Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

Weblogic 7.0 SP1 SSL Handshake failure.

0 views

Skip to first unread message

Govind Kumar

unread,

Feb 1, 2005, 2:35:58 AM2/1/05

Hi,
In the production env:, i recently installed the updated certificate (got signed from verisign). After updating the new certificate file in the domain, i restarted the server. On trying to connect through t3s protocol, i am getting a hand shake exception. So to debug the issue, i restarted the server with SSLDebug option set.

On trying to connect to the server, the Debug log generated :

java.lang.IllegalStateException
at com.certicom.tls.provider.cipher.JSAFE_RSA.doFinal(Unknown Source)
at com.certicom.tls.record.handshake.ServerStateSentHelloDone.handle(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
at com.certicom.tls.record.ReadHandler.interpretContent(Unknown Source)
at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
at com.certicom.net.ssl.CerticomContextWrapper.forceHandshakeOnAcceptedSocket(Unknown Source)
at weblogic.t3.srvr.SSLListenThread$1.execute(SSLListenThread.java:400)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:153)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:134)
<000000> <NEW ALERT: com.certicom.tls.record.alert.Alert@333abb Severity: 2 Type: 40>
java.lang.Exception: Stack trace
at weblogic.security.utils.SSLSetup.debug(SSLSetup.java:237)
at com.certicom.tls.record.alert.Alert.<init>(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
at com.certicom.tls.record.ReadHandler.interpretContent(Unknown Source)
at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
at com.certicom.net.ssl.CerticomContextWrapper.forceHandshakeOnAcceptedSocket(Unknown Source)
at weblogic.t3.srvr.SSLListenThread$1.execute(SSLListenThread.java:400)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:153)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:134)

The trusted certificates from the key store was shown to be correctly loaded (from the log).

Could anyone give an insight as to what the problem can be ? Is this a certificate issue ? Also what all attributes of Digital Certificate are verified during SSL handshake.

Thanks in Advance & Regards,
Govind

Kuldeep Bahth

unread,

Feb 3, 2005, 4:41:41 PM2/3/05

Hello,

This is a known issue on WLS 7.0 sp1/sp2 release , please refer to following link for the published technical tip.

http://iaskbea-2.bea.com/askbea/wls/S-21682.html

Regards,

Kuldeep Singh.

0 new messages