My Oracle Support Banner

WLST로 NodeManager에 연결시 SSL 프로토콜이 제한 될 경우, "javax.net.ssl.SSLHandshakeException: SSLv2Hello is disabled" 오류발생 (Doc ID 2302727.1)

Last updated on JANUARY 17, 2018

적용 대상:

Oracle WebLogic Server - 버전 10.3.6 과(와) 그 후속
이 문서의 내용은 모든 플랫폼에 적용됩니다.

증상

WebLogic 10.3.6
JDK 1.7.0_101

SSL 프로토콜이 제한되어 있으면 WLST로 NodeManager에 연결시 실패하게 됩니다. JSSE 및 TLS 는 WLS domain에 활성화 되어 있습니다.

startNodeManager.sh 및 wlst.sh 파일에 아래와 같이 옵션이 설정되어 있습니다:

-Dweblogic.security.SSL.enableJSSE=true -Dweblogic.ssl.JSSEEnabled=true -Dweblogic.security.SSL.minimumProtocolVersion=TLSv1


WLST를 사용하여 NodeManager에 연결을 시도하면 다음 오류가 발생합니다.

Jul 11, 2016 11:12:05 AM weblogic.nodemanager.server.Handler run
WARNING: Uncaught exception in server handlerjavax.net.ssl.SSLHandshakeException: SSLv2Hello is disabled
javax.net.ssl.SSLHandshakeException: SSLv2Hello is disabled
  at sun.security.ssl.InputRecord.handleUnknownRecord(InputRecord.java:598)
  at sun.security.ssl.InputRecord.read(InputRecord.java:504)
  at sun.security.ssl.EngineInputRecord.read(EngineInputRecord.java:387)
  at sun.security.ssl.SSLEngineImpl.readRecord(SSLEngineImpl.java:947)
  at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:890)
  at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:764)
  at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624)
  at weblogic.security.SSL.jsseadapter.JaSSLEngine$4.run(JaSSLEngine.java:118)
  at weblogic.security.SSL.jsseadapter.JaSSLEngine.doAction(JaSSLEngine.java:732)
  at weblogic.security.SSL.jsseadapter.JaSSLEngine.unwrap(JaSSLEngine.java:116)
  at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner$Transition_NeedUnwrap.getNextState(JaSSLEngineRunner.java:832)
  at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner.doTransitions(JaSSLEngineRunner.java:763)
  at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner.unwrap(JaSSLEngineRunner.java:1122)
  at weblogic.security.SSL.jsseadapter.JaApplicationReadableByteChannel.read(JaApplicationReadableByteChannel.java:40)
  at weblogic.security.SSL.jsseadapter.JaChannelInputStream.read(JaChannelInputStream.java:71)
  at sun.nio.cs.StreamDecoder.readBytes


# nodemanager-ssl-errors.txt

<UNEXPECTED_MESSAGE alert received from <hostname.domainname> - <ip address>.>
Traceback (innermost last):
 File "", line 1, in ?
 File "", line 123, in nmConnect
 File "", line 648, in raiseWLSTException
WLSTException: Error occured while performing nmConnect : Cannot connect to Node Manager. : [Security:090492]UNEXPECTED_MESSAGE alert received from <hostname.domainname> - <ip address>.
Use dumpStack() to view the full stacktrace
wls:/offline>


# poc_domain_nodemanager.out

Jul 11, 2016 11:09:30 AM weblogic.nodemanager.server.SSLListener run
INFO: Secure socket listener started on port 7556, host hostname.domainname/<ip address>

javax.net.ssl.SSLHandshakeException: SSLv2Hello is disabled
at sun.security.ssl.InputRecord.handleUnknownRecord(InputRecord.java:598)
at sun.security.ssl.InputRecord.read(InputRecord.java:504)
at sun.security.ssl.EngineInputRecord.read(EngineInputRecord.java:387)
at sun.security.ssl.SSLEngineImpl.readRecord(SSLEngineImpl.java:947)
at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:890)
at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:764)
at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624)
at weblogic.security.SSL.jsseadapter.JaSSLEngine$4.run(JaSSLEngine.java:118)
at weblogic.security.SSL.jsseadapter.JaSSLEngine.doAction(JaSSLEngine.java:732)
at weblogic.security.SSL.jsseadapter.JaSSLEngine.unwrap(JaSSLEngine.java:116)
at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner$Transition_NeedUnwrap.getNextState(JaSSLEngineRunner.java:832)
at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner.doTransitions(JaSSLEngineRunner.java:763)
at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner.unwrap(JaSSLEngineRunner.java:1122)
at weblogic.security.SSL.jsseadapter.JaApplicationReadableByteChannel.read(JaApplicationReadableByteChannel.java:40)
at weblogic.security.SSL.jsseadapter.JaChannelInputStream.read(JaChannelInputStream.java:71)
at sun.nio.cs.StreamDecoder.readBytes(StreamDecoder.java:283)
at sun.nio.cs.StreamDecoder.implRead(StreamDecoder.java:325)
at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:177)
at java.io.InputStreamReader.read(InputStreamReader.java:184)
at java.io.BufferedReader.fill(BufferedReader.java:154)
at java.io.BufferedReader.readLine(BufferedReader.java:317)
at java.io.BufferedReader.readLine(BufferedReader.java:382)
at weblogic.nodemanager.server.Handler.run(Handler.java:71)
at java.lang.Thread.run(Thread.java:745)

Jul 11, 2016 11:12:05 AM weblogic.nodemanager.server.Handler run
WARNING: Uncaught exception in server handlerjavax.net.ssl.SSLHandshakeException: SSLv2Hello is disabled
javax.net.ssl.SSLHandshakeException: SSLv2Hello is disabled
at sun.security.ssl.InputRecord.handleUnknownRecord(InputRecord.java:598)
at sun.security.ssl.InputRecord.read(InputRecord.java:504)
at sun.security.ssl.EngineInputRecord.read(EngineInputRecord.java:387)
at sun.security.ssl.SSLEngineImpl.readRecord(SSLEngineImpl.java:947)
at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:890)
at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:764)
at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624)
at weblogic.security.SSL.jsseadapter.JaSSLEngine$4.run(JaSSLEngine.java:118)
at weblogic.security.SSL.jsseadapter.JaSSLEngine.doAction(JaSSLEngine.java:732)
at weblogic.security.SSL.jsseadapter.JaSSLEngine.unwrap(JaSSLEngine.java:116)
at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner$Transition_NeedUnwrap.getNextState(JaSSLEngineRunner.java:832)
at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner.doTransitions(JaSSLEngineRunner.java:763)
at weblogic.security.SSL.jsseadapter.JaSSLEngineRunner.unwrap(JaSSLEngineRunner.java:1122)
at weblogic.security.SSL.jsseadapter.JaApplicationReadableByteChannel.read(JaApplicationReadableByteChannel.java:40)
at weblogic.security.SSL.jsseadapter.JaChannelInputStream.read(JaChannelInputStream.java:71)
at sun.nio.cs.StreamDecoder.readBytes(StreamDecoder.java:283)
at sun.nio.cs.StreamDecoder.implRead(StreamDecoder.java:325)
at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:177)
at java.io.InputStreamReader.read(InputStreamReader.java:184)
at java.io.BufferedReader.fill(BufferedReader.java:154)
at java.io.BufferedReader.readLine(BufferedReader.java:317)
at java.io.BufferedReader.readLine(BufferedReader.java:382)
at weblogic.nodemanager.server.Handler.run(Handler.java:71)
at java.lang.Thread.run(Thread.java:745)



변경 내역

 

원인

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


이 문서에서
증상
변경 내역
원인
해결책
참고

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.