0 Replies Latest reply on May 29, 2017 4:20 AM by Anouar

    Client can not connect to server

    Anouar

      Hallo,

      we have two certificate with the same Properties except serial number, Thumbprint and some extensions.

      the first one is from 4/24/2017 and the second one is from 9/9/2015, both are valid till 1/1/2100.

      we have two devices, one with the first certificat, the second one with the new certifikat.

       

      the second device can seccussfully connect but the first device not.

      i'm getting this error:

       

      • org.jivesoftware.openfire.nio.ConnectionHandler - ConnectionHandler reports IOException for session: (SOCKET, R: /X.X.X.X:50032, L: /X.X.X.X:5222, S: 0.0.0.0/0.0.0.0:5222)
      1. javax.net.ssl.SSLHandshakeException: SSL handshake failed.

      at org.apache.mina.filter.SSLFilter.messageReceived(SSLFilter.java:416)

      at org.apache.mina.common.support.AbstractIoFilterChain.callNextMessageReceived(Ab stractIoFilterChain.java:299)

      at org.apache.mina.common.support.AbstractIoFilterChain.access$1100(AbstractIoFilt erChain.java:53)

      at org.apache.mina.common.support.AbstractIoFilterChain$EntryImpl$1.messageReceive d(AbstractIoFilterChain.java:648)

      at org.apache.mina.common.support.AbstractIoFilterChain$HeadFilter.messageReceived (AbstractIoFilterChain.java:499)

      at org.apache.mina.common.support.AbstractIoFilterChain.callNextMessageReceived(Ab stractIoFilterChain.java:299)

      at org.apache.mina.common.support.AbstractIoFilterChain.fireMessageReceived(Abstra ctIoFilterChain.java:293)

      at org.apache.mina.transport.socket.nio.SocketIoProcessor.read(SocketIoProcessor.j ava:228)

      at org.apache.mina.transport.socket.nio.SocketIoProcessor.process(SocketIoProcesso r.java:198)

      at org.apache.mina.transport.socket.nio.SocketIoProcessor.access$400(SocketIoProce ssor.java:45)

      at org.apache.mina.transport.socket.nio.SocketIoProcessor$Worker.run(SocketIoProce ssor.java:485)

      at org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:51)

      at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)

      at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)

      at java.lang.Thread.run(Unknown Source)

      Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem

      at sun.security.ssl.Handshaker.checkThrown(Unknown Source)

      at sun.security.ssl.SSLEngineImpl.checkTaskThrown(Unknown Source)

      at sun.security.ssl.SSLEngineImpl.writeAppRecord(Unknown Source)

      at sun.security.ssl.SSLEngineImpl.wrap(Unknown Source)

      at javax.net.ssl.SSLEngine.wrap(Unknown Source)

      at org.apache.mina.filter.support.SSLHandler.handshake(SSLHandler.java:525)

      at org.apache.mina.filter.support.SSLHandler.messageReceived(SSLHandler.java:306)

      at org.apache.mina.filter.SSLFilter.messageReceived(SSLFilter.java:392)

      ... 14 more

      Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem

      at sun.security.ssl.Alerts.getSSLException(Unknown Source)

      at sun.security.ssl.SSLEngineImpl.fatal(Unknown Source)

      at sun.security.ssl.Handshaker.fatalSE(Unknown Source)

      at sun.security.ssl.Handshaker.fatalSE(Unknown Source)

      at sun.security.ssl.ServerHandshaker.clientCertificate(Unknown Source)

      at sun.security.ssl.ServerHandshaker.processMessage(Unknown Source)

      at sun.security.ssl.Handshaker.processLoop(Unknown Source)

      at sun.security.ssl.Handshaker$1.run(Unknown Source)

      at sun.security.ssl.Handshaker$1.run(Unknown Source)

      at java.security.AccessController.doPrivileged(Native Method)

      at sun.security.ssl.Handshaker$DelegatedTask.run(Unknown Source)

      at org.apache.mina.filter.support.SSLHandler.doTasks(SSLHandler.java:696)

      at org.apache.mina.filter.support.SSLHandler.handshake(SSLHandler.java:496)

      ... 16 more

      Caused by: java.security.cert.CertificateException: signature verification failed of [firstdevice@myxmpp.de]

      at org.jivesoftware.openfire.net.ClientTrustManager.checkClientTrusted(ClientTrust Manager.java:251)

      at sun.security.ssl.AbstractTrustManagerWrapper.checkClientTrusted(Unknown Source)

      ... 25 more

       

      we are using Openfire version 3.9.3

      Server name is myxmpp.de

       

      I need you help

      Thanks