Certificate upgrade Java Tomcat (and Apache)


#1

Some side effects after renewal of my certficates (old fashion certbot v 0.28)

This used to work before renewal:
URL lockpngUrl;
try {
lockpngUrl = new URL(“https://” + pictureFile);
try {
iStream = lockpngUrl.openStream();
Now it throws Java Sun security exception.
Haven’t solved this issue for now.
For those who face this problem some help & explanation can be found here https://stackoverflow.com/questions/9619030/resolving-javax-net-ssl-sslhandshakeexception-sun-security-validator-validatore
Good luck


#2

The stack trace itself and exact Java version would help us help you.

Older versions of Java are missing the DST Root CA X3 in their trust store, which is the root that the current Let’s Encrypt intermediates rely on (and has from day 1).


#3

Hi,

Here is the stack :

java.util.NoSuchElementException

   at javax.imageio.spi.FilterIterator.next(ServiceRegistry.java:825)

   at javax.imageio.ImageIO$ImageReaderIterator.next(ImageIO.java:528)

   at javax.imageio.ImageIO$ImageReaderIterator.next(ImageIO.java:513)

   at org.apache.poi.ss.util.ImageUtils.getImageDimension(ImageUtils.java:76)

   at org.apache.poi.ss.util.ImageUtils.setPreferredSize(ImageUtils.java:146)

   at org.apache.poi.xssf.usermodel.XSSFPicture.getPreferredSize(XSSFPicture.java:221)

   at org.apache.poi.xssf.usermodel.XSSFPicture.resize(XSSFPicture.java:180)

   at org.apache.poi.xssf.usermodel.XSSFPicture.resize(XSSFPicture.java:155)

   at org.apache.poi.xssf.usermodel.XSSFPicture.resize(XSSFPicture.java:146)

   at ch.ubik.common.servlet.lbc.ExcelPageWriter.getPicture(ExcelPageWriter.java:758)

   at ch.ubik.carol.lbc.excel.SliceList.fillHeaderRow(SliceList.java:170)

   at ch.ubik.carol.lbc.excel.SliceList.fillSheet(SliceList.java:139)

   at ch.ubik.carol.lbc.excel.SliceList.<init>(SliceList.java:121)

   at ch.ubik.carol.lbc.admin.Slices.getExcelList(Slices.java:369)

   at ch.ubik.carol.srv.admin.SlicesSrv.getAdminExcelWriter(SlicesSrv.java:65)

   at ch.ubik.carol.srv.admin.AbstractAdminLoginSrv.getExcelWriter(AbstractAdminLoginSrv.java:179)

   at ch.ubik.carol.srv.AbstractCarolServlet.getExcelWriter(AbstractCarolServlet.java:416)

   at ch.ubik.carol.srv.AbstractCarolServlet.doService(AbstractCarolServlet.java:282)

   at ch.ubik.carol.srv.AbstractCarolServlet.doGet(AbstractCarolServlet.java:192)

   at ch.ubik.carol.srv.AbstractCarolServlet.doPost(AbstractCarolServlet.java:171)

   at javax.servlet.http.HttpServlet.service(HttpServlet.java:646)

   at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)

   at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)

   at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)

   at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)

   at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)

   at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)

   at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)

   at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)

   at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)

   at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)

   at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)

   at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)

   at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)

   at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)

   at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)

   at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)

   at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)

   at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1110)

   at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:603)

   at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)

   at java.lang.Thread.run(Thread.java:722)

Java version is:

ava version “1.7.0_151”

OpenJDK Runtime Environment (IcedTea 2.6.11) (7u151-2.6.11-1~deb8u1)

OpenJDK 64-Bit Server VM (build 24.151-b01, mixed mode)

Regards