Home Sign Up Sign In
V2EX = way to explore
V2EX 是一个关于分享和探索的地方
Sign Up Now
For Existing Member  Sign In
salmon5
V2EX  ›  Java

换 https 证书后, Java 客户端报 server certificate change is restricted during renegotiation?

  •   
  •   salmon5 · Apr 11, 2018 · 6820 views
    This topic created in 2944 days ago, the information mentioned may be changed or developed.

    公司原来的 https 证书快到期了,花钱又买了 digicert 的 https 证书,

    换上去后,少量调用该 https 的 Java 客户端报:javax.net.ssl.SSLHandshakeException: server certificate change is restricted during renegotiation

    原因众说不一,感觉这位老哥分析的靠谱 https://yflog.com/2015/10/29/diable-sslsession-cache/

    Java 客户端有 https 握手的 session,导致 session 不过期不能通信,

    但是 https 证书总有到期的时候,总要换的呀,这种所谓安全行为太弱鸡了吧?

    就不能发现证书变了换个 session 重新 https 握手下?(重新握手的时候再校验证书域名匹配根证书等等)

  • 证书
  • Session
  • Java
  • restricted
    1 replies    2018-08-06 21:10:59 +08:00
    dengtongcai
        1
    dengtongcai  
       Aug 6, 2018
    刚刚遇到这问题了,之前用得好好的,突然代理就报了这个错了!
    About   ·   Help   ·   Advertise   ·   Blog   ·   API   ·   FAQ   ·   Solana   ·   2504 Online   Highest 6679   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 40ms · UTC 06:43 · PVG 14:43 · LAX 23:43 · JFK 02:43
    ♥ Do have faith in what you're doing.