Databases
StackOverflow2013
Postsdbo
PO
Body
 

Note that there are some explanatory texts on larger screens.

plurals
  1. PO
    text
    copied!<p>I have seen issues like this with TLS/SSLv3 negotiation. <a href="http://www.oracle.com/technetwork/java/javase/documentation/tlsreadme2-176330.html" rel="noreferrer">http://www.oracle.com/technetwork/java/javase/documentation/tlsreadme2-176330.html</a></p> <blockquote> <p>In SSL/TLS, renegotiations can be initiated by either side. Like the Phase 1 fix, applications communicating with an un-upgraded peer in Interoperable mode and that attempt to initiate renegotiation (via <code>SSLSocket.startHandshake()</code> or <code>SSLEngine.beginHandshake()</code>) will receive a <code>SSLHandshakeException</code> (<code>IOException</code>) and the connection will be shutdown (<code>handshake_failure</code>). Applications that receive a renegotiation request from a non-upgraded peer will respond according to the type of connection in place:</p> <ul> <li>TLSv1: A warning <code>Alert</code> message of type "<code>no_renegotiation</code>(100)" will be sent to the peer and the connection will remain open. Older versions of SunJSSE will shutdown the connection when a "<code>no_renegotiation</code>" Alert is received.</li> <li>SSLv3: The application will receive a <code>SSLHandshakeException</code>, and the connection will be closed (<code>handshake_failure</code>). ("<code>no_renegotiation</code>" is not defined in the SSLv3 spec.)</li> </ul> <p>To set these modes, two system properties are used:</p> <ul> <li><code>sun.security.ssl.allowUnsafeRenegotiation</code> - Introduced in Phase 1, this controls whether legacy (unsafe) renegotiations are permitted.</li> <li><code>sun.security.ssl.allowLegacyHelloMessages</code> - Introduced in Phase 2, this allows the peer to handshake without requiring the proper RFC 5746 messages.</li> </ul> </blockquote> <p>If that still doesn't help, you can try turning on SSL dedug, and taking a look at the handshaking.<br> <code>-Djavax.net.debug=all</code></p>
 

Querying!

 
Guidance
An individual column

Larger individual text columns get their own page to allow for proper reading.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload