Re: [Dev] [IOTS] SSLHandshakeException while Configuring IOS

Tue, 21 Feb 2017 08:53:00 -0800 

Can you turn on SSL debug logs and share with us.[1]

[1]
http://blog.facilelogin.com/2010/11/debugging-ssl-connections-part-i.html

On Tue, Feb 21, 2017 at 9:34 PM, Madawa Soysa <[email protected]> wrote:

> Hi Rasika,
>
> I haven't changed the WIFI connection and the configured IP address has
> not been changed.
>
> On Tue, Feb 21, 2017 at 9:28 PM, Rasika Perera <[email protected]> wrote:
>
>> Hi Madhawa,
>>
>> Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.
>>> CertificateException: No subject alternative names present
>>
>> As per the SO [1]; This occurs when the certificate IP is different than
>> the client IP. After certificate generation; If you are connected to a
>> different WiFi network, your IP will be changed. Thus, need to re-configure
>> the certificates.
>>
>> [1] http://stackoverflow.com/questions/22505312/certificatee
>> xception-no-subject-alternative-names-present
>>
>> On Tue, Feb 21, 2017 at 7:09 PM, Madawa Soysa <[email protected]> wrote:
>>
>>> Hi All,
>>>
>>> I am trying to configure IOT Server (3.1.0) for IOS by following the
>>> documentation [1]. After doing the configuration changes and generating
>>> certificates using the ios-configurator tool, following exception is thrown
>>> continuously after few seconds of the server startup. Has anyone observed
>>> this error previously or have any insights about a possible cause?
>>>
>>> [IoT-Core] ERROR - APIPublisherStartupHandler failed to publish api.
>>> org.wso2.carbon.apimgt.webapp.publisher.exception.APIManagerPublisherException:
>>> feign.RetryableException: java.security.cert.CertificateException: No
>>> subject alternative names present executing POST
>>> https://10.100.7.57:9443/client-registration/v0.11/register
>>>         at org.wso2.carbon.apimgt.webapp.publisher.APIPublisherServiceI
>>> mpl.publishAPI(APIPublisherServiceImpl.java:76)
>>>         at org.wso2.carbon.apimgt.webapp.publisher.APIPublisherStartupH
>>> andler.publishAPIs(APIPublisherStartupHandler.java:97)
>>>         at org.wso2.carbon.apimgt.webapp.publisher.APIPublisherStartupH
>>> andler.access$500(APIPublisherStartupHandler.java:30)
>>>         at org.wso2.carbon.apimgt.webapp.publisher.APIPublisherStartupH
>>> andler$1.run(APIPublisherStartupHandler.java:69)
>>>         at java.lang.Thread.run(Thread.java:745)
>>> Caused by: feign.RetryableException: 
>>> java.security.cert.CertificateException:
>>> No subject alternative names present executing POST
>>> https://10.100.7.57:9443/client-registration/v0.11/register
>>>         at feign.FeignException.errorExecuting(FeignException.java:67)
>>>         at feign.SynchronousMethodHandler.executeAndDecode(SynchronousM
>>> ethodHandler.java:104)
>>>         at feign.SynchronousMethodHandler.invoke(SynchronousMethodHandl
>>> er.java:76)
>>>         at feign.ReflectiveFeign$FeignInvocationHandler.invoke(Reflecti
>>> veFeign.java:103)
>>>         at com.sun.proxy.$Proxy25.register(Unknown Source)
>>>         at org.wso2.carbon.apimgt.integration.client.OAuthRequestInterc
>>> eptor.apply(OAuthRequestInterceptor.java:79)
>>>         at feign.SynchronousMethodHandler.targetRequest(SynchronousMeth
>>> odHandler.java:158)
>>>         at feign.SynchronousMethodHandler.executeAndDecode(SynchronousM
>>> ethodHandler.java:88)
>>>         at feign.SynchronousMethodHandler.invoke(SynchronousMethodHandl
>>> er.java:76)
>>>         at feign.ReflectiveFeign$FeignInvocationHandler.invoke(Reflecti
>>> veFeign.java:103)
>>>         at com.sun.proxy.$Proxy38.apisGet(Unknown Source)
>>>         at org.wso2.carbon.apimgt.webapp.publisher.APIPublisherServiceI
>>> mpl.publishAPI(APIPublisherServiceImpl.java:54)
>>>         ... 4 more
>>> Caused by: javax.net.ssl.SSLHandshakeException:
>>> java.security.cert.CertificateException: No subject alternative names
>>> present
>>>         at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
>>>         at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1937)
>>>         at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:302)
>>>         at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:296)
>>>         at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHa
>>> ndshaker.java:1478)
>>>         at sun.security.ssl.ClientHandshaker.processMessage(ClientHands
>>> haker.java:212)
>>>         at sun.security.ssl.Handshaker.processLoop(Handshaker.java:979)
>>>         at sun.security.ssl.Handshaker.process_record(Handshaker.java:9
>>> 14)
>>>         at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java
>>> :1050)
>>>         at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSo
>>> cketImpl.java:1363)
>>>         at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.
>>> java:1391)
>>>         at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.
>>> java:1375)
>>>         at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsCli
>>> ent.java:563)
>>>         at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnectio
>>> n.connect(AbstractDelegateHttpsURLConnection.java:185)
>>>         at sun.net.www.protocol.http.HttpURLConnection.getOutputStream0
>>> (HttpURLConnection.java:1282)
>>>         at sun.net.www.protocol.http.HttpURLConnection.getOutputStream(
>>> HttpURLConnection.java:1257)
>>>         at sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputS
>>> tream(HttpsURLConnectionImpl.java:250)
>>>         at feign.Client$Default.convertAndSend(Client.java:133)
>>>         at feign.Client$Default.execute(Client.java:73)
>>>         at feign.SynchronousMethodHandler.executeAndDecode(SynchronousM
>>> ethodHandler.java:97)
>>>         ... 14 more
>>> Caused by: java.security.cert.CertificateException: No subject
>>> alternative names present
>>>         at sun.security.util.HostnameChecker.matchIP(HostnameChecker.ja
>>> va:144)
>>>         at sun.security.util.HostnameChecker.match(HostnameChecker.java
>>> :93)
>>>         at sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509Trus
>>> tManagerImpl.java:455)
>>>         at sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509Trus
>>> tManagerImpl.java:436)
>>>         at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509Trust
>>> ManagerImpl.java:200)
>>>         at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X50
>>> 9TrustManagerImpl.java:124)
>>>         at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHa
>>> ndshaker.java:1460)
>>>         ... 29 more
>>>
>>> [1] - https://docs.wso2.com/display/IoTS300/iOS+Device
>>>
>>> Regards,
>>> Madawa
>>> --
>>>
>>> Madawa Soysa / Software Engineer
>>> [email protected] / +94714616050 <+94%2071%20461%206050>
>>>
>>> *WSO2 Inc.*
>>> lean.enterprise.middleware
>>>
>>>   <https://wso2.com/signature>
>>>
>>>
>>>
>>>
>>
>>
>> --
>> With Regards,
>>
>> *Rasika Perera*
>> Software Engineer
>> LinkedIn: http://lk.linkedin.com/in/rasika90
>>
>> <http://wso2.com/signature>
>>
>> WSO2 Inc. www.wso2.com
>> lean.enterprise.middleware
>>
>
>
>
> --
>
> Madawa Soysa / Software Engineer
> [email protected] / +94714616050 <+94%2071%20461%206050>
>
> *WSO2 Inc.*
> lean.enterprise.middleware
>
>   <https://wso2.com/signature>
>
>
>
>


-- 
With Regards,

*Rasika Perera*
Software Engineer
LinkedIn: http://lk.linkedin.com/in/rasika90

<http://wso2.com/signature>

WSO2 Inc. www.wso2.com
lean.enterprise.middleware

_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev

Reply via email to