1

I'm trying to make Https connections on the Android phones, using HttpClient. Since the certificate is self-signed I keep getting "javax.net.ssl.SSLException: Not trusted server certificate".

Please help me. Following is the code and the log.

public class CustomClientSSLActivity extends Activity 
{
    /** Called when the activity is first created. */
    @Override
    public void onCreate(Bundle savedInstanceState) {
        super.onCreate(savedInstanceState);

        HostnameVerifier hostnameVerifier = org.apache.http.conn.ssl.SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER;

        DefaultHttpClient client = new DefaultHttpClient();

        SchemeRegistry registry = new SchemeRegistry();
        SSLSocketFactory socketFactory = SSLSocketFactory.getSocketFactory();
        socketFactory.setHostnameVerifier((X509HostnameVerifier) hostnameVerifier);
        registry.register(new Scheme("https", socketFactory, 443));
        SingleClientConnManager mgr = new SingleClientConnManager(client.getParams(), registry);
        DefaultHttpClient httpClient = new DefaultHttpClient(mgr, client.getParams());

        // Set verifier     
        HttpsURLConnection.setDefaultHostnameVerifier(hostnameVerifier);

       // Example send http request
       final String url = "https://192.168.1.140";
       HttpPost httpPost = new HttpPost(url);
       HttpResponse response=null;
       try {
         response = httpClient.execute(httpPost);
    } catch (ClientProtocolException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (IOException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    }
    System.out.println("--response "+response);

    }
}

LOG---

W/System.err(  868): javax.net.ssl.SSLException: Not trusted server certificate
W/System.err(  868):    at org.apache.harmony.xnet.provider.jsse.OpenSSLSocketImpl.startHandshake(OpenSSLSocketImpl.java:360)
W/System.err(  868):    at org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:92)
W/System.err(  868):    at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:321)
W/System.err(  868):    at org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java:129)
W/System.err(  868):    at org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:164)
W/System.err(  868):    at org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConnAdapter.java:119)
W/System.err(  868):    at org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:348)
W/System.err(  868):    at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:555)
W/System.err(  868):    at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:487)
W/System.err(  868):    at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:465)
W/System.err(  868):    at com.qteq.customclientssl.CustomClientSSLActivity.onCreate(CustomClientSSLActivity.java:46)
W/System.err(  868):    at android.app.Instrumentation.callActivityOnCreate(Instrumentation.java:1047)
W/System.err(  868):    at android.app.ActivityThread.performLaunchActivity(ActivityThread.java:2459)
W/System.err(  868):    at android.app.ActivityThread.handleLaunchActivity(ActivityThread.java:2512)
W/System.err(  868):    at android.app.ActivityThread.access$2200(ActivityThread.java:119)
W/System.err(  868):    at android.app.ActivityThread$H.handleMessage(ActivityThread.java:1863)
W/System.err(  868):    at android.os.Handler.dispatchMessage(Handler.java:99)
W/System.err(  868):    at android.os.Looper.loop(Looper.java:123)
W/System.err(  868):    at android.app.ActivityThread.main(ActivityThread.java:4363)
W/System.err(  868):    at java.lang.reflect.Method.invokeNative(Native Method)
W/System.err(  868):    at java.lang.reflect.Method.invoke(Method.java:521)
W/System.err(  868):    at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:860)
W/System.err(  868):    at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:618)
W/System.err(  868):    at dalvik.system.NativeStart.main(Native Method)
W/System.err(  868): Caused by: java.security.cert.CertificateException: java.security.cert.CertPathValidatorException: TrustAnchor for CertPat
W/System.err(  868):    at org.apache.harmony.xnet.provider.jsse.TrustManagerImpl.checkServerTrusted(TrustManagerImpl.java:168)
W/System.err(  868):    at org.apache.harmony.xnet.provider.jsse.OpenSSLSocketImpl.startHandshake(OpenSSLSocketImpl.java:355)
W/System.err(  868):    ... 23 more
W/System.err(  868): Caused by: java.security.cert.CertPathValidatorException: TrustAnchor for CertPath not found.
W/System.err(  868):    at org.bouncycastle.jce.provider.PKIXCertPathValidatorSpi.engineValidate(PKIXCertPathValidatorSpi.java:149)
W/System.err(  868):    at java.security.cert.CertPathValidator.validate(CertPathValidator.java:211)
W/System.err(  868):    at org.apache.harmony.xnet.provider.jsse.TrustManagerImpl.checkServerTrusted(TrustManagerImpl.java:164)
W/System.err(  868):    ... 24 more
I/System.out(  868): --response null
I/ActivityManager(   52): Displayed activity com.qteq.customclientssl/.CustomClientSSLActivity: 1634 ms (total 1634 ms)
user370305
  • 108,599
  • 23
  • 164
  • 151
user884126
  • 185
  • 1
  • 3
  • 10
  • And here you may find solution for android: http://stackoverflow.com/questions/2864016/httpclient-ssl-certificate-on-android – tludek Dec 06 '11 at 08:57

1 Answers1

0

Take a look at this two posts, I think they will help you :)

Trusting all certificates using HttpClient over HTTPS

And in this blog you have an example too: http://blog.crazybob.org/2010/02/android-trusting-ssl-certificates.html

Hope this helps...

Community
  • 1
  • 1
oriolpons
  • 1,883
  • 12
  • 20
  • *"Trusting all certificates using HttpClient over HTTPS"* - very bad idea. Its downright dangerous: [The most dangerous code in the world: validating SSL certificates in non-browser software](http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf). – jww Aug 07 '14 at 00:20