Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Verifying server certificate #1142

Closed
Karmo7 opened this issue Apr 19, 2021 · 2 comments · Fixed by #1143
Closed

Verifying server certificate #1142

Karmo7 opened this issue Apr 19, 2021 · 2 comments · Fixed by #1143
Labels
Bug Client
Milestone
Release 1.5.3

Comments

@Karmo7
Copy link

Karmo7 commented Apr 19, 2021

Describe what you would like to know or do
When connecting the client to a server, I would like to verify that server has the same certificate as in a previously cached connection.

Describe the solution you'd considered
I tried to get the server certificate using getSSLSession().getPeerCertificates(); but the getSSLSession() failed. The error I get is "This websocket uses ws instead of wss. No SSLSession available."

Here is a minimal example:

    public static void main(String[] args) throws URISyntaxException {
        WebSocketClient client = new WebSocketClient(new URI("wss://localhost:7690")) {
            public void onOpen(ServerHandshake serverHandshake) {
                System.out.println("Open");
                getSSLSession();
            }
            public void onMessage(String s) { System.out.println(s); }
            public void onClose(int i, String s, boolean b) { System.out.println("Close"); }
            public void onError(Exception e) { e.printStackTrace(); }
        };
        client.connect();
    }

The full output is:

Open
java.lang.IllegalArgumentException: This websocket uses ws instead of wss. No SSLSession available.
at org.java_websocket.WebSocketImpl.getSSLSession(WebSocketImpl.java:830)
at org.java_websocket.client.WebSocketClient.getSSLSession(WebSocketClient.java:911)
at com.company.Main$1.onOpen(Main.java:18)
at org.java_websocket.client.WebSocketClient.onWebsocketOpen(WebSocketClient.java:605)
at org.java_websocket.WebSocketImpl.open(WebSocketImpl.java:716)
at org.java_websocket.WebSocketImpl.decodeHandshake(WebSocketImpl.java:341)
at org.java_websocket.WebSocketImpl.decode(WebSocketImpl.java:219)
at org.java_websocket.client.WebSocketClient.run(WebSocketClient.java:508)
at java.base/java.lang.Thread.run(Thread.java:832)
Close

So the issue here is that the error suggests I need to use "wss" while I'm clearly already doing that. What should I do here?
@marci4
Copy link
Collaborator

marci4 commented Apr 19, 2021

Hello @Karmo7,

Yes this was not implemented for the WebSocketClient and its idea was to be used for the WebSocketServer.

The workaround for you should be the following:

((SSLSocket)getSocket()).getSession()

Best regards,
Marcel

@marci4 marci4 added this to the Release 1.5.3 milestone Apr 19, 2021
marci4 added a commit to marci4/Java-WebSocket-Dev that referenced this issue Apr 19, 2021
@marci4
Access SSLSession in WebSocketClient
d2bedb7 
Fixes TooTallNate#1142
marci4 added a commit to marci4/Java-WebSocket-Dev that referenced this issue Apr 19, 2021
@marci4
Provide SSLSession in WebSocketClient
9a290e8 
Fixes TooTallNate#1142
@marci4 marci4 mentioned this issue Apr 19, 2021
Merged
8 tasks
@Karmo7
Copy link
Author

Karmo7 commented Apr 19, 2021

Thanks, the workaround solved my issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Bug Client
Projects
None yet
Milestone
Release 1.5.3
Development

Successfully merging a pull request may close this issue.

Provide SSLSession in WebSocketClient marci4/Java-WebSocket-Dev
2 participants
@Karmo7 @marci4