[jacorb-developer] Configuring both 'regular' and SSL endpoints

Łukasz Wiecheć lukasz at wiechec.eu
Mon Jan 20 18:05:36 CET 2020 

Good afternoon,

My CORBA application is a long-running service that acts as both CORBA
server (ie. it offers endpoint for CORBA clients) and as a CORBA client
(ie. it initiates connections to the remote CORBA servers).

Sometimes the remote servers that I need to access run CORBA-over-SSL.

I would like to have a way to:

1. enable Corba-over-SSL to a remote client
2. enable 'regular' (ie. non-SSL) CORBA for incoming connections

For now I am only able to do either 1. or 2.; the 'switch' is enabling
the SSL via `jacorb.security.support_ssl' JacORB setting. With it
enabled, and with `OAAddress' and `OASSLAddress` settings on, the IOR
that I use reports that the port for 'regular' ORB connections is set,
but I don't seem to have anything listening on it:

------IOR components-----
TypeId	:	IDL:My/Service:1.0
TAG_INTERNET_IOP Profiles:
	Profile Id:		0
	IIOP Version:		1.2
	Host:			192.168.74.28
	Port:			1902
	Object key (URL):	2286263882/%05%01()%22A%1FF%03%02%22%10%060F8%14%14%1BHL%1B
	Object key (hex):	0x32 32 38 36 32 36 33 38 38 32 2F 05 01 29 22 41 1F 46 03 02 22 10 06 30 46 38 14 14 1B 48 4C 1B
	-- Found 3 Tagged Components--
	#0: TAG_SSL_SEC_TRANS
		target_supports	:	Integrity, DetectReplay, DetectMisordering, EstablishTrustInTarget
		target_requires	:	EstablishTrustInTarget
		SSL Port	:	1903
	#1: TAG_ORB_TYPE
		Type: 1245790976 (JacORB)
	#2: TAG_CODE_SETS
		ForChar native code set Id: ISO8859_1
		Char Conversion Code Sets: ISO8859_15, UTF8
		ForWChar native code set Id: UTF16
		WChar Conversion Code Sets: UTF8, UCS2

lukasz at docker:~$ telnet nusv028.nu.majiic 1902
Trying 192.168.74.28...
telnet: Unable to connect to remote host: Connection refused
lukasz at docker:~$ telnet nusv028.nu.majiic 1903
Trying 192.168.74.28...
Connected to nusv028.nu.majiic.
Escape character is '^'.


^CConnection closed by foreign host.

I tried to analyze the code in BasicAdapter.java (here:
https://github.com/JacORB/JacORB/blob/d21f6fc5bbae6a12c5d425fecca2d4d5c0eb4f05/core/src/main/java/org/jacorb/orb/BasicAdapter.java)
and I *think* I am setting things correctly in my `jacorb.properties'
(which I pass to JVM using `-Dcustom.props=...'):

--- START jacorb.properties ---
...
OAAddress=iiop://192.168.74.28:1902
jacorb.security.support_ssl=on
OASSLAddress=iiop://192.168.74.28:1903
jacorb.net.socket_factory=org.jacorb.orb.factory.DefaultSocketFactory
jacorb.net.server_socket_factory=org.jacorb.orb.factory.DefaultServerSocketFactory
...
--- END jacorb.properties ---

I am using default (server) socket factories, as seen above.

Any help would be appreciated!

greetings from The Netherlands,

--
Ł. Wiecheć

More information about the jacorb-developer mailing list