我正在使用Java 8,Netty 5 Alpha。
我将证书从Comodo添加到密钥库,并且根据我的证书提供商建议的测试网站,它们已正确安装。
但如果我尝试使用Firefox,Chrome或curl进行连接,我会收到错误。
从curl -v我看到它获得了正确的标头,但随后SSLv3, TLS alert, Server hello (2):。这似乎与来自Java的调试消息相对应:
SEND TLSv1.2 ALERT: warning, description = close_notify
WRITE: TLSv1.2 Alert, length = 32
fatal error: 80: Inbound closed before receiving peer's close_notify: possible truncation attack?
Firefox:SSL received a record that exceeded the maximum permissible length.
来自openssl s_client -connect ...:
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-DES-CBC3-SHA
verify error:num=19:self signed certificate in certificate chain
SSL handshake has read 5982 bytes and written 531 bytes
我在其他地方读过有关NullPointerExceptions的地方,导致内部Java安全性失败。但是没有明确的解决方案。