Hi Matthew,
I have finally found time to dive into this. Sorry it took so long. The validation of parameters in OpenSSLEngineImpl (SSL implementation in Android) is wrong.
I have added my analysis to
https://code.google.com/p/android/issues/detail?id=103251, but it remains closed (There was no reopen button for me).
Thanks
Petr
On 22 Jan 2015, at 20:28, Matthew Mah <matthew.y.mah_at_gmail.com> wrote:
> On 01/16/2015 03:03 PM, Matthew Mah wrote:
>> I am encountering problems connecting Android 5.0 using the tyrus websocket to either nginx or tomcat servers using a secure websocket.
>>
>> javax.websocket.DeploymentException: SSL handshake has failed
>>
>> The code works fine for Android 4.4 , so I think this is related to the SSL changes in Android 5.0:
>> http://developer.android.com/about/versions/android-5.0-changes.html#ssl
>>
>> Is there a way I can tell what exactly is failing? I am not sure whether its a problem with the certificate or with the TLS protocol or the cipher suites available.
>>
>> Thanks,
>> Matt
> I have posted an Android bug report on this issue, which has been accepted:
> https://code.google.com/p/android/issues/detail?id=103251
>
> The Google/Android developers suggest there may also be a problem in the websocket implementation:
> https://code.google.com/p/android/issues/detail?id=103251#c10