Return-Path: X-Original-To: apmail-activemq-dev-archive@www.apache.org Delivered-To: apmail-activemq-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 66694D47E for ; Mon, 29 Oct 2012 20:10:13 +0000 (UTC) Received: (qmail 59645 invoked by uid 500); 29 Oct 2012 20:10:12 -0000 Delivered-To: apmail-activemq-dev-archive@activemq.apache.org Received: (qmail 59593 invoked by uid 500); 29 Oct 2012 20:10:12 -0000 Mailing-List: contact dev-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@activemq.apache.org Delivered-To: mailing list dev@activemq.apache.org Received: (qmail 59540 invoked by uid 99); 29 Oct 2012 20:10:12 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 29 Oct 2012 20:10:12 +0000 Date: Mon, 29 Oct 2012 20:10:12 +0000 (UTC) From: "Timothy Bish (JIRA)" To: dev@activemq.apache.org Message-ID: <1864804214.40582.1351541412531.JavaMail.jiratomcat@arcas> Subject: [jira] [Closed] (AMQ-2205) AMQ 5.2 SSL implementation broke SSL Broker network previously working on AMQ 5.1 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/AMQ-2205?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Timothy Bish closed AMQ-2205. ----------------------------- Resolution: Incomplete No test case to use to investigate this one further. > AMQ 5.2 SSL implementation broke SSL Broker network previously working on AMQ 5.1 > --------------------------------------------------------------------------------- > > Key: AMQ-2205 > URL: https://issues.apache.org/jira/browse/AMQ-2205 > Project: ActiveMQ > Issue Type: Bug > Components: Transport > Affects Versions: 5.2.0 > Environment: ActiveMQ 5.1embedded in Apache Tomcat 6.0.18 environment, Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_16-b02) > , CentOS4.4 > Reporter: Yossi Shmulevitch > Fix For: AGING_TO_DIE > > > I'm using self-signed certificate and private X509TrustManager . > I get this error when trying to connect two brokers. > failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at com.sun.net.ssl.internal.ssl.SSLSocketImpl.checkEOF(Unknown Source) > at com.sun.net.ssl.internal.ssl.AppInputStream.read(Unknown Source) > at org.apache.activemq.transport.tcp.TcpBufferedInputStream.fill(TcpBufferedInputStream.java:50) > at org.apache.activemq.transport.tcp.TcpBufferedInputStream.read(TcpBufferedInputStream.java:58) > at java.io.DataInputStream.readInt(Unknown Source) > at org.apache.activemq.openwire.OpenWireFormat.unmarshal(OpenWireFormat.java:269) > at org.apache.activemq.transport.tcp.TcpTransport.readCommand(TcpTransport.java:210) > at org.apache.activemq.transport.tcp.TcpTransport.doRun(TcpTransport.java:202) > at org.apache.activemq.transport.tcp.TcpTransport.run(TcpTransport.java:185) > at java.lang.Thread.run(Unknown Source) Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCert > PathBuilderException: unable to find valid certification path to requested target > at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source) > at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(Unknown Source) > at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source) > at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source) > at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(Unknown Source) > at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown Source) > at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source) > at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source) > at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source) > at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source) > at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(Unknown Source) > at com.sun.net.ssl.internal.ssl.AppOutputStream.write(Unknown Source) > at org.apache.activemq.transport.tcp.TcpBufferedOutputStream.flush(TcpBufferedOutputStream.java:115) > at java.io.DataOutputStream.flush(Unknown Source) > at org.apache.activemq.transport.tcp.TcpTransport.oneway(TcpTransport.java:167) > at org.apache.activemq.transport.InactivityMonitor.oneway(InactivityMonitor.java:233) > at org.apache.activemq.transport.WireFormatNegotiator.sendWireFormat(WireFormatNegotiator.java:160) > at org.apache.activemq.transport.WireFormatNegotiator.start(WireFormatNegotiator.java:79) > at org.apache.activemq.transport.TransportFilter.start(TransportFilter.java:57) > at org.apache.activemq.transport.TransportFilter.start(TransportFilter.java:57) > at org.apache.activemq.network.DemandForwardingBridgeSupport.start(DemandForwardingBridgeSupport.java:216) > at org.apache.activemq.network.DiscoveryNetworkConnector.onServiceAdd(DiscoveryNetworkConnector.java:113) > at org.apache.activemq.transport.discovery.simple.SimpleDiscoveryAgent$1.run(SimpleDiscoveryAgent.java:165) > at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown Source) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) > ... 1 more > I'm using hand coded configuration of AMQ broker (Java Code). -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira