Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8176479

javax.net.ssl.SSLHandshakeException: Unsupported curveId: 21

    Details

      Description

      1. Yes issue is Not present when we are using JDK 1.8.0.112 is only present
      in jdk 1.8.0.121 as EC keys less than 256 are not supported anymore.

      2. Using -Dcom.sun.net.ssl.enableECC=false and restart the WebLogic server
      problem does not exist due the fact that ECC is disabled and Ciphers with EC
      are not used.

      But this is not solution but only workaround. Due to security reason we do
      not like disable ECC and use Ciphers without EC. So we would like to find way
      to still use Ciphers with EC with keys from 256bits. So we need to find way
      to send list of supported Curves ID in Client Hello message to make
      successful Handshake between our Weblogic (on jdk1.8.0.121) and LDAP.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                coffeys Sean Coffey
                Reporter:
                shadowbug Shadow Bug
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: