Sometimes SSL Connections Using ECDH Fail with "javax.net.ssl.SSLHandshakeException: Invalid Padding Length" (Doc ID 1991236.1)

Last updated on NOVEMBER 05, 2016

Applies to:

Java Platform, Standard Edition - Version 7 and later
Oracle Solaris on x86-64 (64-bit)
Oracle Solaris on x86 (32-bit)
Oracle Solaris on SPARC (64-bit)
Oracle Solaris on SPARC (32-bit)
This only happens when Java is relying on PKCS#11 from Solaris.

Symptoms

Sometimes clients fail to connect to a Java application running on a Solaris server when using ECDH ciphers.  On the Java application side, a "javax.net.ssl.SSLHandshakeException: Invalid Padding length <<number>>" exception is raised when the connection is terminated.

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms