长时间延迟,随后在Java/Tomcat web应用程序中进行第一次SQL Server调用时出现SSL错误



我有一个web应用程序,它在Windows上的Tomcat 8上使用Java 8运行。当第一次启动Tomcat服务时,WAR会按预期进行解包和部署,但随后,对该服务进行第一次调用(使数据库连接到Microsoft SQL Server)几乎需要一个小时才能完成,然后失败,并出现一系列com.Microsoft.sqlserver.jdbc.TDSChannel.enableSSL错误。catalina.log如下。

有什么想法我可以做或检查吗?正如其他文章中建议的那样,我尝试过对java.security文件进行一系列更改,但都没有成功。

感谢


2016年1月27日10:53:52.966信息[main]org.apache.catalina.startup.catalina.start服务器在208547毫秒内启动2016年1月27日11:50:57.371信息[http-apr-8080-exec-6]com.microsoft.sqlserver.jdbc.TDSChannel.enableSSL java.security路径:C: \Java\jre8\lib\security安全提供程序:[SUN版本1.8,SunRsaSign 1.8版、SunEC 1.8版、Sun JSSE 1.8版、SunJCE版本1.8,SunJGSS版本1.8,SunSASL版本1.8,XMLDSig版本1.8,SunPCSC版本1.8,SunMSCAPI版本1.8]SSLContext提供程序信息:Sun JSSE提供程序(PKCS12,SunX509/PKIX密钥/信任工厂,SSLv3/TLSv1/TLSv1.1/TLSv1.2)SSLContext提供程序服务:[SunJSSE:KeyFactory。RSA->sun.security.RSA.RSAKeyFactory别名:[1.2.840.113549.1.1,OID.1.2.840.113549.11],SunJSSE:KeyPairGenerator。RSA->sun.security.RSA.RSAKeyPairGenerator
别名:[1.2.840.113549.1.1,OID.1.2.840.113549.11],SunJSSE:签名MD2withRSA->sun.security.rsa.rsa签名$MD2withRSA
别名:[1.2.840.113549.1.1.2,OID.1.2.840.113549.1.2],SunJSSE:签名MD5withRSA->sun.security.rsa.rsa签名$MD5withRSA
别名:[1.2.840.113549.1.1.4,OID.1.2.840.113549.1.4],SunJSSE:签名SHA1withRSA->sun.security.rsa.rsa签名$SHA1withRSA
别名:[1.2.840.113549.1.1.5,OID.1.2.840.113549.1.5,1.3.14.3.2.29,OID.1.3.14.3.2.29],SunJSSE:签名。MD5和SHA1带有RSA->sun.security.sl.RSAS签名,SunJSSE:KeyManagerFactory。SunX509->sun.security.ssl.KeyManagerFactoryImpl$SunX509,SunJSSE:KeyManagerFactory。NewSunX509->sun.security.ssl.KeyManagerFactoryImpl$X509别名:[PKIX],SunJSSE:TrustManagerFactory。SunX509->sun.security.ssl.TrustManagerFactoryImpl$SimpFactory,SunJSSE:TrustManagerFactory。PKIX->sun.security.ssl.TrustManagerFactoryImpl$PKIXFactory别名:[SunPKIX,X509,X.509],SunJSSE:SSLContext。TLSv1->sun.security.ssl.SSLContext Impl$TLS10Context别名:[SSLv3],SunJSSE:SSL上下文。TLSv1.1->sun.security.ssl.SSLContext Impl$TLS11Context,SunJSSE:SSLContext。TLSv1.2->sun.security.ssl.SSLContextImpl$TLS12Context,SunJSSE:SSL上下文。TLS->sun.security.ssl.SSLContext Impl$TLSContext别名:[SSL],SunJSSE:SSLContext。默认->sun.security.ssl.SSLContext Impl$DefaultSSLContext,SunJSSE:KeyStore。PKCS12->sun.security.PKCS12.PKCS12KeyStore]java.ext.dirs:C: \Java\jre8\lib\ext;C: \Windows\Sun\Java\lib\ext 2016年1月27日11:50:57.371信息[http-apr-8080-exec-35]com.microsoft.sqlserver.jdbc.TDSChannel.enableSSL java.security路径:C: \Java\jre8\lib\security安全提供程序:[SUN版本1.8,SunRsaSign 1.8版、SunEC 1.8版、Sun JSSE 1.8版、SunJCE版本1.8,SunJGSS版本1.8,SunSASL版本1.8,XMLDSig版本1.8,SunPCSC版本1.8,SunMSCAPI版本1.8]SSLContext提供程序信息:Sun JSSE提供程序(PKCS12,SunX509/PKIX密钥/信任工厂,SSLv3/TLSv1/TLSv1.1/TLSv1.2)SSLContext提供程序服务:[SunJSSE:KeyFactory。RSA->sun.security.RSA.RSAKeyFactory别名:[1.2.840.113549.1.1,OID.1.2.840.113549.11],SunJSSE:KeyPairGenerator。RSA->sun.security.RSA.RSAKeyPairGenerator
别名:[1.2.840.113549.1.1,OID.1.2.840.113549.11],SunJSSE:签名MD2withRSA->sun.security.rsa.rsa签名$MD2withRSA
别名:[1.2.840.113549.1.1.2,OID.1.2.840.113549.1.2],SunJSSE:签名MD5withRSA->sun.security.rsa.rsa签名$MD5withRSA
别名:[1.2.840.113549.1.1.4,OID.1.2.840.113549.1.4],SunJSSE:签名SHA1withRSA->sun.security.rsa.rsa签名$SHA1withRSA
别名:[1.2.840.113549.1.1.5,OID.1.2.840.113549.1.5,1.3.14.3.2.29,OID.1.3.14.3.2.29],SunJSSE:签名。MD5和SHA1带有RSA->sun.security.sl.RSAS签名,SunJSSE:KeyManagerFactory。SunX509->sun.security.ssl.KeyManagerFactoryImpl$SunX509,SunJSSE:KeyManagerFactory。NewSunX509->sun.security.ssl.KeyManagerFactoryImpl$X509别名:[PKIX],SunJSSE:TrustManagerFactory。SunX509->sun.security.ssl.TrustManagerFactoryImpl$SimpFactory,SunJSSE:TrustManagerFactory。PKIX->sun.security.ssl.TrustManagerFactoryImpl$PKIXFactory别名:[SunPKIX,X509,X.509],SunJSSE:SSLContext。TLSv1->sun.security.ssl.SSLContext Impl$TLS10Context别名:[SSLv3],SunJSSE:SSLContext。TLSv1.1->sun.security.ssl.SSLContext Impl$TLS11Context,SunJSSE:SSLContext。TLSv1.2->sun.security.ssl.SSLContext Impl$TLS12Context,SunJSSE:SSLContent.TLS->sun.security.ssl.SSLContentImpl$TLSContext别名:[SSL],SunJSSE:SSLContext.Default->sun.security.SSL.SSLContextImpl$DefaultSSLContext,SunJSSE:KeyStore.PKCS12->sun.security.PKCS12.PKCS12KeyStore]java.ext.dirs:C: \Java\jre8\lib\ext;C: \Windows\Sun\Java\lib\ext 2016年1月27日11:50:57.371信息[池-3-线程-1]com.microsoft.sqlserver.jdbc.TDSChannel.enableSSL java.security路径:C: \Java\jre8\lib\security安全提供程序:[SUN版本1.8,SunRsaSign 1.8版、SunEC 1.8版、Sun JSSE 1.8版、SunJCE版本1.8,SunJGSS版本1.8,SunSASL版本1.8,XMLDSig版本1.8,SunPCSC版本1.8,SunMSCAPI版本1.8]SSLContext提供程序信息:Sun JSSE提供程序(PKCS12,SunX509/PKIX密钥/信任工厂,SSLv3/TLSv1/TLSv1.1/TLSv1.2)SSLContext提供程序服务:[SunJSSE:KeyFactory.RSA->sun.security.RSA.RSAKeyFactory别名:[1.2.840.113549.1.1,OID.1.2.840.113549.11],SunJSSE:KeyPairGenerator.RSA->sun.security.RSA.RSAKeyPairGenerator
别名:[1.2.840.113549.1.1,OID.1.2.840.113549.11],SunJSSE:Signature.MD2withRSA->sun.security.rsa.rsa Signature$MD2withRSA
别名:[1.2.840.113549.1.1.2,OID.1.2.840.113549.1.2],SunJSSE:签名.MD5withRSA->sun.security.rsa.rsa签名$MD5withRSA
别名:[1.2.840.113549.1.1.4,OID.1.2.840.113549.1.4],SunJSSE:Signature.SHA1withRSA->sun.security.rsa.rsa Signature$SHA1withRSA
别名:[1.2.840.113549.1.1.5,OID.1.2.840.113549.1.5,1.3.14.3.2.29,OID.1.3.14.3.2.29],SunJSSE:Signature.MD5和SHA1withRSA->sun.security.sl.RSASignature,SunJSSE:KeyManagerFactory.SunX509->sun.security.ssl.KeyManagerFactoryImpl$SunX509,SunJSSE:KeyManagerFactory.NewSunX509->sun.security.ssl.KeyManagerFactoryImpl$X509别名:[PKIX],SunJSSE:TrustManagerFactory.SunX509->sun.security.ssl.TrustManager FactoryImpl$SimpFactory,SunJSSE:TrustManagerFactory.PKIX->sun.security.ssl.TrustManagerFactoryImpl$PKIXFactory别名:[SunPKIX,X509,X.509],SunJSSE:SSLContent.TLSv1->sun.security.ssl.SSLContentImpl$TLS10Context别名:[SSLv3],SunJSSE:SSLContext。TLSv1.1->sun.security.ssl.SSLContext Impl$TLS11Context,SunJSSE:SSLContext。TLSv1.2->sun.security.ssl.SSLContext Impl$TLS12Context,SunJSSE:SSLContent.TLS->sun.security.ssl.SSLContentImpl$TLSContext别名:[SSL],SunJSSE:SSLContext.Default->sun.security.SSL.SSLContextImpl$DefaultSSLContext,SunJSSE:KeyStore.PKCS12->sun.security.PKCS12.PKCS12KeyStore]java.ext.dirs:C: \Java\jre8\lib\ext;C: \Windows\Sun\Java\lib\ext

获取更多详细的ssl调试信息可能会有所帮助。看见http://docs.oracle.com/javase/7/docs/technotes/guides/security/jsse/ReadDebug.html关于如何启用非常详细的ssl日志记录。输出应该有望显示更多关于它在做什么以及为什么花了这么长时间的信息。

相关内容

  • 没有找到相关文章

最新更新