SSL handshake failed and Apache httpd return HTTP 502 when configure as proxy over https to JBoss EAP 6
Issue
- We have configured Apache httpd as reverse proxy over HTTPS to proxy request to ssl enabled backend JBoss EAP 6 server, but the ssl handshake is failing and Apache httpd shows below error:
[ssl:info] [pid 3708:tid 140422022092544] [remote jboss.example.com:8443] AH02003: SSL Proxy connect failed
[ssl:info] [pid 3708:tid 140422022092544] SSL Library Error: error:100AE081:elliptic curve routines:EC_GROUP_new_by_curve_name:unknown group
[ssl:info] [pid 3708:tid 140422022092544] SSL Library Error: error:1408D010:SSL routines:SSL3_GET_KEY_EXCHANGE:EC lib
[ssl:info] [pid 3708:tid 140422022092544] [remote jboss.example.com:8443] AH01998: Connection closed to child 0 with abortive shutdown (server apache.example.com:443)
And during the same time JBoss shows below error:
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) *** ECDH ServerKeyExchange
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) Signature Algorithm SHA512withRSA
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) Server key: Sun EC public key, 571 bits
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) *** ServerHelloDone
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) http-jboss.example.com/192.168.122.1:8443-2, WRITE: TLSv1.2 Handshake, length = 1553
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) http-jboss.example.com/192.168.122.1:8443-2, received EOFException: error
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) http-jboss.example.com/192.168.122.1:8363-2, handling exception: javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
Environment
- Red Hat Enterprise Linux (RHEL) 6.2
- Red Hat JBoss Web Server 3.0.1 Apache httpd
- Red Hat JBoss Enterprise Application Platform 6.4
- mod_proxy
- openssl-1.0.1e-15
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
