Return-Path: <dev-return-55719-archive-asf-public=cust-asf.ponee.io@directory.apache.org>
X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io
Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io
Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183])
	by cust-asf2.ponee.io (Postfix) with ESMTP id 3A88F200C67
	for <archive-asf-public-internal@cust-asf2.ponee.io>; Mon, 15 May 2017 22:03:49 +0200 (CEST)
Received: by cust-asf.ponee.io (Postfix)
	id 3910D160BC2; Mon, 15 May 2017 20:03:49 +0000 (UTC)
Delivered-To: archive-asf-public@cust-asf.ponee.io
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by cust-asf.ponee.io (Postfix) with SMTP id 7E991160BA9
	for <archive-asf-public@cust-asf.ponee.io>; Mon, 15 May 2017 22:03:48 +0200 (CEST)
Received: (qmail 15016 invoked by uid 500); 15 May 2017 20:03:47 -0000
Mailing-List: contact dev-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@directory.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@directory.apache.org>
List-Post: <mailto:dev@directory.apache.org>
List-Id: <dev.directory.apache.org>
Reply-To: "Apache Directory Developers List" <dev@directory.apache.org>
Delivered-To: mailing list dev@directory.apache.org
Received: (qmail 15006 invoked by uid 99); 15 May 2017 20:03:47 -0000
Received: from pnap-us-west-generic-nat.apache.org (HELO spamd4-us-west.apache.org) (209.188.14.142)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 15 May 2017 20:03:47 +0000
Received: from localhost (localhost [127.0.0.1])
	by spamd4-us-west.apache.org (ASF Mail Server at spamd4-us-west.apache.org) with ESMTP id EE826C04EF
	for <dev@directory.apache.org>; Mon, 15 May 2017 20:03:46 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at spamd4-us-west.apache.org
X-Spam-Flag: NO
X-Spam-Score: 2.173
X-Spam-Level: **
X-Spam-Status: No, score=2.173 tagged_above=-999 required=6.31
	tests=[DKIM_ADSP_CUSTOM_MED=0.001, NML_ADSP_CUSTOM_MED=1.2,
	SPF_SOFTFAIL=0.972] autolearn=disabled
Received: from mx1-lw-eu.apache.org ([10.40.0.8])
	by localhost (spamd4-us-west.apache.org [10.40.0.11]) (amavisd-new, port 10024)
	with ESMTP id zBKokpADB6BH for <dev@directory.apache.org>;
	Mon, 15 May 2017 20:03:46 +0000 (UTC)
Received: from zmcc-5-mx.zmailcloud.com (zmcc-5-mx.zmailcloud.com [52.201.171.122])
	by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with ESMTPS id 9DFE95F3BC
	for <dev@directory.apache.org>; Mon, 15 May 2017 20:03:45 +0000 (UTC)
Received: from zmcc-5-mta-1.zmailcloud.com (127.37.197.104.bc.googleusercontent.com [104.197.37.127])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by zmcc-5-mx.zmailcloud.com (Postfix) with ESMTPS id 433C54054A
	for <dev@directory.apache.org>; Mon, 15 May 2017 15:04:21 -0500 (CDT)
Received: from zmcc-5-mta-1.zmailcloud.com (localhost [127.0.0.1])
	by zmcc-5-mta-1.zmailcloud.com (Postfix) with ESMTPS id AC4B6C0FDB
	for <dev@directory.apache.org>; Mon, 15 May 2017 15:03:38 -0500 (CDT)
Received: from localhost (localhost [127.0.0.1])
	by zmcc-5-mta-1.zmailcloud.com (Postfix) with ESMTP id 9F66EC03FB
	for <dev@directory.apache.org>; Mon, 15 May 2017 15:03:38 -0500 (CDT)
X-Virus-Scanned: amavisd-new at zmcc-5-mta-1.zmailcloud.com
Received: from zmcc-5-mta-1.zmailcloud.com ([127.0.0.1])
	by localhost (zmcc-5-mta-1.zmailcloud.com [127.0.0.1]) (amavisd-new, port 10026)
	with ESMTP id aJ7K02NcCHLP for <dev@directory.apache.org>;
	Mon, 15 May 2017 15:03:38 -0500 (CDT)
Received: from MacBook-Pro.local (unknown [83.202.2.198])
	by zmcc-5-mta-1.zmailcloud.com (Postfix) with ESMTPSA id 555B9C0FB2
	for <dev@directory.apache.org>; Mon, 15 May 2017 15:03:38 -0500 (CDT)
Subject: Re: [ApacheDS] EntryCursor hangs when search ApacheDS with SSL/TLS
To: "dev@directory.apache.org >> Apache Directory Developers List"
 <dev@directory.apache.org>
References: <7a426593271b456a8725813796ad2bd1@MLBXCH14.cs.myharris.net>
From: =?UTF-8?Q?Emmanuel_L=c3=a9charny?= <elecharny@gmail.com>
Message-ID: <091a04dd-4b01-f0e7-151a-732fe905568b@gmail.com>
Date: Mon, 15 May 2017 22:03:37 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0)
 Gecko/20100101 Thunderbird/52.1.0
MIME-Version: 1.0
In-Reply-To: <7a426593271b456a8725813796ad2bd1@MLBXCH14.cs.myharris.net>
Content-Type: text/plain; charset=utf-8
Content-Language: fr
Content-Transfer-Encoding: quoted-printable
archived-at: Mon, 15 May 2017 20:03:49 -0000



Le 15/05/2017 =C3=A0 18:46, Pittman, Michael a =C3=A9crit :
> Hi Guys,
>
> I'm trying to harden my system by implementing SSL/TLS encryption betwe=
en my client and ApacheDS server. I'm running into the issue where once I=
 use LDAPS or startTLS, then when I go to search ApacheDS it hangs on the=
 EntryCursor.next(). I'm able to create the LdapNetworkConnection without=
 any ssh handshake errors, but when I start looping through the entry cur=
sor it will randomly hang and never timeout. Once I go back to not using =
encryption everything starts to work again.
>
> I'm using a selfsigned cert that I generated with java keytool.
>
> I am using the latest versions of ApacheDS and of the Apache Ldap clien=
t API. I'm happy to provide you any information you need to help me debug=
 this issue.
>
> Any help to get me on the right track is greatly appreciated.

Hi,

do you et at least one entry ?

How big are the entries ?

Also could you provide the code you use on teh client side ?

Last, not least, ApacheDS version, LDAP API version and Java version,
please :-)

Thanks !

--=20
Emmanuel Lecharny

Symas.com
directory.apache.org