anyone know what is the problem regarding the error that encountered in the PayPal sandbox?
It was working fine for months last time and we changed our server and IPN stopped working. We are not sure is PayPal issue or our issue.
In the web server access log there's no entry of the PayPal IPN POST log shown up and we can't figure out what is the problem.
IPN Delivery Failed:I/O error: RSA premaster secret error; nested exception is javax.net.ssl.SSLKeyException: RSA premaster secret error
https://developer.paypal.com/webapps/developer/applications/ipn_simulator
Extra info : We are using two different sub domain with two SSL certificate in a single IP.
Example :
https://www.example.com/ - For main website (SSL cert A)
https://ipn.example.com/ - For PayPal IPN (SSL cert B)
<VirtualHost x.x.x.x:443>
ServerName ipn.example.com
DocumentRoot "/path/to/ipn.example"
SSLEngine on
SSLCertificateFile "/path/to/ipn_example_com.crt"
SSLCertificateKeyFile "/path/to/ipn_example_com.key"
SSLCertificateChainFile "/path/to/CA1.pem"
</VirtualHost>
<VirtualHost x.x.x.x:443>
ServerName www.example.com
ServerAlias example.com
DocumentRoot "/path/to/www.example"
SSLEngine on
SSLCertificateFile "/path/to/www_example_com.crt"
SSLCertificateKeyFile "/path/to/www_example_com.key"
SSLCertificateChainFile "/path/to/CA2.pem"
</VirtualHost>
x.x.x.x is an IP address (Both IP is the same)
I have run into the same problem and it seems as if the IPN Simulator is unable to handle https properly. (or perhaps it has trouble with RSA keys over 1024 bits?) I am unable to use the simulator, but if I test everything (in the sandbox) using a Paypal business / consumer accounts and fake a purchase, I do get IPN messages sent to my handler.
You may want to set the environment variable JAVA_EXT_DIRS which value would be the path to [..]jre\lib\ext
The accepted answer of SunTlsRsaPremasterSecret KeyGenerator not available might be of some help
Other related posts which can be found on the web:
来源:https://stackoverflow.com/questions/15985625/ssl-error-rsa-premaster-secret-error