Tomcat：java.io.IOException：密钥库被篡改，或者密码不正确

问题

配置了Tomcat的SSL，在启动Tomcat服务器时，遇到以下异常：

14 Disember 2010 4:18:31 PM org.apache.tomcat.util.net.jsse.JSSESocketFactory getStore
SEVERE: Failed to load keystore type JKS with path 
c:\keystore due to Keystore was tampered with, or password was incorrect

java.io.IOException: Keystore was tampered with, or password was incorrect
        at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:771)
        at sun.security.provider.JavaKeyStore$JKS.engineLoad(JavaKeyStore.java:38)
        at java.security.KeyStore.load(KeyStore.java:1185)
        //...
        at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289)
        at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414)
Caused by: java.security.UnrecoverableKeyException: Password verification failed
        at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:769)
        ... 20 more

解

Tomcat的“ <Connector> ”中的密码与您分配给密钥库的密码不匹配。

文件：$ Tomcat \ conf \ server.xml

//...
  <!-- Define a SSL HTTP/1.1 Connector on port 8443
         This connector uses the JSSE configuration, when using APR, the 
         connector should be using the OpenSSL style configuration
         described in the APR documentation -->

 <Connector port="8443" //...
	keystorePass="password here must same with your keystore's password" />

  //...

要解决此问题，请确保两者都使用相同的密码，并且密码也区分大小写🙂

参考

1. 使Tomcat支持SSL和https连接

标签： ssl tomcat

翻译自: https://mkyong.com/tomcat/tomcat-java-io-ioexception-keystore-was-tampered-with-or-password-was-incorrect/