.1462172.n4.nabble.com/Bouncy-Castle-Dev-f1462173.html