You are viewing a plain text version of this content. The canonical link for it is here.
Posted to server-dev@james.apache.org by "Ralf Hauser (JIRA)" <se...@james.apache.org> on 2005/01/15 14:05:37 UTC
[jira] Created: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
----------------------------------------------------------------------------------------------------
Key: JAMES-350
URL: http://issues.apache.org/jira/browse/JAMES-350
Project: James
Type: Bug
Components: POP3Server
Versions: 2.2.0
Environment: debian sarge
Reporter: Ralf Hauser
related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
at java.io.InputStreamReader.read(InputStreamReader.java:167)
at java.io.BufferedReader.fill(BufferedReader.java:136)
at java.io.BufferedReader.read(BufferedReader.java:157)
at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
at java.io.BufferedWriter.flush(BufferedWriter.java:236)
at java.io.PrintWriter.flush(PrintWriter.java:270)
at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
... 3 more
Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
... 16 more
in most cases, it fails at the same place with
Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
whereas that number is different every time!
p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
If you want more information on JIRA, or have a bug to report see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Commented: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Ralf Hauser (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=comments#action_12330787 ]
Ralf Hauser commented on JAMES-350:
-----------------------------------
Unfortunately, the problem still occurs - with some more ssl-debugging, I get the following:
buf: of lenght 16665
16 03 00 00 40 14 00 00 24 15 E5 DD 3F 80 FE E9 CA 9B CB 1F BC 40 65 50 4C 68 4A 12 6D 95
AE 28 95 55 77 1F 1F 92 F1 36 03 FC A1 88 43 2C 8A F9 34 57 0D 9C 0A CC 5D BC 26 FC 7C B8
F5 6F AF F2 A0 74 B5 9B 91 32 5B FB D6 44 3B 14 0A ED A1 D8 AD 93 3F A9 C5 AA C2 A7 60 C7
41 0D C8 76 E5 19 5C CA 62 4B B8 11 5D 4E A9 8B 9B 6E 13 AC F5 51 CB E3 CB E6 29 EE A5 B9
B3 B9 C8 27 2E D0 4F B1 DF 17 5E CF 3C 8E 9E F4 62 E2 B6 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
... LOTS OF ZEROES ...
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
offset: 5
len: 64
protocolVersion: SSLv3
Invalid padding
javax.net.ssl.SSLHandshakeException: Invalid padding
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1477)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
at java.io.BufferedWriter.flush(BufferedWriter.java:236)
at java.io.PrintWriter.flush(PrintWriter.java:270)
at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:312)
at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
Caused by: javax.crypto.BadPaddingException: Padding length invalid: 145
at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:457)
at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:293)
at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
... 16 more
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
> Attachments: etherealDumps.zip
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Resolved: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Ralf Hauser (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=all ]
Ralf Hauser resolved JAMES-350:
-------------------------------
Resolution: Fixed
It appears that the reason was that BC ended up in provider position 5 and SunJCE only in position 6
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
> Attachments: etherealDumps.zip
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Commented: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Ralf Hauser (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=comments#action_12316313 ]
Ralf Hauser commented on JAMES-350:
-----------------------------------
more simple test cases and ideas for further diagnosis.
> Just did another test:
> openssl s_client -connect bugs.privasphere.com:995 -cipher RC4-SHA
> works while the next two do not work:
> openssl s_client -connect bugs.privasphere.com:995 -cipher
> DHE-RSA-AES256-SHA
> openssl s_client -connect bugs.privasphere.com:995 -cipher DES-CBC3-
> SHA
>
> So according to your last mail, that would take the certificate out of
> guilt.
>
> How does one easiest know which of the ciphers are provided by BC and
> which by others?
>
From: David Hook [dgh@bund.com.au]
Sent: Wednesday, July 20, 2005 1:54 AM
To: hauser@acm.org
Subject: RE: TLS/DHE-RSA/AES256-CBC/SHA not working under jdk1.5
...
The certificate you attached certainly appears to be okay.
No idea on how to answer your question, it depends how the application using the provider is setup. It might be worth removing the BC providerr and trying the Sun one first up. The other one is try DES rather than triple DES - if that works then it sounds like a policy file issue.
The problem still sounds like the padding is incompatible though - it's pretty unlikely any of the implementations of DES that are around now are wrong. If the app was somehow thinking it was getting an TLS message when it was actually getting a SSLv3 message you'd see this error as well (as nelson pointed out SSLv3 allows random pad bytes, if the other end was taking advantage of this then the trouble would start).
---------------
Has anybody on the mailing list tried to do SSL with jdk1.5? Can anybody confirm this bug or report complementary experiences?
Many thanks in advance
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
> Attachments: etherealDumps.zip
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Commented: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Hes Siemelink (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=comments#action_12330178 ]
Hes Siemelink commented on JAMES-350:
-------------------------------------
We found that in order to get SSL to work on JDK 1.5 under Linux, you MUST copy the sunjce_provider.jar from jre/lib/ext/ to phoenix/lib/.
Hope this is of any help.
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
> Attachments: etherealDumps.zip
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Commented: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Ralf Hauser (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=comments#action_57659 ]
Ralf Hauser commented on JAMES-350:
-----------------------------------
Eudora 6.1. results in
Caused by: javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_expired
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:117)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:1542)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:863)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
at java.io.BufferedWriter.flush(BufferedWriter.java:236)
at java.io.PrintWriter.flush(PrintWriter.java:270)
at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
... 3 more
Lotus 6.0 and Outlook Express appear to work...
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
If you want more information on JIRA, or have a bug to report see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Commented: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Ralf Hauser (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=comments#action_12330184 ]
Ralf Hauser commented on JAMES-350:
-----------------------------------
Hes, thanks. We had this all along, but perhaps we missed to upgrade the jar?
- 111430 bytes lib_jdk14/sunjce_provider.jar
new:
- 153036 bytes lib/sunjce_provider.jar (1.5.0_03-b07)
Are you sure, your mail client did use AES?
Although our latest thunderbird test with the new jar did not reproduce the error either.
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
> Attachments: etherealDumps.zip
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Updated: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Ralf Hauser (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=history ]
Ralf Hauser updated JAMES-350:
------------------------------
Attachment: etherealDumps.zip
maybe that the error is on thunderbird side anyway:
- Thunderbird and jdk1.4 negotiate TLS_DHE_RSA_WITH_AES_256_CBC_SHA and all works fine
- Thunderbird and jdk1.5 negotiate TLS_DHE_RSA_WITH_AES_128_CBC_SHA and this it fails with a fatal handshake alert
- Outlook and jdk1.5 use TLS_RSA_WITH_RC4_128_MD5 and it works with no problem
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
> Attachments: etherealDumps.zip
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
If you want more information on JIRA, or have a bug to report see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org
[jira] Commented: (JAMES-350) POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
Posted by "Hes Siemelink (JIRA)" <se...@james.apache.org>.
[ http://issues.apache.org/jira/browse/JAMES-350?page=comments#action_12330194 ]
Hes Siemelink commented on JAMES-350:
-------------------------------------
Erm, we are not using AES, nor are we a mail client.
One of our mailets is making a https SOAP call using the GLUE library.
I think the root cause of our errors is the same though.
> POP SSL based on jdk1.5 fails with thunderbird ("Padding length invalid" or "Invalid SSLv3 padding")
> ----------------------------------------------------------------------------------------------------
>
> Key: JAMES-350
> URL: http://issues.apache.org/jira/browse/JAMES-350
> Project: James
> Type: Bug
> Components: POP3Server
> Versions: 2.2.0
> Environment: debian sarge
> Reporter: Ralf Hauser
> Attachments: etherealDumps.zip
>
> related description for thunderbird in https://bugzilla.mozilla.org/show_bug.cgi?id=278499 (outlook and opera work nicely)
> DEBUG [default Worker #19] (JamesPOP3Handler.java:322) - Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(SSLSocketImpl.java:1154)
> at com.sun.net.ssl.internal.ssl.AppInputStream.read(AppInputStream.java:65)
> at java.io.BufferedInputStream.read1(BufferedInputStream.java:254)
> at java.io.BufferedInputStream.read(BufferedInputStream.java:313)
> at sun.nio.cs.StreamDecoder$CharsetSD.readBytes(StreamDecoder.java:411)
> at sun.nio.cs.StreamDecoder$CharsetSD.implRead(StreamDecoder.java:453)
> at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:183)
> at java.io.InputStreamReader.read(InputStreamReader.java:167)
> at java.io.BufferedReader.fill(BufferedReader.java:136)
> at java.io.BufferedReader.read(BufferedReader.java:157)
> at org.apache.james.util.CRLFTerminatedReader.readLine(CRLFTerminatedReader.java:98)
> at com.privasphere.privalope.mail.JamesPOP3Handler.readCommandLine(JamesPOP3Handler.java:485)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:309)
> at org.apache.james.util.connection.ServerConnection$ClientConnectionRunner.run(ServerConnection.java:417)
> at org.apache.james.util.thread.ExecutableRunnable.execute(ExecutableRunnable.java:55)
> at org.apache.james.util.thread.WorkerThread.run(WorkerThread.java:90)
> Caused by: javax.net.ssl.SSLHandshakeException: Invalid padding
> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:774)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:619)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
> at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
> at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
> at sun.nio.cs.StreamEncoder$CharsetSE.implFlush(StreamEncoder.java:410)
> at sun.nio.cs.StreamEncoder.flush(StreamEncoder.java:152)
> at java.io.OutputStreamWriter.flush(OutputStreamWriter.java:213)
> at java.io.BufferedWriter.flush(BufferedWriter.java:236)
> at java.io.PrintWriter.flush(PrintWriter.java:270)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:90)
> at org.apache.james.util.InternetPrintWriter.println(InternetPrintWriter.java:187)
> at com.privasphere.privalope.mail.JamesPOP3Handler.handleConnection(JamesPOP3Handler.java:301)
> ... 3 more
> Caused by: javax.crypto.BadPaddingException: Invalid SSLv3 padding: 24
> at com.sun.net.ssl.internal.ssl.CipherBox.removePadding(CipherBox.java:459)
> at com.sun.net.ssl.internal.ssl.CipherBox.decrypt(CipherBox.java:290)
> at com.sun.net.ssl.internal.ssl.InputRecord.decrypt(InputRecord.java:144)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:762)
> ... 16 more
> in most cases, it fails at the same place with
> Caused by: javax.crypto.BadPaddingException: Padding length invalid: 241
>
> whereas that number is different every time!
> p.s.: No clue how much this is related to JAMES-301
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org