Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Obsolete
Priority: Major
Fix Version/s: None
Affects Version/s: 7.1.0.GA
Component/s: IIOP
Labels:
None

Target Release:

7.2.z.GA
Steps to Reproduce:
Hide

Lets have two server, 7.0 having client role, 7.1 having server role

deploy client-side.war to EAP 7.0

deploy server-side.jar to EAP 7.1

start server 7.0 with command "./bin/standalone.sh -c standalone-full.xml -Djboss.node.name=1"

start EAP 7.1 with command "./bin/standalone.sh -c standalone-full.xml -Djboss.node.name=2 -Djboss.socket.binding.port-offset=100"

access localhost:8080 to run the scenario

You can see in EAP 7.0 stdout that it has got into infinite loop trying to connect to IIOP SSL socket which is not accessible.
Show
Lets have two server, 7.0 having client role, 7.1 having server role deploy client-side.war to EAP 7.0 deploy server-side.jar to EAP 7.1 start server 7.0 with command "./bin/standalone.sh -c standalone-full.xml -Djboss.node.name=1" start EAP 7.1 with command "./bin/standalone.sh -c standalone-full.xml -Djboss.node.name=2 -Djboss.socket.binding.port-offset=100" access localhost:8080 to run the scenario You can see in EAP 7.0 stdout that it has got into infinite loop trying to connect to IIOP SSL socket which is not accessible.

SFDC Cases Counter:
SFDC Cases Links:

Description

When app deployed to EAP7.0 calls an EJB deployed to EAP7.1 via IIOP, the call will fail because EAP 7.1 responds (Location Forward message - GIOP protocol) that It requires SSL even if It does not (to the best of my knowledge).

EAP 7.1 standard IIOP subystem configuration:

        <subsystem xmlns="urn:jboss:domain:iiop-openjdk:2.0">
            <orb socket-binding="iiop"/>
            <initializers security="identity" transactions="spec"/>
            <security server-requires-ssl="false" client-requires-ssl="false"/>
        </subsystem>

It is observable here (client side). ssl.target_requires is true and ssl.target_supports is false.

This does not happen when

server side is EAP 7.0 - ssl.target_requires is false and ssl.target_supports is true.
client side is EAP 7.1 - it works due to better condition at client side here which results to not using SSL

If IIOP subsystem is configured to use iiop ssl socket, It will work - EAP just does not responds correctly if ssl is not configured.

It is possible that I have malconfigured server side EAP and I am missing something.

Deployments used as reproducers are simple.

client-side: simple servlet that calls an EJB

@WebServlet(urlPatterns = "/")
public class ClientServlet extends HttpServlet {

    @Override
    protected void doGet(HttpServletRequest req, HttpServletResponse resp)
            throws ServletException, IOException {
        try {

            Context ctx = new InitialContext(new Properties());
            Object iiopObj = ctx.lookup("corbaname:iiop:127.0.0.1:3628#Bean");
            BeanHome home = (BeanHome) PortableRemoteObject.narrow(iiopObj, BeanHome.class);
            BeanRemote beanRemote = home.create();
            String string = beanRemote.invoke();
            System.out.println("Bean obtained by IIOP returned: " + string);
            resp.getWriter().append("Bean obtained by IIOP returned: ").append(string).append("\n");
        } catch (Exception e) {
            resp.getWriter().append("Calling bean failed: ");
            e.printStackTrace(resp.getWriter());
            throw new RuntimeException(e);
        }
    }
}

server-side: simple EJB

public class Bean {
    public String invoke() {
        return "server side invocation: success";
    }
}

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

client-side.war
4 kB
2018/02/19 7:10 AM
server-side.war
4 kB
2018/02/19 7:10 AM

Activity

People

Assignee:: Ivo Studensky

Reporter:: Ivan Straka

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 2018/02/19 7:22 AM

Updated:: 2021/04/07 3:03 AM

Resolved:: 2021/04/07 3:03 AM