Thread: [Quickfix-developers] SSL and stunnel help needed

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

I have set-up stunnel as described in the examples:

  http://www.quickfixj.org/confluence/display/qfj/SSL+Support

My QF engine can now logon and exchange Administration messages with the
intended broker hub. I can receive Application messages but am unable to
send application messages. When i try i get a pause then a logout without
exchange of logout messages.

The stunnel log looks like this:

2007.08.01 19:04:40 LOG7[2636:6104]: SSL alert (read): warning: close notify
2007.08.01 19:04:40 LOG7[2636:6104]: SSL closed on SSL_read
2007.08.01 19:04:40 LOG7[2636:6104]: Socket write shutdown
2007.08.01 19:04:40 LOG7[2636:6104]: SSL write shutdown
2007.08.01 19:04:40 LOG7[2636:6104]: SSL alert (write): warning: close
notify
2007.08.01 19:04:40 LOG6[2636:6104]: SSL_shutdown successfully sent
close_notify
2007.08.01 19:04:40 LOG5[2636:6104]: Connection closed: 1758 bytes sent to
SSL, 1218 bytes sent to socket
2007.08.01 19:04:40 LOG7[2636:6104]: executor finished (0 left)

I do not see any stunnel logging at all happening when Admin messages are
being exchanged (or when receiving Application messages). Is this normal ?

Connection looks like this:

2007.08.02 10:42:41 LOG7[3196:5680]: executor accepted FD=176 from
127.0.0.1:2295
2007.08.02 10:42:41 LOG7[3196:5680]: Creating a new thread
2007.08.02 10:42:41 LOG7[3196:5680]: New thread created
2007.08.02 10:42:41 LOG7[3196:4676]: executor started
2007.08.02 10:42:41 LOG7[3196:4676]: FD 176 in non-blocking mode
2007.08.02 10:42:41 LOG5[3196:4676]: executor accepted connection from
127.0.0.1:2295
2007.08.02 10:42:41 LOG7[3196:4676]: FD 192 in non-blocking mode
2007.08.02 10:42:41 LOG7[3196:4676]: executor connecting xxx.xxx.xxx.xx:4433
2007.08.02 10:42:41 LOG7[3196:4676]: connect_wait: waiting 10 seconds
2007.08.02 10:42:41 LOG7[3196:4676]: connect_wait: connected
2007.08.02 10:42:41 LOG5[3196:4676]: executor connected remote server from
192.168.37.165:2296
2007.08.02 10:42:41 LOG7[3196:4676]: Remote FD=192 initialized
2007.08.02 10:42:41 LOG7[3196:4676]: SSL state (connect): before/connect
initialization
2007.08.02 10:42:41 LOG7[3196:4676]: SSL state (connect): SSLv3 write client
hello A
2007.08.02 10:42:41 LOG7[3196:4676]: SSL state (connect): SSLv3 read server
hello A
2007.08.02 10:42:41 LOG7[3196:4676]: SSL state (connect): SSLv3 read
finished A
2007.08.02 10:42:41 LOG7[3196:4676]: SSL state (connect): SSLv3 write change
cipher spec A
2007.08.02 10:42:41 LOG7[3196:4676]: SSL state (connect): SSLv3 write
finished A
2007.08.02 10:42:41 LOG7[3196:4676]: SSL state (connect): SSLv3 flush data
2007.08.02 10:42:41 LOG7[3196:4676]:    1 items in the session cache
2007.08.02 10:42:41 LOG7[3196:4676]:    3 client connects (SSL_connect())
2007.08.02 10:42:41 LOG7[3196:4676]:    3 client connects that finished
2007.08.02 10:42:41 LOG7[3196:4676]:    0 client renegotiations requested
2007.08.02 10:42:41 LOG7[3196:4676]:    0 server connects (SSL_accept())
2007.08.02 10:42:41 LOG7[3196:4676]:    0 server connects that finished
2007.08.02 10:42:41 LOG7[3196:4676]:    0 server renegotiations requested
2007.08.02 10:42:41 LOG7[3196:4676]:    2 session cache hits
2007.08.02 10:42:41 LOG7[3196:4676]:    0 session cache misses
2007.08.02 10:42:41 LOG7[3196:4676]:    0 session cache timeouts
2007.08.02 10:42:41 LOG6[3196:4676]: SSL connected: previous session reused

Any help would be appreciated,

Thanks,

John

-- 
View this message in context: http://www.nabble.com/SSL-and-stunnel-help-needed-tf4205278.html#a11961875
Sent from the QuickFIX - Dev mailing list archive at Nabble.com.

Thread: [Quickfix-developers] SSL and stunnel help needed

quickfix-developers