【发布时间】:2015-10-20 08:11:54
【问题描述】:
Java 1.7 TLS 1.2 server 和 Java 1.6 client 之间的 SSL/TLS 握手失败,客户端出现以下异常:
从客户端收到以下错误:
Remote host closed connection during handshake; nested exception is javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
at org.springframework.web.client.RestTemplate.doExecute(RestTemplate.java:498)
at org.springframework.web.client.RestTemplate.execute(RestTemplate.java:446)
at org.springframework.web.client.RestTemplate.exchange(RestTemplate.java:418)
at com.aviva.ukgi.gw.cc.midvehiclesearch.rest.MIDVehicleSearchServiceRest.executeMIDVehicleSearch_aroundBody0(MIDVehicleSearchServiceRest.java:69)
at com.aviva.ukgi.gw.cc.midvehiclesearch.rest.MIDVehicleSearchServiceRest.executeMIDVehicleSearch_aroundBody1$advice(MIDVehicleSearchServiceRest.java:134)
at com.aviva.ukgi.gw.cc.midvehiclesearch.rest.MIDVehicleSearchServiceRest.executeMIDVehicleSearch(MIDVehicleSearchServiceRest.java:1)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
服务器端:
2015-10-20 10:24:17.454 | DEBUG | qtp525589302-1668 | | org.eclipse.jetty.io.nio.ssl | 94 - org.eclipse.jetty.aggregate.jetty-all-server - 8.1.17.v20150415 | [Session-1, SSL_NULL_WITH_NULL_NULL] SslConnection@1936d287 SSL NOT_HANDSHAKING i/o/u=0/0/0 ishut=false oshut=false {AsyncHttpConnection@5e37a9ff,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0} NOT_HANDSHAKING filled=0/0 flushed=0/0
2015-10-20 10:24:17.454 | DEBUG | qtp525589302-1668 | | org.eclipse.jetty.io.nio.ssl | 94 - org.eclipse.jetty.aggregate.jetty-all-server - 8.1.17.v20150415 | [Session-1, SSL_NULL_WITH_NULL_NULL] handle SslConnection@1936d287 SSL NOT_HANDSHAKING i/o/u=0/0/0 ishut=false oshut=false {AsyncHttpConnection@5e37a9ff,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0} progress=false
2015-10-20 10:24:17.470 | DEBUG | qtp525589302-1669 | | org.eclipse.jetty.io.nio.ssl | 94 - org.eclipse.jetty.aggregate.jetty-all-server - 8.1.17.v20150415 | [Session-1, SSL_NULL_WITH_NULL_NULL] SslConnection@1936d287 SSL NOT_HANDSHAKING i/o/u=517/0/0 ishut=false oshut=false {AsyncHttpConnection@5e37a9ff,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0} NOT_HANDSHAKING filled=517/517 flushed=0/0
2015-10-20 10:24:17.471 | DEBUG | qtp525589302-1669 | | org.eclipse.jetty.io.nio.ssl | 94 - org.eclipse.jetty.aggregate.jetty-all-server - 8.1.17.v20150415 | [Session-1, SSL_NULL_WITH_NULL_NULL] unwrap OK NOT_HANDSHAKING consumed=517 produced=474
2015-10-20 10:24:17.471 | DEBUG | qtp525589302-1669 | | org.eclipse.jetty.io.nio.ssl | 94 - org.eclipse.jetty.aggregate.jetty-all-server - 8.1.17.v20150415 | [Session-1, SSL_NULL_WITH_NULL_NULL] SslConnection@1936d287 SSL NOT_HANDSHAKING i/o/u=0/0/0 ishut=false oshut=false {AsyncHttpConnection@5e37a9ff,g=HttpGenerator{s=0,h=-1,b=-1,c=-1},p=HttpParser{s=-14,l=0,c=0},r=0} NOT_HANDSHAKING filled=0/0 flushed=0/0
【问题讨论】:
-
能否请您也提供服务器端的错误?
-
在服务器端附加日志。
-
您应该在客户端应用程序中设置属性
javax.net.debug以获得足够的信息来尝试调试。 -
你能追踪客户端启用了哪些协议吗?
-
客户端应用程序使用 oracle Jdk 1.6,他们默认使用 tls 1.0 我认为...
标签: java security ssl java-7 java-6