File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Security and the fly likes SSL error Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Soft Skills this week in the Jobs Discussion forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "SSL error" Watch "SSL error" New topic
Author

SSL error

Felix Sima
Ranch Hand

Joined: Feb 06, 2008
Posts: 42
Hello.

I have an application that works fine with JVM 1.4.x.
I'm trying to make it work with JVM 1.5.x, but I receive the following error:

main, handling exception: java.lang.UnsupportedOperationException
main, SEND TLSv1 ALERT: fatal, description = internal_error
main, WRITE: TLSv1 Alert, length = 2
[Raw write]: length = 7


I'm not an jsse or ssl or security expert so I have no idea about how to solve this. I have found other posts describing this problem but without any solution.

The code that gives me the error is:
***********************************
...
<--- HERE
...
***********************************
Any help would be highly apreciated.
Thank you in advance.
Felix

Use www.jaaava.com - A Google CSE for Java !!!
Set Cruz
Greenhorn

Joined: Jan 31, 2008
Posts: 26
Hi ... I would set system property javax.net.ssl.debug=all on both server and client would look for the SSL/TLS handshake debugs. I suspect from your posting that TLSv1 (the SSL version) is the issue of contention...


SCJP, Oracle PL/SQL Developer
Felix Sima
Ranch Hand

Joined: Feb 06, 2008
Posts: 42
Hi Cruz.

Thanks for your response.
I have set the javax.net.ssl.debug=all. See the log below, please.
The problem is that I don't understand much from it, so I don't see the problem
Do you see anything wrong?

Best regards,
Felix



greenhorn
Member # 164315
posted Today 15.21.00
--------------------------------------------------------------------------------
Hi ... I would set system property javax.net.ssl.debug=all on both server and client would look for the SSL/TLS handshake debugs. I suspect from your posting that TLSv1 (the SSL version) is the issue of contention...
Felix Sima
Ranch Hand

Joined: Feb 06, 2008
Posts: 42
Hello again.

I cannot make the debug on the server side. It is an online timestamp service I use.

Best regards,
Felix
Set Cruz
Greenhorn

Joined: Jan 31, 2008
Posts: 26
I looked at the handshake, I no longer think the SSL version is the problem. The string "internal_error" bothers me. I noticed you are using IAIK, can you try connecting with Bouncy Castle as provider? This is just a guess as the debug shows no evidence of validation or verification problems.
Felix Sima
Ranch Hand

Joined: Feb 06, 2008
Posts: 42
Hi Cruz.

Thank you for confirming me the SSL (handshake including) is OK.
Changing the provider is not a simple task for me, as I'm not an expert.
I'll search for the answer on IAIK provider'forums as it seems an internal error. I'll try your solution as the last resort.
Any other ideas?

Thank you,
Felix
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: SSL error