You are viewing a plain text version of this content. The canonical link for it is here.
Posted to tsik-dev@ws.apache.org by "Malhotra, Vishal" <vm...@verisign.com> on 2006/02/23 07:38:48 UTC
Issue - using sample code provided with TSIK2.0
Hi,
While testing the sample code of TrustVerifier (SSLAndHttpsTests.java)
provided with TSIK2.0 (got it from incubator.apache.org/tsik), I got the
following error.
javax.net.ssl.SSLHandshakeException:
java.security.cert.CertificateException: CA certificate does not include
basic constraints extension
at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SunJSSE_ax.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA6275)
at
com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA6275)
at SSLAndHttpsTests.testSSL(SSLAndHttpsTests.java:213)
at SSLAndHttpsTests.runTest(SSLAndHttpsTests.java:114)
at SSLAndHttpsTests.main(SSLAndHttpsTests.java:81)
Caused by: java.security.cert.CertificateException: CA certificate does
not include basic constraints extension
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.a(DashoA6275)
at
com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Das
hoA6275)
at
com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(Das
hoA6275)
... 9 more
Exception in thread "main"
I am using "jdk 1.4.1_02". Can this be a reason for this error?
The trusted certs are present in the java keystore
(j2sdk1.4.1_02\jre\lib\security\cacerts).
What can be the reason for this error?
Regards,
Vishal.