Re: Issue in Virgo Deployment

Tue, 20 Mar 2012 06:03:40 -0700 

Hi,
It looks some thing wrong on the server side which your client want to access. 


Caused by: java.io.IOException: The https URL hostname does not match 
the

Common Name (CN) on the server certificate.  To disable this check (NOT

recommended for production) set the CXF client TLS configuration 
property

"disableCNCheck" to true.


Can you check if the server certificate Common Name is march to the 
Host Name ?



On Tue Mar 20 14:41:31 2012, rajesh babu wrote:

Hi All,

      I have application that will act as webservices client and i need to
submit to request to  my server which is having an "https" endpoint, my
http-conduit looks like ,

<?xml version="1.0" encoding="UTF-8"?>
<!--
   Licensed to the Apache Software Foundation (ASF) under one
   or more contributor license agreements. See the NOTICE file
   distributed with this work for additional information
   regarding copyright ownership. The ASF licenses this file
   to you under the Apache License, Version 2.0 (the
   "License"); you may not use this file except in compliance
   with the License. You may obtain a copy of the License at

   http://www.apache.org/licenses/LICENSE-2.0

   Unless required by applicable law or agreed to in writing,
   software distributed under the License is distributed on an
   "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
   KIND, either express or implied. See the License for the
   specific language governing permissions and limitations
   under the License.
-->

<!--
   ** This file configures the Wibble Client
   -->
<beans xmlns="http://www.springframework.org/schema/beans";
   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
   xmlns:sec="http://cxf.apache.org/configuration/security";
   xmlns:http="http://cxf.apache.org/transports/http/configuration";
   xmlns:jaxws="http://java.sun.com/xml/ns/jaxws";
   xmlns:ctx="http://www.springframework.org/schema/context";
   xmlns:camel="http://camel.apache.org/schema/spring";
   xmlns:camel-cxf="http://camel.apache.org/schema/cxf";
   xmlns:http-conf="http://cxf.apache.org/transports/http/configuration";
   xsi:schemaLocation="
            http://cxf.apache.org/configuration/security
            http://cxf.apache.org/schemas/configuration/security.xsd
            http://cxf.apache.org/transports/http/configuration
            http://cxf.apache.org/schemas/configuration/http-conf.xsd
            http://www.springframework.org/schema/beans
            http://www.springframework.org/schema/beans/spring-beans.xsd
     http://www.springframework.org/schema/context
http://www.springframework.org/schema/context/spring-context.xsd
     http://camel.apache.org/schema/spring
http://camel.apache.org/schema/spring/camel-spring.xsd
     http://camel.apache.org/schema/osgi
http://camel.apache.org/schema/osgi/camel-osgi.xsd
     http://camel.apache.org/schema/cxf
http://camel.apache.org/schema/cxf/camel-cxf.xsd
     http://cxf.apache.org/configuration/security
http://cxf.apache.org/schemas/configuration/security.xsd";>

    <!--<bean id="placeholderConfig"
class="org.springframework.beans.factory.config.PropertyPlaceholderConfigurer">
         <property name="locations" value="classpath:/context.properties"/>
    </bean>-->

    <import resource="classpath:META-INF/cxf/cxf.xml" />
   <import resource="classpath:META-INF/cxf/cxf-extension-soap.xml" />
   <import resource="classpath:META-INF/cxf/cxf-extension-http-jetty.xml" />



    <http-conf:conduit name="*.http-conduit">
    <http-conf:tlsClientParameters secureSocketProtocol="TLS"
disableCNCheck="true">
       <sec:keyManagers keyPassword="initinit">
            <sec:keyStore type="JKS" password="initinit"
                 file="C:\\gehc-it\\ccg\\conf\\certs\\client.keystore"/>
       </sec:keyManagers>
       <sec:trustManagers>
           <sec:keyStore type="JKS" password="initinit"
                file="C:\\gehc-it\\ccg\\conf\\certs\\ca.keystore"/>
       </sec:trustManagers>
       <sec:cipherSuitesFilter>
         <!-- these filters ensure that a ciphersuite with
           export-suitable or null encryption is used,
           but exclude anonymous Diffie-Hellman key change as
           this is vulnerable to man-in-the-middle attacks -->
         <sec:include>.*_EXPORT_.*</sec:include>
         <sec:include>.*_EXPORT1024_.*</sec:include>
         <sec:include>.*_WITH_DES_.*</sec:include>
         <sec:include>NULL-SHA</sec:include>
         <sec:include>.*_WITH_NULL_.*</sec:include>
         <sec:include>.*_RSA_.*</sec:include>
         <sec:include>.*_NULL-SHA_.*</sec:include>
         <sec:exclude>.*_DH_anon_.*</sec:exclude>
       </sec:cipherSuitesFilter>
   </http-conf:tlsClientParameters>
    </http-conf:conduit>

</beans>



But when i am trying to send a request i get the following error,

2012-03-19 23:34:09.043] INFO  l Thread 69 - MinaThreadPool System.out
                                                    0000: 15 03 01 00 12 AA
B4 0C   44 D5 99 BE 86 6C 3D 07  ........D....l=.
[2012-03-19 23:34:09.051] INFO  l Thread 69 - MinaThreadPool System.out
                                                    0010: 63 1B 8C 71 56 6C
8F                               c..qVl.
[2012-03-19 23:34:09.052] INFO  l Thread 69 - MinaThreadPool System.out
                                                    %% Invalidated:
  [Session-13, SSL_RSA_WITH_RC4_128_MD5]
[2012-03-19 23:34:09.052] INFO  l Thread 69 - MinaThreadPool System.out
                                                    Camel Thread 69 -
MinaThreadPool, called close()
[2012-03-19 23:34:09.053] INFO  l Thread 69 - MinaThreadPool System.out
                                                    Camel Thread 69 -
MinaThreadPool, called closeInternal(true)
[2012-03-19 23:34:09.063] WARN  l Thread 69 - MinaThreadPool
org.apache.cxf.phase.PhaseInterceptorChain
  Interceptor for
{urn:ihe:iti:xds-b:2007}DocumentRepository_Service#{urn:ihe:iti:xds-b:2007}DocumentRepository_ProvideAndRegisterDocumentSet-b
has thrown exception, unwinding now org.apache.cxf.interceptor.Fault:
Marshalling Error: The https URL hostname does not match the Common Name
(CN) on the server certificate.  To disable this check (NOT recommended for
production) set the CXF client TLS configuration property "disableCNCheck"
to true.
at
org.apache.cxf.jaxb.JAXBEncoderDecoder.marshall(JAXBEncoderDecoder.java:252)
at org.apache.cxf.jaxb.io.DataWriterImpl.write(DataWriterImpl.java:169)
at
org.apache.cxf.interceptor.AbstractOutDatabindingInterceptor.writeParts(AbstractOutDatabindingInterceptor.java:111)
at
org.apache.cxf.interceptor.BareOutInterceptor.handleMessage(BareOutInterceptor.java:68)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:243)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:516)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:313)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:265)
at org.apache.cxf.frontend.ClientProxy.invokeSync(ClientProxy.java:73)
at org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:124)
at $Proxy199.documentRepositoryProvideAndRegisterDocumentSetB(Unknown
Source)
at
org.openehealth.ipf.platform.camel.ihe.xds.iti41.component.Iti41Producer.callService(Iti41Producer.java:42)
at
org.openehealth.ipf.platform.camel.ihe.xds.iti41.component.Iti41Producer.callService(Iti41Producer.java:27)
at
org.openehealth.ipf.platform.camel.ihe.ws.DefaultItiProducer.process(DefaultItiProducer.java:160)
at
org.apache.camel.impl.converter.AsyncProcessorTypeConverter$ProcessorToAsyncProcessorBridge.process(AsyncProcessorTypeConverter.java:50)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.SendProcessor$2.doInAsyncProducer(SendProcessor.java:104)
at
org.apache.camel.impl.ProducerCache.doInAsyncProducer(ProducerCache.java:272)
at org.apache.camel.processor.SendProcessor.process(SendProcessor.java:98)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.management.InstrumentationProcessor.process(InstrumentationProcessor.java:68)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.processor.interceptor.TraceInterceptor.process(TraceInterceptor.java:99)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.RedeliveryErrorHandler.processErrorHandler(RedeliveryErrorHandler.java:299)
at
org.apache.camel.processor.RedeliveryErrorHandler.process(RedeliveryErrorHandler.java:208)
at
org.apache.camel.processor.DefaultChannel.process(DefaultChannel.java:256)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at org.apache.camel.processor.Pipeline.process(Pipeline.java:143)
at org.apache.camel.processor.Pipeline.process(Pipeline.java:78)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at org.apache.camel.processor.Pipeline.process(Pipeline.java:143)
at org.apache.camel.processor.Pipeline.process(Pipeline.java:78)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.management.InstrumentationProcessor.process(InstrumentationProcessor.java:68)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.processor.interceptor.TraceInterceptor.process(TraceInterceptor.java:99)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.RedeliveryErrorHandler.processErrorHandler(RedeliveryErrorHandler.java:299)
at
org.apache.camel.processor.RedeliveryErrorHandler.process(RedeliveryErrorHandler.java:208)
at
org.apache.camel.processor.DefaultChannel.process(DefaultChannel.java:256)
at
org.apache.camel.processor.UnitOfWorkProcessor.process(UnitOfWorkProcessor.java:113)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.management.InstrumentationProcessor.process(InstrumentationProcessor.java:68)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.component.direct.DirectProducer.process(DirectProducer.java:61)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.SendProcessor$2.doInAsyncProducer(SendProcessor.java:104)
at
org.apache.camel.impl.ProducerCache.doInAsyncProducer(ProducerCache.java:272)
at org.apache.camel.processor.SendProcessor.process(SendProcessor.java:98)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.management.InstrumentationProcessor.process(InstrumentationProcessor.java:68)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.processor.interceptor.TraceInterceptor.process(TraceInterceptor.java:99)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.RedeliveryErrorHandler.processErrorHandler(RedeliveryErrorHandler.java:299)
at
org.apache.camel.processor.RedeliveryErrorHandler.process(RedeliveryErrorHandler.java:208)
at
org.apache.camel.processor.DefaultChannel.process(DefaultChannel.java:256)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at org.apache.camel.processor.Pipeline.process(Pipeline.java:143)
at org.apache.camel.processor.Pipeline.process(Pipeline.java:78)
at
org.apache.camel.processor.UnitOfWorkProcessor.process(UnitOfWorkProcessor.java:99)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:70)
at
org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:98)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:89)
at
org.apache.camel.management.InstrumentationProcessor.process(InstrumentationProcessor.java:68)
at
org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:91)
at
org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:85)
at
org.apache.camel.component.mina.MinaConsumer$ReceiveHandler.messageReceived(MinaConsumer.java:114)
at
org.apache.mina.common.support.AbstractIoFilterChain$TailFilter.messageReceived(AbstractIoFilterChain.java:570)
at
org.apache.mina.common.support.AbstractIoFilterChain.callNextMessageReceived(AbstractIoFilterChain.java:299)
at
org.apache.mina.common.support.AbstractIoFilterChain.access$1100(AbstractIoFilterChain.java:53)
at
org.apache.mina.common.support.AbstractIoFilterChain$EntryImpl$1.messageReceived(AbstractIoFilterChain.java:648)
at
org.apache.mina.filter.executor.ExecutorFilter.processEvent(ExecutorFilter.java:220)
at
org.apache.mina.filter.executor.ExecutorFilter$ProcessEventsRunnable.run(ExecutorFilter.java:264)
at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown Source)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
Caused by: javax.xml.bind.MarshalException: null
at com.sun.xml.internal.bind.v2.runtime.MarshallerImpl.write(Unknown Source)
at com.sun.xml.internal.bind.v2.runtime.MarshallerImpl.marshal(Unknown
Source)
at javax.xml.bind.helpers.AbstractMarshallerImpl.marshal(Unknown Source)
at
org.apache.cxf.jaxb.JAXBEncoderDecoder.writeObject(JAXBEncoderDecoder.java:536)
at
org.apache.cxf.jaxb.JAXBEncoderDecoder.marshall(JAXBEncoderDecoder.java:227)
... 91 common frames omitted
Caused by: java.io.IOException: The https URL hostname does not match the
Common Name (CN) on the server certificate.  To disable this check (NOT
recommended for production) set the CXF client TLS configuration property
"disableCNCheck" to true.
at
org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.onFirstWrite(HTTPConduit.java:1932)
at
org.apache.cxf.io.AbstractWrappedOutputStream.write(AbstractWrappedOutputStream.java:42)
at
org.apache.cxf.io.AbstractThresholdOutputStream.unBuffer(AbstractThresholdOutputStream.java:89)
at
org.apache.cxf.io.AbstractThresholdOutputStream.write(AbstractThresholdOutputStream.java:63)
at com.sun.xml.internal.bind.v2.runtime.output.UTF8XmlOutput.write(Unknown
Source)
at com.sun.xml.internal.bind.v2.runtime.output.Encoded.write(Unknown Source)
at com.sun.xml.internal.bind.v2.runtime.output.UTF8XmlOutput.doText(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.output.UTF8XmlOutput.attribute(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.output.MTOMXmlOutput.attribute(Unknown
Source)
at com.sun.xml.internal.bind.v2.runtime.XMLSerializer.attribute(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.AttributeProperty.serializeAttributes(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl.serializeAttributes(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.XMLSerializer.childAsXsiType(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.ArrayElementNodeProperty.serializeItem(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.ArrayElementProperty.serializeListBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.ArrayERProperty.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.XMLSerializer.childAsXsiType(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.SingleElementNodeProperty.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl$1.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl$1.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl.serializeRoot(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl.serializeRoot(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.ArrayReferenceNodeProperty.serializeListBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.ArrayERProperty.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.XMLSerializer.childAsXsiType(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.SingleElementNodeProperty.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.XMLSerializer.childAsXsiType(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.SingleElementNodeProperty.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.XMLSerializer.childAsXsiType(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.property.SingleElementNodeProperty.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl$1.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl$1.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl.serializeBody(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl.serializeRoot(Unknown
Source)
at
com.sun.xml.internal.bind.v2.runtime.ElementBeanInfoImpl.serializeRoot(Unknown
Source)
at com.sun.xml.internal.bind.v2.runtime.XMLSerializer.childAsRoot(Unknown
Source)
... 96 common frames omitted






--
Willem
----------------------------------
FuseSource
Web: http://www.fusesource.com
Blog:    http://willemjiang.blogspot.com (English)
        http://jnn.javaeye.com (Chinese)

Twitter: willemjiang 
Weibo: willemjiang 






















					Reply via email to