Apache Ignite Developers - Legacy Mail Archive

[jira] [Created] (IGNITE-1150) Need to change log message about untrusted ssl connection

classic Classic list List threaded Threaded
1 message Options
Anton Vinogradov (Jira)
Reply | Threaded
Open this post in threaded view
|

[jira] [Created] (IGNITE-1150) Need to change log message about untrusted ssl connection

Anton Vinogradov (Jira)
Ilya Suntsov created IGNITE-1150:
------------------------------------

             Summary: Need to change log message about untrusted ssl connection
                 Key: IGNITE-1150
                 URL: https://issues.apache.org/jira/browse/IGNITE-1150
             Project: Ignite
          Issue Type: Bug
          Components: cache
    Affects Versions: sprint-8
         Environment: jdk 1.7
host OS - OS X 10.10.3
VM - ubuntu 14.04
            Reporter: Ilya Suntsov
            Assignee: Nikolay Tikhonov


Steps for reproduction:
1. Generate key01.jks,  key2.jks, trust.jks (key02 -untrusted)
2. Node01 config (key01 + trust):
{noformat}
<property name="sslContextFactory">
            <bean class="org.apache.ignite.ssl.SslContextFactory">
                <property name="keyStoreFilePath" value="/Users/gridgain/Downloads/keystore/key01.jks"/>
                <property name="keyStorePassword" value="supervis"/>
                <property name="trustStoreFilePath" value="/Users/gridgain/Downloads/keystore/trust.jks"/>
                <property name="trustStorePassword" value="supervis"/>
       </bean>
</property>
{noformat}

Node02 config (untrusted key02):
{noformat}
 <property name="sslContextFactory">
            <bean class="org.apache.ignite.ssl.SslContextFactory">
                <property name="keyStoreFilePath" value="/home/isla/GG/keystore/notrust/key02.jks"/>
                <property name="keyStorePassword" value="supervis"/>
                <property name="trustManagers">
                    <bean class="org.apache.ignite.ssl.SslContextFactory" factory-method="getDisabledTrustManager"/>
                </property>
            </bean>
        </property>
{noformat}

3. Start both in mode.

Result:
Node01 log:
{noformat}
[17:29:51,520][INFO][disco-event-worker-#45%null%][GridDiscoveryManager] Added new node to topology: TcpDiscoveryNode [id=56ebec66-c2dd-489a-95b7-14ae906c99ee, addrs=[0:0:0:0:0:0:0:1%1, 127.0.0.1, 192.168.3.18], sockAddrs=[192.168.3.18/192.168.3.18:47500, /0:0:0:0:0:0:0:1%1:47500, /127.0.0.1:47500, /192.168.3.18:47500], discPort=47500, order=286, intOrder=144, loc=false, ver=1.3.3#20150723-sha1:f49db319, isClient=false]
[17:29:51,520][WARNING][disco-event-worker-#45%null%][GridDiscoveryManager] Node FAILED: TcpDiscoveryNode [id=56ebec66-c2dd-489a-95b7-14ae906c99ee, addrs=[0:0:0:0:0:0:0:1%1, 127.0.0.1, 192.168.3.18], sockAddrs=[192.168.3.18/192.168.3.18:47500, /0:0:0:0:0:0:0:1%1:47500, /127.0.0.1:47500, /192.168.3.18:47500], discPort=47500, order=286, intOrder=144, loc=false, ver=1.3.3#20150723-sha1:f49db319, isClient=false]
[17:29:56,530][INFO][disco-event-worker-#45%null%][GridDiscoveryManager] Added new node to topology: TcpDiscoveryNode [id=56ebec66-c2dd-489a-95b7-14ae906c99ee, addrs=[0:0:0:0:0:0:0:1%1, 127.0.0.1, 192.168.3.18], sockAddrs=[192.168.3.18/192.168.3.18:47500, /0:0:0:0:0:0:0:1%1:47500, /127.0.0.1:47500, /192.168.3.18:47500], discPort=47500, order=288, intOrder=145, loc=false, ver=1.3.3#20150723-sha1:f49db319, isClient=false]
[17:29:56,530][WARNING][disco-event-worker-#45%null%][GridDiscoveryManager] Node FAILED: TcpDiscoveryNode [id=56ebec66-c2dd-489a-95b7-14ae906c99ee, addrs=[0:0:0:0:0:0:0:1%1, 127.0.0.1, 192.168.3.18], sockAddrs=[192.168.3.18/192.168.3.18:47500, /0:0:0:0:0:0:0:1%1:47500, /127.0.0.1:47500, /192.168.3.18:47500], discPort=47500, order=288, intOrder=145, loc=false, ver=1.3.3#20150723-sha1:f49db319, isClient=false]
[17:30:01,559][INFO][disco-event-worker-#45%null%][GridDiscoveryManager] Added new node to topology: TcpDiscoveryNode [id=56ebec66-c2dd-489a-95b7-14ae906c99ee, addrs=[0:0:0:0:0:0:0:1%1, 127.0.0.1, 192.168.3.18], sockAddrs=[192.168.3.18/192.168.3.18:47500, /0:0:0:0:0:0:0:1%1:47500, /127.0.0.1:47500, /192.168.3.18:47500], discPort=47500, order=290, intOrder=146, loc=false, ver=1.3.3#20150723-sha1:f49db319, isClient=false]
[17:30:01,560][WARNING][disco-event-worker-#45%null%][GridDiscoveryManager] Node FAILED: TcpDiscoveryNode [id=56ebec66-c2dd-489a-95b7-14ae906c99ee, addrs=[0:0:0:0:0:0:0:1%1, 127.0.0.1, 192.168.3.18], sockAddrs=[192.168.3.18/192.168.3.18:47500, /0:0:0:0:0:0:0:1%1:47500, /127.0.0.1:47500, /192.168.3.18:47500], discPort=47500, order=290, intOrder=146, loc=false, ver=1.3.3#20150723-sha1:f49db319, isClient=false]{noformat}

Node02 log:
{noformat}
[17:31:21,976][WARNING][tcp-disco-sock-reader-#163%null][TcpDiscoverySpi] Failed to initialize connection. Not encrypted data received. Missed SSL configuration on node? [sock=222f2421[SSL_NULL_WITH_NULL_NULL: Socket[addr=/192.168.3.7,port=54974,localport=47500]]]
[17:31:26,989][WARNING][tcp-disco-sock-reader-#164%null][TcpDiscoverySpi] Failed to initialize connection. Not encrypted data received. Missed SSL configuration on node? [sock=3c94fcb1[SSL_NULL_WITH_NULL_NULL: Socket[addr=/192.168.3.7,port=54976,localport=47500]]]
[17:31:32,020][WARNING][tcp-disco-sock-reader-#165%null][TcpDiscoverySpi] Failed to initialize connection. Not encrypted data received. Missed SSL configuration on node? [sock=5d59a8ed[SSL_NULL_WITH_NULL_NULL: Socket[addr=/192.168.3.7,port=54978,localport=47500]]]
[17:31:37,044][WARNING][tcp-disco-sock-reader-#166%null][TcpDiscoverySpi] Failed to initialize connection. Not encrypted data received. Missed SSL configuration on node? [sock=24384979[SSL_NULL_WITH_NULL_NULL: Socket[addr=/192.168.3.7,port=54980,localport=47500]]]
[17:31:42,074][WARNING][tcp-disco-sock-reader-#167%null][TcpDiscoverySpi] Failed to initialize connection. Not encrypted data received. Missed SSL configuration on node? [sock=299c282e[SSL_NULL_WITH_NULL_NULL: Socket[addr=/192.168.3.7,port=54982,localport=47500]]]
[17:31:47,107][WARNING][tcp-disco-sock-reader-#168%null][TcpDiscoverySpi] Failed to initialize connection. Not encrypted data received. Missed SSL configuration on node? [sock=26620166[SSL_NULL_WITH_NULL_NULL: Socket[addr=/192.168.3.7,port=54984,localport=47500]]]
[17:31:52,129][WARNING][tcp-disco-sock-reader-#169%null][TcpDiscoverySpi] Failed to initialize connection. Not encrypted data received. Missed SSL configuration on node? [sock=b8a7546[SSL_NULL_WITH_NULL_NULL: Socket[addr=/192.168.3.7,port=54986,localport=47500]]]
{noformat}

I guess we should print more informative message on Node01.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
Free forum by Nabble Edit this page