Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Java SSLException: hostname in certificate didn't match

Tags:

java

https

ssl

I have been using the following code to connect to one of google's service. This code worked fine on my local machine :

HttpClient client=new DefaultHttpClient(); HttpPost post = new HttpPost("https://www.google.com/accounts/ClientLogin"); post.setEntity(new UrlEncodedFormEntity(myData)); HttpResponse response = client.execute(post);

I put this code in a production environment, which had blocked Google.com. On request, they allowed communication with Google server by allowing me to accessing an IP : 74.125.236.52 - which is one of Google's IPs. I edited my hosts file to add this entry too.

Still I could not access the URL, which I wonder why. So I replaced the above code with :

HttpPost post = new HttpPost("https://74.125.236.52/accounts/ClientLogin");

Now I get an error like this :

javax.net.ssl.SSLException: hostname in certificate didn't match: <74.125.236.52> != <www.google.com>

I guess this is because Google has multiple IPs. I cant ask the network admin to allow me access to all those IPs - I may not even get this entire list.

What should I do now ? Is there a workaround at Java level ? Or is it totally in hands of the network guy ?

like image 678
WinOrWin Avatar asked Aug 31 '11 12:08

WinOrWin

1 Answers

You can also try to set a HostnameVerifier as described here. This worked for me to avoid this error. 

// Do not do this in production!!! HostnameVerifier hostnameVerifier = org.apache.http.conn.ssl.SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER;  DefaultHttpClient client = new DefaultHttpClient();  SchemeRegistry registry = new SchemeRegistry(); SSLSocketFactory socketFactory = SSLSocketFactory.getSocketFactory(); socketFactory.setHostnameVerifier((X509HostnameVerifier) hostnameVerifier); registry.register(new Scheme("https", socketFactory, 443)); SingleClientConnManager mgr = new SingleClientConnManager(client.getParams(), registry); DefaultHttpClient httpClient = new DefaultHttpClient(mgr, client.getParams());  // Set verifier      HttpsURLConnection.setDefaultHostnameVerifier(hostnameVerifier);  // Example send http request final String url = "https://encrypted.google.com/";   HttpPost httpPost = new HttpPost(url); HttpResponse response = httpClient.execute(httpPost);
like image 91
H6. Avatar answered Sep 22 '22 19:09

H6.
Sign in to Comment

Related questions

Equals operator for zeros (BigDecimal / Double) in Java
How to stop Handler Runnable?
How to update Gradle dependencies from command line?
Spring bean with runtime constructor arguments [duplicate]
Is Java 8 java.util.Base64 a drop-in replacement for sun.misc.BASE64?
What is the .NET equivalent of StringBuffer in Java?
Use SBT To Build Pure Java Project
TrueType Fonts in libGDX
SparseArray, check if key exists
Some clarification about Spring @Transactional annotation on a method
Can't Instantiate Map...well why not?
Unable to clean project in Android Studio
In Javadocs, how should I write plural forms of singular Objects in <code> tags?
What is the difference between creating a locale for en-US and en_US?
Validating XML against XSD [duplicate]
Attach the Source in Eclipse of a jar
Why does 11010100 << 1 equal 110101000, not 10101000?
Findbugs issue with "Boxing/unboxing to parse a primitive" with Integer.valueOf(String)
Does it help GC to null local variables in Java
static variable initialization java

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!