[
https://issues.apache.org/jira/browse/GEODE-7917?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Mario Ivanac resolved GEODE-7917.
---------------------------------
Fix Version/s: 1.13.0
Resolution: Fixed
> Problem forming SSL connection in multisite setup
> -------------------------------------------------
>
> Key: GEODE-7917
> URL: https://issues.apache.org/jira/browse/GEODE-7917
> Project: Geode
> Issue Type: Bug
> Components: wan
> Reporter: Mario Ivanac
> Assignee: Mario Ivanac
> Priority: Major
> Fix For: 1.13.0
>
> Attachments: javax_net_debug.log
>
> Time Spent: 50m
> Remaining Estimate: 0h
>
> We are installing two sites, with one locator in each site, and TLS enabled.
> Problem appears when locators on both sides are started at same time. In that
> case, on both locators, immediately after they are started,
> IllegalStateException is caught, and connections are never reestablished.
>
> javax.net.ssl.SSLHandshakeException: Remote host terminated the handshake
> at
> java.base/sun.security.ssl.SSLSocketImpl.handleEOF(SSLSocketImpl.java:1320)
> at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1159)
> at
> java.base/sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1062)
> at
> java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:402)
> at
> org.apache.geode.internal.net.SocketCreator.configureClientSSLSocket(SocketCreator.java:1112)
> at
> org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:879)
> at
> org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:841)
> at
> org.apache.geode.internal.net.SocketCreator.connect(SocketCreator.java:830)
> at
> org.apache.geode.distributed.internal.tcpserver.TcpClient.requestToServer(TcpClient.java:208)
> at
> org.apache.geode.cache.client.internal.locator.wan.LocatorDiscovery.exchangeRemoteLocators(LocatorDiscovery.java:195)
> at
> org.apache.geode.cache.client.internal.locator.wan.LocatorDiscovery$RemoteLocatorDiscovery.run(LocatorDiscovery.java:121)
> at
> java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
> at
> java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
> at java.base/java.lang.Thread.run(Thread.java:834)
> Suppressed: java.net.SocketException: Broken pipe (Write failed)
> at java.base/java.net.SocketOutputStream.socketWrite0(Native Method)
> at
> java.base/java.net.SocketOutputStream.socketWrite(SocketOutputStream.java:110)
> at java.base/java.net.SocketOutputStream.write(SocketOutputStream.java:150)
> at
> java.base/sun.security.ssl.SSLSocketOutputRecord.encodeAlert(SSLSocketOutputRecord.java:81)
> at
> java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:351)
> at
> java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:263)
> at
> java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:405)
> ... 10 more
> Caused by: java.io.EOFException: SSL peer shut down incorrectly
> at
> java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:167)
> at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:108)
> at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1151)
> ... 12 more
>
> If locators are restarted one by one, everything is OK.
> Added log of the fault with set javax.net.debug=all.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
