One Star

tS3Connection Region EU (London) Not Available

I need to connect to S3 bucket in EU (London) region which was added later last year but unfortunately this region is not available in Talend yet (refer screen shot attached). We are using VPN to connect to this region and don't have access to other regions hence receiving PKIX path issues with below stack trace: Exception in component tS3Connection_1 (dt_s3_test) com.amazonaws.AmazonClientException: Unable to execute HTTP request: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at com.amazonaws.http.AmazonHttpClient.executeHelper(AmazonHttpClient.java:642) at com.amazonaws.http.AmazonHttpClient.doExecute(AmazonHttpClient.java:400) at com.amazonaws.http.AmazonHttpClient.executeWithTimer(AmazonHttpClient.java:362) at com.amazonaws.http.AmazonHttpClient.execute(AmazonHttpClient.java:311) at com.amazonaws.services.s3.AmazonS3Client.invoke(AmazonS3Client.java:3673) at com.amazonaws.services.s3.AmazonS3Client.invoke(AmazonS3Client.java:3626) at com.amazonaws.services.s3.AmazonS3Client.getBucketLoggingConfiguration(AmazonS3Client.java:2306) at com.amazonaws.services.s3.AmazonS3Client.getBucketLoggingConfiguration(AmazonS3Client.java:2292) at us_talendjobs.dt_s3_test_0_1.dt_s3_test.tS3Connection_1Process(dt_s3_test.java:342) [statistics] disconnected at us_talendjobs.dt_s3_test_0_1.dt_s3_test.runJobInTOS(dt_s3_test.java:611) at us_talendjobs.dt_s3_test_0_1.dt_s3_test.main(dt_s3_test.java:460) Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.ssl.Alerts.getSSLException(Unknown Source) at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source) at sun.security.ssl.Handshaker.fatalSE(Unknown Source) at sun.security.ssl.Handshaker.fatalSE(Unknown Source) at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source) at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source) at sun.security.ssl.Handshaker.processLoop(Unknown Source) at sun.security.ssl.Handshaker.process_record(Unknown Source) at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source) at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) at sun.security.ssl.SSLSocketImpl.startHandshake(Unknown Source) at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:535) at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:403) at com.amazonaws.http.conn.ssl.SdkTLSSocketFactory.connectSocket(SdkTLSSocketFactory.java:134) at org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java:177) at org.apache.http.impl.conn.ManagedClientConnectionImpl.open(ManagedClientConnectionImpl.java:304) at org.apache.http.impl.client.DefaultRequestDirector.tryConnect(DefaultRequestDirector.java:611) at org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:446) at org.apache.http.impl.client.AbstractHttpClient.doExecute(AbstractHttpClient.java:863) at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:57) at com.amazonaws.http.AmazonHttpClient.executeOneRequest(AmazonHttpClient.java:860) at com.amazonaws.http.AmazonHttpClient.executeHelper(AmazonHttpClient.java:631) ... 10 more Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.validator.PKIXValidator.doBuild(Unknown Source) at sun.security.validator.PKIXValidator.engineValidate(Unknown Source) at sun.security.validator.Validator.validate(Unknown Source) at sun.security.ssl.X509TrustManagerImpl.validate(Unknown Source) at sun.security.ssl.X509TrustManagerImpl.checkTrusted(Unknown Source) at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source) ... 30 more Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.provider.certpath.SunCertPathBuilder.build(Unknown Source) at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown Source) at java.security.cert.CertPathBuilder.build(Unknown Source) ... 36 more Please suggest any workarounds to tackle this scenario. Thanks in advance!

1 REPLY
Moderator

Re: tS3Connection Region EU (London) Not Available

Hello,

Could you please take a look at this jira issue:https://jira.talendforge.org/browse/TDI-38984 to see if it is what you are looking for?

Best regards

Sabrina

--
Don't forget to give kudos when a reply is helpful and click Accept the solution when you think you're good with it.