[jacorb-developer] Helo required with SSL
Darryl
dc7653 at virginmedia.com
Tue Apr 2 09:43:36 CEST 2013
Hi,
Thank you for your help.
I've finally figured this out..
The problem in my original application was because the application contained an
override for X509TrustManager and the original developer has coded
getAcceptedIssuers() to throw the error RuntimeException("not implemented"),
this wasn't a problem with Java 6 because X509TrustManager ::getAcceptedIssuers
() never got called for our application, however something has changed in Java
7 that means this function is now called, this resulted in the above exception
causing SSL validation to fail. I have now changed our implementation of this
member function as follows...
public X509Certificate[] getAcceptedIssuers() {
return new X509Certificate[0];
}
-------------------------------------
The problem with my test application appears to be related to the certificate
trust relationship, I replaced the client certificate with a copy of the server
certificate and now the application works properly. You wouldn't want to do
this in a live environment but I assume if you add the certificate signing
authority to the trust store or implemented your own X509TrustManager this may
also work.
More information about the jacorb-developer
mailing list