Hi, My first post to this list - I think.
When calling a payment service (HTTPS) from an Android 2.3 (Google Nexus S) mobile, I got an exception from validation of the server certificate. It is a valid certificate - no problem when calling the same service from an IPhone. It seems to be a well known problem - googling for it, gives a lot of hits and also some suggestions how to solve it. I have tried a couple of them without success. Now I'm asking this forum, and hope somebody will direct me to a working solution. It is OK, if it only works on 2.3, and I really don't need the validation at all. best regards Hardy Henneberg Stacktrace: W/System.err( 9056): javax.net.ssl.SSLHandshakeException: org.bouncycastle.jce.exception.ExtCertPathValidatorException: Could not validate certificate signature. W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.OpenSSLSocketImpl.startHandshake(OpenSSLSocketImpl.java: 477) W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.OpenSSLSocketImpl $SSLInputStream.<init>(OpenSSLSocketImpl.java:750) W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.OpenSSLSocketImpl.getInputStream(OpenSSLSocketImpl.java: 692) W/System.err( 9056): at org.apache.http.impl.io.SocketInputBuffer.<init>(SocketInputBuffer.java: 93) W/System.err( 9056): at org.apache.http.impl.SocketHttpClientConnection.createSessionInputBuffer(SocketHttpClientConnection.java: 83) W/System.err( 9056): at org.apache.http.impl.conn.DefaultClientConnection.createSessionInputBuffer(DefaultClientConnection.java: 170) W/System.err( 9056): at org.apache.http.impl.SocketHttpClientConnection.bind(SocketHttpClientConnection.java: 106) W/System.err( 9056): at org.apache.http.impl.conn.DefaultClientConnection.openCompleted(DefaultClientConnection.java: 129) W/System.err( 9056): at org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java: 171) W/System.err( 9056): at org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java: 164) W/System.err( 9056): at org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConnAdapter.java: 119) W/System.err( 9056): at org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java: 359) W/System.err( 9056): at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java: 555) W/System.err( 9056): at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java: 487) W/System.err( 9056): at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java: 465) W/System.err( 9056): at dk.dba.hood.payment.PayUtil.callRestClient(PayUtil.java:646) W/System.err( 9056): at dk.dba.hood.payment.Cards.newCard(Cards.java: 147) W/System.err( 9056): at dk.dba.hood.payment.Cards.onNewCardClick(Cards.java:85) W/System.err( 9056): at java.lang.reflect.Method.invokeNative(Native Method) W/System.err( 9056): at java.lang.reflect.Method.invoke(Method.java: 507) W/System.err( 9056): at android.view.View$1.onClick(View.java:2139) W/System.err( 9056): at android.view.View.performClick(View.java: 2485) W/System.err( 9056): at android.view.View$PerformClick.run(View.java: 9080) W/System.err( 9056): at android.os.Handler.handleCallback(Handler.java:587) W/System.err( 9056): at android.os.Handler.dispatchMessage(Handler.java:92) W/System.err( 9056): at android.os.Looper.loop(Looper.java:130) W/System.err( 9056): at android.app.ActivityThread.main(ActivityThread.java:3683) W/System.err( 9056): at java.lang.reflect.Method.invokeNative(Native Method) W/System.err( 9056): at java.lang.reflect.Method.invoke(Method.java: 507) W/System.err( 9056): at com.android.internal.os.ZygoteInit $MethodAndArgsCaller.run(ZygoteInit.java:839) W/System.err( 9056): at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:597) W/System.err( 9056): at dalvik.system.NativeStart.main(Native Method) W/System.err( 9056): Caused by: java.security.cert.CertificateException: org.bouncycastle.jce.exception.ExtCertPathValidatorException: Could not validate certificate signature. W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.TrustManagerImpl.checkServerTrusted(TrustManagerImpl.java: 161) W/System.err( 9056): at dk.dba.hood.payment.EasyX509TrustManager.checkServerTrusted(EasyX509TrustManager.java: 80) W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.OpenSSLSocketImpl.verifyCertificateChain(OpenSSLSocketImpl.java: 664) W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.NativeCrypto.SSL_do_handshake(Native Method) W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.OpenSSLSocketImpl.startHandshake(OpenSSLSocketImpl.java: 474) W/System.err( 9056): ... 31 more W/System.err( 9056): Caused by: org.bouncycastle.jce.exception.ExtCertPathValidatorException: Could not validate certificate signature. W/System.err( 9056): at org.bouncycastle.jce.provider.RFC3280CertPathUtilities.processCertA(RFC3280CertPathUtilities.java: 1504) W/System.err( 9056): at org.bouncycastle.jce.provider.PKIXCertPathValidatorSpi.engineValidate(PKIXCertPathValidatorSpi.java: 329) W/System.err( 9056): at java.security.cert.CertPathValidator.validate(CertPathValidator.java: 197) W/System.err( 9056): at org.apache.harmony.xnet.provider.jsse.TrustManagerImpl.checkServerTrusted(TrustManagerImpl.java: 156) W/System.err( 9056): ... 35 more W/System.err( 9056): Caused by: java.security.SignatureException: Signature was not verified W/System.err( 9056): at org.apache.harmony.security.provider.cert.X509CertImpl.fastVerify(X509CertImpl.java: 562) W/System.err( 9056): at org.apache.harmony.security.provider.cert.X509CertImpl.verify(X509CertImpl.java: 487) W/System.err( 9056): at org.bouncycastle.jce.provider.CertPathValidatorUtilities.verifyX509Certificate(CertPathValidatorUtilities.java: 1551) W/System.err( 9056): at org.bouncycastle.jce.provider.RFC3280CertPathUtilities.processCertA(RFC3280CertPathUtilities.java: 1496) W/System.err( 9056): ... 38 more -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en
