Uploaded image for project: 'OpenDJ'
  1. OpenDJ
  2. OPENDJ-1151

OpenDJ unable to initialize the SSL context and does not start


    • Type: Bug
    • Status: Done
    • Priority: Major
    • Resolution: Cannot Reproduce
    • Affects Version/s: 2.6.0
    • Fix Version/s: Not applicable
    • Component/s: security
    • Labels:
    • Environment:
      Red Hat Enterprise Linux Server release 6.4 (Santiago)
      64 bits
      JVM Information: 1.7.0_25-mockbuild_2013_06_26_07_26-b00 by Oracle Corporation, 64-bit architecture, 675086336 bytes heap size
    • Story Points:


      I've created the OpenDJ keystore from a PKCS#12 file, I can read the keystore with keytool, as well as the truststore, but OpenDJ fails to start:
      [opendj@identite2 bin]$ id
      uid=77(opendj) gid=77(opendj) groups=77(opendj) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
      [opendj@identite2 bin]$ ./start-ds
      [20/Sep/2013:14:43:15 +0200] category=EXTENSIONS severity=NOTICE msgID=1507899 msg=Loaded extension from file '/logiciels/OpenDJ/lib/extensions/snmp-mib2605.jar' (build 2.6.0, revision 9086)
      [20/Sep/2013:14:43:15 +0200] category=CORE severity=NOTICE msgID=458886 msg=OpenDJ 2.6.0 (build 20130626200626Z, R9086) starting up
      [20/Sep/2013:14:43:20 +0200] category=RUNTIME_INFORMATION severity=NOTICE msgID=20381717 msg=Installation Directory: /logiciels/OpenDJ
      [20/Sep/2013:14:43:20 +0200] category=RUNTIME_INFORMATION severity=NOTICE msgID=20381719 msg=Instance Directory: /logiciels/OpenDJ
      [20/Sep/2013:14:43:20 +0200] category=RUNTIME_INFORMATION severity=NOTICE [20/Sep/2013:14:48:27 +0200] category=RUNTIME_INFORMATION severity=NOTICE msgID=20381713 msg=JVM Information: 1.7.0_25-mockbuild_2013_06_26_07_26-b00 by Oracle Corporation, 64-bit architecture, 675086336 bytes heap size
      [20/Sep/2013:14:43:20 +0200] category=RUNTIME_INFORMATION severity=NOTICE msgID=20381714 msg=JVM Host: identite2.univ-lyon2.fr, running Linux 2.6.32-358.18.1.el6.x86_64 amd64, 1968758784 bytes physical memory size, number of processors available 1
      [20/Sep/2013:14:43:20 +0200] category=RUNTIME_INFORMATION severity=NOTICE msgID=20381715 msg=JVM Arguments: "-Dorg.opends.server.scriptName=start-ds"
      [20/Sep/2013:14:43:24 +0200] category=JEB severity=NOTICE msgID=8847402 msg=The database backend Supann containing 1 entries has started
      [20/Sep/2013:14:43:24 +0200] category=EXTENSIONS severity=NOTICE msgID=1507549 msg=DIGEST-MD5 SASL mechanism using a server fully qualified domain name of: identite2.univ-lyon2.fr
      [20/Sep/2013:14:43:25 +0200] category=CORE severity=NOTICE msgID=458891 msg=The Directory Server has sent an alert notification generated by class org.opends.server.core.DirectoryServer (alert type org.opends.server.DirectoryServerShutdown, alert ID 458893): The Directory Server has started the shutdown process. The shutdown was initiated by an instance of class org.opends.server.core.DirectoryServer and the reason provided for the shutdown was An error occurred while trying to start the Directory Server: An error occurred while trying to initialize a connection handler loaded from class org.opends.server.protocols.ldap.LDAPConnectionHandler with the information in configuration entry cn=LDAP Connection Handler,cn=Connection Handlers,cn=config: An error occurred while attempting to initialize the SSL context for use in the LDAP Connection Handler: An error occurred while trying to create a key manager factory to access the contents of keystore file config/keystore: UnrecoverableKeyException(Cannot recover key) (id=1310803) (LDAPConnectionHandler.java:723 NativeMethodAccessorImpl.java:-2 NativeMethodAccessorImpl.java:57 DelegatingMethodAccessorImpl.java:43 Method.java:616 ConnectionHandlerConfigManager.java:441 ConnectionHandlerConfigManager.java:319 DirectoryServer.java:2829 DirectoryServer.java:1435 DirectoryServer.java:9651). This connection handler will be disabled null
      [20/Sep/2013:14:43:25 +0200] category=BACKEND severity=NOTICE msgID=9896306 msg=The backend Supann is now taken offline
      [20/Sep/2013:14:43:25 +0200] category=CORE severity=NOTICE msgID=458955 msg=The Directory Server is now stopped




            • Assignee:
              matthew Matthew Swift
              cgrosjean Cyril Grosjean
              Dev Assignee:
              Matthew Swift
            • Votes:
              1 Vote for this issue
              4 Start watching this issue


              • Created: