It looks like Jetty agrees on using Elliptic Curve Cryptography while connecting via HTTPS to servers; however, this causes an error that ultimately results in Diffie-Hellman keypair for communication not being generated, thus throwing com.amazonaws.SdkClientException: Unable to execute HTTP request: java.lang.RuntimeException: Could not generate DH keypair (it may be another exception class rather than SdkClientException).
A workaround is presented in this question reporting the same kind of issue: the -Dcom.sun.net.ssl.enableECC=false arg must be passed to VM in order for Jetty server to continue execution.
Indeed, adding the VM argument to MasterServerMain run configuration makes the trick; however I don't know how to programmatically configure this argument nor if it's even right to disable ECC. Someone suggests that this issue may be caused by outdated BouncyCastle version. I'll try to look into the issue, however for the time being I'll stick around with the VM argument since I could not otherwise test EC2 instance generation and administration.
It looks like Jetty agrees on using Elliptic Curve Cryptography while connecting via HTTPS to servers; however, this causes an error that ultimately results in Diffie-Hellman keypair for communication not being generated, thus throwing
com.amazonaws.SdkClientException: Unable to execute HTTP request: java.lang.RuntimeException: Could not generate DH keypair(it may be another exception class rather thanSdkClientException).A workaround is presented in this question reporting the same kind of issue: the
-Dcom.sun.net.ssl.enableECC=falsearg must be passed to VM in order for Jetty server to continue execution.Indeed, adding the VM argument to
MasterServerMainrun configuration makes the trick; however I don't know how to programmatically configure this argument nor if it's even right to disable ECC. Someone suggests that this issue may be caused by outdated BouncyCastle version. I'll try to look into the issue, however for the time being I'll stick around with the VM argument since I could not otherwise test EC2 instance generation and administration.