Up to Discussions in Openfire Support

This Question is Not Answered

1 "correct" answer available (10 pts)
8 Replies Last post: Jul 25, 2008 5:12 AM by dna  
dna Bronze
dna
58 posts since
Apr 12, 2006
Currently Being Moderated

Apr 27, 2008 7:10 AM

TLS exception

 

Hello,

 

 

i installed to Openfire 3.5.1 with the .deb packages on Ubuntu hardy and created with the admin console self signed ssl certificates.

 

 

Now i got a lof of these exceptions:

 

 

 

 

 

2008.04.27 11:58:40 org.jivesoftware.openfire.net.TLSWrapper.<init>(TLSWrapper.java:114) TLSHandler startup problem.

             &n bsp; the KeyStore or TrustStore does not exist

             &n bsp; java.io.IOException

             &n bsp; at org.jivesoftware.openfire.net.SSLConfig.gets2sTrustStore(SSLConfig.java:279)

             &n bsp; at org.jivesoftware.openfire.net.TLSWrapper.<init>(TLSWrapper.java:73)

             &n bsp; at org.jivesoftware.openfire.net.TLSStreamHandler.<init>(TLSStreamHandler.ja va:97)

             &n bsp; at org.jivesoftware.openfire.net.SocketConnection.startTLS(SocketConnection.java:1 60)

             &n bsp; at org.jivesoftware.openfire.net.SocketReadingMode.negotiateTLS(SocketReadingMode. java:74)

             &n bsp; at org.jivesoftware.openfire.net.BlockingReadingMode.readStream(BlockingReadingMod e.java:127)

             &n bsp; at org.jivesoftware.openfire.net.BlockingReadingMode.run(BlockingReadingMode.java: 63)

             &n bsp; at org.jivesoftware.openfire.net.SocketReader.run(SocketReader.java:120)

             &n bsp; at java.lang.Thread.run(Thread.java:619)

             &n bsp; 2008.04.27 11:58:41 org.jivesoftware.openfire.net.TLSWrapper.<init>(TLSWrapper.java:114) TLSHandler startup problem.

             &n bsp; the KeyStore or TrustStore does not exist

             &n bsp; java.io.IOException

             &n bsp; at org.jivesoftware.openfire.net.SSLConfig.gets2sTrustStore(SSLConfig.java:279)

             &n bsp; at org.jivesoftware.openfire.net.TLSWrapper.<init>(TLSWrapper.java:73)

             &n bsp; at org.jivesoftware.openfire.net.TLSStreamHandler.<init>(TLSStreamHandler.ja va:97)

             &n bsp; at org.jivesoftware.openfire.net.SocketConnection.startTLS(SocketConnection.java:1 60)

             &n bsp; at org.jivesoftware.openfire.session.LocalOutgoingServerSession.secureAndAuthentic ate(LocalOutgoingServerSession.java:370)

             &n bsp; at org.jivesoftware.openfire.session.LocalOutgoingServerSession.createOutgoingSess ion(LocalOutgoingServerSession.java:303)

             &n bsp; at org.jivesoftware.openfire.session.LocalOutgoingServerSession.authenticateDomain (LocalOutgoingServerSession.java:144)

             &n bsp; at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.sendPa cket(OutgoingSessionPromise.java:215)

             &n bsp; at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.run(Ou tgoingSessionPromise.java:194)

             &n bsp; at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java: 885)

             &n bsp; at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:907)

             &n bsp; at java.lang.Thread.run(Thread.java:619)

             &n bsp; 2008.04.27 11:58:41 org.jivesoftware.openfire.session.LocalOutgoingServerSession.createOutgoingSessi on(LocalOutgoingServerSession.java:339) Error creating secured outgoing session to remote server: im.rajango.net(DNS lookup: im.rajango.net:5269)

             &n bsp; java.lang.NullPointerException

             &n bsp; at org.jivesoftware.openfire.net.TLSStreamHandler.<init>(TLSStreamHandler.ja va:114)

             &n bsp; at org.jivesoftware.openfire.net.SocketConnection.startTLS(SocketConnection.java:1 60)

             &n bsp; at org.jivesoftware.openfire.session.LocalOutgoingServerSession.secureAndAuthentic ate(LocalOutgoingServerSession.java:370)

             &n bsp; at org.jivesoftware.openfire.session.LocalOutgoingServerSession.createOutgoingSess ion(LocalOutgoingServerSession.java:303)

             &n bsp; at org.jivesoftware.openfire.session.LocalOutgoingServerSession.authenticateDomain (LocalOutgoingServerSession.java:144)

             &n bsp; at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.sendPa cket(OutgoingSessionPromise.java:215)

             &n bsp; at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.run(Ou tgoingSessionPromise.java:194)

             &n bsp; at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java: 885)

             &n bsp; at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:907)

             &n bsp; at java.lang.Thread.run(Thread.java:619)

 

ls -la /usr/share/openfire/resources

total 12

drwxr-x--- 3 openfire openfire 4096 Apr 25 13:08 .

drwxr-x--- 5 openfire openfire 4096 Apr 25 13:39 ..

drwxr-x--- 3 openfire openfire 4096 Apr 25 13:08 database

lrwxrwxrwx 1 openfire openfire   22 Apr 25 13:08 security -> /etc/openfire/security

 

ls -la /usr/share/openfire/resources/security/

total 16

drwxr-x--- 2 openfire openfire 4096 Apr 25 13:08 .

drwxr-x--- 3 openfire openfire 4096 Apr 27 07:46 ..

-rw-r----- 1 openfire openfire   32 Apr 25 00:19 client.truststore

-rw-r----- 1 openfire openfire 2422 Apr 25 13:37 keystore

-rw-r----- 1 openfire openfire    0 Apr 25 13:37 truststore

 

 

 

 

Tags: bug, error, openfire, security, certificate
Coolcat KeyContributor
Coolcat
511 posts since
Mar 19, 2007
Currently Being Moderated
Apr 27, 2008 10:03 AM in response to: dna
Re: TLS exception

Hm, your Openfire is not installed at default place. Have you tried this one:

 

ln -s /etc/openfire/security /opt/openfire/resources/security

 

just an idea..

Report Abuse
dna Bronze
dna
58 posts since
Apr 12, 2006
Currently Being Moderated
Apr 27, 2008 10:15 AM in response to: Coolcat
Re: TLS exception

 

Hi,

 

 

it is installed by the debian package provided by jive. It is not installed in /opt.

 

 

Report Abuse
dna Bronze
dna
58 posts since
Apr 12, 2006
Currently Being Moderated
May 6, 2008 7:25 AM in response to: dna
Re: TLS exception

Nobody has a solutions for this?

Report Abuse
Michael Bronze
Michael
1 posts since
Nov 8, 2007
Currently Being Moderated
May 14, 2008 7:28 AM in response to: dna
Re: TLS exception

same Problem here on my ubuntu machine. Has anyone a solution?

Report Abuse
dna Bronze
dna
58 posts since
Apr 12, 2006
Currently Being Moderated
Jun 14, 2008 6:54 AM in response to: dna
Re: TLS exception

This problem still exist with OF 3.5.2 and a cleaned /etc/openfire/security/

Report Abuse
dna Bronze
dna
58 posts since
Apr 12, 2006
Currently Being Moderated
Jul 24, 2008 9:14 AM in response to: dna
Re: TLS exception

Hello,

 

is issue still exist. Are there any news on this topic? Or a Jira issue i can subscribe to?

Report Abuse
Gaston Dombiak Jiver
Gaston Dombiak
3,749 posts since
Sep 26, 2001
Currently Being Moderated
Jul 24, 2008 7:20 PM in response to: dna
Re: TLS exception

All the store files are looked for in the [jive home]/resources/security. You may override the default location using system properties:

 

xmpp.socket.ssl.keystore

xmpp.socket.ssl.client.truststore

xmpp.socket.ssl.truststore

 

Regards,

 

  -- Gato

Report Abuse
dna Bronze
dna
58 posts since
Apr 12, 2006
Currently Being Moderated
Jul 25, 2008 5:13 AM in response to: Gaston Dombiak
Re: TLS exception

Hello Gato,

 

i installed Opfenfire the the provided .deb package by igniterealtime.

 

So the openfire user home is in /var/lib/openfire and the security files are located in /etc/openfire/security

 

The 3 properties you mentioned are not set in my server properties page.

 

I recreated the SSL certs today using the "Server Certificates" page.

Both files are up2date, but the size of the truststore is 0 and the exception still occurs:

 

~$ sudo ls -la /etc/openfire/security
total 12
drwxr-x--- 2 openfire openfire 4096 Jun 14 11:44 .
drwxr-x--- 3 openfire openfire 4096 Jul 24 13:53 ..
-rw-r--r-- 1 openfire openfire 2786 Jul 25 09:51 keystore
-rw-r--r-- 1 openfire openfire    0 Jul 25 09:51 truststore

 

SSL/TLS for the administration website and login via jabber client works without any problem.

Report Abuse

More Like This

  • Retrieving data ...