java - Cannot secure connection using TLS -

-

i'm trying establish secure socket connection between java client applet (built jdk 1.7.0_75-b13) , vc++ server application.

as test vehicle, used vc++ client/server sample found in msdn forums, modified use schannel , able establish socket using cipher suite tls_rsa_with_aes_128_cbc_sha. works of tls 1.0/1.1/1.2.

when try opening socket java applet same server application, connection rejected server reporting following:

tls 1.0 acceptsecuritycontext failed: 0x80090327

tls 1.1 acceptsecuritycontext failed: 0x80090331

tls 1.2 acceptsecuritycontext failed: 0x80090331

this java code used create socket:

debugprint("setting secure connection"); sslsocketfactory sslsocketfactory = (sslsocketfactory) sslsocketfactory.getdefault(); sslsocket sslsocket = (sslsocket) sslsocketfactory.createsocket("127.0.0.1", socketnumber); debugprint("starting handshake"); sslsocket.settcpnodelay(true); sslsocket.setsolinger(false, 0); sslsocket.setkeepalive(true); sslsocket.setreuseaddress(true); sslsocket.setsotimeout(10000); sslsocket.setuseclientmode(true); sslsocket.setwantclientauth(false); sslsocket.addhandshakecompletedlistener(new handshakecompletedlistener()  {     @override     public void handshakecompleted(handshakecompletedevent arg0)      {         debugprint("handshake complete!");         stealthstatus.setserviceconnected(true);     }  }); string ciphersuites[] = sslsocket.getenabledciphersuites(); (int inx=0; inx < ciphersuites.length; inx++) {     debugprint("ssl cipher suite supported->" + ciphersuites[inx]); } sslsocket.setenabledciphersuites(ciphersuites); sslsocket.starthandshake(); socket = sslsocket; socketout = sslsocket.getoutputstream(); socketin = sslsocket.getinputstream();

running this, call getenabledciphersuites returns list

tls_ecdhe_ecdsa_with_aes_128_cbc_sha

tls_ecdhe_rsa_with_aes_128_cbc_sha

tls_rsa_with_aes_128_cbc_sha

tls_ecdh_ecdsa_with_aes_128_cbc_sha

tls_ecdh_rsa_with_aes_128_cbc_sha

tls_dhe_rsa_with_aes_128_cbc_sha

tls_dhe_dss_with_aes_128_cbc_sha

tls_ecdhe_ecdsa_with_3des_ede_cbc_sha

tls_ecdhe_rsa_with_3des_ede_cbc_sha

ssl_rsa_with_3des_ede_cbc_sha

tls_ecdh_ecdsa_with_3des_ede_cbc_sha

tls_ecdh_rsa_with_3des_ede_cbc_sha

ssl_dhe_rsa_with_3des_ede_cbc_sha

ssl_dhe_dss_with_3des_ede_cbc_sha

tls_ecdhe_ecdsa_with_rc4_128_sha

tls_ecdhe_rsa_with_rc4_128_sha

ssl_rsa_with_rc4_128_sha

tls_ecdh_ecdsa_with_rc4_128_sha

tls_ecdh_rsa_with_rc4_128_sha

ssl_rsa_with_rc4_128_md5

tls_empty_renegotiation_info_scsv

which includes desired tls_rsa_with_aes_128_cbc_sha , passed setenabledciphersuites.

what needed vc++ server accept connection java client?

see: http://docs.oracle.com/javase/7/docs/technotes/guides/security/jsse/readdebug.html

in many cases, log messages generated when using -djavax.net.debug=all flag can lead in right direction.


Comments

Post a Comment

Popular posts from this blog

java - Custom OutputStreamAppender not run: LOGBACK: No context given for <MYAPPENDER> -

-
i wish write custom appender on basis of outputstreamappender . wrote following class package tests; import java.io.ioexception; import java.io.outputstream; import ch.qos.logback.core.outputstreamappender; public class myappender<e> extends outputstreamappender<e> { public myappender() { system.out.println("myappender created"); setoutputstream(new outputstream() { @override public void write(int b) throws ioexception { throw new unsupportedoperationexception(); } }); } } then wrote following runner: package tests; import org.slf4j.loggerfactory; import ch.qos.logback.classic.logger; public class runner { private static final logger log = (logger) loggerfactory.getlogger(runner.class); public static void main(string[] args) { //log.addappender(new myappender<iloggingevent>()); log.info("hello world"); } } finall...
Read more

java - UML - How would you draw a try catch in a sequence diagram? -

-
Image
is there standard way of drawing try catch sequence diagrams? i've made attempt based on this feel end result doesn't feel right. code diagram based around: public static void save () { try { filehandle filehandle = gdx.files.external(file); filehandle.writestring(boolean.tostring(constantshandler.soundenabled)+"\n", false); (int = 0; < 5; i++) { filehandle.writestring(integer.tostring(constantshandler.highscores[i])+"\n", true); } } catch (throwable e) { } } my attempt note: know still need add loop. that's ok. fragments meant show conditional control flow in sequence diagram. superstructures puts limitations on use of fragments (see pp. 467 of ss2.1.1). should use critical region try part above. , option catch . however, keep telling can take quite freedom in using uml. it's language , such changes in life time. long reader ge...
Read more

c++ - No viable overloaded operator for references a map -

-
i trying use map can make tag names reference number. when try , use it, in code error (6 in total every time reference map): src/main.cpp:25:45: error: no viable overloaded operator[] type 'std::map<std::string, std::string>' const char* idcs = node.child_value(tagmap[3]); this code: #include "pugi/pugixml.hpp" #include <iostream> #include <string> #include <map> int main() { pugi::xml_document doca, docb; std::map<std::string, pugi::xml_node> mapa, mapb; std::map<std::string, std::string> tagmap {{"1", "data"}, {"2", "entry"}, {"3", "id"}, {"4", "content"}}; if (!doca.load_file("a.xml") || !docb.load_file("b.xml")) { std::cout << "can't find input files"; return 1; } (auto& node: doca.child(tagmap[1]).children(tagmap[2])) { co...
Read more