[EAP 7.4.7] CP 7 changed the behavior of https-remoting

Solution Unverified - Updated -

Issue

  • After applying CP 7, https client fails to connect EAP with
2022-10-18 18:09:55,733 ERROR [org.apache.activemq.artemis.core.client] (Thread-7 (ActiveMQ-client-netty-threads)) AMQ214016: Failed to create netty connection: io.netty.handler.codec.DecoderException: javax.net.ssl.SSLHandshakeException: General SSLEngine problem
        at io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:480)
        at io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:279)
        at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:379)
               :
Caused by: java.security.cert.CertificateException: No subject alternative names matching IP address 10.10.10.10 found
        at sun.security.util.HostnameChecker.matchIP(HostnameChecker.java:168)
        at sun.security.util.HostnameChecker.match(HostnameChecker.java:94)
        at sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:462)
        at sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:442)

Environment

  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 7.4.7

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content