Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0-M10 (2.0.0.v20151221-M10)
    • Fix Version/s: 2.0.0-M13
    • Labels:
      None
    • Environment:
      jdk1.8.0_102, Windows 7 (Client), Windows2008R2 (Server), ApacheDS M21, Apache DS-Studio 2.0.0-M10

      Description

      Hello,

      i have a problem with the checkbox for active protocols (TLSv1.0, TLSv1.1, TLSv1.2 etc.).
      When i use this option (for example with TLSv1.2) i get the following warning in the apache-ds log, when i try to open a ldaps-connection.

      [2016-10-05 16:51:46,017] WARN [org.apache.mina.util.DefaultExceptionMonitor] - Unexpected exception.
      org.apache.mina.core.filterchain.IoFilterLifeCycleException: onPreAdd(): sslFilter:SslFilter in (0x00000001: nio socket, server, /2.59.20.52:56094 => /2.59.39.41:636)
      at org.apache.mina.core.filterchain.DefaultIoFilterChain.register(DefaultIoFilterChain.java:383)
      at org.apache.mina.core.filterchain.DefaultIoFilterChain.addLast(DefaultIoFilterChain.java:189)
      at org.apache.mina.core.filterchain.DefaultIoFilterChainBuilder.buildFilterChain(DefaultIoFilterChainBuilder.java:436)
      at org.apache.mina.core.polling.AbstractPollingIoProcessor.addNow(AbstractPollingIoProcessor.java:536)
      at org.apache.mina.core.polling.AbstractPollingIoProcessor.handleNewSessions(AbstractPollingIoProcessor.java:510)
      at org.apache.mina.core.polling.AbstractPollingIoProcessor.access$400(AbstractPollingIoProcessor.java:68)
      at org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.run(AbstractPollingIoProcessor.java:1121)
      at org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:64)
      at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
      at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
      at java.lang.Thread.run(Thread.java:745)
      Caused by: java.lang.IllegalArgumentException: TLSV1.2
      at sun.security.ssl.ProtocolVersion.valueOf(ProtocolVersion.java:187)
      at sun.security.ssl.ProtocolList.convert(ProtocolList.java:84)
      at sun.security.ssl.ProtocolList.<init>(ProtocolList.java:52)
      at sun.security.ssl.SSLEngineImpl.setEnabledProtocols(SSLEngineImpl.java:2081)
      at org.apache.mina.filter.ssl.SslHandler.init(SslHandler.java:176)
      at org.apache.mina.filter.ssl.SslFilter.onPreAdd(SslFilter.java:427)
      at org.apache.mina.core.filterchain.DefaultIoFilterChain.register(DefaultIoFilterChain.java:381)
      ... 10 more

      I think the Problem ist the Attribute ads-enabledprotocols in the Entry DN: ads-transportid=ldaps,ou=transports,ads-serverid=ldapServer,ou=servers,ads-directoryserviceid=default,ou=config

      I think the attribute-value should be "TLSv1.2" and not "TLSV1.2" (and TLSv1.1 etc.).

      Propably the problem is in the class LdapLdapsServersPage:
      setProtocol( tlsv1_2Checkbox.getSelection(), "TLSV1.2" );

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                Humbi Stefan Humbold
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: