You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Linh Ngo <li...@gmail.com> on 2005/06/01 17:16:23 UTC

[users@httpd] Certificate issues for text-based browser

Hi everybody, 
I am trying to create a Java text-based web browser in order to access
a specific Apache web server. However, I am having the folowing error:
......................................................................................................................

THE HEADERS
-----------
Exception in thread "main" javax.net.ssl.SSLHandshakeException:
sun.security.validator.ValidatorException: PKIX path building failed:
sun.security.provider.certpath.SunCertPathBuilderException: unable to
find valid certification path to requested target
        at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native
Method)        at
sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
        at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
        at java.lang.reflect.Constructor.newInstance(Constructor.java:494)
        at sun.net.www.protocol.http.HttpURLConnection$6.run(HttpURLConnection.java:1186)
        at java.security.AccessController.doPrivileged(Native Method)
        at sun.net.www.protocol.http.HttpURLConnection.getChainedException(HttpURLConnection.java:1180)
        at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:877)
        at com.sun.net.ssl.internal.www.protocol.https.HttpsURLConnectionOldImpl.getInputStream(HttpsURLConnectionOldImpl.java:204)
        at command_line.Browser.run(Browser.java:44)
        at command_line.SecureBrowser.main(SecureBrowser.java:24)
Caused by: javax.net.ssl.SSLHandshakeException:
sun.security.validator.ValidatorException: PKIX path building failed:
sun.security.provider.certpath.SunCertPathBuilderException: unable to
find valid certification path to requested target
        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:174)
        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:168)
        at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:843)
        at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:106)
        at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:495)
        at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:433)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:815)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1038)
        at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:405)
        at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:170)
        at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:905)
        at sun.net.www.protocol.http.HttpURLConnection.getHeaderFieldKey(HttpURLConnection.java:1903)
        at com.sun.net.ssl.internal.www.protocol.https.HttpsURLConnectionOldImpl.getHeaderFieldKey(HttpsURLConnectionOldImpl.java:257)
        at command_line.Browser.run(Browser.java:39)
        ... 1 more
Caused by: sun.security.validator.ValidatorException: PKIX path
building failed:
sun.security.provider.certpath.SunCertPathBuilderException: unable to
find valid certification path to requested target
        at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:221)
        at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:145)
        at sun.security.validator.Validator.validate(Validator.java:203)
        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:172)
        at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(SSLContextImpl.java:320)
        at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:836)
        ... 13 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException:
unable to find valid certification path to requested target
        at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:236)
        at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:194)
        at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:216)
        ... 18 more
...........................................................................................................................

I have tried adding the certificate of the website into Java's
/jre/lib/security/cacerts directory; yet it would still not work.
Is there anyway that I could bypass this certificate checking process
from the client side?
I understand that this post would be close to being off topic since it
is mostly java-related, but any thoughts would be much appreciated.

Thank you

Linh Ngo

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Certificate issues for text-based browser

Posted by Aman Raheja <ar...@techquotes.com>.

Sorry, but you are certainly in the wrong mailinglist for this question.
This would be better answered by a Java development mailinglist.
Thanks

Aman Raheja

Linh Ngo wrote:

>Hi everybody, 
>I am trying to create a Java text-based web browser in order to access
>a specific Apache web server. However, I am having the folowing error:
>......................................................................................................................
>
>THE HEADERS
>-----------
>Exception in thread "main" javax.net.ssl.SSLHandshakeException:
>sun.security.validator.ValidatorException: PKIX path building failed:
>sun.security.provider.certpath.SunCertPathBuilderException: unable to
>find valid certification path to requested target
>        at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native
>Method)        at
>sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
>        at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
>        at java.lang.reflect.Constructor.newInstance(Constructor.java:494)
>        at sun.net.www.protocol.http.HttpURLConnection$6.run(HttpURLConnection.java:1186)
>        at java.security.AccessController.doPrivileged(Native Method)
>        at sun.net.www.protocol.http.HttpURLConnection.getChainedException(HttpURLConnection.java:1180)
>        at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:877)
>        at com.sun.net.ssl.internal.www.protocol.https.HttpsURLConnectionOldImpl.getInputStream(HttpsURLConnectionOldImpl.java:204)
>        at command_line.Browser.run(Browser.java:44)
>        at command_line.SecureBrowser.main(SecureBrowser.java:24)
>Caused by: javax.net.ssl.SSLHandshakeException:
>sun.security.validator.ValidatorException: PKIX path building failed:
>sun.security.provider.certpath.SunCertPathBuilderException: unable to
>find valid certification path to requested target
>        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
>        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
>        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:174)
>        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:168)
>        at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:843)
>        at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:106)
>        at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:495)
>        at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:433)
>        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:815)
>        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
>        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1038)
>        at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:405)
>        at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:170)
>        at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:905)
>        at sun.net.www.protocol.http.HttpURLConnection.getHeaderFieldKey(HttpURLConnection.java:1903)
>        at com.sun.net.ssl.internal.www.protocol.https.HttpsURLConnectionOldImpl.getHeaderFieldKey(HttpsURLConnectionOldImpl.java:257)
>        at command_line.Browser.run(Browser.java:39)
>        ... 1 more
>Caused by: sun.security.validator.ValidatorException: PKIX path
>building failed:
>sun.security.provider.certpath.SunCertPathBuilderException: unable to
>find valid certification path to requested target
>        at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:221)
>        at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:145)
>        at sun.security.validator.Validator.validate(Validator.java:203)
>        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:172)
>        at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(SSLContextImpl.java:320)
>        at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:836)
>        ... 13 more
>Caused by: sun.security.provider.certpath.SunCertPathBuilderException:
>unable to find valid certification path to requested target
>        at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:236)
>        at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:194)
>        at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:216)
>        ... 18 more
>...........................................................................................................................
>
>I have tried adding the certificate of the website into Java's
>/jre/lib/security/cacerts directory; yet it would still not work.
>Is there anyway that I could bypass this certificate checking process
>from the client side?
>I understand that this post would be close to being off topic since it
>is mostly java-related, but any thoughts would be much appreciated.
>
>Thank you
>
>Linh Ngo
>
>---------------------------------------------------------------------
>The official User-To-User support forum of the Apache HTTP Server Project.
>See <URL:http://httpd.apache.org/userslist.html> for more info.
>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>   "   from the digest: users-digest-unsubscribe@httpd.apache.org
>For additional commands, e-mail: users-help@httpd.apache.org
>
>
>
>  
>


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org