[
https://issues.apache.org/jira/browse/HTTPCLIENT-2054?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Eric Bussieres updated HTTPCLIENT-2054:
---------------------------------------
Description:
I have an issue with httpClient version 4.5.11. The issue is not present in
version 4.5.10. I have a certificate containing a wildcard and I have the
following exception :
The issue seems to be related to HTTPCLIENT-2047
{code:java}
Caused by: javax.net.ssl.SSLPeerUnverifiedException: Certificate for
<srv-itg1.fedid.ssq.local> doesn't match any of the subject alternative names:
[*.fedid.ssq.local]Caused by: javax.net.ssl.SSLPeerUnverifiedException:
Certificate for <srv-itg1.fedid.ssq.local> doesn't match any of the subject
alternative names: [*.fedid.ssq.local] at
org.apache.http.conn.ssl.SSLConnectionSocketFactory.verifyHostname(SSLConnectionSocketFactory.java:507)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:437)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:384)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.conn.DefaultHttpClientConnectionOperator.connect(DefaultHttpClientConnectionOperator.java:142)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:376)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:393)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:236)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:186)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:89)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:110)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:185)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:83)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:56)
~[httpclient-4.5.11.jar:4.5.11] at
org.springframework.http.client.HttpComponentsClientHttpRequest.executeInternal(HttpComponentsClientHttpRequest.java:87)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.BufferingClientHttpRequestWrapper.executeInternal(BufferingClientHttpRequestWrapper.java:63)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:109)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
ca.ssq.ecs.base.webtools.impl.LoggingInterceptor.intercept(LoggingInterceptor.java:39)
~[ecs.base.webtools-2.0.0.8.jar:2.0.0.8] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
ca.ssq.ecs.base.webtools.impl.MDCCorrelationIdInterceptor.intercept(MDCCorrelationIdInterceptor.java:22)
~[ecs.base.webtools-2.0.0.8.jar:2.0.0.8] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.boot.actuate.metrics.web.client.MetricsClientHttpRequestInterceptor.intercept(MetricsClientHttpRequestInterceptor.java:95)
~[spring-boot-actuator-2.2.5.RELEASE.jar:2.2.5.RELEASE] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.InterceptingClientHttpRequest.executeInternal(InterceptingClientHttpRequest.java:77)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.web.client.RestTemplate.doExecute(RestTemplate.java:739)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] ... 74 common frames omitted
{code}
was:
I have an issue with httpClient version 4.5.11. The issue is not present in
version 4.5.10. I have a certificate containing a wildcard and I have the
following exception :
{code:java}
Caused by: javax.net.ssl.SSLPeerUnverifiedException: Certificate for
<srv-itg1.fedid.ssq.local> doesn't match any of the subject alternative names:
[*.fedid.ssq.local]Caused by: javax.net.ssl.SSLPeerUnverifiedException:
Certificate for <srv-itg1.fedid.ssq.local> doesn't match any of the subject
alternative names: [*.fedid.ssq.local] at
org.apache.http.conn.ssl.SSLConnectionSocketFactory.verifyHostname(SSLConnectionSocketFactory.java:507)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:437)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:384)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.conn.DefaultHttpClientConnectionOperator.connect(DefaultHttpClientConnectionOperator.java:142)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:376)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:393)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:236)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:186)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:89)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:110)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:185)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:83)
~[httpclient-4.5.11.jar:4.5.11] at
org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:56)
~[httpclient-4.5.11.jar:4.5.11] at
org.springframework.http.client.HttpComponentsClientHttpRequest.executeInternal(HttpComponentsClientHttpRequest.java:87)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.BufferingClientHttpRequestWrapper.executeInternal(BufferingClientHttpRequestWrapper.java:63)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:109)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
ca.ssq.ecs.base.webtools.impl.LoggingInterceptor.intercept(LoggingInterceptor.java:39)
~[ecs.base.webtools-2.0.0.8.jar:2.0.0.8] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
ca.ssq.ecs.base.webtools.impl.MDCCorrelationIdInterceptor.intercept(MDCCorrelationIdInterceptor.java:22)
~[ecs.base.webtools-2.0.0.8.jar:2.0.0.8] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.boot.actuate.metrics.web.client.MetricsClientHttpRequestInterceptor.intercept(MetricsClientHttpRequestInterceptor.java:95)
~[spring-boot-actuator-2.2.5.RELEASE.jar:2.2.5.RELEASE] at
org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.InterceptingClientHttpRequest.executeInternal(InterceptingClientHttpRequest.java:77)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
org.springframework.web.client.RestTemplate.doExecute(RestTemplate.java:739)
~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] ... 74 common frames omitted
{code}
> SSQLPeerUnverifiedException with wildcard
> -----------------------------------------
>
> Key: HTTPCLIENT-2054
> URL: https://issues.apache.org/jira/browse/HTTPCLIENT-2054
> Project: HttpComponents HttpClient
> Issue Type: Bug
> Components: HttpClient (classic)
> Affects Versions: 4.5.11
> Reporter: Eric Bussieres
> Priority: Minor
>
> I have an issue with httpClient version 4.5.11. The issue is not present in
> version 4.5.10. I have a certificate containing a wildcard and I have the
> following exception :
>
> The issue seems to be related to HTTPCLIENT-2047
>
> {code:java}
> Caused by: javax.net.ssl.SSLPeerUnverifiedException: Certificate for
> <srv-itg1.fedid.ssq.local> doesn't match any of the subject alternative
> names: [*.fedid.ssq.local]Caused by:
> javax.net.ssl.SSLPeerUnverifiedException: Certificate for
> <srv-itg1.fedid.ssq.local> doesn't match any of the subject alternative
> names: [*.fedid.ssq.local] at
> org.apache.http.conn.ssl.SSLConnectionSocketFactory.verifyHostname(SSLConnectionSocketFactory.java:507)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:437)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:384)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.conn.DefaultHttpClientConnectionOperator.connect(DefaultHttpClientConnectionOperator.java:142)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:376)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:393)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:236)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:186)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:89)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:110)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:185)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:83)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:56)
> ~[httpclient-4.5.11.jar:4.5.11] at
> org.springframework.http.client.HttpComponentsClientHttpRequest.executeInternal(HttpComponentsClientHttpRequest.java:87)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.BufferingClientHttpRequestWrapper.executeInternal(BufferingClientHttpRequestWrapper.java:63)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:109)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> ca.ssq.ecs.base.webtools.impl.LoggingInterceptor.intercept(LoggingInterceptor.java:39)
> ~[ecs.base.webtools-2.0.0.8.jar:2.0.0.8] at
> org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> ca.ssq.ecs.base.webtools.impl.MDCCorrelationIdInterceptor.intercept(MDCCorrelationIdInterceptor.java:22)
> ~[ecs.base.webtools-2.0.0.8.jar:2.0.0.8] at
> org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.boot.actuate.metrics.web.client.MetricsClientHttpRequestInterceptor.intercept(MetricsClientHttpRequestInterceptor.java:95)
> ~[spring-boot-actuator-2.2.5.RELEASE.jar:2.2.5.RELEASE] at
> org.springframework.http.client.InterceptingClientHttpRequest$InterceptingRequestExecution.execute(InterceptingClientHttpRequest.java:93)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.InterceptingClientHttpRequest.executeInternal(InterceptingClientHttpRequest.java:77)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.AbstractBufferingClientHttpRequest.executeInternal(AbstractBufferingClientHttpRequest.java:48)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.http.client.AbstractClientHttpRequest.execute(AbstractClientHttpRequest.java:53)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] at
> org.springframework.web.client.RestTemplate.doExecute(RestTemplate.java:739)
> ~[spring-web-5.2.4.RELEASE.jar:5.2.4.RELEASE] ... 74 common frames omitted
> {code}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
