I'm facing a SSL problem. I built a worker driving an SSLEngine, that properly worked with Java 6 (in most case I suppose).
With jdk7u7 client and server-side (the server is under Ubuntu) :
- it works under Ubuntu x64 launching with eclipse or as a runnable jar.
- does work (strange behaviour, initially didn't work, after many jdk switches) under Windows 7 launching with eclipse
- doesn't work under Windows 7 and XP packaging the client as a javafx bundled application in an Ant task.
The certificate is self-signed, here are the command I typed :
keytool -genkey -alias myalias -keyalg RSA -validity 10000 –keystore server.keystore –storetype JKS
keytool -export -alias myalias –keystore server.keystore -rfc -file public.cert
keytool -import -alias myalias -file public.cert -keystore server.truststore
The keystore and truststores are properly loaded server-side, and the truststore only for the client.
What we saw is that when succeeding, the initial cipher suite is not the same, but trying to force using a specific suite wasn't successfull.
We also tried using unlimited strength JCE thinking it may be involved, without result.
We produced some logs (-Djavax.net.debug=all) for both success (Client eclipse/windows seven) and failure (bundled client under windows) scenarii (see bellow).
Please give any advice or clue we could investigate, and thanks for your attention !