java - Cannot secure connection using TLS -

-

i'm trying establish secure socket connection between java client applet (built jdk 1.7.0_75-b13) , vc++ server application.

as test vehicle, used vc++ client/server sample found in msdn forums, modified use schannel , able establish socket using cipher suite tls_rsa_with_aes_128_cbc_sha. works of tls 1.0/1.1/1.2.

when try opening socket java applet same server application, connection rejected server reporting following:

tls 1.0 acceptsecuritycontext failed: 0x80090327

tls 1.1 acceptsecuritycontext failed: 0x80090331

tls 1.2 acceptsecuritycontext failed: 0x80090331

this java code used create socket:

debugprint("setting secure connection"); sslsocketfactory sslsocketfactory = (sslsocketfactory) sslsocketfactory.getdefault(); sslsocket sslsocket = (sslsocket) sslsocketfactory.createsocket("127.0.0.1", socketnumber); debugprint("starting handshake"); sslsocket.settcpnodelay(true); sslsocket.setsolinger(false, 0); sslsocket.setkeepalive(true); sslsocket.setreuseaddress(true); sslsocket.setsotimeout(10000); sslsocket.setuseclientmode(true); sslsocket.setwantclientauth(false); sslsocket.addhandshakecompletedlistener(new handshakecompletedlistener()  {     @override     public void handshakecompleted(handshakecompletedevent arg0)      {         debugprint("handshake complete!");         stealthstatus.setserviceconnected(true);     }  }); string ciphersuites[] = sslsocket.getenabledciphersuites(); (int inx=0; inx < ciphersuites.length; inx++) {     debugprint("ssl cipher suite supported->" + ciphersuites[inx]); } sslsocket.setenabledciphersuites(ciphersuites); sslsocket.starthandshake(); socket = sslsocket; socketout = sslsocket.getoutputstream(); socketin = sslsocket.getinputstream();

running this, call getenabledciphersuites returns list

tls_ecdhe_ecdsa_with_aes_128_cbc_sha

tls_ecdhe_rsa_with_aes_128_cbc_sha

tls_rsa_with_aes_128_cbc_sha

tls_ecdh_ecdsa_with_aes_128_cbc_sha

tls_ecdh_rsa_with_aes_128_cbc_sha

tls_dhe_rsa_with_aes_128_cbc_sha

tls_dhe_dss_with_aes_128_cbc_sha

tls_ecdhe_ecdsa_with_3des_ede_cbc_sha

tls_ecdhe_rsa_with_3des_ede_cbc_sha

ssl_rsa_with_3des_ede_cbc_sha

tls_ecdh_ecdsa_with_3des_ede_cbc_sha

tls_ecdh_rsa_with_3des_ede_cbc_sha

ssl_dhe_rsa_with_3des_ede_cbc_sha

ssl_dhe_dss_with_3des_ede_cbc_sha

tls_ecdhe_ecdsa_with_rc4_128_sha

tls_ecdhe_rsa_with_rc4_128_sha

ssl_rsa_with_rc4_128_sha

tls_ecdh_ecdsa_with_rc4_128_sha

tls_ecdh_rsa_with_rc4_128_sha

ssl_rsa_with_rc4_128_md5

tls_empty_renegotiation_info_scsv

which includes desired tls_rsa_with_aes_128_cbc_sha , passed setenabledciphersuites.

what needed vc++ server accept connection java client?

see: http://docs.oracle.com/javase/7/docs/technotes/guides/security/jsse/readdebug.html

in many cases, log messages generated when using -djavax.net.debug=all flag can lead in right direction.


Comments

Post a Comment

Popular posts from this blog

c++ - No viable overloaded operator for references a map -

-
i trying use map can make tag names reference number. when try , use it, in code error (6 in total every time reference map): src/main.cpp:25:45: error: no viable overloaded operator[] type 'std::map<std::string, std::string>' const char* idcs = node.child_value(tagmap[3]); this code: #include "pugi/pugixml.hpp" #include <iostream> #include <string> #include <map> int main() { pugi::xml_document doca, docb; std::map<std::string, pugi::xml_node> mapa, mapb; std::map<std::string, std::string> tagmap {{"1", "data"}, {"2", "entry"}, {"3", "id"}, {"4", "content"}}; if (!doca.load_file("a.xml") || !docb.load_file("b.xml")) { std::cout << "can't find input files"; return 1; } (auto& node: doca.child(tagmap[1]).children(tagmap[2])) { co
Read more

java - Custom OutputStreamAppender not run: LOGBACK: No context given for <MYAPPENDER> -

-
i wish write custom appender on basis of outputstreamappender . wrote following class package tests; import java.io.ioexception; import java.io.outputstream; import ch.qos.logback.core.outputstreamappender; public class myappender<e> extends outputstreamappender<e> { public myappender() { system.out.println("myappender created"); setoutputstream(new outputstream() { @override public void write(int b) throws ioexception { throw new unsupportedoperationexception(); } }); } } then wrote following runner: package tests; import org.slf4j.loggerfactory; import ch.qos.logback.classic.logger; public class runner { private static final logger log = (logger) loggerfactory.getlogger(runner.class); public static void main(string[] args) { //log.addappender(new myappender<iloggingevent>()); log.info("hello world"); } } finall
Read more