我在尝试使用 SSL 证书运行 Spring Boot 应用程序时遇到了这个异常。该应用作为 Docker 容器在 Kubernetes 中运行。
关键问题是excpetion的描述是null。
有人遇到过这样的问题吗?
UPDATE1 - 我的 Dockerfile 基于 openjdk:8-jre-alpine
.我已经恢复
返回到 openjdk:8u111-jre-alpine
,错误消失。我仍然不知道错误的原因是什么。
java.lang.RuntimeException: java.security.InvalidAlgorithmParameterException
at sun.security.ssl.Handshaker.checkThrown(Handshaker.java:1476) ~[na:1.8.0_121]
at sun.security.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:535) ~[na:1.8.0_121]
at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:813) ~[na:1.8.0_121]
at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:781) ~[na:1.8.0_121]
at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624) ~[na:1.8.0_121]
at org.apache.tomcat.util.net.SecureNioChannel.handshakeUnwrap(SecureNioChannel.java:459) ~[tomcat-embed-core-8.5.6.jar!/:8.5.6]
at org.apache.tomcat.util.net.SecureNioChannel.handshake(SecureNioChannel.java:232) ~[tomcat-embed-core-8.5.6.jar!/:8.5.6]
at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1387) ~[tomcat-embed-core-8.5.6.jar!/:8.5.6]
at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) [tomcat-embed-core-8.5.6.jar!/:8.5.6]
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [na:1.8.0_121]
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) [na:1.8.0_121]
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) [tomcat-embed-core-8.5.6.jar!/:8.5.6]
at java.lang.Thread.run(Thread.java:745) [na:1.8.0_121]
Caused by: java.security.ProviderException: java.security.InvalidAlgorithmParameterException
at sun.security.ec.ECKeyPairGenerator.generateKeyPair(ECKeyPairGenerator.java:147) ~[sunec.jar:1.8.0_121]
at java.security.KeyPairGenerator$Delegate.generateKeyPair(KeyPairGenerator.java:703) ~[na:1.8.0_121]
at sun.security.ssl.ECDHCrypt.<init>(ECDHCrypt.java:65) ~[na:1.8.0_121]
at sun.security.ssl.ServerHandshaker.setupEphemeralECDHKeys(ServerHandshaker.java:1431) ~[na:1.8.0_121]
at sun.security.ssl.ServerHandshaker.trySetCipherSuite(ServerHandshaker.java:1229) ~[na:1.8.0_121]
at sun.security.ssl.ServerHandshaker.chooseCipherSuite(ServerHandshaker.java:1026) ~[na:1.8.0_121]
at sun.security.ssl.ServerHandshaker.clientHello(ServerHandshaker.java:741) ~[na:1.8.0_121]
at sun.security.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:224) ~[na:1.8.0_121]
at sun.security.ssl.Handshaker.processLoop(Handshaker.java:1026) ~[na:1.8.0_121]
at sun.security.ssl.Handshaker$1.run(Handshaker.java:966) ~[na:1.8.0_121]
at sun.security.ssl.Handshaker$1.run(Handshaker.java:963) ~[na:1.8.0_121]
at java.security.AccessController.doPrivileged(Native Method) ~[na:1.8.0_121]
at sun.security.ssl.Handshaker$DelegatedTask.run(Handshaker.java:1416) ~[na:1.8.0_121]
at org.apache.tomcat.util.net.SecureNioChannel.tasks(SecureNioChannel.java:407) ~[tomcat-embed-core-8.5.6.jar!/:8.5.6]
at org.apache.tomcat.util.net.SecureNioChannel.handshakeUnwrap(SecureNioChannel.java:467) ~[tomcat-embed-core-8.5.6.jar!/:8.5.6]
... 7 common frames omitted
Caused by: java.security.InvalidAlgorithmParameterException: null
at sun.security.ec.ECKeyPairGenerator.generateECKeyPair(Native Method) ~[sunec.jar:1.8.0_121]
at sun.security.ec.ECKeyPairGenerator.generateKeyPair(ECKeyPairGenerator.java:128) ~[sunec.jar:1.8.0_121]
... 21 common frames omitted
最佳答案
我在 docker-openjdk 的 github 上为此开了一个问题,这似乎是一个与支持的椭圆曲线有关的问题 openjdk/jdk/src/share/classes/sun/security/ssl/SupportedEllipticCurvesExtension.java
https://github.com/docker-library/openjdk/issues/115
修复已合并到 openjdk-alpine 的 8.131.11-r2
关于java.security.InvalidAlgorithmParameterException : null,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/43067340/