JDK-8211107 : LDAPS communication failure with jdk 1.8.0_181
  • Type: Bug
  • Component: core-libs
  • Sub-Component: javax.naming
  • Affected Version: 7u191,8u181
  • Priority: P2
  • Status: Closed
  • Resolution: Fixed
  • Submitted: 2018-09-25
  • Updated: 2019-05-17
  • Resolved: 2018-10-03
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 6 JDK 7 JDK 8 Other
11.0.1Fixed 6u211Fixed 7u191Fixed 8u181Fixed openjdk7uFixed
Sub Tasks
JDK-8211745 :  
Description
Regression seen when upgrading to 8u181:

main, WRITE: TLSv1.2 Handshake, length = 400
[Raw write]: length = 405
0000: 16 03 03 01 90 2A 7A 53   FA D1 EC 7E 78 02 0F 7B  .....*zS....x...
<snip>
0180: 00 DA D9 DA 77 5B 79 F3   0B 40 CB C7 F4 26 7D 59  ....w[y..@...&.Y
0190: 7E 54 B4 D5 EF                                     .T...
main, setSoTimeout(0) called
Padded plaintext before ENCRYPTION:  len = 208
0000: F4 D2 7D 7D 17 47 34 7E   55 DE 14 FE DC 21 ED 94  .....G4.U....!..
<snip>
00C0: 14 21 6C E7 59 D5 23 69   FA 77 42 85 BD 48 01 01  .!l.Y.#i.wB..H..
main, WRITE: TLSv1.2 Application Data, length = 208
[Raw write]: length = 213
0000: 17 03 03 00 D0 88 38 E4   72 C4 A2 9C 48 EC C1 F8  ......8.r...H...
<snip>
00C0: B6 CA 00 53 8E 23 B3 C6   A2 E7 EB 5A 69 8D D2 EE  ...S.#.....Zi...
00D0: BA 93 3F 21 C3                                     ..?!.
[Raw read]: length = 5
0000: 15 03 03 00 50                                     ....P
[Raw read]: length = 80
0000: 89 54 09 2A 2F 04 47 6D   CF 71 5F 30 BC AA D2 4B  .T.*/.Gm.q_0...K
<snip>
0040: 66 67 41 E7 62 D7 5C D3   F1 A6 EA DD 04 CE C9 F6  fgA.b.\.........
Thread-0, READ: TLSv1.2 Alert, length = 80
Padded plaintext after DECRYPTION:  len = 80
0000: 87 8C DE C6 C0 D8 82 17   B7 53 69 2D FB EA 32 58  .........Si-..2X
0010: 02 28 D9 82 73 BB 1C 48   E1 14 FB AF 35 4E 64 FA  .(..s..H....5Nd.
0020: DD CB AF 86 68 76 7A 40   8E 3A 73 A7 5A F6 17 46  ....hvz@.:s.Z..F
0030: D5 9F E5 98 3D F1 29 2B   43 2A 4B 46 21 7B 7B CD  ....=.)+C*KF!...
0040: 40 31 0D 0D 0D 0D 0D 0D   0D 0D 0D 0D 0D 0D 0D 0D  @1..............
Thread-0, RECV TLSv1.2 ALERT:  fatal, handshake_failure
%% Invalidated:  [Session-1, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384]
Thread-0, called closeSocket()
Thread-0, handling exception: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
Thread-0, called close()
Thread-0, called closeInternal(true)
javax.naming.ServiceUnavailableException: store.xxx.oracle.com:3131; socket closed
    at com.sun.jndi.ldap.Connection.readReply(Unknown Source)
    at com.sun.jndi.ldap.LdapClient.ldapBind(Unknown Source)
    at com.sun.jndi.ldap.LdapClient.authenticate(Unknown Source)
    at com.sun.jndi.ldap.LdapCtx.connect(Unknown Source)
    at com.sun.jndi.ldap.LdapCtx.<init>(Unknown Source)
    at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(Unknown Source)
    at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(Unknown Source)
    at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(Unknown Source)
    at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(Unknown Source)
    at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
    at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
    at javax.naming.InitialContext.init(Unknown Source)
    at javax.naming.ldap.InitialLdapContext.<init>(Unknown Source)
    at oracle.sysman.emaas.platform.servicemanager.cli.command.LdapCheck.main(LdapCheck.java:29)