javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building f

最新推荐文章于 2024-06-14 14:50:25 发布
最新推荐文章于 2024-06-14 14:50:25 发布
阅读量2.7k 收藏 3
点赞数
文章标签: ssl .net https
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/baidu_41909845/article/details/129851963
版权

原因:这是SSL证书请求问题。

原代码

private String postForAPP1(String token) throws Exception {
        Map<String, Object> param = new HashMap<String, Object>();
        TxnBodyCom txnBodyCom = new TxnBodyCom();
        param.put("txnBodyCom", txnBodyCom);
//        txnCom.setTxnBodyCom(txnBodyCom);
        TxnCommCom txnCommCom = new TxnCommCom();
        txnCommCom.setTRecInPage("1111");
        txnCommCom.setTxnIttChnlCgyCode("1111");
        txnCommCom.setTStsTraceId("=01111");
        txnCommCom.setTPageJump("1111");
        txnCommCom.setTxnIttChnlId("1111111");
        param.put("txnCommCom", txnCommCom);
        JSON.toJSONString(param);

        CloseableHttpClient httpClient = HttpClients.createDefault();
        RequestConfig requestConfig = RequestConfig.custom().setSocketTimeout(300 * 1000)
                .setConnectTimeout(300 * 1000).build();
        // 创建post方式请求对象
        HttpPost post = new HttpPost("https://www.baidu.com:1111");
        post.setConfig(requestConfig);
        // 请求的数据包为raw,设置报文头为Content-Type
        post.addHeader("Content-Type", "application/json;charset=utf-8");
        post.addHeader("C-Tenancy-id", "11111");
        post.addHeader("Connection", "keep-alive");
        post.addHeader("Referer", "https://www.baidu.com:1111");
        post.addHeader("C-Dynamic-Password-Foruser", token);
        post.addHeader("C-App-Id", "11111");

        // 装载参数
        StringEntity postingString = new StringEntity(JSON.toJSONString(param), "utf-8");
        post.setEntity(postingString);
        // 执行请求并拿到结果
        HttpResponse response = null;
        String content = null;
        CloseableHttpClient client = null;
        try {
//            httpClient = buildSSLCloseableHttpClient();
            response = httpClient.execute(post);
            // 判断返回状态是否正常
            int state = response.getStatusLine().getStatusCode();

            // 获取结果实体并返回结果
            org.apache.http.HttpEntity entity = response.getEntity();
            content = EntityUtils.toString(entity);
            return content;
        }  catch (Exception e) {
            e.printStackTrace();
        } finally {
            httpClient.close();
        }
        return null;
    }

报错javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

修改代码:新增一个方法,忽略主机名称验证

/**
 * buildSSLCloseableHttpClient:(设置允许所有主机名称都可以,忽略主机名称验证)
 * @author xbq
 * @return
 * @throws Exception
 */
private static CloseableHttpClient buildSSLCloseableHttpClient() throws Exception {
    SSLContext sslContext = new SSLContextBuilder().loadTrustMaterial(null, new TrustStrategy() {
        // 信任所有
        public boolean isTrusted(X509Certificate[] chain, String authType) throws CertificateException {
            return true;
        }
    }).build();
    // ALLOW_ALL_HOSTNAME_VERIFIER:这个主机名验证器基本上是关闭主机名验证的,实现的是一个空操作,并且不会抛出javax.net.ssl.SSLException异常。
    SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(sslContext, new String[] { "TLSv1.2" }, null,
            SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
    return HttpClients.custom().setSSLSocketFactory(sslsf).build();
}

在原代码处调用新增的方法

private String postForAPP1(String token) throws Exception {
        Map<String, Object> param = new HashMap<String, Object>();
        TxnBodyCom txnBodyCom = new TxnBodyCom();
        param.put("txnBodyCom", txnBodyCom);
//        txnCom.setTxnBodyCom(txnBodyCom);
        TxnCommCom txnCommCom = new TxnCommCom();
        txnCommCom.setTRecInPage("10");
        txnCommCom.setTxnIttChnlCgyCode("111111");
        txnCommCom.setTStsTraceId("1111111");
        txnCommCom.setTPageJump("1");
        txnCommCom.setTxnIttChnlId("1111");
        param.put("txnCommCom", txnCommCom);
        JSON.toJSONString(param);

        CloseableHttpClient httpClient = HttpClients.createDefault();
        RequestConfig requestConfig = RequestConfig.custom().setSocketTimeout(300 * 1000)
                .setConnectTimeout(300 * 1000).build();
        // 创建post方式请求对象
        HttpPost post = new HttpPost("https://www.baudu.com");
        post.setConfig(requestConfig);
        // 请求的数据包为raw,设置报文头为Content-Type
        post.addHeader("Content-Type", "application/json;charset=utf-8");
        post.addHeader("C-Tenancy-id", "1111111");
        post.addHeader("Connection", "keep-alive");
        post.addHeader("Referer", "https://www.baidu.com");
        post.addHeader("C-Dynamic-Password-Foruser", token);
        post.addHeader("C-App-Id", "11111111");

        // 装载参数
        StringEntity postingString = new StringEntity(JSON.toJSONString(param), "utf-8");
        post.setEntity(postingString);
        // 执行请求并拿到结果
        HttpResponse response = null;
        String content = null;
        CloseableHttpClient client = null;
        try {
           //调用新方法
            httpClient = buildSSLCloseableHttpClient();
            response = httpClient.execute(post);
            // 判断返回状态是否正常
            int state = response.getStatusLine().getStatusCode();

            // 获取结果实体并返回结果
            org.apache.http.HttpEntity entity = response.getEntity();
            content = EntityUtils.toString(entity);
            return content;
        }  catch (Exception e) {
            e.printStackTrace();
        } finally {
            httpClient.close();
        }
        return null;
    }

人约黄昏月
关注
  • 0
    点赞
  • 3
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
解决Exception in thread “main“ javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.sec
user123name的博客
11-26 4538
访问一个接口,通过postman可以调用但是使用HttpClient无法访问报错误。 Exception in thread “main” javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at
javax.net.ssl.SSLException: java.lang.RuntimeException: Could not generate DH keypair 解决方法总结
08-25
然而,当你遇到“javax.net.ssl.SSLException: java.lang.RuntimeException: Could not generate DH keypair”的错误时,这意味着在建立SSL/TLS连接时,Diffie-Hellman(DH)密钥交换算法遇到了问题。DH是一种非对称...
javax.net.ssl.SSLHandshakeException: sun.security.validator 问题解决,与环境有关
04-03
NULL 博文链接:https://nassir.iteye.com/blog/1112713
证书异常导致:javax.net.ssl.SSLHandshakeException: sun.security.validator
Aikes Blog
10-08 9920
程序访问Https地址时报错处理
解决javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building
最新发布
yyongsheng的博客
06-14 73
usr/lib/jvm/java-8-openjdk-amd64/jre/lib/security/ (和上面其实一样)说明:网址处不需要输入(https://)信息,比如 www.baidu.com,只需域名即可。用httpclient访问https资源时,会出现异常,与环境也有关系,有些机器请求正常。1.windows系统:将生成的jssecacerts文件复制到 jdk的相应路径下即可。在目录下会生成文件jssecacerts,自此认证过程结束。随后服务器会返回认证的主题,发行方,加密方式等信息。
解决远程调用三方接口:javax.net.ssl.SSLHandshakeException报错
qq_38031730的博客
05-08 1万+
最近在对接腾讯会议API接口,在鉴权完成后开始调用对方的接口,在此过程中出现调用报错:javax.net.ssl.SSLHandshakeException
JAVA后端线上环境调用接口出现证书不信任:PKIX path building failed
qq_25568881的博客
09-21 2825
JAVA后端线上环境调用接口出现证书不信任:PKIX path building failed 文章目录JAVA后端线上环境调用接口出现证书不信任:PKIX path building failed前言一、测试验证是否无法调通目标接口二、JDK将证书导入证书库总结 前言 目前市面上,比如阿里云购买的HTTPS证书,在浏览器中是可信任的证书,但是对于JAVA程序而言,可能会出现以下错误: javax.net.ssl.SSLHandshakeException: sun.security.validato
完美解决异常javax.net.ssl.SSLHandshakeException: sun.security.validator.
热门推荐
Mr_Susy的博客
06-18 1万+
使用Java访问https请求exception 网上搜索了好多,主要说明是证书方面的问题,现在汇总网上的解决办法,总结处理两种笔记简单的方法 1.使用浏览器导出证书 使用浏览器访问对应的网站例如 百度(www.baidu.com) 之后按照图片的步骤将证书导出到自己定义的位置 然后把证书复制到%JAVA_HOME%/jre/bin/路径下,即保证证书与keytool.exe文件同目录 进入keytool.exe目录 通过cmd控制台执行导入证书命令 keytool -import -alias
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure的一个解决方案-附件资源
03-05
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure的一个解决方案-附件资源
解决webMagic0.7.3 出现javax.net.ssl.SSLException: Received fatal alert: protocol_version的问题-附件资源
03-02
解决webMagic0.7.3 出现javax.net.ssl.SSLException: Received fatal alert: protocol_version的问题-附件资源
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building……
baiyongliang
03-22 3137
使用场景: java在调用HTTPS是出现以下错误,解决方案如下: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requ...
java访问https报错
lpping90的专栏
09-15 485
转载:https://www.jianshu.com/p/91957f08d9ec 问题如题,参考备份 1,SslUtils import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import javax.net.ssl.HostnameVerifier; import javax.net.ssl.HttpsURLConnection; import javax.net.s
SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed
wl8685的专栏
09-28 699
Nginx配置SSL PKIX
报错sun.security.validator.ValidatorException: PKIX path building failed
sinat_19917631的博客
03-31 1067
在执行webservice的过程中,出现如下异常: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unabl...
Android studio解决 sun.security.validator.ValidatorException PKIX path building failed
Misaki-Mei的博客
09-08 6729
Android studio解决 sun.security.validator.ValidatorException: PKIX path building failed 在使用android studio开发Android, sycn项目时遇到了如下错误 错误信息如下: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security
[已解决]java-sun.security.validator.ValidatorException: PKIX path building failed
Amelia_Liu的博客
10-09 1113
httpclient-4.5.jar 定时发送http包,忽然有一天报错,http证书变更引起的。
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath
weixin_44131922的博客
07-21 2839
原因 https证书 请求为https 缺少安全证书认证 解决方式 若是内部调用,不担心安全问题则直接调整代码如下 httpclients的修改方式 // 修改HTTP client的创建方式 CloseableHttpClient httpClient = null; // 创建Httpclient对象 actionUrl为请求全路径 if (actionUrl.startsWith(HTTPS)) { // 创建一个SSL信任所有证书的httpClient对象 httpClie
javax.net.ssl.sslhandshakeexception: sun.security.validator.validatorexception: pkix path building f
04-12
这个错误通常出现在Java应用程序中,意味着SSL握手过程中存在问题。具体错误信息:sun.security.validator.validatorexception: pkix path building failed,意味着证书验证失败。可能是由于不信任的证书颁发机构或证书过期或证书链不完整等原因导致的。需要查看应用程序的日志以找出具体原因并采取相应措施来解决。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值