• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Liutauras Vilda
  • Bear Bibeault
  • Junilu Lacar
  • Martin Vashko
Sheriffs:
  • Jeanne Boyarsky
  • Tim Cooke
  • Knute Snortum
Saloon Keepers:
  • Ron McLeod
  • Tim Moores
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
Bartenders:
  • Scott Selikoff
  • salvin francis
  • Piet Souris

Java 8 Update 162 javax.net.ssl.sslexception received fatal alert unexpected_message

 
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi All,

I just would like to state I am learning about Java so consider me as a newbie.

So at work we have Windows 7 Client using Java 7 Update 25 and connects to a java web based application and works fine.

I am upgrading the computers to Java 8 Update 162 and getting the error below after I input login details to the application



I have done research and this points to the application requiring authentication/handshake at webserver at SSL which I also checked the network traffic and compared between Java 7 machine and Java 8 machine and Java 7 will happily do a single handshake with the web server at SSL and then continue with TLS but the Java 8 machine won't do this even though I have enabled the algorithm within the java.security file BUT when I only leave SSLv3 enabled on Java 8 and disable TLS as a whole the application works fine but this breaks other web based application that require TLS as minimum.

I do know Java 8 Update 31 (8u31) has disabled SSLv3 - which you can enable within java.security.

I have imported the website certificate within IE11 and also via Java Control Panel still same issue.

Also imported via command line in Java cacerts - still same error.

The website support have also updated the website cert in a test environment still get the same problem

What my question is:

Is possible from the client side to configure JAVA use SSLv3 for a website and port number?

I know worst case scenario we would have to go to the web application and up the encryption level to TLSv1.2 but this is supported by a different team not helping much as this time.

Here is the code on the Java console from the client where it fails:


 
Good night. Drive safely. Here's a tiny ad for the road:
Sauce Labs - World's Largest Continuous Testing Cloud for Websites and Mobile Apps
https://coderanch.com/t/722574/Sauce-Labs-World-Largest-Continuous
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!