Details
Description
Still gathering information, however ...
I've a server that's using SslFilter. When I test a connection using curl (two different versions; curl -k --trace - https://localhost:4321) it hangs:
- curl sends the client hello
- never gets any response
looking at an extract of the logs I see:
[read] MD5 and SHA1 hashes: len = 235
0000: 01 00 00 E7 03 02 51 35 14 CC 56 9F 1B 4E B0 80 ......Q5..V..N..
...
00E0: 00 0F 00 10 00 11 00 0F 00 01 01 ...........
matching alias: mykey
[2013-03-04=16:40:28.836] [NioProcessor-1] DEBUG org.apache.mina.filter.ssl.SslHandler - Session Server[2](ssl...) processing the NEED_UNWRAP state
[2013-03-04=16:40:28.836] [NioProcessor-1] DEBUG org.apache.mina.filter.ssl.SslFilter - Session Server[2](ssl...): Processing the SSL Data
i.e., SSLEngine's indicated that it is expecting more data from curl.
If I switch to oracle's jvm, things work - that is the NEED_UNWRAP doesn't appear and SSLEngine starts sending data back to the curl client:
...
00E0: 00 0F 00 10 00 11 00 0F 00 01 01 ...........
matching alias: mykey
%% Created: [Session-1, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA]
-
-
- ServerHello, TLSv1
...
- ServerHello, TLSv1
-
any one else seen this?