-
Notifications
You must be signed in to change notification settings - Fork 14
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support for Java 6 and TLSv1.2 #108
Comments
@mrjonze If you are not hitting "javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target", please kindly clarify your issue here. Assume you have the cert issue, could you check /etc/nginx/nginx.conf on ECS? It should have following entries. |
Hello, @dunedodo, thank you for the quick answer. I have an Oracle-supported version of Java 6, but it doesn't seem to have those ciphers available. I already imported the certificate into my JVM and it always returns handshake_failure when I try to reach the ECS server through HTTPS. I don't have the information regarding nginx.conf right away, but I'll check them and return to you as soon as possible. Does ECS only work with those ciphers you mentioned? I did some research online and I found the following ciphers as options to ECS: But if I got it right, I must have in my JVM the ciphers used in nginx.conf, right? |
@mrjonze The solution would depend on your exception. Could you provide more information for your error stacktrace? For your question on the ciphers, the answer is simply yes. I'm not sure which ECS version you are using, but you should make sure JVM support the cipher. |
Hello,
I am trying to use the client with a critical project I have which is built on Java 6. It worked fine using HTTP, however when using HTTPS I always get a handshake_failure. The version I am using is 3.1.3, the last one compatible with Java 6.
Do you have any tips on how to make this version to work with TLSv1.2?
Thanks in advance.
The text was updated successfully, but these errors were encountered: