two-way SSL exception

[Renee]

I am trying to configure 2-way SSL with wls 7.0sp1 as client and Microsoft ISS
as the server, using weblogic HttpsURLConnection.. I am getting the following
errors:

what usually causes this happening? does it mean client side wls do not find
the right CA to verify the server presented certificate?

Server side has .pfx format certificate and how do I get CA from that file on
right format and load it into wls server?

thanks!

------------------------------------------
<Jan 17, 2003 7:17:55 PM EST> <Debug> <TLS> <000000> <Problem decoding peer certificate
chain
com.rsa.certj.cert.CertificateException: Could not decode
VeriSignSerialNumberRollover extension.
at
com.rsa.certj.cert.extensions.VeriSignSerialNumberRollover.decodeValue(VeriSignSerialNumberRollover.java:126)
at
com.rsa.certj.cert.extensions.X509V3Extension.getInstance(X509V3Exten
sion.java:553)
at
com.rsa.certj.cert.X509V3Extensions.setExtensionsBER(X509V3Extensions
java:236)
at
com.rsa.certj.cert.X509V3Extensions.<init>(X509V3Extensions.java:138)

at
com.rsa.certj.cert.X509Certificate.setInnerDER(X509Certificate.java:7
36)
at
com.rsa.certj.cert.X509Certificate.setCertBER(X509Certificate.java:36
8)
at
com.rsa.certj.cert.X509Certificate.<init>(X509Certificate.java:277)
at
weblogic.security.utils.SSLCertUtility.toCertJX509(SSLCertUtility.jav
a:198)
at
weblogic.security.utils.SSLCertUtility.getSubjectX500Name(SSLCertUtil
ity.java:205)
at
weblogic.security.utils.SSLCertUtility.getSubjectDNValue(SSLCertUtili
ty.java:225)
at
weblogic.security.utils.SSLCertUtility.getSubjectDNCommonName(SSLCert
Utility.java:238)
at
weblogic.security.utils.SSLWLSHostnameVerifier.hostnameValidationCall
back(SSLWLSHostnameVerifier.java:38)
at com.certicom.tls.CertificateSupport.isServerTrusted(Unknown
Source)
at
com.certicom.tls.record.handshake.ClientStateReceivedServerHello.hand
le(Unknown Source)
at
com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMes
sage(Unknown Source)
at
com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMes
sages(Unknown Source)
at com.certicom.tls.record.ReadHandler.interpretContent(Unknown
Source)
at com.certicom.tls.record.ReadHandler.readRecord(Unknown
Source)
at
com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknow
n Source)
at
com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Un
known Source)
at com.certicom.tls.record.WriteHandler.write(Unknown Source)
at
java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:67
)
at
java.io.BufferedOutputStream.flush(BufferedOutputStream.java:125)
at
java.io.FilterOutputStream.flush(FilterOutputStream.java:121)
at
weblogic.net.http.HttpURLConnection.writeRequests(HttpURLConnection.j
ava:97)
at
weblogic.net.http.HttpURLConnection.getInputStream(HttpURLConnection.
java:284)
at
weblogic.net.http.HttpURLConnection.getInternalResponseCode(HttpURLCo
nnection.java:674)
at
weblogic.net.http.HttpURLConnection.getResponseCode(HttpURLConnection
java:659)
at com.EIVMsgBean.sendToURL(EIVMsgBean.java:284)
at com.EIVMsgBean.onMessage(EIVMsgBean.java:153)
at
weblogic.ejb20.internal.MDListener.execute(MDListener.java:356)
at
weblogic.ejb20.internal.MDListener.transactionalOnMessage(MDListener.
java:290)
at
weblogic.ejb20.internal.MDListener.onMessage(MDListener.java:271)
at
weblogic.jms.client.JMSSession.onMessage(JMSSession.java:2303)
at weblogic.jms.client.JMSSession.execute(JMSSession.java:2226)
at
weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:153)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:134)
>

[Utpal]

There is a bug reported against WLS7.0. Open a case with Weblogic support
and ask help on CR085781 issue.
This has been fixed in WLS7.0SP2.

-utpal

"Renee" <littleb...@yahoo.com> wrote in message
news:3e2b...@newsgroups.bea.com...