 Posted 4/29/2008 8:55:49 AM
|
|
|
|
Hi,
I am developing some server to server applications and SSLHandshakeException occured when i try to send https request from one server to another server.
Here is my situation ,
1. Client C1(any web browser) accesses the Server S1.
2. In order to complete the request, S1 needs to communicate Server S2 where S2 requires SSL Client authentication.
3. When S1 sends the https servlet request to S2, SSLHandshakeException occured in S1.
And what i need is to make the communication between S1 and S2. My question is whether i want to keep any cert in S1 in order to communicate with S2 ?
P.S: Both S1 and S2 are running Apache 1.3. C1 could be either IE or firefox.
Any quick help will be appreciated.
Exception follows ,
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
12:41:30:129 PM at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)
12:41:30:129 PM at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(Unknown Source)
12:41:30:129 PM at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)
12:41:30:129 PM at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)
12:41:30:129 PM at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(Unknown Source)
12:41:30:130 PM at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown Source)
12:41:30:130 PM at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source)
12:41:30:130 PM at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source)
12:41:30:130 PM at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)
12:41:30:130 PM at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)
12:41:30:130 PM at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)
12:41:30:130 PM at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)
12:41:30:130 PM at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown Source)
12:41:30:130 PM at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown Source)
12:41:30:130 PM at sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)
12:41:30:131 PM at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(Unknown Source)
12:41:30:131 PM at com.adventnet.mesolutions.util.CommonUtil.requestFromServer(CommonUtil.java:85)
12:41:30:131 PM at com.adventnet.me.opmanager.webclient.admin.users.AddUserAction.execute(AddUserAction.java:365)
12:41:30:132 PM at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:484)
12:41:30:132 PM at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:274)
12:41:30:132 PM at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1482)
12:41:30:133 PM at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:525)
12:41:30:133 PM at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
12:41:30:134 PM at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
12:41:30:134 PM at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
12:41:30:134 PM at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
12:41:30:134 PM at com.adventnet.nms.webclient.login.AuthenticationFilter.doFilter(AuthenticationFilter.java:139)
12:41:30:134 PM at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
12:41:30:134 PM at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
12:41:30:134 PM at com.adventnet.nms.webclient.i18n.EncodingFilter.doFilter(EncodingFilter.java:70)
12:41:30:134 PM at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
12:41:30:134 PM at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
12:41:30:134 PM at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:256)
12:41:30:135 PM at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:643)
12:41:30:135 PM at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:480)
12:41:30:135 PM at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:995)
12:41:30:135 PM at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
12:41:30:135 PM at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:643)
12:41:30:135 PM at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:480)
12:41:30:135 PM at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:995)
12:41:30:135 PM at org.apache.catalina.core.StandardContext.invoke(StandardContext.java:2416)
12:41:30:135 PM at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:180)
12:41:30:136 PM at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:643)
12:41:30:136 PM at org.apache.catalina.valves.ErrorDispatcherValve.invoke(ErrorDispatcherValve.java:171)
12:41:30:136 PM at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:641)
12:41:30:136 PM at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:172)
12:41:30:136 PM at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:641)
12:41:30:136 PM at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:577)
12:41:30:136 PM at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:641)
12:41:30:136 PM at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:480)
12:41:30:136 PM at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:995)
12:41:30:137 PM at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:174)
12:41:30:137 PM at org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:643)
12:41:30:137 PM at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:480)
12:41:30:137 PM at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:995)
12:41:30:137 PM at org.apache.ajp.tomcat4.Ajp13Processor.process(Ajp13Processor.java:466)
12:41:30:137 PM at org.apache.ajp.tomcat4.Ajp13Processor.run(Ajp13Processor.java:585)
12:41:30:137 PM at java.lang.Thread.run(Unknown Source)
12:41:30:138 PM Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
12:41:30:138 PM at sun.security.validator.PKIXValidator.doBuild(Unknown Source)
12:41:30:139 PM at sun.security.validator.PKIXValidator.engineValidate(Unknown Source)
12:41:30:139 PM at sun.security.validator.Validator.validate(Unknown Source)
12:41:30:139 PM at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source)
12:41:30:139 PM at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(Unknown Source)
12:41:30:139 PM ... 54 more
12:41:30:140 PM Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
12:41:30:140 PM at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown Source)
12:41:30:140 PM at java.security.cert.CertPathBuilder.build(Unknown Source)
12:41:30:140 PM ... 59 more
|
|
|
|