java https x509trustmanager,java – 尝试连接到Web套接字服务器时,继续获取No X509TrustManager实现可用错误...

最新推荐文章于 2024-04-29 06:35:49 发布
最新推荐文章于 2024-04-29 06:35:49 发布
阅读量1.9k 收藏
点赞数
文章标签: java https x509trustmanager

我有以下代码用于使用安全websockets连接到我的

Java应用程序中的Web套接字服务器.

private boolean openConnection(boolean tried) {

String sslFile =

ConfigMgr.getValue(Constants.SSL_CFG_NAME, "sslfile");

String sslPassword =

ConfigMgr.getValue(Constants.SSL_CFG_NAME, "sslpassword");

try {

System.setProperty("javax.net.ssl.trustStore",

//sslFile);

System.setProperty("javax.net.ssl.trustStorePassword", sslPassword);

System.out.println(System.getProperty("javax.net.ssl.trustStore"));

System.out.println(System.getProperty("javax.net.ssl.trustStorePassword"));

} catch (Exception e) {

if (!tried) {

logger.error("unable to get certificates", e);

}

return false;

}

try {

WebSocketContainer container = ContainerProvider

.getWebSocketContainer();

container.connectToServer(this, new URI(websocketServer));

} catch (Exception e) {

// only log error trying to connection to web application first

// time

if (!tried) {

logger.error("error while trying to connect daemon to websocket"

+ " server", e);

}

return false;

}

return true;

}

我可以从我的印刷声明中看到

System.setProperty("javax.net.ssl.trustStorePassword", sslPassword);

System.out.println(System.getProperty("javax.net.ssl.trustStore"));

那个正确的密码和证书(在这种情况下是一个.cer)与内容

-----BEGIN CERTIFICATE-----

MIIDmTCCAoGgAwIBAgIEB/pKmDANBgkqhkiG9w0BAQsFADB9MQswCQYDVQQGEwJV

UzELMAkGA1UECBMCUEExGDAWBgNVBAcTD0ZvcnQgV2FzaGluZ3RvbjEXMBUGA1UE

ChMOTWlrcm9zIFN5c3RlbXMxFzAVBgNVBAsTDk1pa3JvcyBTeXN0ZW1zMRUwEwYD

VQQDEwxKYXNvbiBSaWNsZXMwHhcNMTYwNjIyMTcwOTQ0WhcNMTYwOTIwMTcwOTQ0

WjB9MQswCQYDVQQGEwJVUzELMAkGA1UECBMCUEExGDAWBgNVBAcTD0ZvcnQgV2Fz

aGluZ3RvbjEXMBUGA1UEChMOTWlrcm9zIFN5c3RlbXMxFzAVBgNVBAsTDk1pa3Jv

cyBTeXN0ZW1zMRUwEwYDVQQDEwxKYXNvbiBSaWNsZXMwggEiMA0GCSqGSIb3DQEB

AQUAA4IBDwAwggEKAoIBAQCsha/dfnWIibmtySZuE8H+3AOa8/QuARKsFgmZJmWZ

ZErjlzN6liUO1Q9pzYXoka69tiIOw0KDWwGAHCAK8mjNpdcs9XiYq3QMZjNAUhqP

rRU5oDn9jwCwQnpepBhH6uiMaBcvrMsvLTaD4HvwoVyMROEhIWywBYMdHk86gcGr

ALz+iMhE8017CAA2n/35fqwDjxeGxDgY3Ove/fTKoeA+ItKOwsYeFZUeej9omTz+

UcdXJ6fu312At/Sh7YZpgP3LsX+rMfdD9sHn80UTy46UoT5UNW0Me40+S47/oh4H

VeOeR5XpcBPHnqbAJAvPAqD/sF9xbvhESwfoSkMB26drAgMBAAGjITAfMB0GA1Ud

DgQWBBQ7YV0yIawkjCCp0crz52BGwMPHnzANBgkqhkiG9w0BAQsFAAOCAQEAdmwo

8ZXZMxKzyfolVKj2UQBzkeSies133nRns0jFbkzm8N4lNtcWiShfLtlTQAuUZNMl

JK7Eax+weLq7tNMZyBdLWse8E4oe8m3XY/Xe7oQGs2EzdlHVZk7JuDHU63mC33cz

xvoNutE+y1Zonce9WaxACuNNMuxyYTVg6yqz/psjYE2YOajc1MmXjI38FkfmQ1bL

ByeNEvnLT1IcQ0OmaSuk2ESj144y/EtkN9/GKFOTPjSRL3zIStNBytn7WNlFV/ch

qaF/eOJRQMlHDosX40IrkHHIoc/pbTKYmjoreC/+biMKc0gUk+EN/uBrcJrVRFnl

dXTNJe6/sNzvkTc/IA==

-----END CERTIFICATE-----

正确设置.

但是当我运行我的代码时,在container.connectToServer(这个,新的URI(websocketServer))时会打印以下错误;跑了

javax.websocket.DeploymentException: The HTTP request to initiate the WebSocket connection failed

at org.apache.tomcat.websocket.WsWebSocketContainer.connectToServer(WsWebSocketContainer.java:434) ~[tomcat7-websocket.jar:7.0.68]

at org.apache.tomcat.websocket.WsWebSocketContainer.connectToServer(WsWebSocketContainer.java:184) ~[tomcat7-websocket.jar:7.0.68]

at

cored.web.CoreWebSocket.openConnection(CoreWebSocket.java:278) [cored.jar:3.0.10.160712122615]

at cored.web.CoreWebSocket.establishConnection(CoreWebSocket.java:1150) [cored.jar:3.0.10.160712122615]

at

cored.web.CoreWebSocket.access$100(CoreWebSocket.java:85) [cored.jar:3.0.10.160712122615]

at

cored.web.CoreWebSocket$2.execute(CoreWebSocket.java:138) [cored.jar:3.0.10.160712122615]

at utils.AThread.run(AThread.java:51)

[utils.jar:3.0.10.160712122615]

Caused by: java.util.concurrent.ExecutionException: javax.net.ssl.SSLHandshakeException: General SSLEngine problem

at org.apache.tomcat.websocket.AsyncChannelWrapperSecure$WrapperFuture.get(AsyncChannelWrapperSecure.java:511) ~[tomcat7-websocket.jar:7.0.68]

at org.apache.tomcat.websocket.WsWebSocketContainer.connectToServer(WsWebSocketContainer.java:379) ~[tomcat7-websocket.jar:7.0.68]

... 6 more

Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem

at sun.security.ssl.Handshaker.checkThrown(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.SSLEngineImpl.checkTaskThrown(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.SSLEngineImpl.writeAppRecord(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.SSLEngineImpl.wrap(Unknown Source) ~[?:1.8.0_92]

at javax.net.ssl.SSLEngine.wrap(Unknown Source) ~[?:1.8.0_92]

at org.apache.tomcat.websocket.AsyncChannelWrapperSecure$WebSocketSslHandshakeThread.run(AsyncChannelWrapperSecure.java:371) ~[tomcat7-websocket.jar:7.0.68]

Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem

at sun.security.ssl.Alerts.getSSLException(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.SSLEngineImpl.fatal(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker.fatalSE(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker.fatalSE(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker.processLoop(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker$1.run(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker$1.run(Unknown Source) ~[?:1.8.0_92]

at java.security.AccessController.doPrivileged(Native Method) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker$DelegatedTask.run(Unknown Source) ~[?:1.8.0_92]

at org.apache.tomcat.websocket.AsyncChannelWrapperSecure$WebSocketSslHandshakeThread.run(AsyncChannelWrapperSecure.java:397) ~[tomcat7-websocket.jar:7.0.68]

Caused by: java.security.cert.CertificateException: No X509TrustManager implementation available

at sun.security.ssl.DummyX509TrustManager.checkServerTrusted(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker.processLoop(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker$1.run(Unknown Source) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker$1.run(Unknown Source) ~[?:1.8.0_92]

at java.security.AccessController.doPrivileged(Native Method) ~[?:1.8.0_92]

at sun.security.ssl.Handshaker$DelegatedTask.run(Unknown Source) ~[?:1.8.0_92]

at org.apache.tomcat.websocket.AsyncChannelWrapperSecure$WebSocketSslHandshakeThread.run(AsyncChannelWrapperSecure.java:397) ~[tomcat7-websocket.jar:7.0.68]

我知道我使用的.cer文件没有损坏,因为它也在tomcat webserver上使用并且没有问题.

可能导致此No X509TrustManager实现可用错误的原因是什么?

盐选健康必修课
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
java https x509trustmanager,java 没有X509TrustManager实现可用
weixin_31043675的博客
03-19 2297
我正在调用AWS API,我一直遇到以下错误Exception in thread "main" com.amazonaws.AmazonClientException: Unable to execute HTTP request: java.security.cert.CertificateException: No X509TrustManager implementation availa...
X509证书信任管理器类的实现及应用
legend_x的专栏
05-20 3213
X509证书信任管理器类的实现及应用   (2011-09-20 10:27:18) 转载▼ 标签:  杂谈   在JSSE中,证书信任管理器类就是实现了接口X509TrustManager的类。我们可以自己实现该接口,让它信任我们指定的证书。   接口X509TrustManager有下述三个公有的方法需要我们实现
如何解决APP抓包问题【网络安全】_app 防止抓包
最新发布
2401_84263282的博客
04-29 634
/ 建议不要使用自己实现X509TrustManager,而是使用默认的X509TrustManager。// 创建一个 TrustManager 仅把 Keystore 中的证书 作为信任的锚点。// 用 TrustManager 初始化一个 SSLContext。
SsX509TrustManager
08-26
android 访问https 发送请求前 SsX509TrustManager.allowAllSSL();
去除SSL认证后报错java.security.cert.CertificateException:No X509TrustManager
sanqianqiqi的博客
04-11 323
在调用第三方api(Https)出现报错,接口需要SSL证书认证(事后记录,我为什么没截图啊啊啊啊啊啊啊)
Java11实现X509TrustManager报错SSLHandshakeException分析及解决办法
JeanneYan的博客
07-17 3562
最近在学习用java实现HTTPS协议,Client用HttpsURLConnection来发起访问。传给SSLContext的TrustManager是我自己实现的一个简单的X509TrustManager,按照以往经验将checkClientTrusted和checkServerTrusted重写为空函数,getAcceptedIssuers方法直接返回null。本以为不会再有认证服务器错误,但依然报错如下: Exception in thread "main" javax.net.ssl...
X509TrustManager信任SSL证书
热门推荐
LI_AINY的博客
07-02 3万+
做个笔记 private Discovery getTrustDiscovery() throws KeyManagementException, NoSuchAlgorithmException, NoSuchProviderException, IOException { // 对用户提供的标识符执行发现 Discovery dd = new Discovery(); // ...
Java中的SSL及HTTPS协议实例源码.zip
08-29
2. **创建SSLServerSocketFactory**:使用配置好的SSLContext创建`SSLServerSocketFactory`,这是服务器端用来创建安全套接字的工厂。 3. **设置服务器端监听**:使用`SSLServerSocketFactory`创建`SSLServerSocket...
基于Java的中的SSL及HTTPS协议实例源码.zip
06-17
3. **创建SSLServerSocket/SSLSocket**:使用`SSLContext.getServerSocketFactory().createServerSocket()`或`SSLContext.getSocketFactory().createSocket()`创建安全的服务器套接字或客户端套接字。 4. **SSL连接...
基于Java的两个通用安全模块的设计与实现.rar
10-21
包括`SSLSocketFactory`和`SSLContext`,它们用于创建安全套接字并配置信任管理器。对于自定义信任库,可以创建一个继承自`TrustManager`的类,以满足特定的证书验证规则。 3. **接口设计**:为了方便其他开发者...
java源码:Java中的SSL及HTTPS协议实例源码.rar
10-13
然后,我们可以使用这个SSLContext来初始化ServerSocketFactory或SSLSocketFactory,这些工厂类用于创建支持SSL的服务器套接字或客户端套接字。例如: ```java ServerSocketFactory ssf = sslContext....
Java中的SSL及HTTPS协议实例源码.rar
05-22
2. **创建SSLSocketFactory**:使用`SSLContext`创建一个`SSLSocketFactory`,它是SSL连接的核心,负责建立安全的套接字连接。 3. **HTTPSURLConnection**:Java内置的`HttpsURLConnection`类用于处理HTTPS请求,它...
SSL.rar_JAVA SSL _ssl_ssl java
09-24
5. 配置服务器套接字:将SSLEngine应用于服务器套接字,以便在接收连接使用SSL。 SSLClient.java文件则可能展示了SSL客户端的实现,包括: 1. 初始化SSLContext:与服务器端类似,但通常不需要加载私钥和证书,...
java_ssl.rar_JAVA SSL _The Client_ssl_ssl java
09-23
`SSLSocketFactory`和`SSLServerSocketFactory`用于创建对应的套接字。同,`KeyManager`和`TrustManager`用于管理服务器的证书和客户端的信任策略。 在`www.pudn.com.txt`文件中,可能包含了关于如何配置和使用...
java实现读取证书访问https接口
07-11
- 获取`SSLSocketFactory`,`SSLSocketFactory sslSocketFactory = sslContext.getSocketFactory()`,用于创建安全的套接字连接。 3. **配置HTTPS连接**: - 创建`HttpsURLConnection`对象,如`...
ssl_java.zip
05-28
`SSLSocketFactory`是创建安全套接层套接字的工厂,而`SSLSocket`是实际的SSL连接对象。`KeyManager`处理客户端的证书和私钥,而`TrustManager`负责验证服务器的证书。 双向认证的Java实现涉及以下步骤: 1. 准备...
【漏洞修复】自定义实现X509TrustManager子类中..
技术的学习与积累是个技术活
07-27 1万+
漏洞说明 /** * 覆盖java默认的证书验证 */ private static final TrustManager[] TRUSTALLCERTS = new TrustManager[]{ new X509TrustManager() { public java.security.cert.X509Certificate[] getAcceptedIssuers() { r
java使用https实现单向客户端认证服务端,x.509证书。
a62929367的博客
07-20 3421
java使用https实现单向客户端认证服务端,x.509证书。
313、自定义实现X509TrustManager子类,安全漏洞
lanxuan1993的博客
09-02 1509
借鉴:https://blog.csdn.net/SCHOLAR_II/article/details/107616324 https://www.apiref.com/java11-zh/java.base/javax/net/ssl/X509TrustManager.html https://juejin.cn/post/6844903445040742408#heading-11 https://blog.csdn.net/zhouxinxin250/article/details/811649

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值