java - TooTallNate's Websockets library WSS issue -


used tootallnate's websockets library implement websocket server, works perfect. need implement websockets secure. created keystore in example , implemented wss server. created keystore this:

keytool -genkey -validity 3650 -keystore "keystore.jks" -storepass "storepassword" -keypass "keypassword" -alias "default" -dname "cn=127.0.0.1, ou=myorgunit, o=myorg, l=mycity, s=myregion, c=mycountry"

(also tried create keystore -keyalg rsa parameter)

now when trying connect server js client, successfull connect attempts 10% of attempts. in rest 90% cases, chrome console says timeout wss connection. tried connect server using openssl, wss server provides certificate 1 time after server starts.

from console -djavax.net.debug=all vm parameter:

`using sslengineimpl. ignoring unavailable cipher suite: tls_ecdhe_rsa_with_aes_256_cbc_sha ignoring unavailable cipher suite: tls_dhe_rsa_with_aes_256_cbc_sha ignoring unavailable cipher suite: tls_ecdh_rsa_with_aes_256_cbc_sha ignoring unavailable cipher suite: tls_dhe_dss_with_aes_256_cbc_sha256 ignoring unavailable cipher suite: tls_dhe_rsa_with_aes_256_cbc_sha256 ignoring unavailable cipher suite: tls_ecdhe_rsa_with_aes_256_cbc_sha384 ignoring unavailable cipher suite: tls_ecdh_ecdsa_with_aes_256_cbc_sha384 ignoring unavailable cipher suite: tls_rsa_with_aes_256_cbc_sha256 ignoring unavailable cipher suite: tls_ecdhe_ecdsa_with_aes_256_cbc_sha ignoring unavailable cipher suite: tls_ecdhe_ecdsa_with_aes_256_cbc_sha384 ignoring unavailable cipher suite: tls_dhe_dss_with_aes_256_cbc_sha ignoring unavailable cipher suite: tls_ecdh_rsa_with_aes_256_cbc_sha384 ignoring unavailable cipher suite: tls_ecdh_ecdsa_with_aes_256_cbc_sha ignoring unavailable cipher suite: tls_rsa_with_aes_256_cbc_sha allow unsafe renegotiation: false allow legacy hello messages: true initial handshake: true secure renegotiation: false ignoring unsupported cipher suite: tls_ecdhe_ecdsa_with_aes_128_cbc_sha256 sslv2hello ignoring unsupported cipher suite: tls_ecdhe_rsa_with_aes_128_cbc_sha256 sslv2hello ignoring unsupported cipher suite: tls_rsa_with_aes_128_cbc_sha256 sslv2hello ignoring unsupported cipher suite: tls_ecdh_ecdsa_with_aes_128_cbc_sha256 sslv2hello ignoring unsupported cipher suite: tls_ecdh_rsa_with_aes_128_cbc_sha256 sslv2hello ignoring unsupported cipher suite: tls_dhe_rsa_with_aes_128_cbc_sha256 sslv2hello ignoring unsupported cipher suite: tls_dhe_dss_with_aes_128_cbc_sha256 sslv2hello ignoring unsupported cipher suite: tls_ecdhe_ecdsa_with_aes_128_cbc_sha256 tlsv1 ignoring unsupported cipher suite: tls_ecdhe_rsa_with_aes_128_cbc_sha256 tlsv1 ignoring unsupported cipher suite: tls_rsa_with_aes_128_cbc_sha256 tlsv1 ignoring unsupported cipher suite: tls_ecdh_ecdsa_with_aes_128_cbc_sha256 tlsv1 ignoring unsupported cipher suite: tls_ecdh_rsa_with_aes_128_cbc_sha256 tlsv1 ignoring unsupported cipher suite: tls_dhe_rsa_with_aes_128_cbc_sha256 tlsv1 ignoring unsupported cipher suite: tls_dhe_dss_with_aes_128_cbc_sha256 tlsv1 ignoring unsupported cipher suite: tls_ecdhe_ecdsa_with_aes_128_cbc_sha256 tlsv1.1 ignoring unsupported cipher suite: tls_ecdhe_rsa_with_aes_128_cbc_sha256 tlsv1.1 ignoring unsupported cipher suite: tls_rsa_with_aes_128_cbc_sha256 tlsv1.1 ignoring unsupported cipher suite: tls_ecdh_ecdsa_with_aes_128_cbc_sha256 tlsv1.1 ignoring unsupported cipher suite: tls_ecdh_rsa_with_aes_128_cbc_sha256 tlsv1.1 ignoring unsupported cipher suite: tls_dhe_rsa_with_aes_128_cbc_sha256 tlsv1.1 ignoring unsupported cipher suite: tls_dhe_dss_with_aes_128_cbc_sha256 tlsv1.1 [raw read]: length = 5 0000: 16 03 01 00 94 ..... [raw read]: length = 148 0000: 01 00 00 90 03 03 3f 41 ba 59 ae 98 8b 40 f0 09 ......?a.y...@.. 0010: 7a 19 e8 a1 69 69 a2 74 40 14 32 72 d3 d7 2f d4 z...ii.t@.2r../. 0020: a3 6b 7c 3c 73 57 00 00 16 c0 2b c0 2f c0 0a c0 .k.<sw....+./... 0030: 09 c0 13 c0 14 00 33 00 39 00 2f 00 35 00 0a 01 ......3.9./.5... 0040: 00 00 51 ff 01 00 01 00 00 0a 00 08 00 06 00 17 ..q............. 0050: 00 18 00 19 00 0b 00 02 01 00 00 23 00 00 33 74 ...........#..3t 0060: 00 00 00 10 00 0b 00 09 08 68 74 74 70 2f 31 2e .........http/1. 0070: 31 00 05 00 05 01 00 00 00 00 00 0d 00 16 00 14 1............... 0080: 04 01 05 01 06 01 02 01 04 03 05 03 06 03 02 03 ................ 0090: 04 02 02 02 .... websocketselector35, read: tlsv1 handshake, length = 148`

i seems me it's stupid misconfiguration side, can't figure out be. give me advice how solve it?


Comments

Post a Comment

Popular posts from this blog

toolbar - How to add link to user registration inside toobar in admin joomla 3 custom component -

im trying write component admin side , need add user creation. dont want duplicate existing codes add link. know how add task not simple link toolbar. thx help. if wanting button opens new user screen can try in component: $bar = jtoolbar::getinstance('toolbar'); $bar->appendbutton('link', 'users', 'new user','index.php?option=com_users&task=user.add'); you need add view.html.php file wherever you're creating toolbar. is need?
Read more

linux - disk space limitation when creating war file -

i have 1 gb disk space limitation hosting app , have used 700mb of it. however want create war file directory big (around 600mb) using command : jar -cvf root.war folderpath that's why encounter quota limitation , can't following. i'm looking way delete folder content when it's applying archive conserve disk space take note can't install zip tool in ssh shell ~ the code works on test directories, test first anyway, deletes files. it's not efficient. assumptions: 300mb free space, in destructively compress 600mb folderpath directory. none of files big -- if file in folderpath 300mb or larger, fail. notes: if ' $out ' file exists, nothing. first find pipes file list while , if ' $out ' doesn't exist in loop, create it, don't update -- if does exist, update it. each pass adds 1 more file, deletes unless file directory. after loop finishes delete empty directories too. unset u ; in=folderpath ; out=roo...
Read more