Do you use SSLCertificateSocketFactory (with caching?) https://github.com/android/platform_frameworks_base/blob/master/core/java/android/net/SSLCertificateSocketFactory.java
https://github.com/android/platform_frameworks_base/blob/master/core/java/android/net/SSLSessionCache.java A lot of servers have been tweaked recently because of the SSLv3 vulnerability. This socket factory will try to use any previously negotiated (and cached) protocols and ciphers, potentially failing. There is are no methods to flush the caches (Android API Council, hello?)... ...but it works to delete the files (see SSLSessionCache constructor) and to then reboot the device (so flush anything already loaded into memory). -- K 2014-11-16 1:38 GMT+03:00 Scott Jackson <daneren2...@gmail.com>: > I am getting a very similar error report from some users. It seems that > only people who are connecting to a default setup of Subsonic are having > the issue. Anyone who uses a NGinx/Apache front end aren't having the same > issue. The server is based on Jetty 6. Any idea what the problem might be? > > > On Thursday, November 6, 2014 3:25:42 PM UTC-8, Nathan wrote: >> >> I've had two people in a row report the exact same thing with Android 5.0 >> on Nexus 9. >> >> One of them got me a log. >> >> I am seeing a failure in contacting a server through a client certificate >> for in app billing purposes >> >> Can anyone confirm any ssl based surprises in Android 5.0? >> >> If so, not such a good job in backwards compatibility, but I guess my >> expectations should be pretty low in that regard. >> >> Nathan >> >> >> 11-06 14:25:39.684 E/ServerService( 9973): Handshake failed >> 11-06 14:25:39.684 E/ServerService( 9973): >> javax.net.ssl.SSLHandshakeException: >> Handshake failed >> 11-06 14:25:39.684 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake( >> OpenSSLSocketImpl.java:374) >> 11-06 14:25:39.684 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.waitForHandshake( >> OpenSSLSocketImpl.java:598) >> 11-06 14:25:39.684 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.getOutputStream( >> OpenSSLSocketImpl.java:584) >> 11-06 14:25:39.684 E/ServerService( 9973): at com.crittermap.iab. >> serverinterface.ServerService.onHandleIntent(ServerService.java:98) >> 11-06 14:25:39.684 E/ServerService( 9973): at >> android.app.IntentService$ServiceHandler.handleMessage( >> IntentService.java:65) >> 11-06 14:25:39.684 E/ServerService( 9973): at android.os.Handler. >> dispatchMessage(Handler.java:102) >> 11-06 14:25:39.684 E/ServerService( 9973): at >> android.os.Looper.loop(Looper.java:135) >> 11-06 14:25:39.684 E/ServerService( 9973): at >> android.os.HandlerThread.run(HandlerThread.java:61) >> 11-06 14:25:39.684 E/ServerService( 9973): Caused by: >> javax.net.ssl.SSLProtocolException: >> SSL handshake aborted: ssl=0x55a1c0b870: Failure in SSL library, usually a >> protocol error >> 11-06 14:25:39.684 E/ServerService( 9973): error:14077438:SSL >> routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error >> (external/openssl/ssl/s23_clnt.c:765 0x7f8df6bfb0:0x00000000) >> 11-06 14:25:39.684 E/ServerService( 9973): at >> com.android.org.conscrypt.NativeCrypto.SSL_do_handshake(Native Method) >> 11-06 14:25:39.684 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake( >> OpenSSLSocketImpl.java:302) >> 11-06 14:25:39.684 E/ServerService( 9973): ... 7 more >> 11-06 14:25:40.825 E/ServerService( 9973): Handshake failed >> 11-06 14:25:40.825 E/ServerService( 9973): >> javax.net.ssl.SSLHandshakeException: >> Handshake failed >> 11-06 14:25:40.825 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake( >> OpenSSLSocketImpl.java:374) >> 11-06 14:25:40.825 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.waitForHandshake( >> OpenSSLSocketImpl.java:598) >> 11-06 14:25:40.825 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.getOutputStream( >> OpenSSLSocketImpl.java:584) >> 11-06 14:25:40.825 E/ServerService( 9973): at com.crittermap.iab. >> serverinterface.ServerService.onHandleIntent(ServerService.java:98) >> 11-06 14:25:40.825 E/ServerService( 9973): at >> android.app.IntentService$ServiceHandler.handleMessage( >> IntentService.java:65) >> 11-06 14:25:40.825 E/ServerService( 9973): at android.os.Handler. >> dispatchMessage(Handler.java:102) >> 11-06 14:25:40.825 E/ServerService( 9973): at >> android.os.Looper.loop(Looper.java:135) >> 11-06 14:25:40.825 E/ServerService( 9973): at >> android.os.HandlerThread.run(HandlerThread.java:61) >> 11-06 14:25:40.825 E/ServerService( 9973): Caused by: >> javax.net.ssl.SSLProtocolException: >> SSL handshake aborted: ssl=0x55a1c057e0: Failure in SSL library, usually a >> protocol error >> 11-06 14:25:40.825 E/ServerService( 9973): error:14077438:SSL >> routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error >> (external/openssl/ssl/s23_clnt.c:765 0x7f8df6bfb0:0x00000000) >> 11-06 14:25:40.825 E/ServerService( 9973): at >> com.android.org.conscrypt.NativeCrypto.SSL_do_handshake(Native Method) >> 11-06 14:25:40.825 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake( >> OpenSSLSocketImpl.java:302) >> 11-06 14:25:40.825 E/ServerService( 9973): ... 7 more >> 11-06 14:25:41.964 E/ServerService( 9973): Handshake failed >> 11-06 14:25:41.964 E/ServerService( 9973): >> javax.net.ssl.SSLHandshakeException: >> Handshake failed >> 11-06 14:25:41.964 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake( >> OpenSSLSocketImpl.java:374) >> 11-06 14:25:41.964 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.waitForHandshake( >> OpenSSLSocketImpl.java:598) >> 11-06 14:25:41.964 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.getOutputStream( >> OpenSSLSocketImpl.java:584) >> 11-06 14:25:41.964 E/ServerService( 9973): at com.crittermap.iab. >> serverinterface.ServerService.onHandleIntent(ServerService.java:98) >> 11-06 14:25:41.964 E/ServerService( 9973): at >> android.app.IntentService$ServiceHandler.handleMessage( >> IntentService.java:65) >> 11-06 14:25:41.964 E/ServerService( 9973): at android.os.Handler. >> dispatchMessage(Handler.java:102) >> 11-06 14:25:41.964 E/ServerService( 9973): at >> android.os.Looper.loop(Looper.java:135) >> 11-06 14:25:41.964 E/ServerService( 9973): at >> android.os.HandlerThread.run(HandlerThread.java:61) >> 11-06 14:25:41.964 E/ServerService( 9973): Caused by: >> javax.net.ssl.SSLProtocolException: >> SSL handshake aborted: ssl=0x55a1c0b870: Failure in SSL library, usually a >> protocol error >> 11-06 14:25:41.964 E/ServerService( 9973): error:14077438:SSL >> routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error >> (external/openssl/ssl/s23_clnt.c:765 0x7f8df6bfb0:0x00000000) >> 11-06 14:25:41.964 E/ServerService( 9973): at >> com.android.org.conscrypt.NativeCrypto.SSL_do_handshake(Native Method) >> 11-06 14:25:41.964 E/ServerService( 9973): at >> com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake( >> OpenSSLSocketImpl.java:302) >> 11-06 14:25:41.964 E/ServerService( 9973): ... 7 more >> >> >> Nathan >> > -- > You received this message because you are subscribed to the Google > Groups "Android Developers" group. > To post to this group, send email to android-developers@googlegroups.com > To unsubscribe from this group, send email to > android-developers+unsubscr...@googlegroups.com > For more options, visit this group at > http://groups.google.com/group/android-developers?hl=en > --- > You received this message because you are subscribed to the Google Groups > "Android Developers" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to android-developers+unsubscr...@googlegroups.com. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en --- You received this message because you are subscribed to the Google Groups "Android Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to android-developers+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.