The Red Hat version of the OpenJDK 1.7 doesn't support EDH key sizes larger than 1024 bits, so with the recent update of RHEL 6.6, software such as httpd now support DH keypairs larger than 1024 causing java clients using OpenJDK 1.7 to fail with this message:
javax.net.ssl.SSLException: java.lang.RuntimeException: Could not generate DH keypair
This is similar to the issue described in Knowledge Base Article 463423 however it is caused because server software are now supporting cipher key lengths that are greater than 1024.
- Red Hat Enterprise Linux
- OpenJDK 1.7
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.