You are viewing a plain text version of this content. The canonical link for it is here.

Posted to soap-user@ws.apache.org by Jerome Destarac <jd...@sopra.com> on 2001/08/09 20:05:45 UTC

IOException in: R( /) Socket closed

hi,

i've this error ;

 400 R( /) null
 IOException in: R( /) Socket closed

i use apache-tomcat server  with a Vb client. i have  these properties to my client
Connector.Property("EndPointURL") = "https://server:443/soap/servlet/rpcroute
Connector.Property("UseSSL") = True
Connector.Property("SSLClientCertificateName") = "my certificate"
etc ...

on the server :
<Connector className ="org.apache.tomcat.service.PoolTcpConnector">    
		      <Parameter name="handler" value ="org.apache.tomcat.service.http.HttpConnectionHandler"/>    
		      <Parameter name="port" value="443"/>    
		      <Parameter name="socketFactory" value="org.apache.tomcat.net.SSLSocketFactory" />    
		      <Parameter name="keystore" value="c:\keystore\my.keystore" />    
		      <Parameter name="keypass" value="pwd"/>    
		      <Parameter name="clientAuth" value="false"/>    
</Connector> 

i think i export corectly the client certificate in the server keystore. i don't know why it doesn't work !!!
an idea ???

thanks,
jerome

Re: IOException in: R( /) Socket closed

Posted by Rich Catlett <ri...@more.net>.

If you look at the tomcat docs for the connector located at 
{tomcat}/src/catalina/docs/config/http11.html or you should beable to 
get to it if you go to http://localhost:8080 (tomcats startup page) it 
says this for clientAuth

Set to |true| if you want the SSL stack to require a valid certificate 
chain from the client before accepting a connection. A |false| value 
(which is the default) will not require such a certificate chain.

With the value set to false all the connection requires is that a 
trusted certificate for both the client and the server be in the others 
respective keystore.  If you want to deal with certificate chains I 
found this document which deals with tomcat and creating certificate 
chains maybe it will help.  http://www.eneris.com/~pablo/soapintro  I 
looked at it and it's not quite what I thought it is, but it is another 
source about SSL.  Also look for information on certificate chains, I 
remember comming across a document that talked specifically about 
certificate chains, what they were and how to set them up.  If you find 
one please send it my way.

Jerome Destarac wrote:

>hi,
>
>i've this error ;
>
> 400 R( /) null
> IOException in: R( /) Socket closed
>
>i use apache-tomcat server  with a Vb client. i have  these properties to my client
>Connector.Property("EndPointURL") = "https://server:443/soap/servlet/rpcroute
>Connector.Property("UseSSL") = True
>Connector.Property("SSLClientCertificateName") = "my certificate"
>etc ...
>
>on the server :
><Connector className ="org.apache.tomcat.service.PoolTcpConnector">    
>		      <Parameter name="handler" value ="org.apache.tomcat.service.http.HttpConnectionHandler"/>    
>		      <Parameter name="port" value="443"/>    
>		      <Parameter name="socketFactory" value="org.apache.tomcat.net.SSLSocketFactory" />    
>		      <Parameter name="keystore" value="c:\keystore\my.keystore" />    
>		      <Parameter name="keypass" value="pwd"/>    
>		      <Parameter name="clientAuth" value="false"/>    
></Connector> 
>
>i think i export corectly the client certificate in the server keystore. i don't know why it doesn't work !!!
>an idea ???
>
>thanks,
>jerome
>
>
>
>

Re: IOException in: R( /) Socket closed

Posted by Rich Catlett <ri...@more.net>.

If you look at the tomcat docs for the connector located at 
{tomcat}/src/catalina/docs/config/http11.html or you should beable to 
get to it if you go to http://localhost:8080 (tomcats startup page) it 
says this for clientAuth

Set to |true| if you want the SSL stack to require a valid certificate 
chain from the client before accepting a connection. A |false| value 
(which is the default) will not require such a certificate chain.

With the value set to false all the connection requires is that a 
trusted certificate for both the client and the server be in the others 
respective keystore.  If you want to deal with certificate chains I 
found this document which deals with tomcat and creating certificate 
chains maybe it will help.  http://www.eneris.com/~pablo/soapintro  I 
looked at it and it's not quite what I thought it is, but it is another 
source about SSL.  Also look for information on certificate chains, I 
remember comming across a document that talked specifically about 
certificate chains, what they were and how to set them up.  If you find 
one please send it my way.

Jerome Destarac wrote:

>hi,
>
>i've this error ;
>
> 400 R( /) null
> IOException in: R( /) Socket closed
>
>i use apache-tomcat server  with a Vb client. i have  these properties to my client
>Connector.Property("EndPointURL") = "https://server:443/soap/servlet/rpcroute
>Connector.Property("UseSSL") = True
>Connector.Property("SSLClientCertificateName") = "my certificate"
>etc ...
>
>on the server :
><Connector className ="org.apache.tomcat.service.PoolTcpConnector">    
>		      <Parameter name="handler" value ="org.apache.tomcat.service.http.HttpConnectionHandler"/>    
>		      <Parameter name="port" value="443"/>    
>		      <Parameter name="socketFactory" value="org.apache.tomcat.net.SSLSocketFactory" />    
>		      <Parameter name="keystore" value="c:\keystore\my.keystore" />    
>		      <Parameter name="keypass" value="pwd"/>    
>		      <Parameter name="clientAuth" value="false"/>    
></Connector> 
>
>i think i export corectly the client certificate in the server keystore. i don't know why it doesn't work !!!
>an idea ???
>
>thanks,
>jerome
>
>
>
>