Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8176479

javax.net.ssl.SSLHandshakeException: Unsupported curveId: 21

    XMLWordPrintable

Details

    Description

      1. Yes issue is Not present when we are using JDK 1.8.0.112 is only present
      in jdk 1.8.0.121 as EC keys less than 256 are not supported anymore.

      2. Using -Dcom.sun.net.ssl.enableECC=false and restart the WebLogic server
      problem does not exist due the fact that ECC is disabled and Ciphers with EC
      are not used.

      But this is not solution but only workaround. Due to security reason we do
      not like disable ECC and use Ciphers without EC. So we would like to find way
      to still use Ciphers with EC with keys from 256bits. So we need to find way
      to send list of supported Curves ID in Client Hello message to make
      successful Handshake between our Weblogic (on jdk1.8.0.121) and LDAP.

      Attachments

        Issue Links

          Activity

            People

              coffeys Sean Coffey
              shadowbug Shadow Bug
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: