Hi, On Wed, Apr 3, 2019 at 11:48 PM Eze Ikonne <[email protected]> wrote: > > Hi all, > > > > I am getting the following stacktrace when a client tries to connect to a > restful API service managed by embedded Jetty server. I would like to know > how to disable or mitigate this issue. Anyway idea would be greatly > appreciated. > > > > 2019-03-28 12:38:00,704 [qtp917213436-32] WARN SecureRequestCustomizer - > Host xx.xx.xxx.42 does not match SNI > X509@d0f23cec(csra_sspsystem_cert,h=[xxx.xxx-xx-xxx-mxx.com, > xxx.xxx-xxx-xxx-mxx.com, … ,w=[]) > > 2019-03-28 12:38:00,706 [qtp917213436-32] WARN HttpChannel - > /sspcmrest/sspcm/rest/session org.eclipse.jetty.http.BadMessageException: > 400: Host does not match SNI
So the error is clear: you are making a request with hostname "xx.xx.xxx.42" to a server that is configured with certificates that don't match that host. It's like opening a connection to google.com, and then sending a request to that connection for a host named "facebook.com". It's not an issue to be mitigated, it's just wrong usage or wrong configuration on your part. -- Simone Bordet ---- http://cometd.org http://webtide.com Developer advice, training, services and support from the Jetty & CometD experts. _______________________________________________ jetty-users mailing list [email protected] To change your delivery options, retrieve your password, or unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/jetty-users
