PKIX path building failed: sun.security.provide...

最新推荐文章于 2024-03-20 13:55:31 发布
最新推荐文章于 2024-03-20 13:55:31 发布
阅读量239 收藏
点赞数
文章标签: java python
原文链接:https://my.oschina.net/u/1157906/blog/140690
版权

2019独角兽企业重金招聘Python工程师标准>>> hot3.png

在执行webservice的过程中,出现如下异常:

javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: 
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: 
unable to find valid certification path to requested target

这是缺少安全证书时出现的异常,解决方案就是将你要访问的webservice的安全认证证书导入到客户端即可。以下是获取安全证书的一种方法

1,写一个程序专门获取安全证书,参考InstallCert.java

2.执行 java InstallCert hostname 比如

java InstallCert 192.168.1.137:8443

会看到如下信息:

java InstallCert ecc.fedora.redhat.com
Loading KeyStore /usr/jdk/instances/jdk1.5.0/jre/lib/security/cacerts...
Opening connection to ecc.fedora.redhat.com:443...
Starting SSL handshake...

javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1476)
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:174)
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:168)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:846)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:106)
at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:495)
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:433)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:815)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1025)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1038)
at InstallCert.main(InstallCert.java:63)
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:221)
at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:145)
at sun.security.validator.Validator.validate(Validator.java:203)
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:172)
at InstallCert$SavingTrustManager.checkServerTrusted(InstallCert.java:158)
at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(SSLContextImpl.java:320)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:839)
... 7 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:236)
at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:194)
at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:216)
... 13 more

Server sent 2 certificate(s):

1 Subject CN=ecc.fedora.redhat.com, O=example.com, C=US
   Issuer CN=Certificate Shack, O=example.com, C=US
   sha1    2e 7f 76 9b 52 91 09 2e 5d 8f 6b 61 39 2d 5e 06 e4 d8 e9 c7 
   md5     dd d1 a8 03 d7 6c 4b 11 a7 3d 74 28 89 d0 67 54

2 Subject CN=Certificate Shack, O=example.com, C=US
   Issuer CN=Certificate Shack, O=example.com, C=US
   sha1    fb 58 a7 03 c4 4e 3b 0e e3 2c 40 2f 87 64 13 4d df e1 a1 a6 
   md5     72 a0 95 43 7e 41 88 18 ae 2f 6d 98 01 2c 89 68

Enter certificate to add to trusted keystore or 'q' to quit: [1]
3.输入1,然后直接回车,会在相应的目录下产生一个名为‘jssecacerts’的证书。将证书copy到$JAVA_HOME/jre/lib/security目录下,或者通过以下方式

System.setProperty("javax.net.ssl.trustStore", "D:\\UTA\\DOC_E_Health_XML\\Keystore\\jssecacerts

转载于:https://my.oschina.net/u/1157906/blog/140690

weixin_34383618
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
解决PKIX path building failed的问题
03-17
NULL 博文链接:https://mengyang.iteye.com/blog/575671
SSL.7z,解决PKIX path building failed 的问题
03-10
PKIX path building failed 的问题。解决本地环境中报错 PKIX path building failed 的问题。 其中有产生证书的代码,将运行产生的证书放在文档中指定位置即可
解决PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException
热门推荐
悲伤的小霉的博客
05-29 6万+
再使用腾讯云接入短信SDK的时候,运行项目发现报错 PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException 错误原因:这是由于javaSSL证书不信任造成的。网上搜了搜,解决办法有很多,一种是手动导入证书到本地的信任库,这种我看教程都比较复杂,没有弄好,于是尝试了,别人的另一种方法,信任SSL证书。 解决方法 1、创建utils类。 import java.security.cert.
报错 | PKIX path building failed: ...SunCertPathBuilderException:unable to find valid certification...
野生猿林仔的博客
07-03 2万+
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target的解决方案。
解决 PKIX path building failed: && unable to find valid certification path to requested target
最新发布
qq_43406318的博客
03-20 1463
java 项目 访问 https url 时报错。PKIX path building failed: && unable to find valid certification path to requested target
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to fin
技匠而已
05-28 1万+
异常: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target。摘要:java访问Https接口获取数据异常。有些电脑环境可以运行,有些环境不能运行。无法找到到请求目标的有效认证路径。
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilder
weixin_46028606的博客
05-02 5344
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilder
使用HttpClient发送Https请求时,出现异常PKIX path building failed: sun.security.provider.certpath.SunCertPathBuil
qq_2908411009的博客
08-25 1万+
使用HttpClient发送Https请求时,出现异常为: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 出现这个异常的原因为,客户端向服务器发送htt...
jssecacerts
05-18
Java\jar 1.8.0_141\lib\ext\里面缺少了一个安全凭证jssecacerts证书文件,通过运行下面类可以生成证书,将生成的证书放在Java\jar 1.8.0_141\lib\ext\这个目录下,重启编译器就可以解决。
解决PKIX path building failed的问题的AbstractCasProtocolUrlBasedTicketValidator类
04-28
CAS默认走https,需要安装证书,但是自定义的证书貌似得不到信任,报PKIX path building failed。则可以修改源码来屏蔽错误。
PKIX path building failed
12-07
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Jsoup爬取缺少安全证书异常
qq_42897733的博客
05-21 769
项目场景: 抓取https网站数据失败 问题描述: 出现异常: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested t
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException解决方法
master_JP的博客
07-26 5728
在本地环境调用远程接口正常,当部署到Linux测试环境后出现如下错误。 org.springframework.web.client.ResourceAccessException: I/O error on GET request for "https://www.***.com/***": sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCert
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException
weixin_41671907的博客
03-03 4472
一般遇到这种问题,原因基本就是在使用http时,url为Https,访问的时候存在证书验证。解决方法:只需要改变一下httpclient的创建方式就可以解决。
Java https 解决PKIX path building failed问题(信任所有证书)
王鹤霖的专栏 三人行必有我师
04-23 3510
因为某些时候不能每次都手动的导入证书非常麻烦。
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath
振华OPPO的博客世界
11-30 1万+
由于JVM默认信任证书不包含该目标网站的SSL证书,导致无法建立有效的信任链接。所以我们将原先的google()和jcenter()仓库替换为国内的仓库。然后重新Sync项目,成功开始下载依赖。
解决:PKIX path building failed: sun.security.provider.cert path.SunCertPathBuilderException
harden_no1的博客
09-22 2019
解决:PKIX path building failed: sun.security.provider.cert path.SunCertPathBuilderException
PKIX path building failed: sun.security.provider.certpath.
01-28
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderExceptionJava中的一个错误,表示构建PKIX路径失败,无法找到有效的证书路径。这个错误通常发生在使用SSL连接时,由于Java不信任SSL证书导致的。 解决这个问题的方法有多种,其中一种是手动导入证书到本地的信任库。这种方法比较复杂,需要按照一定的步骤进行操作。另一种方法是信任SSL证书,可以通过以下步骤解决该问题: 1. 创建一个TrustManager,用于信任所有的SSL证书。可以使用X509TrustManager接口的实现类,如下所示: ```java import javax.net.ssl.X509TrustManager; import java.security.cert.CertificateException; import java.security.cert.X509Certificate; public class TrustAllManager implements X509TrustManager { @Override public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException { } @Override public void checkServerTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException { } @Override public X509Certificate[] getAcceptedIssuers() { return new X509Certificate[0]; } } ``` 2. 在使用SSL连接之前,将TrustManager设置为信任所有SSL证书。可以使用以下代码片段实现: ```java import javax.net.ssl.HttpsURLConnection; import javax.net.ssl.SSLContext; import javax.net.ssl.TrustManager; // 创建SSL上下文 SSLContext sslContext = SSLContext.getInstance("TLS"); // 创建TrustManager数组,只包含一个TrustAllManager TrustManager[] trustManagers = {new TrustAllManager()}; // 初始化SSL上下文 sslContext.init(null, trustManagers, null); // 设置默认的SSLSocketFactory和HostnameVerifier HttpsURLConnection.setDefaultSSLSocketFactory(sslContext.getSocketFactory()); HttpsURLConnection.setDefaultHostnameVerifier((hostname, session) -> true); ``` 通过以上步骤,你可以解决PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException错误。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值