1. 首頁
  2. 問答
  3. weblogic ssl性能問題

weblogic ssl性能問題

2011-02-25 54 views
3

我有WebLogic 10.3上運行的Web服務客戶端。以下是應用程序開始連接到託管服務器時服務器日誌的一部分。weblogic ssl性能問題

<Feb 25, 2011 2:27:52 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLSetup: loading trusted CA certificates> 
<Feb 25, 2011 2:28:15 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Filtering JSSE SSLSocket> 
<Feb 25, 2011 2:28:15 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLIOContextTable.addContext(ctx): 15837882> 
<Feb 25, 2011 2:28:15 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLSocket will be Muxing>

注意,第一條消息和第二條消息之間,在這種情況下有23秒的延遲。任何人都可以向我解釋這裏發生了什麼,我能做些什麼來改善這一點?

有一個堆棧跟蹤警告,稍後在日誌中彈出,但我不明白它是如何導致這種情況的。一個有效的響應最終從託管服務器返回,但總時間約爲24秒。感謝您提供任何幫助。

尊敬,

卡爾

編輯:添加新的日誌信息...

<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Use Certicom SSL with Domestic strength> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default KeyAgreement for algorithm DiffieHellman> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default KeyAgreement for algorithm ECDH> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm DESede> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm DES> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm AES> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RC4> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RSA/ECB/PKCS1Padding> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RSA/ECB/NoPadding> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSL Session TTL :90000> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <DefaultHostnameVerifier: allowReverseDNS=false> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLSetup: loading trusted CA certificates> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSL enableUnencryptedNullCipher= false> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: loading server SSL identity> 
<Mar 1, 2011 2:18:38 PM EST> <Notice> <Security> <BEA-090171> <Loading the identity certificate and private key stored under the alias {myAlias} from the jks keystore file /app/local/BEA/certificates/tmp/IdentityKeyStore.jks.> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Loaded public identity certificate chain:> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Subject: CN={common name}, OU=Integrated Advertising IT P50, O="{company name}", L=Kansas City, ST=Missouri, C=US; Issuer: CN=VeriSign Class 3 Secure Server CA - G2, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Subject: CN=VeriSign Class 3 Secure Server CA - G2, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US; Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Subject: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US; Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US> 
<Mar 1, 2011 2:18:38 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RSA/ECB/NoPadding> 
<Mar 1, 2011 2:18:40 PM EST> <Notice> <Security> <BEA-090169> <Loading trusted certificates from the jks keystore file /app/local/BEA/certificates/tmp/TrustKeyStore.jks.> 
<Mar 1, 2011 2:18:40 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: loaded 1 trusted CAs from /app/local/BEA/certificates/tmp/TrustKeyStore.jks> 
<Mar 1, 2011 2:18:40 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Subject: CN=VeriSign Class 3 Secure Server CA - G2, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US; Issuer: OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US> 
<Mar 1, 2011 2:18:40 PM EST> <Info> <WebLogicServer> <BEA-000307> <Exportable key maximum lifespan set to 500 uses.> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Filtering JSSE SSLSocket> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLIOContextTable.addContext(ctx): 25094672> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLSocket will be Muxing> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write SSL_20_RECORD> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 SSL3/TLS MAC> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 received HANDSHAKE> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: ServerHello> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: Certificate> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Validating certificate 0 in the chain: Serial number: {serial number} 
Issuer:C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)09, CN=VeriSign Class 3 Secure Server CA - G2 
Subject:C=US, ST=Washington, O={company}, OU=IT, CN={hosting server} 
Not Valid Before:Thu Sep 16 20:00:00 EDT 2010 
Not Valid After:Thu Oct 13 19:59:59 EDT 2011 
Signature Algorithm:SHA1withRSA 
> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Validating certificate 1 in the chain: Serial number: {serial number} 
Issuer:C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority - G2, OU=(c) 1998 VeriSign, Inc. - For authorized use only, OU=VeriSign Trust Network 
Subject:C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)09, CN=VeriSign Class 3 Secure Server CA - G2 
Not Valid Before:Tue Mar 24 20:00:00 EDT 2009 
Not Valid After:Sun Mar 24 19:59:59 EDT 2019 
Signature Algorithm:SHA1withRSA 
> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <validationCallback: validateErr = 0> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> < cert[0] = Serial number: {serial number} 
Issuer:C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)09, CN=VeriSign Class 3 Secure Server CA - G2 
Subject:C=US, ST=Washington, O={company}, OU=IT, CN={hosting server} 
Not Valid Before:Thu Sep 16 20:00:00 EDT 2010 
Not Valid After:Thu Oct 13 19:59:59 EDT 2011 
Signature Algorithm:SHA1withRSA 
> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> < cert[1] = Serial number: {serial number} 
Issuer:C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority - G2, OU=(c) 1998 VeriSign, Inc. - For authorized use only, OU=VeriSign Trust Network 
Subject:C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)09, CN=VeriSign Class 3 Secure Server CA - G2 
Not Valid Before:Tue Mar 24 20:00:00 EDT 2009 
Not Valid After:Sun Mar 24 19:59:59 EDT 2019 
Signature Algorithm:SHA1withRSA 
> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <weblogic user specified trustmanager validation status 0> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLTrustValidator returns: 0> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Trust status (0): NONE> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Performing hostname validation checks: {hosting server}> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: ServerHelloDone> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm MD5> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RC4> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RSA/ECB/PKCS1Padding> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write HANDSHAKE, offset = 0, length = 134> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write CHANGE_CIPHER_SPEC, offset = 0, length = 1> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RC4> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HMACMD5> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write HANDSHAKE, offset = 0, length = 16> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 SSL3/TLS MAC> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 received CHANGE_CIPHER_SPEC> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Cipher for algorithm RC4> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HMACMD5> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 SSL3/TLS MAC> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 received HANDSHAKE> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: Finished> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 372> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 2770> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <4836513 read(offset=0, length=8192)> 
<Mar 1, 2011 2:19:08 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 SSL3/TLS MAC> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 received APPLICATION_DATA: databufferLen 0, contentLength 2920> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <4836513 read databufferLen 2920> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <4836513 read A returns 2920> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 4836513 : 0 + 948 = 948> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <4836513 read(offset=2920, length=5272)> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 SSL3/TLS MAC> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 received APPLICATION_DATA: databufferLen 0, contentLength 904> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <4836513 read databufferLen 904> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <4836513 read A returns 904> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 4836513 : 0 + 23 = 23> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <4836513 read(offset=3824, length=4368)> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 SSL3/TLS MAC> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <23512240 received ALERT> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <NEW ALERT with Severity: WARNING, Type: 0 
java.lang.Exception: New alert stack 
     at com.certicom.tls.record.alert.Alert.<init>(Unknown Source) 
     at com.certicom.tls.record.alert.AlertHandler.handleAlertMessages(Unknown Source) 
     at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source) 
     at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source) 
     at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source) 
     at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source) 
     at com.certicom.tls.record.ReadHandler.read(Unknown Source) 
     at com.certicom.io.InputSSLIOStreamWrapper.read(Unknown Source) 
     at java.io.BufferedInputStream.fill(BufferedInputStream.java:218) 
     at java.io.BufferedInputStream.read1(BufferedInputStream.java:258) 
     at java.io.BufferedInputStream.read(BufferedInputStream.java:317) 
     at weblogic.net.http.KeepAliveStream.read(KeepAliveStream.java:86) 
     at java.io.FilterInputStream.read(FilterInputStream.java:116) 
     at com.ctc.wstx.io.StreamBootstrapper.ensureLoaded(StreamBootstrapper.java:443) 
     at com.ctc.wstx.io.StreamBootstrapper.resolveStreamEncoding(StreamBootstrapper.java:267) 
     at com.ctc.wstx.io.StreamBootstrapper.bootstrapInput(StreamBootstrapper.java:131) 
     at com.ctc.wstx.stax.WstxInputFactory.doCreateSR(WstxInputFactory.java:543) 
     at com.ctc.wstx.stax.WstxInputFactory.createSR(WstxInputFactory.java:604) 
     at com.ctc.wstx.stax.WstxInputFactory.createSR(WstxInputFactory.java:619) 
     at com.ctc.wstx.stax.WstxInputFactory.createXMLStreamReader(WstxInputFactory.java:348) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory$NoLock.doCreate(XMLStreamReaderFactory.java:377) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory$Woodstox.doCreate(XMLStreamReaderFactory.java:407) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory.create(XMLStreamReaderFactory.java:144) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory.create(XMLStreamReaderFactory.java:148) 
     at com.sun.xml.ws.encoding.StreamSOAPCodec.decode(StreamSOAPCodec.java:294) 
     at com.sun.xml.ws.encoding.StreamSOAPCodec.decode(StreamSOAPCodec.java:128) 
     at com.sun.xml.ws.encoding.SOAPBindingCodec.decode(SOAPBindingCodec.java:287) 
     at com.sun.xml.ws.transport.http.client.HttpTransportPipe.process(HttpTransportPipe.java:171) 
     at com.sun.xml.ws.transport.http.client.HttpTransportPipe.processRequest(HttpTransportPipe.java:86) 
     at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:598) 
     at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:557) 
     at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:542) 
     at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:439) 
     at com.sun.xml.ws.client.Stub.process(Stub.java:248) 
     at com.sun.xml.ws.client.sei.SEIStub.doProcess(SEIStub.java:135) 
     at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:109) 
     at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:89) 
     at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:118) 
     at $Proxy93.inquireUnifiedCustomerLoginProfile(Unknown Source) 
     at com.csi.CsiWSClient.getSubscbrAcctPrfle(CsiWSClient.java:137) 
     at com.itv.WSMainProcessor.getSubscbrAcctPrfle(WSMainProcessor.java:314) 
     at com.itv.DMPAdService_DMPAdSoapHttpPortImpl.getSubscbrAcctPrfle(DMPAdService_DMPAdSoapHttpPortImpl.java:87) 
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 
     at java.lang.reflect.Method.invoke(Method.java:597) 
     at weblogic.wsee.jaxws.WLSInstanceResolver$WLSInvoker.invoke(WLSInstanceResolver.java:89) 
     at weblogic.wsee.jaxws.WLSInstanceResolver$WLSInvoker.invoke(WLSInstanceResolver.java:71) 
     at com.sun.xml.ws.server.InvokerTube$2.invoke(InvokerTube.java:146) 
     at com.sun.xml.ws.server.sei.EndpointMethodHandler.invoke(EndpointMethodHandler.java:257) 
     at com.sun.xml.ws.server.sei.SEIInvokerTube.processRequest(SEIInvokerTube.java:93) 
     at weblogic.wsee.jaxws.tubeline.FlowControlTube$FlowControlAwareTube.processRequest(FlowControlTube.java:123) 
     at weblogic.wsee.jaxws.tubeline.FlowControlTube.processRequest(FlowControlTube.java:75) 
     at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:598) 
     at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:557) 
     at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:542) 
     at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:439) 
     at com.sun.xml.ws.server.WSEndpointImpl$2.process(WSEndpointImpl.java:243) 
     at com.sun.xml.ws.transport.http.HttpAdapter$HttpToolkit.handle(HttpAdapter.java:444) 
     at com.sun.xml.ws.transport.http.HttpAdapter.handle(HttpAdapter.java:244) 
     at com.sun.xml.ws.transport.http.servlet.ServletAdapter.handle(ServletAdapter.java:134) 
     at weblogic.wsee.jaxws.HttpServletAdapter$AuthorizedInvoke.run(HttpServletAdapter.java:272) 
     at weblogic.wsee.jaxws.HttpServletAdapter.post(HttpServletAdapter.java:185) 
     at weblogic.wsee.jaxws.VerboseHttpProcessor.post(VerboseHttpProcessor.java:43) 
     at weblogic.wsee.jaxws.JAXWSServlet.doPost(JAXWSServlet.java:180) 
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:727) 
     at weblogic.wsee.jaxws.JAXWSServlet.service(JAXWSServlet.java:64) 
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) 
     at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227) 
     at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125) 
     at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292) 
     at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175) 
     at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3498) 
     at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321) 
     at weblogic.security.service.SecurityManager.runAs(Unknown Source) 
     at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2180) 
     at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2086) 
     at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1406) 
     at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201) 
     at weblogic.work.ExecuteThread.run(ExecuteThread.java:173) 
> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Alert received from peer, notifying peer we received it: [email protected]> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <CLOSE_NOTIFY received from peer, closing connection: > 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <close(): 4836513> 
<Mar 1, 2011 2:19:09 PM EST> <Debug> <SecuritySSL> <BEA-000000> <NEW ALERT with Severity: WARNING, Type: 0 
java.lang.Exception: New alert stack 
     at com.certicom.tls.record.alert.Alert.<init>(Unknown Source) 
     at com.certicom.tls.interfaceimpl.TLSConnectionImpl.closeWriteHandler(Unknown Source) 
     at com.certicom.tls.interfaceimpl.TLSConnectionImpl.close(Unknown Source) 
     at javax.net.ssl.impl.SSLLayeredSocket.close(Unknown Source) 
     at com.certicom.tls.record.alert.AlertHandler.handle(Unknown Source) 
     at com.certicom.tls.record.alert.AlertHandler.handleAlertMessages(Unknown Source) 
     at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source) 
     at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source) 
     at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source) 
     at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source) 
     at com.certicom.tls.record.ReadHandler.read(Unknown Source) 
     at com.certicom.io.InputSSLIOStreamWrapper.read(Unknown Source) 
     at java.io.BufferedInputStream.fill(BufferedInputStream.java:218) 
     at java.io.BufferedInputStream.read1(BufferedInputStream.java:258) 
     at java.io.BufferedInputStream.read(BufferedInputStream.java:317) 
     at weblogic.net.http.KeepAliveStream.read(KeepAliveStream.java:86) 
     at java.io.FilterInputStream.read(FilterInputStream.java:116) 
     at com.ctc.wstx.io.StreamBootstrapper.ensureLoaded(StreamBootstrapper.java:443) 
     at com.ctc.wstx.io.StreamBootstrapper.resolveStreamEncoding(StreamBootstrapper.java:267) 
     at com.ctc.wstx.io.StreamBootstrapper.bootstrapInput(StreamBootstrapper.java:131) 
     at com.ctc.wstx.stax.WstxInputFactory.doCreateSR(WstxInputFactory.java:543) 
     at com.ctc.wstx.stax.WstxInputFactory.createSR(WstxInputFactory.java:604) 
     at com.ctc.wstx.stax.WstxInputFactory.createSR(WstxInputFactory.java:619) 
     at com.ctc.wstx.stax.WstxInputFactory.createXMLStreamReader(WstxInputFactory.java:348) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory$NoLock.doCreate(XMLStreamReaderFactory.java:377) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory$Woodstox.doCreate(XMLStreamReaderFactory.java:407) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory.create(XMLStreamReaderFactory.java:144) 
     at com.sun.xml.ws.api.streaming.XMLStreamReaderFactory.create(XMLStreamReaderFactory.java:148) 
     at com.sun.xml.ws.encoding.StreamSOAPCodec.decode(StreamSOAPCodec.java:294) 
     at com.sun.xml.ws.encoding.StreamSOAPCodec.decode(StreamSOAPCodec.java:128) 
     at com.sun.xml.ws.encoding.SOAPBindingCodec.decode(SOAPBindingCodec.java:287) 
     at com.sun.xml.ws.transport.http.client.HttpTransportPipe.process(HttpTransportPipe.java:171) 
     at com.sun.xml.ws.transport.http.client.HttpTransportPipe.processRequest(HttpTransportPipe.java:86) 
     at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:598) 
     at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:557) 
     at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:542) 
     at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:439) 
     at com.sun.xml.ws.client.Stub.process(Stub.java:248) 
     at com.sun.xml.ws.client.sei.SEIStub.doProcess(SEIStub.java:135) 
     at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:109) 
     at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:89) 
     at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:118) 
     at $Proxy93.inquireUnifiedCustomerLoginProfile(Unknown Source) 
     at com.csi.CsiWSClient.getSubscbrAcctPrfle(CsiWSClient.java:137) 
     at com.itv.WSMainProcessor.getSubscbrAcctPrfle(WSMainProcessor.java:314) 
     at com.itv.DMPAdService_DMPAdSoapHttpPortImpl.getSubscbrAcctPrfle(DMPAdService_DMPAdSoapHttpPortImpl.java:87) 
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 
     at java.lang.reflect.Method.invoke(Method.java:597) 
     at weblogic.wsee.jaxws.WLSInstanceResolver$WLSInvoker.invoke(WLSInstanceResolver.java:89) 
     at weblogic.wsee.jaxws.WLSInstanceResolver$WLSInvoker.invoke(WLSInstanceResolver.java:71) 
     at com.sun.xml.ws.server.InvokerTube$2.invoke(InvokerTube.java:146) 
     at com.sun.xml.ws.server.sei.EndpointMethodHandler.invoke(EndpointMethodHandler.java:257) 
     at com.sun.xml.ws.server.sei.SEIInvokerTube.processRequest(SEIInvokerTube.java:93) 
     at weblogic.wsee.jaxws.tubeline.FlowControlTube$FlowControlAwareTube.processRequest(FlowControlTube.java:123) 
     at weblogic.wsee.jaxws.tubeline.FlowControlTube.processRequest(FlowControlTube.java:75) 
     at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:598) 
     at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:557) 
     at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:542)

來源

2011-02-25 Kal

回答

0

感謝EJP讓我走上了正確的軌道。這個問題與SSL無關。這實際上是一個DNS問題。該域的權威名稱服務器不符合IPv6。我能夠通過向WebLogic添加以下啓動參數來解決此問題,以強制使用IPv4名稱解析:-Djava.net.preferIPv4Stack=true

來源

2011-03-24 19:54:25 Kal

0

我不知道這是否會解決你的問題,但最安全的相關要求相隨機數由您的服務器生成。如果沒有足夠的隨機性或「熵」,系統將等待,直到它可以提供足夠隨機數。

嘗試將-Djava.security.egd=file:/dev/./urandom添加到啓動參數中,看看是否可以解決問題。您可以將urandom看作系統生成的一組隨機數,它們不像/ dev/random那樣唯一,並且不適合在生產環境中使用。

來源

2011-02-26 00:23:44

+0

'。'是什麼意思?在路徑名?爲什麼不只是'/ dev/urandom'? –

+1

@GregS這是由於Java 5+的[bug /功能](http://bugs.sun.com/view_bug.do?bug_id=6202721)引起的。/dev/urandom在1.4.2中工作。 –

0

我看過了在Oracle論壇上一些類似的蹤跡http://forums.oracle.com/forums/thread.jspa?messageID=4580980http://kr.forums.oracle.com/forums/thread.jspa?threadID=1068642

有很多你的堆棧跟蹤線低於1 & 2.

一個例子發生之間的線路:

<May 10, 2010 2:36:05 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <SSLSetup: loading trusted CA certificates> 

<May 10, 2010 2:36:05 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <SSL enableUnencryptedNullCipher= false> 
<May 10, 2010 2:36:05 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: loading server SSL identity> 

<May 10, 2010 2:36:05 PM CEST> <Notice> <Security> <BEA-090171> <Loading the identity certificate and private key stored under the alias mavir from the JKS keystore file /opt/oracle/osb_home/user_projects/domains/osb_domain/security/mavir.jks.> 

<May 10, 2010 2:36:05 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <Loaded public identity certificate chain:> 

<May 10, 2010 2:36:05 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <Subject: CN=kapalk1.mavir.hu, OU=FIO, O=MAVIR ZRt., L=Budapest, ST=Budapest, C=HU; Issuer: CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU> 

<May 10, 2010 2:36:05 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <Subject: CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU; Issuer: CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU> 

<May 10, 2010 2:36:05 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RSA/ECB/NoPadding> 

<May 10, 2010 2:36:29 PM CEST> <Info> <Health> <BEA-310002> <32% of the total memory in the server is free> <May 10, 2010 2:36:41 PM CEST> <Notice> <Security> <BEA-090169> <Loading trusted certificates from the JKS keystore file /opt/oracle/osb_home/user_projects/domains/osb_domain/security/mavir.jks.> 

<May 10, 2010 2:36:41 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <SSLContextManager: loaded 2 trusted CAs from /opt/oracle/osb_home/user_projects/domains/osb_domain/security/mavir.jks> 

<May 10, 2010 2:36:41 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <Subject: SERIALNUMBER=ICA - 595029, OU=Damas Energy, O="Slovenska elektrizacna prenosova sustava, a.s.", L=Bratislava, ST=Slovakia, CN=damas.sepsas.sk, C=SK; Issuer: O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ> 

<May 10, 2010 2:36:41 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <Subject: CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU; Issuer: CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU> 
<May 10, 2010 2:36:41 PM CEST> <Info> <WebLogicServer> <BEA-000307> <Exportable key maximum lifespan set to 500 uses.> 



<May 10, 2010 2:36:41 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <clientInfo has new style certificate and key> 
<May 10, 2010 2:36:43 PM CEST> <Debug> <SecuritySSL> <BEA-000000> <Filtering JSSE SSLSocket>

如果您確實收到有效回覆,那麼似乎您的CA證書沒有得到加載 - 服務器是否設置爲僅接受有效的證書?

我建議你試着用-Dssl.debug=true運行你的WLS,你應該得到詳細的消息來顯示發生了什麼。

看到這個類似thread on SF

來源

2011-02-28 08:51:42 JoseK

+0

「是否設置爲僅接受有效證書的服務器?」 對不起,你能告訴我如何檢查嗎?另外,我添加了一個堆棧跟蹤到我上面的原始問題。 – Kal

1

SSL不上規模的徵收費用。我建議你看到的是accept()第一次返回(它將觸發所有的證書加載的東西)和客戶端發送的第一個數據之間的時間,這將觸發SSL握手。否則你正在運行真正的古董硬件,網絡等。

來源

2011-02-28 09:04:14 EJP

+0

對不起,這對我來說都很新,所以我不確定你的意思。硬件相當新,速度非常快。我在上面添加了其他日誌消息。 – Kal

+0

客戶端在TCP級別連接。這會導致服務器的accept()方法返回一個套接字。一段時間後,客戶端發送一些數據。這會導致SSL握手開始,這是異常來自哪裏。 – EJP

相關問題

 相關問題