AnsweredAssumed Answered

SSL Handshake Error on REST step

Question asked by cmjchrisjones on Jul 25, 2018
Latest reply on Aug 20, 2018 by cmjchrisjones

I currently have a virtual service that is being used as a proxy between 2 endpoints. When its deployed it is using HTTP.

 

I had this working on an older DevTest console, v8.x I think (not sure). We have recently updated to use version 9.5.1 (I know this isn't the most recent version but is outside of my control).

 

Depending on certain arguments in the incoming request, it either goes to a Virtual HTTP/S Live Invocation step (works fine) or a REST step (this is where I'm having an issue).

 

On the REST step, its going and calling an internal service over HTTPS, this was working fine on our 8.x version but on 9.5.1 I'm getting the following SSL handshake error (see below)

 

We've tried the solutions suggested here (adding -Dhttps.protocols=TLSv1.1TLSv1.2 to vmoptions) and here (adding https.protocols=SSLv3, TLSv1.2 to the local.properties file)

 but these don't appear to have made any difference.

 

Is there anything else anybody can suggest?

 

Thanks in advance

 

 

 

============================================================================
| javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
============================================================================
| Step: I&A
----------------------------------------------------------------------------
| Message: Remote host closed connection during handshake
----------------------------------------------------------------------------
| Trapped Exception: Remote host closed connection during handshake
| Trapped Message: javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
----------------------------------------------------------------------------
STACK TRACE
javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source)
at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)
at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:535)
at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:403)
at org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java:177)
at org.apache.http.impl.conn.ManagedClientConnectionImpl.open(ManagedClientConnectionImpl.java:304)
at org.apache.http.impl.client.DefaultRequestDirector.tryConnect(DefaultRequestDirector.java:611)
at org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:446)
at org.apache.http.impl.client.AbstractHttpClient.doExecute(AbstractHttpClient.java:863)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:72)
at com.itko.lisa.test.CommTrans.doSend(CommTrans.java:1026)
at com.itko.lisa.test.CommTrans.send(CommTrans.java:815)
at com.itko.lisa.test.CommTrans.sendPOST(CommTrans.java:793)
at com.itko.lisa.ws.rest.RESTNode.doSend(RESTNode.java:214)
at com.itko.lisa.ws.rest.RESTNode.doWebTrans(RESTNode.java:168)
at com.itko.lisa.ws.rest.RESTNodeBase.execute(RESTNodeBase.java:362)
at com.itko.lisa.test.TestNode.executeNode(TestNode.java:981)
at com.itko.lisa.test.TestCase.execute(TestCase.java:1288)
at com.itko.lisa.test.TestCase.execute(TestCase.java:1203)
at com.itko.lisa.test.TestCase.executeNextNode(TestCase.java:1188)
at com.itko.lisa.test.TestCase.executeTest(TestCase.java:1129)
at com.itko.lisa.coordinator.Instance.run(Instance.java:204)
Caused by: java.io.EOFException: SSL peer shut down incorrectly
at sun.security.ssl.InputRecord.read(Unknown Source)
... 24 more
============================================================================

Outcomes