You are viewing a plain text version of this content. The canonical link for it is here.
Posted to httpclient-users@hc.apache.org by Tim Watts <ti...@earthlink.net> on 2005/12/12 05:54:20 UTC
newbie needs help with CertificateException
Hi,
I'm getting the stacktrace below when I run my app on windowsXP but not on my
Linux box. Can I get a pointer as to what's going on here and what I might do
to correct it? Windows=java-1.4.1; linux=1.4.2 but I doubt these version
differences are the root cause. Using v3.0-rc4. Let me know if you need a
wire-trace. Thanks.
2005-12-11 15:34:24,972 INFO [com.cliftonfarm.dns.DnsMonitor] New IP:
66.245.116.154
2005-12-11 15:34:25,993 ERROR [com.cliftonfarm.dns.DynDnsUpdater]
javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException:
Could not find trusted certificate
at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SunJSSE_ax.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(Unknown Source)
at java.io.BufferedOutputStream.flushBuffer(Unknown Source)
at java.io.BufferedOutputStream.flush(Unknown Source)
at
org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream(HttpConnection.java:825)
at
org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.java:1975)
at
org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:993)
at
org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMethodDirector.java:395)
at
org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDirector.java:170)
at
org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:396)
at
org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:324)
at
com.cliftonfarm.dns.CommonsHttpClientAgent.doDnsUpdate(CommonsHttpClientAgent.java:70)
at com.cliftonfarm.dns.DynDnsUpdater.updateDns(DynDnsUpdater.java:62)
at com.cliftonfarm.dns.DnsMonitor.check(DnsMonitor.java:121)
at com.cliftonfarm.dns.DnsMonitor.main(DnsMonitor.java:50)
Caused by: java.security.cert.CertificateException: Could not find trusted
certificate
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.a(Unknown Source)
at
com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown
Source)
at
com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(Unknown
Source)
... 20 more
2005-12-11 15:34:26,454 WARN [com.cliftonfarm.dns.DnsMonitor] DnsMonitor is
disabled.
2005-12-11 15:34:27,155 INFO [com.cliftonfarm.dns.MailNotifier] Email notice
sent.
2005-12-11 15:34:27,165 INFO [com.cliftonfarm.dns.DnsMonitor] Result:
disabled
---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
Re: newbie needs help with CertificateException
Posted by Tim Watts <ti...@earthlink.net>.
William,
Thanks for the reponse. How do I know which cert it's looking for? Do I just
create a self-signed cert and import that?
On Monday 12 December 2005 03:18, William Cai wrote:
> Tim,
> You may import the certificate to your JRE keystore by the following
> instructions.
>
> 1. cd $JAVA_HOME/jre/lib/security
> 2. cp cacerts cacerts.bak
> 3. keytool -import -alias youralias -file yourcert.cer -keystore cacerts
> (default password: changeit)
>
> Then run your application again.
>
> Hope it helps.
>
> -William
>
> -----Original Message-----
> From: Tim Watts [mailto:timtw@earthlink.net]
> Sent: Monday, December 12, 2005 12:54 PM
> To: httpclient-user@jakarta.apache.org
> Subject: newbie needs help with CertificateException
>
> Hi,
> I'm getting the stacktrace below when I run my app on windowsXP but not on
> my
> Linux box. Can I get a pointer as to what's going on here and what I might
> do
> to correct it? Windows=java-1.4.1; linux=1.4.2 but I doubt these version
> differences are the root cause. Using v3.0-rc4. Let me know if you need a
> wire-trace. Thanks.
>
> 2005-12-11 15:34:24,972 INFO [com.cliftonfarm.dns.DnsMonitor] New IP:
> 66.245.116.154
> 2005-12-11 15:34:25,993 ERROR [com.cliftonfarm.dns.DynDnsUpdater]
> javax.net.ssl.SSLHandshakeException:
> java.security.cert.CertificateException:
> Could not find trusted certificate
> at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SunJSSE_ax.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(Unknown Source)
> at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
> at com.sun.net.ssl.internal.ssl.AppOutputStream.write(Unknown
> Source)
> at java.io.BufferedOutputStream.flushBuffer(Unknown Source)
> at java.io.BufferedOutputStream.flush(Unknown Source)
> at
> org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream(HttpC
>o nnection.java:825)
> at
> org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.ja
>v a:1975)
> at
> org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:99
>3 )
> at
> org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMetho
>d Director.java:395)
> at
> org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDi
>r ector.java:170)
> at
> org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:396)
> at
> org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:324)
> at
> com.cliftonfarm.dns.CommonsHttpClientAgent.doDnsUpdate(CommonsHttpClientAge
>n t.java:70)
> at
> com.cliftonfarm.dns.DynDnsUpdater.updateDns(DynDnsUpdater.java:62)
> at com.cliftonfarm.dns.DnsMonitor.check(DnsMonitor.java:121)
> at com.cliftonfarm.dns.DnsMonitor.main(DnsMonitor.java:50)
> Caused by: java.security.cert.CertificateException: Could not find trusted
> certificate
> at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.a(Unknown
> Source)
> at
> com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Unknow
>n
>
> Source)
> at
> com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(Unknow
>n
>
> Source)
> ... 20 more
>
> 2005-12-11 15:34:26,454 WARN [com.cliftonfarm.dns.DnsMonitor] DnsMonitor
> is
>
> disabled.
> 2005-12-11 15:34:27,155 INFO [com.cliftonfarm.dns.MailNotifier] Email
> notice
> sent.
> 2005-12-11 15:34:27,165 INFO [com.cliftonfarm.dns.DnsMonitor] Result:
> disabled
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
RE: newbie needs help with CertificateException
Posted by William Cai <wc...@xwarelabs.com>.
Tim,
You may import the certificate to your JRE keystore by the following
instructions.
1. cd $JAVA_HOME/jre/lib/security
2. cp cacerts cacerts.bak
3. keytool -import -alias youralias -file yourcert.cer -keystore cacerts
(default password: changeit)
Then run your application again.
Hope it helps.
-William
-----Original Message-----
From: Tim Watts [mailto:timtw@earthlink.net]
Sent: Monday, December 12, 2005 12:54 PM
To: httpclient-user@jakarta.apache.org
Subject: newbie needs help with CertificateException
Hi,
I'm getting the stacktrace below when I run my app on windowsXP but not on
my
Linux box. Can I get a pointer as to what's going on here and what I might
do
to correct it? Windows=java-1.4.1; linux=1.4.2 but I doubt these version
differences are the root cause. Using v3.0-rc4. Let me know if you need a
wire-trace. Thanks.
2005-12-11 15:34:24,972 INFO [com.cliftonfarm.dns.DnsMonitor] New IP:
66.245.116.154
2005-12-11 15:34:25,993 ERROR [com.cliftonfarm.dns.DynDnsUpdater]
javax.net.ssl.SSLHandshakeException:
java.security.cert.CertificateException:
Could not find trusted certificate
at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SunJSSE_ax.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(Unknown Source)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(Unknown
Source)
at java.io.BufferedOutputStream.flushBuffer(Unknown Source)
at java.io.BufferedOutputStream.flush(Unknown Source)
at
org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream(HttpCo
nnection.java:825)
at
org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.jav
a:1975)
at
org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:993
)
at
org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMethod
Director.java:395)
at
org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDir
ector.java:170)
at
org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:396)
at
org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:324)
at
com.cliftonfarm.dns.CommonsHttpClientAgent.doDnsUpdate(CommonsHttpClientAgen
t.java:70)
at
com.cliftonfarm.dns.DynDnsUpdater.updateDns(DynDnsUpdater.java:62)
at com.cliftonfarm.dns.DnsMonitor.check(DnsMonitor.java:121)
at com.cliftonfarm.dns.DnsMonitor.main(DnsMonitor.java:50)
Caused by: java.security.cert.CertificateException: Could not find trusted
certificate
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.a(Unknown
Source)
at
com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown
Source)
at
com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(Unknown
Source)
... 20 more
2005-12-11 15:34:26,454 WARN [com.cliftonfarm.dns.DnsMonitor] DnsMonitor is
disabled.
2005-12-11 15:34:27,155 INFO [com.cliftonfarm.dns.MailNotifier] Email
notice
sent.
2005-12-11 15:34:27,165 INFO [com.cliftonfarm.dns.DnsMonitor] Result:
disabled
---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org