Hi Vijitha,
Try importing the keystore into client truststore using the following
command.
Similar is also done in [1]
1.
keytool -importcert -file <certificate file> -keystore
<ESB>/repository/resources/security/client-truststore.jks -alias
"TrustCertImport"
2.
Restart the server.
[1]
https://github.com/wso2-dev/esb-connectors/blob/master/basecamp/basecamp-connector/basecamp-connector-1.0.0/README.txt
On Mon, Dec 15, 2014 at 11:37 AM, Waruna Perera <[email protected]> wrote:
>
> Hi Vijitha,
>
> Pls try debug using *-Djavax.net.debug=all* and see the output.
>
> Thanks,
>
> On Mon, Dec 15, 2014 at 11:34 AM, Vijitha Ekanayake <[email protected]>
> wrote:
>
>> Hi,
>>
>> i was trying to invoke a HTTPS endpoint using ESB proxy service. it
>> gives following SSLHandShakeException. If i call the endpoint directly
>> from advanced rest client tool provided by google chrome, I am able to get
>> the successful response. i used [1] as a reference material.
>>
>> Steps i followed
>> 1. generated a custom certificate using keytool
>> 2. configured web server (tomcat) with created keystore.
>> 3. exported public certificate to .crt file
>> 4. added .crt to wso2carbon.jks and client-truststore.jks
>> 5. change axis2.xml parameter as <parameter
>> name="HostnameVerifier">AllowAll</parameter>
>>
>> Can anyone help me to sort out this issue?
>>
>> following exception printed out in the terminal
>>
>> [2014-12-15 08:40:04,243] ERROR - SourceHandler I/O error: null cert chain
>>
>> javax.net.ssl.SSLHandshakeException: null cert chain
>>
>> at
>> com.sun.net.ssl.internal.ssl.Handshaker.checkThrown(Handshaker.java:1015)
>>
>> at
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:485)
>>
>> at
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.writeAppRecord(SSLEngineImpl.java:1108)
>>
>> at
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.wrap(SSLEngineImpl.java:1080)
>>
>> at javax.net.ssl.SSLEngine.wrap(SSLEngine.java:452)
>>
>> at
>> org.apache.http.nio.reactor.ssl.SSLIOSession.doWrap(SSLIOSession.java:220)
>>
>> at
>> org.apache.http.nio.reactor.ssl.SSLIOSession.doHandshake(SSLIOSession.java:254)
>>
>> at
>> org.apache.http.nio.reactor.ssl.SSLIOSession.isAppInputReady(SSLIOSession.java:380)
>>
>> at
>> org.apache.http.impl.nio.reactor.AbstractIODispatch.inputReady(AbstractIODispatch.java:118)
>>
>> at
>> org.apache.http.impl.nio.reactor.BaseIOReactor.readable(BaseIOReactor.java:160)
>>
>> at
>> org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvent(AbstractIOReactor.java:342)
>>
>> at
>> org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvents(AbstractIOReactor.java:320)
>>
>> at
>> org.apache.http.impl.nio.reactor.AbstractIOReactor.execute(AbstractIOReactor.java:280)
>>
>> at
>> org.apache.http.impl.nio.reactor.BaseIOReactor.execute(BaseIOReactor.java:106)
>>
>> at
>> org.apache.http.impl.nio.reactor.AbstractMultiworkerIOReactor$Worker.run(AbstractMultiworkerIOReactor.java:604)
>>
>> at java.lang.Thread.run(Thread.java:695)
>>
>> Caused by: javax.net.ssl.SSLHandshakeException: null cert chain
>>
>> at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:174)
>>
>> at
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1447)
>>
>> at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:243)
>>
>> at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:231)
>>
>> at
>> com.sun.net.ssl.internal.ssl.ServerHandshaker.clientCertificate(ServerHandshaker.java:1372)
>>
>> at
>> com.sun.net.ssl.internal.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:160)
>>
>> at
>> com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:593)
>>
>> at com.sun.net.ssl.internal.ssl.Handshaker$1.run(Handshaker.java:533)
>>
>> at java.security.AccessController.doPrivileged(Native Method)
>>
>> at
>> com.sun.net.ssl.internal.ssl.Handshaker$DelegatedTask.run(Handshaker.java:952)
>>
>> at
>> org.apache.http.nio.reactor.ssl.SSLIOSession.doRunTask(SSLIOSession.java:238)
>>
>> at
>> org.apache.http.nio.reactor.ssl.SSLIOSession.doHandshake(SSLIOSession.java:270)
>> [1]
>> http://sahanlm.blogspot.com/2013/10/wso2-esb-exposing-secure-backend.html
>>
>> --
>> Vijitha Ekanayake
>> Software Engineer*, *WSO2, Inc.; http://wso2.com/
>> Mobile : +94 777 24 73 39 | +94 718 74 44 08
>> lean.enterprise.middleware
>>
>> _______________________________________________
>> Dev mailing list
>> [email protected]
>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>
>>
>
> --
> Waruna Perera
> Senior Software Engineer - Test Automation
> Mobile: +94 77 3867037
> WSO2, Inc.; http://wso2.com/
> lean . enterprise . middlewear.
>
> _______________________________________________
> Dev mailing list
> [email protected]
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
>
--
Best Regards,
Malaka Silva
Senior Tech Lead
M: +94 777 219 791
Tel : 94 11 214 5345
Fax :94 11 2145300
Skype : malaka.sampath.silva
LinkedIn : http://www.linkedin.com/pub/malaka-silva/6/33/77
Blog : http://mrmalakasilva.blogspot.com/
WSO2, Inc.
lean . enterprise . middleware
http://www.wso2.com/
http://www.wso2.com/about/team/malaka-silva/
<http://wso2.com/about/team/malaka-silva/>
Save a tree -Conserve nature & Save the world for your future. Print this
email only if it is absolutely necessary.
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
