Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsWhite Papers
Discussion GroupsFirst AidDatabasesJavaBeansGUIJava 3DVirtual MachineCORBASecurityToolsGeneral
Java DirectoryOpen Source ProjectsSample Book ChaptersUser GroupsWeb Resources
Related Topics
Databases.NETMore Topics ...
Java Forum / General / November 2006

Tip: Looking for answers? Try searching our database.

SSL no cipher suites in common?

Thread view: 
Enable EMail AlertsStart New Thread
rmacnak@gmail.com - 11 Nov 2006 18:40 GMT
I'm trying to establish TLS over an existing socket, both the server
and client are running on the same machine with the same jre, but I
keep getting a "SSLHandshakeException: no cipher suites in common.", so
I was wondering how that's even possible.

Here is the server:

SSLContext context = SSLContext.getInstance("TLS");

 context.init(null, new javax.net.ssl.TrustManager[]{
                       new OpenTrustManager()},
new java.security.SecureRandom());

Socket plain = socket;
// Secure the plain connection
socket = context.getSocketFactory().createSocket(plain,
plain.getInetAddress().toString(), plain.getPort(), true);
socket.setSoTimeout(0);
socket.setKeepAlive(true);
((SSLSocket) socket).setEnableSessionCreation(true);
((SSLSocket) socket).setUseClientMode(false);
((SSLSocket) socket).setNeedClientAuth(false);

//enable all available cipher suites
((SSLSocket)
socket).setEnabledCipherSuites(context.getSocketFactory().getSupportedCipherSuites());

((SSLSocket) socket).startHandshake(); //SSLHandshakeException: no
cipher suites in common
Reply to this Message
EJP - 12 Nov 2006 04:43 GMT
> //enable all available cipher suites
> ((SSLSocket)
> socket).setEnabledCipherSuites(context.getSocketFactory().getSupportedCipherSuites());

Don't do this, it's insecure: it enables insecure cipher suites.

'No cipher suites in common' means that e.g. you have an RSA certificate
that the server wants to use as its authentication, but no RSA
certificates in the client's trusstore, or vice versa.
Reply to this Message


Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.