RSA premaster secret error
Hello,
I'm developing a java tls ftp client. When I run it on my powebook (jdk 1.4.2_05) this works fine, however when I try to run the same code against the same server on windowsxp (jdk 1.5) I get an " RSA premaster secret error". My code is a slightly modified version of the code found in http://forum.java.sun.com/thread.jsp?forum=9&thread=535212
Does anybody know what the error means and how it can be fixed?
thanks,
Emiel.
For completeness here's the full output of the session:
234 AUTH TLS OK.
trigger seeding of SecureRandom
done seeding SecureRandom
export control - checking the cipher suites
export control - no cached value available...
export control - storing legal entry into cache...
%% No cached client session
*** ClientHello, TLSv1
RandomCookie: GMT: 1082374383 bytes = { 208, 252, 117, 151, 13, 69, 130, 81, 58, 49, 131, 77, 9, 48, 143, 3, 59, 255, 160, 14, 249, 58, 59, 8, 240, 150, 204, 74 }
Session ID: {}
Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]
Compression Methods: { 0 }
***
[write] MD5 and SHA1 hashes: len = 73
0000: 01 00 00 45 03 01 41 84B9 EF D0 FC 75 97 0D 45 ...E..A.....u..E
0010: 82 51 3A 31 83 4D 09 308F 03 3B FF A0 0E F9 3A .Q:1.M.0..;....:
0020: 3B 08 F0 96 CC 4A 00 001E 00 04 00 05 00 2F 00 ;....J......../.
0030: 33 00 32 00 0A 00 16 0013 00 09 00 15 00 12 00 3.2.............
0040: 03 00 08 00 14 00 11 0100.........
main, WRITE: TLSv1 Handshake, length = 73
[write] MD5 and SHA1 hashes: len = 98
0000: 01 03 01 00 39 00 00 0020 00 00 04 01 00 80 00 ....9... .......
0010: 00 05 00 00 2F 00 00 3300 00 32 00 00 0A 07 00 ..../..3..2.....
0020: C0 00 00 16 00 00 13 0000 09 06 00 40 00 00 15 ............@...
0030: 00 00 12 00 00 03 02 0080 00 00 08 00 00 14 00 ................
0040: 00 11 41 84 B9 EF D0 FC75 97 0D 45 82 51 3A 31 ..A.....u..E.Q:1
0050: 83 4D 09 30 8F 03 3B FFA0 0E F9 3A 3B 08 F0 96 .M.0..;....:;...
0060: CC 4A .J
main, WRITE: SSLv2 client hello message, length = 98
main, READ: TLSv1 Handshake, length = 42
*** ServerHello, TLSv1
RandomCookie: GMT: 1082374383 bytes = { 52, 233, 60, 43, 185, 179, 44, 223, 26, 86, 103, 119, 13, 160, 194, 116, 2, 28, 53, 250, 46, 55, 90, 20, 56, 109, 52, 106 }
Session ID: {}
Cipher Suite: SSL_RSA_WITH_RC4_128_MD5
Compression Method: 0
***
%% Created: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
** SSL_RSA_WITH_RC4_128_MD5
[read] MD5 and SHA1 hashes: len = 42
0000: 02 00 00 26 03 01 41 84B9 EF 34 E9 3C 2B B9 B3 ...&..A...4.<+..
0010: 2C DF 1A 56 67 77 0D A0C2 74 02 1C 35 FA 2E 37 ,..Vgw...t..5..7
0020: 5A 14 38 6D 34 6A 00 0004 00Z.8m4j....
main, READ: TLSv1 Handshake, length = 471
*** Certificate chain
chain [0] = [
[
Version: V3
Subject: EMAILADDRESS=none, CN=none, OU=none, O=none, L=none, ST=none, C=nl
Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4
Key: Sun RSA public key, 512 bits
modulus: 11098081486406261191796114211645654035308674233469313316362571139059657017831106491999436229882781613314634810526396154426211050331465166756403204277392009
public exponent: 65537
Validity: [From: Fri Sep 10 15:00:24 CEST 2004,
To: Sun Oct 10 15:00:24 CEST 2004]
Issuer: EMAILADDRESS=none, CN=none, OU=none, O=none, L=none, ST=none, C=nl
SerialNumber: [00]
]
Algorithm: [MD5withRSA]
Signature:
0000: 60 F6 7E F8 AC 4A 54 8694 B7 88 B0 B4 D4 B3 E0 `....JT.........
0010: AA F6 4C 96 C2 2B 7C 0F15 1D 45 47 D2 12 64 69 ..L..+....EG..di
0020: 36 09 02 9A D0 E7 BA AABD 24 72 4D 59 14 63 94 6........$rMY.c.
0030: B0 BB 37 45 7B AB 1B 027D BD 30 0F DF 47 3F 52 ..7E......0..G?R
]
***
The fingerprint of the certificate received is :
de31678c77bcb976bc056541e3b1e53
Do you want to trust on it? y/n...
y
adding as trusted cert:
Subject: EMAILADDRESS=none, CN=none, OU=none, O=none, L=none, ST=none, C=nl
Issuer: EMAILADDRESS=none, CN=none, OU=none, O=none, L=none, ST=none, C=nl
Algorithm: RSA; Serial number: 0x0
Valid from Fri Sep 10 15:00:24 CEST 2004 until Sun Oct 10 15:00:24 CEST 2004
Found trusted certificate:
[
[
Version: V3
Subject: EMAILADDRESS=none, CN=none, OU=none, O=none, L=none, ST=none, C=nl
Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4
Key: Sun RSA public key, 512 bits
modulus: 11098081486406261191796114211645654035308674233469313316362571139059657017831106491999436229882781613314634810526396154426211050331465166756403204277392009
public exponent: 65537
Validity: [From: Fri Sep 10 15:00:24 CEST 2004,
To: Sun Oct 10 15:00:24 CEST 2004]
Issuer: EMAILADDRESS=none, CN=none, OU=none, O=none, L=none, ST=none, C=nl
SerialNumber: [00]
]
Algorithm: [MD5withRSA]
Signature:
0000: 60 F6 7E F8 AC 4A 54 8694 B7 88 B0 B4 D4 B3 E0 `....JT.........
0010: AA F6 4C 96 C2 2B 7C 0F15 1D 45 47 D2 12 64 69 ..L..+....EG..di
0020: 36 09 02 9A D0 E7 BA AABD 24 72 4D 59 14 63 94 6........$rMY.c.
0030: B0 BB 37 45 7B AB 1B 027D BD 30 0F DF 47 3F 52 ..7E......0..G?R
]
[read] MD5 and SHA1 hashes: len = 471
0000: 0B 00 01 D3 00 01 D0 0001 CD 30 82 01 C9 30 82 ..........0...0.
0010: 01 73 A0 03 02 01 02 0201 00 30 0D 06 09 2A 86 .s........0...*.
0020: 48 86 F7 0D 01 01 04 0500 30 6D 31 0B 30 09 06 H........0m1.0..
0030: 03 55 04 06 13 02 6E 6C31 0D 30 0B 06 03 55 04 .U....nl1.0...U.
0040: 08 13 04 6E 6F 6E 65 310D 30 0B 06 03 55 04 07 ...none1.0...U..
0050: 13 04 6E 6F 6E 65 31 0D30 0B 06 03 55 04 0A 13 ..none1.0...U...
0060: 04 6E 6F 6E 65 31 0D 300B 06 03 55 04 0B 13 04 .none1.0...U....
0070: 6E 6F 6E 65 31 0D 30 0B06 03 55 04 03 13 04 6E none1.0...U....n
0080: 6F 6E 65 31 13 30 11 0609 2A 86 48 86 F7 0D 01 one1.0...*.H....
0090: 09 01 16 04 6E 6F 6E 6530 1E 17 0D 30 34 30 39 ....none0...0409
00A0: 31 30 31 33 30 30 32 345A 17 0D 30 34 31 30 31 10130024Z..04101
00B0: 30 31 33 30 30 32 34 5A30 6D 31 0B 30 09 06 03 0130024Z0m1.0...
00C0: 55 04 06 13 02 6E 6C 310D 30 0B 06 03 55 04 08 U....nl1.0...U..
00D0: 13 04 6E 6F 6E 65 31 0D30 0B 06 03 55 04 07 13 ..none1.0...U...
00E0: 04 6E 6F 6E 65 31 0D 300B 06 03 55 04 0A 13 04 .none1.0...U....
00F0: 6E 6F 6E 65 31 0D 30 0B06 03 55 04 0B 13 04 6E none1.0...U....n
0100: 6F 6E 65 31 0D 30 0B 0603 55 04 03 13 04 6E 6F one1.0...U....no
0110: 6E 65 31 13 30 11 06 092A 86 48 86 F7 0D 01 09 ne1.0...*.H.....
0120: 01 16 04 6E 6F 6E 65 305C 30 0D 06 09 2A 86 48 ...none0\0...*.H
0130: 86 F7 0D 01 01 01 05 0003 4B 00 30 48 02 41 00 .........K.0H.A.
0140: D3 E6 4A D5 43 85 F3 A05A 20 2C 0C 23 13 29 99 ..J.C...Z ,.#.).
0150: 29 1F 84 4D 87 90 CC AD10 C8 EB AF DF 55 8F F9 )..M.........U..
0160: 90 17 73 0F 5E 38 6A 3BB7 57 D8 77 AC 66 1C 13 ..s.^8j;.W.w.f..
0170: 42 FB 9E BD 1B 9D 46 2559 12 35 18 10 63 D2 89 B.....F%Y.5..c..
0180: 02 03 01 00 01 30 0D 0609 2A 86 48 86 F7 0D 01 .....0...*.H....
0190: 01 04 05 00 03 41 00 60F6 7E F8 AC 4A 54 86 94 .....A.`....JT..
01A0: B7 88 B0 B4 D4 B3 E0 AAF6 4C 96 C2 2B 7C 0F 15 .........L..+...
01B0: 1D 45 47 D2 12 64 69 3609 02 9A D0 E7 BA AA BD .EG..di6........
01C0: 24 72 4D 59 14 63 94 B0BB 37 45 7B AB 1B 02 7D $rMY.c...7E.....
01D0: BD 30 0F DF 47 3F 52.0..G?R
main, READ: TLSv1 Handshake, length = 4
*** ServerHelloDone
[read] MD5 and SHA1 hashes: len = 4
0000: 0E 00 00 00....
main, handling exception: javax.net.ssl.SSLKeyException: RSA premaster secret error
main, SEND TLSv1 ALERT: fatal, description = unexpected_message
main, WRITE: TLSv1 Alert, length = 2
main, called closeSocket()
Error in FtpClient.login()
FtpException: Error in startHandSkake() javax.net.ssl.SSLKeyException: RSA premaster secret error
