• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Tim Cooke
  • Liutauras Vilda
  • Jeanne Boyarsky
  • paul wheaton
Sheriffs:
  • Ron McLeod
  • Devaka Cooray
  • Henry Wong
Saloon Keepers:
  • Tim Holloway
  • Stephan van Hulst
  • Carey Brown
  • Tim Moores
  • Mikalai Zaikin
Bartenders:
  • Frits Walraven

SSL Handshake Issue

 
Greenhorn
Posts: 10
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi,
I am getting an intermittent error during ssl handshake as "SSL Implementation Not Available or untrusted server cert chain". We are triggering the java program using oracle plsql, so our jdk version is 1.3,oracle version is 9i and necessary jsse jars and permissions pertaining to that all were enabled. At one time, https connection establishes and returns the response and at some point it throws "SSL Implementation Not Available or untrusted server cert chain" and again it starts to work.

We are using httpclient 3.1 for connection establishment and everything seems to be perfect. When I googled to get some more information related to error it seems that this error occurs normally due to server certificate corruption or improper installation of jsse jars, but for us it occurs at random times only(most of the times we could able to establish the ssl connection).

Could anyone light me up some more information so that it will be helpful to proceed further.

Regards,
Maruthi
 
Bartender
Posts: 2856
10
Firefox Browser Fedora Java
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
"Maruthi " please check your private messages for an important administrative matter. You can check them by clicking the My Private Messages link above.
 
Maruthi Chokkanathan
Greenhorn
Posts: 10
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi All,
I managed to found the answer. It is required to set the system property to explicitly load the cacerts file,security provider and protocol type.

System.setProperty("java.protocol.handler.pkgs","com.sun.net.ssl.internal.www.protocol");
System.setProperty("javax.net.ssl.trustStore","/jre/lib/security/cacerts");//Path of Cacerts file
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());

Without setting this properties, if we try to access the https url using httpclient it works in an inconsistent manner. Explicit loading works.

Thanks,

Regards,
Maruthi
 
Those who dance are thought mad by those who hear not the music. This tiny ad plays the bagpipes:
Gift giving made easy with the permaculture playing cards
https://coderanch.com/t/777758/Gift-giving-easy-permaculture-playing
reply
    Bookmark Topic Watch Topic
  • New Topic