Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

WLS 6.0 - SSL setup problem - EOFException etc

3 views
Skip to first unread message

Sudhir Kolli

unread,
Mar 11, 2001, 2:04:19 AM3/11/01
to

I just started testing SSL feature of WLS 6.0 and I think I found
a bug.

I generated all Test Certificate (the whole thing) following instructions.
When I installed the new certificate and key, I came across the
following message when starting the server (see below). Is there
any work-around for this problem? I used der2pem also to convert
".der" key file to ".pem" format - it didn't work. I would appreciate
any help.

Thanks

-Sudhir

-----------------------------------------------------------

java.io.EOFException
at weblogic.security.Utils.inputByte(Utils.java:133)
at weblogic.security.ASN1.ASN1Header.readBody(ASN1Header.java:220)
at weblogic.security.X509.input(X509.java:106)
at weblogic.security.X509.initialize(X509.java:81)
at weblogic.security.Certificate.<init>(Certificate.java:59)
at weblogic.security.X509.<init>(X509.java:56)
at weblogic.t3.srvr.SSLListenThread.insertIntoCAChain(SSLListenThread.java:232)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:410)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:297)
at weblogic.t3.srvr.T3Srvr.initializeListenThreads(T3Srvr.java:939)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:403)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
at weblogic.Server.main(Server.java:35)
<Mar 10, 2001 10:30:24 PM PST> <Alert> <WebLogicServer> <Inconsistent
security configuration, weblogic.security.KeyManagementException:
java.io.EOFException>
weblogic.security.KeyManagementException: java.io.EOFException
at weblogic.security.X509.initialize(X509.java:86)
at weblogic.security.Certificate.<init>(Certificate.java:59)
at weblogic.security.X509.<init>(X509.java:56)
at weblogic.t3.srvr.SSLListenThread.insertIntoCAChain(SSLListenThread.java:232)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:410)
at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:297)
at weblogic.t3.srvr.T3Srvr.initializeListenThreads(T3Srvr.java:939)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:403)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
at weblogic.Server.main(Server.java:35)
<Mar 10, 2001 10:30:24 PM PST> <Info> <Security> <Not listening
for SSL, java.io.IOException: Inconsistent security configuration,
weblogic.security.KeyManagementException: java.io.EOFException.>


------------------------------------------------------------

Paul Ferwerda

unread,
Apr 6, 2001, 9:50:39 AM4/6/01
to
Are you running one-way SSL or two way (mutual auth turned on with
EnforceClientCertificate)?
Did you generate a protected private key or an unprotected private key?

I'm assuming that you've specified appropriate files for the
ServerCertificateFileName, the ServerCertificateChainFileName, the
ServerKeyFileName (and the TrustedCAFileName if you are doing two-way SSL).

The server's cert that you created and pointed to in the
ServerCertificateFileName needs to have the cert that signed it (the root CA
from Verisign) as the first cert in the file pointed to by the
ServerCertificateChainFileName. From the looks of the exception the problem
was with the CA that signed your cert.


"Sudhir Kolli" <sud...@citadon.com> wrote in message
news:3aab2373$1...@newsgroups.bea.com...

Jayesh Patel

unread,
Apr 13, 2001, 4:00:29 PM4/13/01
to
I think you need to
check "Use Encrypted Keys" Box in SSL console and
supply -Dweblogic.management.pkpassword=<passwd> in startup script.


"Paul Ferwerda" <ferw...@somewhere.com> wrote in message
news:3acdc9cf$1...@newsgroups.bea.com...

0 new messages