SSL handshake failed and Apache httpd return HTTP 502 when configure as proxy over https to JBoss EAP 6
Issue
- We have configured Apache httpd as reverse proxy over HTTPS to proxy request to ssl enabled backend JBoss EAP 6 server, but the ssl handshake is failing and Apache httpd shows below error:
[ssl:info] [pid 3708:tid 140422022092544] [remote jboss.example.com:8443] AH02003: SSL Proxy connect failed
[ssl:info] [pid 3708:tid 140422022092544] SSL Library Error: error:100AE081:elliptic curve routines:EC_GROUP_new_by_curve_name:unknown group
[ssl:info] [pid 3708:tid 140422022092544] SSL Library Error: error:1408D010:SSL routines:SSL3_GET_KEY_EXCHANGE:EC lib
[ssl:info] [pid 3708:tid 140422022092544] [remote jboss.example.com:8443] AH01998: Connection closed to child 0 with abortive shutdown (server apache.example.com:443)
And during the same time JBoss shows below error:
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) *** ECDH ServerKeyExchange
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) Signature Algorithm SHA512withRSA
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) Server key: Sun EC public key, 571 bits
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) *** ServerHelloDone
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) http-jboss.example.com/192.168.122.1:8443-2, WRITE: TLSv1.2 Handshake, length = 1553
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) http-jboss.example.com/192.168.122.1:8443-2, received EOFException: error
INFO [stdout] (http-jboss.example.com/192.168.122.1:8443-2) http-jboss.example.com/192.168.122.1:8363-2, handling exception: javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
Environment
- Red Hat Enterprise Linux (RHEL) 6.2
- Red Hat JBoss Web Server 3.0.1 Apache httpd
- Red Hat JBoss Enterprise Application Platform 6.4
- mod_proxy
- openssl-1.0.1e-15
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.
