My Oracle Support Banner

Intermittent SSL Negotiation Error On Handshake: java.lang.IllegalStateException: Not PKCS#1 block type 2 (Doc ID 1285772.1)

Last updated on DECEMBER 12, 2017

Applies to:

Oracle Weblogic Server - Version: 10.3.2 and later   [Release: and later ]
Information in this document applies to any platform.


The SSL negotiation error intermittently occurs on a stale SSL connection during the handshake.

The error is as follows:

java.lang.IllegalStateException: Not PKCS#1 block type 2

This error is seen while connecting to the Oracle Weblogic server using a .NET client.

Below is the error seen in the logs :

Stack Trace :


<WWManagedServer1> <[ACTIVE] ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1292273651796> <BEA-000000> <Exception during handshake, stack trace follows 
java.lang.IllegalStateException: Not PKCS#1 block type 2
at com.certicom.tls.provider.Cipher.doFinal(Unknown Source)
at com.certicom.tls.record.handshake.ServerStateSentHelloDone.handle(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source)
at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source)
at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source)
at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
at Source)
at weblogic.server.channels.DynamicSSLListenThread$


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.