Exception get SSL attributes - SSLPeerUnverifiedException: peer notauthenticated.
Hi there, Since upgrading from Tomcat4.1.24 to 4.1.27 I have been seeing these again in the catalina.out log. I seem to rememeber this being present in a previous build (4.1.13 prehaps). I'm running JDK1.3.1_06 with JSSE extensions. This dosn't seem to be causing any problems - just a 20MB log file per day!! [WARN] Http11Processor - -Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticatedjavax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA6275) at org.apache.tomcat.util.net.jsse.JSSESupport.getX509Certificates(JSSESupport.java:113) at org.apache.tomcat.util.net.jsse.JSSESupport.getPeerCertificateChain(JSSESupport.java:161) at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:748) at org.apache.coyote.Response.action(Response.java:222) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java:321) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:601) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:392) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:565) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:619) at java.lang.Thread.run(Thread.java:479) Kind Regards, Chris - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Exception get SSL attributes - SSLPeerUnverifiedException: peer not authenticated.
I just ported the patch from the j-t-c HEAD. Yes, the error is harmless (except for the disk space it takes up :). TC 4.1.28 should be quieter. If you need it sooner, then you can grab it from the CVS and re-compile. Chris Massam [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED] Hi there, Since upgrading from Tomcat4.1.24 to 4.1.27 I have been seeing these again in the catalina.out log. I seem to rememeber this being present in a previous build (4.1.13 prehaps). I'm running JDK1.3.1_06 with JSSE extensions. This dosn't seem to be causing any problems - just a 20MB log file per day!! [WARN] Http11Processor - -Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticatedjavax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA62 75) at org.apache.tomcat.util.net.jsse.JSSESupport.getX509Certificates(JSSESupport. java:113) at org.apache.tomcat.util.net.jsse.JSSESupport.getPeerCertificateChain(JSSESupp ort.java:161) at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:748) at org.apache.coyote.Response.action(Response.java:222) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java: 321) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:601) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConne ction(Http11Protocol.java:392) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:565) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.jav a:619) at java.lang.Thread.run(Thread.java:479) Kind Regards, Chris - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
SSLPeerUnverifiedException?
does any one have a clue about this exception I found in the standard out? i get this exception ever time i fetch a document via ssl. Dec 24, 2002 1:44:36 AM org.apache.coyote.http11.Http11Processor action WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA6275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain(JSSESupport.java:118) at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:543) at org.apache.coyote.Response.action(Response.java:216) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java:314) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:405) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:380) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:508) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:533) at java.lang.Thread.run(Thread.java:536) excerpt from server.xml: !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 80 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=80 minProcessors=5 maxProcessors=75 enableLookups=true acceptCount=10 debug=0 connectionTimeout=2 useURIValidationHack=false / !-- Define a SSL Coyote HTTP/1.1 Connector on port 443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=443 minProcessors=5 maxProcessors=75 enableLookups=true acceptCount=10 debug=0 scheme=https secure=true useURIValidationHack=false Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory clientAuth=false protocol=TLS / /Connector some links I found, but have not helped, by googling around: http://forum.java.sun.com/thread.jsp?thread=159440forum=2message=993653 http://www-106.ibm.com/developerworks/java/library/j-customssl/?dwzone=java http://wp.netscape.com/eng/ssl3/ -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - - - Jason Pyeron http://www.pyerotechnics.com - - Owner Lead Pyerotechnics Development, Inc. - - +1 410 808 6646 (c) 500 West University Parkway #1S - - +1 410 467 2266 (f) Baltimore, Maryland 21210-3253 - - - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information. If you have received it in error, purge the message from your system and notify the sender immediately. Any other use of the email by you is prohibited. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SSLPeerUnverifiedException?
Check: http://nagoya.apache.org/bugzilla/show_bug.cgi?id=14164 Upgrade to 4.1.14+ -Original Message- From: Randy Secrist [mailto:[EMAIL PROTECTED]] Sent: Sonntag, 1. Dezember 2002 08:06 To: Tomcat Users List Subject: SSLPeerUnverifiedException? I am getting a whole lot of these warnings in my stderr.log each time a client connects via SSL. I have been using SSL since tomcat 3.x - and have never had any problems. Since I recently switched to 4.1.12 - I am assuming this is a coyote related Http11Processor bug? I have noticed that it does even after following the SSL config howto. If the following is a meaningless error, it would be nice to shut it off so stderr.log doesn't grow so huge. WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificate Chain(DashoA6275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain (JSSESupport.java:118) at org.apache.coyote.http11.Http11Processor.action(Http11Processo r.java:543) at org.apache.coyote.Response.action(Response.java:216) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(Coyot eAdapter.java:314) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter. java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Process or.java:405) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandle r.processConnection(Http11Protocol.java:380) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoi nt.java:508) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run( ThreadPool.java:533) at java.lang.Thread.run(Thread.java:536) Randy -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: SSLPeerUnverifiedException?
Well, now I know it isn't me. Thanks! Randy - Original Message - From: mech [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Sunday, December 01, 2002 5:03 AM Subject: RE: SSLPeerUnverifiedException? Check: http://nagoya.apache.org/bugzilla/show_bug.cgi?id=14164 Upgrade to 4.1.14+ -Original Message- From: Randy Secrist [mailto:[EMAIL PROTECTED]] Sent: Sonntag, 1. Dezember 2002 08:06 To: Tomcat Users List Subject: SSLPeerUnverifiedException? I am getting a whole lot of these warnings in my stderr.log each time a client connects via SSL. I have been using SSL since tomcat 3.x - and have never had any problems. Since I recently switched to 4.1.12 - I am assuming this is a coyote related Http11Processor bug? I have noticed that it does even after following the SSL config howto. If the following is a meaningless error, it would be nice to shut it off so stderr.log doesn't grow so huge. WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificate Chain(DashoA6275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain (JSSESupport.java:118) at org.apache.coyote.http11.Http11Processor.action(Http11Processo r.java:543) at org.apache.coyote.Response.action(Response.java:216) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(Coyot eAdapter.java:314) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter. java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Process or.java:405) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandle r.processConnection(Http11Protocol.java:380) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoi nt.java:508) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run( ThreadPool.java:533) at java.lang.Thread.run(Thread.java:536) Randy -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: SSLPeerUnverifiedException?
download tomcat-util from gump.covalent.com/jars/latest/tomcat-connector Randy Secrist wrote: I am getting a whole lot of these warnings in my stderr.log each time a client connects via SSL. I have been using SSL since tomcat 3.x - and have never had any problems. Since I recently switched to 4.1.12 - I am assuming this is a coyote related Http11Processor bug? I have noticed that it does even after following the SSL config howto. If the following is a meaningless error, it would be nice to shut it off so stderr.log doesn't grow so huge. WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA6275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain(JSSESupport.java:118) at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:543) at org.apache.coyote.Response.action(Response.java:216) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java:314) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:405) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:380) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:508) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:533) at java.lang.Thread.run(Thread.java:536) Randy -- Your favorite stores, helpful shopping tools and great gift ideas. Experience the convenience of buying online with Shop@Netscape! http://shopnow.netscape.com/ -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: SSLPeerUnverifiedException?
From http://nagoya.apache.org/bugzilla/show_bug.cgi?id=13358 This is a warning which can be ignored (and has been removed). 4.1.13 will have the fix. HTH On Sunday 01 December 2002 09:06, Randy Secrist wrote: I am getting a whole lot of these warnings in my stderr.log each time a client connects via SSL. I have been using SSL since tomcat 3.x - and have never had any problems. Since I recently switched to 4.1.12 - I am assuming this is a coyote related Http11Processor bug? I have noticed that it does even after following the SSL config howto. If the following is a meaningless error, it would be nice to shut it off so stderr.log doesn't grow so huge. WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA6 275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain(JSSESupport. java:118) at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:543) at org.apache.coyote.Response.action(Response.java:216) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java :314) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:405) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConn ection(Http11Protocol.java:380) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:508) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.ja va:533) at java.lang.Thread.run(Thread.java:536) Randy -- Uri Shohet mailto:[EMAIL PROTECTED] AMS Advanced Maintenance Systems Ltd. Science Based Industry Campus POB 23838, Jerusalem 91237, Israel Tel.: +972-2-541-7449 Cell: +972-54-259-850 Fax.: +972-2-581-4448 US Toll-Free: 1-866-389-2001 Registered Linux User #166615 (http://counter.li.org) -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SSLPeerUnverifiedException?
I am getting a whole lot of these warnings in my stderr.log each time a client connects via SSL. I have been using SSL since tomcat 3.x - and have never had any problems. Since I recently switched to 4.1.12 - I am assuming this is a coyote related Http11Processor bug? I have noticed that it does even after following the SSL config howto. If the following is a meaningless error, it would be nice to shut it off so stderr.log doesn't grow so huge. WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA6275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain(JSSESupport.java:118) at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:543) at org.apache.coyote.Response.action(Response.java:216) at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java:314) at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:405) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:380) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:508) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:533) at java.lang.Thread.run(Thread.java:536) Randy