Hi everybody.
My problem is that I can send messages from an account on jabber.org to my Openfire server but not the other way around. Authentication requests do not work either.
System:
Openfire 3.7 updated from 3.6.4 (did not work with this version either)
Ubuntu
Firewall port 5222 and 5269 are open
sun-jre
self-signed server certificate
Can this be a certificate problem?
And what does the line “Unexpected answer in validation from: jabber.org” mean? Can this be the problem?
Here a debug log snipped from a message that got ‘lost’.
2011.03.03 16:43:35 Launching thread for /79.224.126.148:52721
2011.03.03 16:43:35 Exiting since queue is empty for /79.224.126.148:52721
2011.03.03 16:43:35 CertificateManager: Ignoring non-XMPP otherName, 1.3.6.1.5.5.7.8.7
2011.03.03 16:43:35 CertificateManager: Ignoring non-XMPP otherName, 1.3.6.1.5.5.7.8.7
2011.03.03 16:43:35 LocalOutgoingServerSession: Handshake error while creating secured outgoing session to remote server: jabber.org(DNS lookup: hermes.jabber.org:5269)
javax.net.ssl.SSLHandshakeException: General SSLEngine problem
at com.sun.net.ssl.internal.ssl.Handshaker.checkThrown(Handshaker.java:1015)
at com.sun.net.ssl.internal.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:480)
at com.sun.net.ssl.internal.ssl.SSLEngineImpl.writeAppRecord(SSLEngineImpl.java:1120)
at com.sun.net.ssl.internal.ssl.SSLEngineImpl.wrap(SSLEngineImpl.java:1092)
at javax.net.ssl.SSLEngine.wrap(SSLEngine.java:452)
at org.jivesoftware.openfire.net.TLSStreamHandler.doHandshake(TLSStreamHandler.java:274)
at org.jivesoftware.openfire.net.TLSStreamHandler.start(TLSStreamHandler.java:168)
at org.jivesoftware.openfire.net.SocketConnection.startTLS(SocketConnection.java:182)
at org.jivesoftware.openfire.session.LocalOutgoingServerSession.secureAndAuthenticate(LocalOutgoingServerSession.java:420)
at org.jivesoftware.openfire.session.LocalOutgoingServerSession.createOutgoingSession(LocalOutgoingServerSession.java:334)
at org.jivesoftware.openfire.session.LocalOutgoingServerSession.authenticateDomain(LocalOutgoingServerSession.java:167)
at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.sendPacket(OutgoingSessionPromise.java:261)
at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.run(OutgoingSessionPromise.java:238)
at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
at java.lang.Thread.run(Thread.java:662)
Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:174)
at com.sun.net.ssl.internal.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1490)
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:243)
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:235)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1206)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:136)
at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:593)
at com.sun.net.ssl.internal.ssl.Handshaker$1.run(Handshaker.java:533)
at java.security.AccessController.doPrivileged(Native Method)
at com.sun.net.ssl.internal.ssl.Handshaker$DelegatedTask.run(Handshaker.java:952)
at org.jivesoftware.openfire.net.TLSStreamHandler.doTasks(TLSStreamHandler.java:325)
at org.jivesoftware.openfire.net.TLSStreamHandler.doHandshake(TLSStreamHandler.java:235)
... 10 more
Caused by: java.security.cert.CertificateException: root certificate not trusted of [jabber.org, *.jabber.org]
at org.jivesoftware.openfire.net.ServerTrustManager.checkServerTrusted(ServerTrustManager.java:159)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1198)
... 17 more
2011.03.03 16:43:35 LocalOutgoingServerSession: OS - Going to try connecting using server dialback with: jabber.org
2011.03.03 16:43:35 ServerDialback: OS - Trying to connect to jabber.org:5269(DNS lookup: hermes.jabber.org:5269)
2011.03.03 16:43:35 ServerDialback: OS - Connection to jabber.org:5269 successful
2011.03.03 16:43:35 ServerDialback: OS - Sent dialback key to host: jabber.org id: b909ed06d05292e8 from domain: castle-grayskull.org
2011.03.03 16:43:35 ServerDialback: OS - Unexpected answer in validation from: jabber.org id: b909ed06d05292e8 for domain: castle-grayskull.org answer:<stream:features xmlns:stream="http://etherx.jabber.org/streams"><starttls xmlns="urn:ietf:params:xml:ns:xmpp-tls"/><dialback xmlns="urn:xmpp:features:dialback"/><compression xmlns="http://jabber.org/features/compress"><method>zlib</method></compression></stream:features>
2011.03.03 16:43:35 OutgoingServerSocketReader: Finishing Outgoing Server Reader. No session to close.
java.net.SocketException: Socket closed
at java.net.SocketInputStream.socketRead0(Native Method)
at java.net.SocketInputStream.read(SocketInputStream.java:129)
at org.jivesoftware.openfire.net.ServerTrafficCounter$InputStreamWrapper.read(ServerTrafficCounter.java:221)
at sun.nio.cs.StreamDecoder.readBytes(StreamDecoder.java:264)
at sun.nio.cs.StreamDecoder.implRead(StreamDecoder.java:306)
at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:158)
at java.io.InputStreamReader.read(InputStreamReader.java:167)
at org.xmlpull.mxp1.MXParser.fillBuf(MXParser.java:2992)
at org.xmlpull.mxp1.MXParser.more(MXParser.java:3046)
at org.jivesoftware.openfire.net.MXParser.more(MXParser.java:373)
at org.jivesoftware.openfire.net.MXParser.nextImpl(MXParser.java:85)
at org.xmlpull.mxp1.MXParser.nextToken(MXParser.java:1100)
at org.dom4j.io.XMPPPacketReader.parseDocument(XMPPPacketReader.java:317)
at org.jivesoftware.openfire.server.OutgoingServerSocketReader$1.run(OutgoingServerSocketReader.java:105)
2011.03.03 16:43:35 [/79.224.126.148:52721] Filtered Write: org.apache.mina.filter.support.SSLHandler@6f2192a9
2011.03.03 16:43:35 [/79.224.126.148:52721] encrypt: HeapBuffer[pos=0 lim=234 cap=4096: ...]
2011.03.03 16:43:35 [/79.224.126.148:52721] Wrap res:Status = OK HandshakeStatus = NOT_HANDSHAKING
bytesConsumed = 234 bytesProduced = 261
2011.03.03 16:43:35 [/79.224.126.148:52721] encrypted buf: HeapBuffer[pos=0 lim=261 cap=261: ...]
2011.03.03 16:43:35 OutgoingSessionPromise: Error sending packet to remote server: <message type="chat" id="purple29f8e192" to="me@jabber.org/iChat" from="me@castle-grayskull.org/adium">
<composing xmlns="http://jabber.org/protocol/chatstates"/>
</message>
java.lang.Exception: Failed to create connection to remote server
at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.sendPacket(OutgoingSessionPromise.java:274)
at org.jivesoftware.openfire.server.OutgoingSessionPromise$PacketsProcessor.run(OutgoingSessionPromise.java:238)
at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
at java.lang.Thread.run(Thread.java:662)
2011.03.03 16:43:35 Launching thread for /79.224.126.148:52721
2011.03.03 16:43:35 Exiting since queue is empty for /79.224.126.148:52721
2011.03.03 16:43:35 [/79.224.126.148:52721] Filtered Write: org.apache.mina.filter.support.SSLHandler@6f2192a9
2011.03.03 16:43:35 [/79.224.126.148:52721] encrypt: HeapBuffer[pos=0 lim=234 cap=4096: ...]
2011.03.03 16:43:35 [/79.224.126.148:52721] Wrap res:Status = OK HandshakeStatus = NOT_HANDSHAKING
bytesConsumed = 234 bytesProduced = 261
2011.03.03 16:43:35 [/79.224.126.148:52721] encrypted buf: HeapBuffer[pos=0 lim=261 cap=261: ...]
2011.03.03 16:43:35 Launching thread for /79.224.126.148:52721
2011.03.03 16:43:35 OutgoingSessionPromise: Error sending packet to remote server (fast discard): <message type="chat" id="purple29f8e193" to="me@jabber.org/iChat" from="me@castle-grayskull.org/adium">
<active xmlns="http://jabber.org/protocol/chatstates"/>
<body>sdf</body>
</message>
2011.03.03 16:43:35 Exiting since queue is empty for /79.224.126.148:52721
2011.03.03 16:43:35 [/79.224.126.148:52721] Filtered Write: org.apache.mina.filter.support.SSLHandler@6f2192a9
2011.03.03 16:43:35 [/79.224.126.148:52721] encrypt: HeapBuffer[pos=0 lim=234 cap=4096: ...]
2011.03.03 16:43:35 [/79.224.126.148:52721] Wrap res:Status = OK HandshakeStatus = NOT_HANDSHAKING
bytesConsumed = 234 bytesProduced = 261
2011.03.03 16:43:35 [/79.224.126.148:52721] encrypted buf: HeapBuffer[pos=0 lim=261 cap=261: ...]
2011.03.03 16:43:35 Launching thread for /79.224.126.148:52721
2011.03.03 16:43:35 OutgoingSessionPromise: Error sending packet to remote server (fast discard): <message type="chat" id="purple29f8e194" to="me@jabber.org/iChat" from="me@castle-grayskull.org/adium">
<active xmlns="http://jabber.org/protocol/chatstates"/>
</message>
2011.03.03 16:43:35 Exiting since queue is empty for /79.224.126.148:52721
2011.03.03 16:43:35 Connect Socket[addr=/208.68.163.220,port=42600,localport=5269]
2011.03.03 16:43:36 ServerDialback: AS - Verifying key for host: jabber.org id: b909ed06d05292e8
2011.03.03 16:43:36 ServerDialback: AS - Key was: VALID for host: jabber.org id: b909ed06d05292e8
2011.03.03 16:43:36 Logging off castle-grayskull.org/edd81f92 on org.jivesoftware.openfire.net.SocketConnection@615e7597 socket: Socket[addr=/208.68.163.220,port=42600,localport=5269] session: org.jivesoftware.openfire.session.LocalIncomingServerSession@6d6de4e1 status: 1 address: castle-grayskull.org/edd81f92 id: edd81f92
I hope i provided all necessary informations.
Thanks
Sascha