getting javax.net.ssl.SSLException: illegal change cipher spec msg, state = 6
"이희승 (Trustin Lee)"
trustin at gmail.com
Thu Jun 18 09:06:56 EDT 2009
I tried to reproduce the problem with the following test code. Can you
reproduce the problem with it?
public class Tester {
public static void main(String[] args) throws IOException {
SSLContext.setDefault(SecureChatSslContextFactory.getClientContext());
Socket s =
SSLSocketFactory.getDefault().createSocket("127.0.0.1", 9080);
InputStream in = s.getInputStream();
OutputStream out = s.getOutputStream();
byte[] msg = new byte[] { 'H','E', 'L', 'L', 'O', 0x04 };
for (int i = 0;; i ++) {
if (i % 1000 == 0) {
System.out.println(i);
}
out.write(msg);
//for (;;) {
// int c = in.read();
// if (c == 0x04 || c < 0) {
// break;
// }
//}
}
}
}
Please note that I used the bogus context factory which is provided with
the Netty SecureChat example. I'm testing against Netty trunk on
Windows (no access to Solaris at the moment.)
Please feel free to modify the tester and let me know if you succeeded
to reproduce the problem.
Thanks,
Trustin
On 2009-06-18 오후 9:41, Virat Gohil wrote:
> Hi Trustin,
>
> some more information about my setup:
>
> I have about 3000 NE (Client), which connect to the server. The
> connections are persistent, i.e the connections are never meant to be
> closed. you may keep the connections open forever. and send a message
> from the client every 20 seconds.
>
> As soon as the client's connection is accepted (i.e TCP handshake is
> finished), the client will start sending the messages from its queue, on
> an average the queue size would be 5 messages. so you may want to
> replicate this behavior as well.
>
> E.g:
> 1. Client connects to the server.
> 2. Client sends Message M1, waits for the server to acknowledge the
> message (timeout is 5 secs).
> 3. if the server fails to acknowledge the message within 5 seconds, then
> the client re-sends the same message. Else sends the next message.
> 4. The acknowledgment from server to client is at application level, you
> may replicate by echoing the same message.
>
> I am running Sun Solaris 10, with Sun's hotspot JVM 1.5.
>
> Please let me know if you need more information on my setup.
>
> Thanks,
>
> Virat
>
> I will either find a way or make one.
>
>
> On Thu, Jun 18, 2009 at 6:04 PM, "이희승 (Trustin Lee)"
> <trustin at gmail.com <mailto:trustin at gmail.com>> wrote:
>
> Do I need to keep handshaking making a new connection every time for 20
> minutes, or just keep the connection open and keep sending messages?
>
> On 2009-06-18 오후 8:45, Virat Gohil wrote:
> >
> > Hi All,
> >
> > I am getting the following exception after about 20 minutes of
> running time
> > using my server:
> >
> > EXCEPTION: javax.net.ssl.SS
> > LException: illegal change cipher spec msg, state = 6
> > javax.net.ssl.SSLException: illegal change cipher spec msg, state = 6
> > at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown
> > Source)
> > at
> com.sun.net.ssl.internal.ssl.SSLEngineImpl.fatal(Unknown Source)
> > at
> com.sun.net.ssl.internal.ssl.SSLEngineImpl.fatal(Unknown Source)
> > at
> com.sun.net.ssl.internal.ssl.SSLEngineImpl.readRecord(Unknown
> > Source)
> > at
> com.sun.net.ssl.internal.ssl.SSLEngineImpl.readNetRecord(Unknown
> > Source)
> > at
> com.sun.net.ssl.internal.ssl.SSLEngineImpl.unwrap(Unknown Source)
> > at javax.net.ssl.SSLEngine.unwrap(Unknown Source)
> > at
> > org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:699)
> > at
> > org.jboss.netty.handler.ssl.SslHandler.decode(SslHandler.java:445)
> > at
> >
> org.jboss.netty.handler.codec.frame.FrameDecoder.callDecode(FrameDecoder.java:244)
> > at
> >
> org.jboss.netty.handler.codec.frame.FrameDecoder.messageReceived(FrameDecoder.java:184)
> > at
> >
> org.jboss.netty.channel.SimpleChannelUpstreamHandler.handleUpstream(SimpleChannelUpstreamHandler.java:87)
> > at
> >
> org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:344)
> > at
> >
> org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:331)
> > at
> > org.jboss.netty.channel.socket.nio.NioWorker.read(NioWorker.java:303)
> > at
> >
> org.jboss.netty.channel.socket.nio.NioWorker.processSelectedKeys(NioWorker.java:255)
> > at
> > org.jboss.netty.channel.socket.nio.NioWorker.run(NioWorker.java:176)
> > at
> >
> org.jboss.netty.util.internal.IoWorkerRunnable.run(IoWorkerRunnable.java:49)
> > at
> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown
> > Source)
> > at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown
> > Source)
> > at java.lang.Thread.run(Unknown Source)
> >
> > I am attaching an example server along with this email, the
> clients may send
> > any random string with ascii char (0x04) as delimiter.
> >
> > http://n2.nabble.com/file/n3104250/NioServer.tar.bz2 NioServer.tar.bz2
> >
> > Kindly suggest a solution or cause to this issue.
> >
> > Thanks,
> >
> > Virat
>
>
> --
> — Trustin Lee, http://gleamynode.net/
>
>
> _______________________________________________
> netty-users mailing list
> netty-users at lists.jboss.org <mailto:netty-users at lists.jboss.org>
> https://lists.jboss.org/mailman/listinfo/netty-users
>
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> netty-users mailing list
> netty-users at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/netty-users
--
— Trustin Lee, http://gleamynode.net/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
Url : http://lists.jboss.org/pipermail/netty-users/attachments/20090618/10eb51b4/attachment.bin
More information about the netty-users
mailing list