You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@commons.apache.org by "Terence Dudouit (JIRA)" <ji...@apache.org> on 2010/06/04 18:04:56 UTC
[jira] Created: (NET-326) A KeyManager is required when the
protection level is set to 'P' with FTPSClient on active mode
A KeyManager is required when the protection level is set to 'P' with FTPSClient on active mode
-----------------------------------------------------------------------------------------------
Key: NET-326
URL: https://issues.apache.org/jira/browse/NET-326
Project: Commons Net
Issue Type: Bug
Affects Versions: 2.0
Environment: Windows XP profesional service pack 2, Java Java 1.6.0_12-b04
Reporter: Terence Dudouit
Using a simple FTPS client that list a directory, when execPROT("P") is set and the active mode is on, the following exception is thrown :
javax.net.ssl.SSLException: No available certificate or key corresponds to the SSL cipher suites which are enabled.
at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.checkEnabledSuites(SSLServerSocketImpl.java:303)
at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.accept(SSLServerSocketImpl.java:253)
at org.apache.commons.net.ftp.FTPClient._openDataConnection_(FTPClient.java:489)
at org.apache.commons.net.ftp.FTPSClient._openDataConnection_(FTPSClient.java:494)
at org.apache.commons.net.ftp.FTPClient.listNames(FTPClient.java:1950)
at org.apache.commons.net.ftp.FTPClient.listNames(FTPClient.java:1996)
at fr.enovacom.eai.actions.dynamiques.protocole.ftp.FTPGet.testFTPS(FTPGet.java:379)
at fr.enovacom.eai.actions.dynamiques.protocole.ftp.FTPGet.main(FTPGet.java:401)
This doesn't occur on passive mode.
The only way to make it work is to set a keyManager although there is no need for a client authentication.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (NET-326) A KeyManager is required when the
protection level is set to 'P' with FTPSClient on active mode
Posted by "elbeau (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/NET-326?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12896145#action_12896145 ]
elbeau commented on NET-326:
----------------------------
This is a pretty fatal flaw for me to be able to use this component in my product.
Terence is absolutely right, it works in passive mode, but throws the exception in active mode. Active or Passive should not matter.
> A KeyManager is required when the protection level is set to 'P' with FTPSClient on active mode
> -----------------------------------------------------------------------------------------------
>
> Key: NET-326
> URL: https://issues.apache.org/jira/browse/NET-326
> Project: Commons Net
> Issue Type: Bug
> Components: FTP
> Affects Versions: 2.0
> Environment: Windows XP profesional service pack 2, Java Java 1.6.0_12-b04
> Reporter: Terence Dudouit
>
> Using a simple FTPS client that list a directory, when execPROT("P") is set and the active mode is on, the following exception is thrown :
> javax.net.ssl.SSLException: No available certificate or key corresponds to the SSL cipher suites which are enabled.
> at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.checkEnabledSuites(SSLServerSocketImpl.java:303)
> at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.accept(SSLServerSocketImpl.java:253)
> at org.apache.commons.net.ftp.FTPClient._openDataConnection_(FTPClient.java:489)
> at org.apache.commons.net.ftp.FTPSClient._openDataConnection_(FTPSClient.java:494)
> at org.apache.commons.net.ftp.FTPClient.listNames(FTPClient.java:1950)
> at org.apache.commons.net.ftp.FTPClient.listNames(FTPClient.java:1996)
> at fr.enovacom.eai.actions.dynamiques.protocole.ftp.FTPGet.testFTPS(FTPGet.java:379)
> at fr.enovacom.eai.actions.dynamiques.protocole.ftp.FTPGet.main(FTPGet.java:401)
> This doesn't occur on passive mode.
> The only way to make it work is to set a keyManager although there is no need for a client authentication.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (NET-326) A KeyManager is required when the
protection level is set to 'P' with FTPSClient on active mode
Posted by "Sebb (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/NET-326?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sebb updated NET-326:
---------------------
Component/s: FTP
> A KeyManager is required when the protection level is set to 'P' with FTPSClient on active mode
> -----------------------------------------------------------------------------------------------
>
> Key: NET-326
> URL: https://issues.apache.org/jira/browse/NET-326
> Project: Commons Net
> Issue Type: Bug
> Components: FTP
> Affects Versions: 2.0
> Environment: Windows XP profesional service pack 2, Java Java 1.6.0_12-b04
> Reporter: Terence Dudouit
>
> Using a simple FTPS client that list a directory, when execPROT("P") is set and the active mode is on, the following exception is thrown :
> javax.net.ssl.SSLException: No available certificate or key corresponds to the SSL cipher suites which are enabled.
> at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.checkEnabledSuites(SSLServerSocketImpl.java:303)
> at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.accept(SSLServerSocketImpl.java:253)
> at org.apache.commons.net.ftp.FTPClient._openDataConnection_(FTPClient.java:489)
> at org.apache.commons.net.ftp.FTPSClient._openDataConnection_(FTPSClient.java:494)
> at org.apache.commons.net.ftp.FTPClient.listNames(FTPClient.java:1950)
> at org.apache.commons.net.ftp.FTPClient.listNames(FTPClient.java:1996)
> at fr.enovacom.eai.actions.dynamiques.protocole.ftp.FTPGet.testFTPS(FTPGet.java:379)
> at fr.enovacom.eai.actions.dynamiques.protocole.ftp.FTPGet.main(FTPGet.java:401)
> This doesn't occur on passive mode.
> The only way to make it work is to set a keyManager although there is no need for a client authentication.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.