Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

Eclipse client RTC can't create connection - Received fatal alert: handshake_failure

Questions
Tags
Users
Badges
Vijay Reddy Gaddam
(563041) edited
Dec 04 '15, 4:20 a.m.
Hi,

I'm trying to create a new connection to RTC in Eclipse client. I'm always recieving the error:
CRJAZ2384E Cannot connect to the repository at URL "https://rtc.colruyt.int/ccm", see the nested exception for more details. Received fatal alert: handshake_failure

RTC version: 5.0.2
Eclipse version: mars

I'm able to connect to RTC from browser without any issues.
I tried the following solution but could not help me out.
http://www-01.ibm.com/support/knowledgecenter/SSYMRC_4.0.4/com.ibm.jazz.install.doc/topics/t_enable_tls1.2_rtc.html
Can some try to help while connecting to RTC from eclipse client.

Loggings related to this issue:
!ENTRY org.eclipse.epp.logging.aeri.ui 2 18 2015-11-25 17:13:04.514
!MESSAGE Updating the index from remote failed. Version: 1.0.0.v20150617-0732
!STACK 0
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.ssl.Alerts.getSSLException(Unknown Source)
at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source)
at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source)
at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source)
at sun.security.ssl.Handshaker.processLoop(Unknown Source)
at sun.security.ssl.Handshaker.process_record(Unknown Source)
at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source)
at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)
at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source)
at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:290)
at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:259)
at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:125)
at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:319)
at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363)
at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219)
at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195)
at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86)
at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108)
at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:184)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:57)
at org.apache.http.client.fluent.Executor.execute(Executor.java:206)
at org.eclipse.epp.internal.logging.aeri.ui.log.ProblemsDatabaseUpdateJob.getEtag(ProblemsDatabaseUpdateJob.java:94)
at org.eclipse.epp.internal.logging.aeri.ui.log.ProblemsDatabaseUpdateJob.run(ProblemsDatabaseUpdateJob.java:58)
at org.eclipse.core.internal.jobs.Worker.run(Worker.java:55)
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.validator.PKIXValidator.doBuild(Unknown Source)
at sun.security.validator.PKIXValidator.engineValidate(Unknown Source)
at sun.security.validator.Validator.validate(Unknown Source)
at sun.security.ssl.X509TrustManagerImpl.validate(Unknown Source)
at sun.security.ssl.X509TrustManagerImpl.checkTrusted(Unknown Source)
at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source)
... 24 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.provider.certpath.SunCertPathBuilder.build(Unknown Source)
at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown Source)
at java.security.cert.CertPathBuilder.build(Unknown Source)
... 30 more

!ENTRY org.eclipse.epp.logging.aeri.ui 2 6 2015-11-25 17:13:04.516
!MESSAGE Failed to determine ETAG for remote problems database. Stopping update. Version: 1.0.0.v20150617-0732

0 votes

2 answers
6,899 views
0 votes

2 answers

Permanent link
Kevin Ramer
(4.5k9186201) Dec 04 '15, 8:41 a.m.
See also: Configuring Transport Layer Security (TLS) 1.2 support for Rational Team Concert

along with other links yielded by this search TLS AND 1.2


1 vote

Permanent link
Donald Nong
(14.5k614) Dec 04 '15, 4:58 a.m.
I don't have any problems with RTC 5.0.2 with Eclipse Mars connecting to an RTC server with either TLSv1 or TLSv1.2 protocol. The problem you are facing appears to be with the server certificate.

Have you manually specified a trust store for the Eclipse client?

How does the server certificate look like? You can see its details using your browser.

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details
× 6,121

Question asked: Nov 25 '15, 5:58 a.m.

Question was seen: 6,899 times

Last updated: Dec 04 '15, 8:41 a.m.

Confirmation Cancel Confirm