javax.net.ssl.SSLException: Received fatal alert: unknown_ca

[Emmanuel J]

Hello

I try to use LittleProxy in MITM mode, with HTTPS I dont have any problem but with HTTP (facebook) on firefox I have this message:

Le certificat n'est pas sûr car il est auto-signé. 

Le certificat n'est valide que pour littleproxy. 

(Code d'erreur : sec_error_unknown_issuer)

I have imported into keychain: littleproxy_cert

Anonye has alreday have this problem ?

thx

[saran...@gmail.com]

Hello,

how you have handled https in your filters.

[Andrei Varabyeu]

This issue is reproduced even with no filters in the list. Here is stacktrace:

(AWAITING_INITIAL) [id: 0x41f86487, /127.0.0.1:59652 => /127.0.0.1:8080]: Caught an exception on ClientToProxyConnection

io.netty.handler.codec.DecoderException: javax.net.ssl.SSLException: Received fatal alert: unknown_ca

at io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:257)

at io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:139)

at io.netty.channel.DefaultChannelHandlerContext.invokeChannelRead(DefaultChannelHandlerContext.java:338)

at io.netty.channel.DefaultChannelHandlerContext.fireChannelRead(DefaultChannelHandlerContext.java:324)

at io.netty.channel.DefaultChannelPipeline.fireChannelRead(DefaultChannelPipeline.java:785)

at io.netty.channel.nio.AbstractNioByteChannel$NioByteUnsafe.read(AbstractNioByteChannel.java:126)

at io.netty.channel.nio.NioEventLoop.processSelectedKey(NioEventLoop.java:485)

at io.netty.channel.nio.NioEventLoop.processSelectedKeysOptimized(NioEventLoop.java:452)

at io.netty.channel.nio.NioEventLoop.run(NioEventLoop.java:346)

at io.netty.util.concurrent.SingleThreadEventExecutor$2.run(SingleThreadEventExecutor.java:101)

at java.lang.Thread.run(Thread.java:744)

Caused by: javax.net.ssl.SSLException: Received fatal alert: unknown_ca

at sun.security.ssl.Alerts.getSSLException(Alerts.java:208)

at sun.security.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1619)

at sun.security.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1587)

at sun.security.ssl.SSLEngineImpl.recvAlert(SSLEngineImpl.java:1756)

at sun.security.ssl.SSLEngineImpl.readRecord(SSLEngineImpl.java:1060)

at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:884)

at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:758)

at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624)

at io.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:937)

at io.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:881)

at io.netty.handler.ssl.SslHandler.decode(SslHandler.java:837)

at io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:226)