Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
2.0.0-M10 (2.0.0.v20151221-M10)
-
None
-
jdk1.8.0_102, Windows 7 (Client), Windows2008R2 (Server), ApacheDS M21, Apache DS-Studio 2.0.0-M10
Description
Hello,
i have a problem with the checkbox for active protocols (TLSv1.0, TLSv1.1, TLSv1.2 etc.).
When i use this option (for example with TLSv1.2) i get the following warning in the apache-ds log, when i try to open a ldaps-connection.
[2016-10-05 16:51:46,017] WARN [org.apache.mina.util.DefaultExceptionMonitor] - Unexpected exception.
org.apache.mina.core.filterchain.IoFilterLifeCycleException: onPreAdd(): sslFilter:SslFilter in (0x00000001: nio socket, server, /2.59.20.52:56094 => /2.59.39.41:636)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.register(DefaultIoFilterChain.java:383)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.addLast(DefaultIoFilterChain.java:189)
at org.apache.mina.core.filterchain.DefaultIoFilterChainBuilder.buildFilterChain(DefaultIoFilterChainBuilder.java:436)
at org.apache.mina.core.polling.AbstractPollingIoProcessor.addNow(AbstractPollingIoProcessor.java:536)
at org.apache.mina.core.polling.AbstractPollingIoProcessor.handleNewSessions(AbstractPollingIoProcessor.java:510)
at org.apache.mina.core.polling.AbstractPollingIoProcessor.access$400(AbstractPollingIoProcessor.java:68)
at org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.run(AbstractPollingIoProcessor.java:1121)
at org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:64)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
at java.lang.Thread.run(Thread.java:745)
Caused by: java.lang.IllegalArgumentException: TLSV1.2
at sun.security.ssl.ProtocolVersion.valueOf(ProtocolVersion.java:187)
at sun.security.ssl.ProtocolList.convert(ProtocolList.java:84)
at sun.security.ssl.ProtocolList.<init>(ProtocolList.java:52)
at sun.security.ssl.SSLEngineImpl.setEnabledProtocols(SSLEngineImpl.java:2081)
at org.apache.mina.filter.ssl.SslHandler.init(SslHandler.java:176)
at org.apache.mina.filter.ssl.SslFilter.onPreAdd(SslFilter.java:427)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.register(DefaultIoFilterChain.java:381)
... 10 more
I think the Problem ist the Attribute ads-enabledprotocols in the Entry DN: ads-transportid=ldaps,ou=transports,ads-serverid=ldapServer,ou=servers,ads-directoryserviceid=default,ou=config
I think the attribute-value should be "TLSv1.2" and not "TLSV1.2" (and TLSv1.1 etc.).
Propably the problem is in the class LdapLdapsServersPage:
setProtocol( tlsv1_2Checkbox.getSelection(), "TLSV1.2" );
Attachments
Issue Links
- is duplicated by
-
DIRSERVER-2185 java.lang.IllegalArgumentException: TLSV1.2
- Resolved