Bhargav_9588
Oct 24, 2008Nimbostratus
handshake_failure
Hello,
After upgrading LTM to 9.3.1 we started noticing "handshake_failure" errors with java clients that are trying to connect to https://www.***.com/ (virtual server in LTM with Client SSL Profile and Client Certificate set to "request").
It use to work with out any issues before upgrade with same settings. After upgrade, when java client tries to connect to same webservice with https getting following error:
main, WRITE: TLSv1 Handshake, length = 32
main, received EOFException: error
main, handling exception: javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
main, SEND TLSv1 ALERT: fatal, description = handshake_failure
main, WRITE: TLSv1 Alert, length = 18
main, called closeSocket()
Exception :javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
Authorization: javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:801)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1089)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1116)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1100)
at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:402)
at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:170)
at sun.net.www.protocol.http.HttpURLConnection.getOutputStream(HttpURLConnection.java:857)
at sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputStream(HttpsURLConnectionImpl.java:230)
at gateway.login(gateway.java:64)
at createCollection.main(createCollection.java:31)
Caused by: java.io.EOFException: SSL peer shut down incorrectly
at com.sun.net.ssl.internal.ssl.InputRecord.read(InputRecord.java:333)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:782)
Any help is appreciated and thanks in advance.
--Thanks