[esb-java-dev] [jira] Resolved: (ESBJAVA-282) SSLHandshakeException is thrown when an https port is specified as the port of a WSDL endpoint and a request is sent

Asankha Perera (JIRA) jira at wso2.org
Thu Nov 8 20:50:14 PST 2007 

     [ http://www.wso2.org/jira/browse/ESBJAVA-282?page=all ]

Asankha Perera resolved ESBJAVA-282.
------------------------------------

    Resolution: Not a bug

When calling into any https:// address, the System JDK must be able to "trust" the certificate presented by it. Thus, the trust.jks used by the https sender and/or the trust store of the JDK ($JAVA_HOME/jre/lib/security/cacerts) must have the necessary certificate/s or the root certificates to verify trust

> SSLHandshakeException is thrown when an https port is specified as the port of a WSDL endpoint and a request is sent
> --------------------------------------------------------------------------------------------------------------------
>
>                 Key: ESBJAVA-282
>                 URL: http://www.wso2.org/jira/browse/ESBJAVA-282
>             Project: WSO2 ESB
>          Issue Type: Bug
>          Components: Endpoints Management
>    Affects Versions: NIGHTLY
>         Environment: Ubuntu7.04, JDK1.5.0_12
>            Reporter: Evanthika Amarasiri
>         Assigned To: Asankha Perera
>
> Created a configuration where it refers a WSDL endpoint with an https port
> The configuration is as below
> ==================
> <syn:sequence name="sample_60">
> 	<syn:in>
> 		<syn:send>
> 			<syn:endpoint>
> 				<syn:wsdl service="SimpleStockQuoteService" port="SimpleStockQuoteServiceSOAP11port_https" uri="http://localhost:9000/soap/SimpleStockQuoteService?wsdl" format="soap11"/>
> 			</syn:endpoint>
> 		</syn:send>
> 	</syn:in>
> 	<syn:out>
> 		<syn:send/>
> 	</syn:out>
> </syn:sequence>
> The exception thrown
> ==============
> 2007-10-23 15:06:57,613 [127.0.1.1-testc-ubuntu] [I/O dispatcher 1] ERROR ClientHandler HTTP connection [testc-ubuntu/127.0.1.1:9002]: General SSLEngine problem
> javax.net.ssl.SSLHandshakeException: General SSLEngine problem
>         at com.sun.net.ssl.internal.ssl.Handshaker.checkThrown(Handshaker.java:994)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:459)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.writeAppRecord(SSLEngineImpl.java:1058)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.wrap(SSLEngineImpl.java:1030)
>         at javax.net.ssl.SSLEngine.wrap(SSLEngine.java:411)
>         at org.apache.http.impl.nio.reactor.SSLIOSession.doHandshake(SSLIOSession.java:143)
>         at org.apache.http.impl.nio.reactor.SSLIOSession.isAppInputReady(SSLIOSession.java:249)
>         at org.apache.synapse.transport.nhttp.SSLClientIOEventDispatch.inputReady(SSLClientIOEventDispatch.java:116)
>         at org.apache.http.impl.nio.reactor.BaseIOReactor.readable(BaseIOReactor.java:94)
>         at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvent(AbstractIOReactor.java:189)
>         at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvents(AbstractIOReactor.java:174)
>         at org.apache.http.impl.nio.reactor.AbstractIOReactor.execute(AbstractIOReactor.java:137)
>         at org.apache.http.impl.nio.reactor.BaseIOReactor.execute(BaseIOReactor.java:69)
>         at org.apache.http.impl.nio.reactor.AbstractMultiworkerIOReactor$Worker.run(AbstractMultiworkerIOReactor.java:281)
>         at java.lang.Thread.run(Thread.java:595)
> Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem
>         at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1417)
>         at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:176)
>         at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:168)
>         at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:848)
>         at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:106)
>         at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:495)
>         at com.sun.net.ssl.internal.ssl.Handshaker$1.run(Handshaker.java:437)
>         at java.security.AccessController.doPrivileged(Native Method)
>         at com.sun.net.ssl.internal.ssl.Handshaker$DelegatedTask.run(Handshaker.java:932)
>         at org.apache.http.impl.nio.reactor.SSLIOSession.doHandshake(SSLIOSession.java:166)
>         ... 9 more
> Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
>         at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:221)
>         at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:145)
>         at sun.security.validator.Validator.validate(Validator.java:203)
>         at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:172)
>         at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(SSLContextImpl.java:320)
>         at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:841)
>         ... 15 more
> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
>         at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:236)
>         at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:194)
>         at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:216)
>         ... 20 more
> 2007-10-23 15:06:57,616 [127.0.1.1-testc-ubuntu] [I/O dispatcher 1] ERROR ClientHandler I/O error : General SSLEngine problem
> javax.net.ssl.SSLHandshakeException: General SSLEngine problem
>         at com.sun.net.ssl.internal.ssl.Handshaker.checkThrown(Handshaker.java:994)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:459)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.writeAppRecord(SSLEngineImpl.java:1058)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.wrap(SSLEngineImpl.java:1030)
>         at javax.net.ssl.SSLEngine.wrap(SSLEngine.java:411)
>         at org.apache.http.impl.nio.reactor.SSLIOSession.doHandshake(SSLIOSession.java:143)
>         at org.apache.http.impl.nio.reactor.SSLIOSession.isAppInputReady(SSLIOSession.java:249)
>         at org.apache.synapse.transport.nhttp.SSLClientIOEventDispatch.inputReady(SSLClientIOEventDispatch.java:116)
>         at org.apache.http.impl.nio.reactor.BaseIOReactor.readable(BaseIOReactor.java:94)
>         at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvent(AbstractIOReactor.java:189)
>         at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvents(AbstractIOReactor.java:174)
>         at org.apache.http.impl.nio.reactor.AbstractIOReactor.execute(AbstractIOReactor.java:137)
>         at org.apache.http.impl.nio.reactor.BaseIOReactor.execute(BaseIOReactor.java:69)
>         at org.apache.http.impl.nio.reactor.AbstractMultiworkerIOReactor$Worker.run(AbstractMultiworkerIOReactor.java:281)
>         at java.lang.Thread.run(Thread.java:595)
> Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem
>         at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
>         at com.sun.net.ssl.internal.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1417)
>         at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:176)
>         at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:168)
>         at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:848)
>         at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:106)
>         at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:495)
>         at com.sun.net.ssl.internal.ssl.Handshaker$1.run(Handshaker.java:437)
>         at java.security.AccessController.doPrivileged(Native Method)
>         at com.sun.net.ssl.internal.ssl.Handshaker$DelegatedTask.run(Handshaker.java:932)
>         at org.apache.http.impl.nio.reactor.SSLIOSession.doHandshake(SSLIOSession.java:166)
>         ... 9 more
> Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
>         at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:221)
>         at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:145)
>         at sun.security.validator.Validator.validate(Validator.java:203)
>         at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:172)
>         at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(SSLContextImpl.java:320)
>         at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:841)
>         ... 15 more
> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
>         at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:236)
>         at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:194)
>         at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:216)
>         ... 20 more

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://www.wso2.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the Esb-java-dev mailing list