You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@geode.apache.org by "Mario Ivanac (Jira)" <ji...@apache.org> on 2020/03/30 17:43:00 UTC
[jira] [Updated] (GEODE-7917) Problem forming SSL connection in
multisite setup
[ https://issues.apache.org/jira/browse/GEODE-7917?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Mario Ivanac updated GEODE-7917:
--------------------------------
Description:
We are installing two sites, with one locator in each site, and TLS enabled. Problem appears when locators on both sides are started at same time. In that case, on both locators, immediately after they are started, IllegalStateException is caught, and connections are never reestablished.
javax.net.ssl.SSLHandshakeException: Remote host terminated the handshake
at java.base/sun.security.ssl.SSLSocketImpl.handleEOF(SSLSocketImpl.java:1320)
at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1159)
at java.base/sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1062)
at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:402)
at org.apache.geode.internal.net.SocketCreator.configureClientSSLSocket(SocketCreator.java:1112)
at org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:879)
at org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:841)
at org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:830)
at org.apache.geode.distributed.internal.tcpserver.TcpClient.requestToServer(TcpClient.java:208)
at org.apache.geode.cache.client.internal.locator.wan.LocatorDiscovery.exchangeRemoteLocators(LocatorDiscovery.java:195)
at org.apache.geode.cache.client.internal.locator.wan.LocatorDiscovery$RemoteLocatorDiscovery.run(LocatorDiscovery.java:121)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
at java.base/java.lang.Thread.run(Thread.java:834)
Suppressed: java.net.SocketException: Broken pipe (Write failed)
at java.base/java.net.SocketOutputStream.socketWrite0(Native Method)
at java.base/java.net.SocketOutputStream.socketWrite(SocketOutputStream.java:110)
at java.base/java.net.SocketOutputStream.write(SocketOutputStream.java:150)
at java.base/sun.security.ssl.SSLSocketOutputRecord.encodeAlert(SSLSocketOutputRecord.java:81)
at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:351)
at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:263)
at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:405)
... 10 more
Caused by: java.io.EOFException: SSL peer shut down incorrectly
at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:167)
at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:108)
at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1151)
... 12 more
was:We are installing two sites, with one locator in each site, and TLS enabled. Problem appears when locators on both sides are started at same time. In that case, on both locators, immediately after they are started, IllegalStateException is caught, and connections are never reestablished.
> Problem forming SSL connection in multisite setup
> -------------------------------------------------
>
> Key: GEODE-7917
> URL: https://issues.apache.org/jira/browse/GEODE-7917
> Project: Geode
> Issue Type: Bug
> Components: wan
> Reporter: Mario Ivanac
> Assignee: Mario Ivanac
> Priority: Major
> Time Spent: 10m
> Remaining Estimate: 0h
>
> We are installing two sites, with one locator in each site, and TLS enabled. Problem appears when locators on both sides are started at same time. In that case, on both locators, immediately after they are started, IllegalStateException is caught, and connections are never reestablished.
>
> javax.net.ssl.SSLHandshakeException: Remote host terminated the handshake
> at java.base/sun.security.ssl.SSLSocketImpl.handleEOF(SSLSocketImpl.java:1320)
> at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1159)
> at java.base/sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1062)
> at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:402)
> at org.apache.geode.internal.net.SocketCreator.configureClientSSLSocket(SocketCreator.java:1112)
> at org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:879)
> at org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:841)
> at org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:830)
> at org.apache.geode.distributed.internal.tcpserver.TcpClient.requestToServer(TcpClient.java:208)
> at org.apache.geode.cache.client.internal.locator.wan.LocatorDiscovery.exchangeRemoteLocators(LocatorDiscovery.java:195)
> at org.apache.geode.cache.client.internal.locator.wan.LocatorDiscovery$RemoteLocatorDiscovery.run(LocatorDiscovery.java:121)
> at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
> at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
> at java.base/java.lang.Thread.run(Thread.java:834)
> Suppressed: java.net.SocketException: Broken pipe (Write failed)
> at java.base/java.net.SocketOutputStream.socketWrite0(Native Method)
> at java.base/java.net.SocketOutputStream.socketWrite(SocketOutputStream.java:110)
> at java.base/java.net.SocketOutputStream.write(SocketOutputStream.java:150)
> at java.base/sun.security.ssl.SSLSocketOutputRecord.encodeAlert(SSLSocketOutputRecord.java:81)
> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:351)
> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:263)
> at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:405)
> ... 10 more
> Caused by: java.io.EOFException: SSL peer shut down incorrectly
> at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:167)
> at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:108)
> at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1151)
> ... 12 more
--
This message was sent by Atlassian Jira
(v8.3.4#803005)