• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

SSL Handshake Issue

 
Greenhorn
Posts: 10
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi,
I am getting an intermittent error during ssl handshake as "SSL Implementation Not Available or untrusted server cert chain". We are triggering the java program using oracle plsql, so our jdk version is 1.3,oracle version is 9i and necessary jsse jars and permissions pertaining to that all were enabled. At one time, https connection establishes and returns the response and at some point it throws "SSL Implementation Not Available or untrusted server cert chain" and again it starts to work.

We are using httpclient 3.1 for connection establishment and everything seems to be perfect. When I googled to get some more information related to error it seems that this error occurs normally due to server certificate corruption or improper installation of jsse jars, but for us it occurs at random times only(most of the times we could able to establish the ssl connection).

Could anyone light me up some more information so that it will be helpful to proceed further.

Regards,
Maruthi
 
Bartender
Posts: 2856
10
Firefox Browser Fedora Java
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
"Maruthi " please check your private messages for an important administrative matter. You can check them by clicking the My Private Messages link above.
 
Maruthi Chokkanathan
Greenhorn
Posts: 10
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi All,
I managed to found the answer. It is required to set the system property to explicitly load the cacerts file,security provider and protocol type.

System.setProperty("java.protocol.handler.pkgs","com.sun.net.ssl.internal.www.protocol");
System.setProperty("javax.net.ssl.trustStore","/jre/lib/security/cacerts");//Path of Cacerts file
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());

Without setting this properties, if we try to access the https url using httpclient it works in an inconsistent manner. Explicit loading works.

Thanks,

Regards,
Maruthi
 
There are 10 kinds of people in this world. Those that understand binary get this tiny ad:
a bit of art, as a gift, that will fit in a stocking
https://gardener-gift.com
reply
    Bookmark Topic Watch Topic
  • New Topic