Re: Casove razitko s Postsignum

Dusan Zatkovsky Wed, 09 May 2012 04:36:10 -0700

Cau.

Nepomaha nic.


1. Uz som skusil z nasledovnej mnoziny:

     System.setProperty("javax.net.debug", "ssl:all");

System.setProperty("sun.security.ssl.allowUnsafeRenegotiation","true");System.setProperty("sun.security.ssl.allowLegacyRenegotiation","true");System.setProperty("sun.security.ssl.allowLegacyHelloMessages","true");

        System.setProperty("sun.security.ssl.allowRenegotiation", "true");
        System.setProperty("https.protocols", "SSL");
        System.setProperty("javax.net.ssl.trustStore", truststorePath);

2. Zaroven som skusil trustovat uplne vsetko cez vlastnyX509TrustManager a HostnameVerifier.


3. Na preskacku pouzivam apache httpclient versus java httpsurlconnection.

4. Roznymi konstruktrmi vyrabam rozne sslSocketFactory.

5. googlom som narazil na niekolko tem, popisujucich tento problem, aleani jedna nezabrala


6. naimpotoval som vsetky certifikaty do cacerts truststore

7. skusam rozne verzie JDK ( linux 1.6, 1.7, openjdk 1.7, windows 1.6 )

Napriek vsetkemu mi z druhej strany pride Encrypted alert 28 ( 40 dec ):

handshake_failure:  Reception of a handshake_failure alert message
      indicates that the sender was unable to negotiate an acceptable
      set of security parameters given the options available.  This is a
      fatal error.


Uz stracam nadej :-)


--
Dusan

Ahoj, krome
sun.security.ssl.allowUnsafeRenegotiation=true
Zkus jeste
sun.security.ssl.allowLegacyHelloMessages=true

podle
http://www.oracle.com/technetwork/java/javase/documentation/tlsreadme2-176330.html
https://forums.oracle.com/forums/thread.jspa?threadID=2241443
by to mohlo zabrat, tedy pokud ta exception v debugu
je exception kterou zminujou v uvedenem odkazu.

Chtelo by to vedet, co pouzivaj za java update na druhe strane.

Re: Casove razitko s Postsignum

Odpovedet emailem