Trust anchor for certification path not found.异常解决方法。

一、异常详情：

在进行OkHttp访问网络时，总是出现下面的错误。

java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.

 

---

二、问题原因：

       由于项目的https.bks证书不是正规的CA签发的证书，而是二级代理商等签发的证书，验证不通过造成的！！！

 

---

三、解决方案：

       忽略https的证书校验 

       具体做法：需要在获取sslParams时，修改并自定义TrustManager为trustAllCerts
再主类里面加入该方法

 

---

1、JAVA 版本： 

public static void handleSSLHandshake() {
        try {
            TrustManager[] trustAllCerts = new TrustManager[]{new X509TrustManager() {
                public X509Certificate[] getAcceptedIssuers() {
                    return new X509Certificate[0];
                }

                @Override
                public void checkClientTrusted(X509Certificate[] certs, String authType) {
                }

                @Override
                public void checkServerTrusted(X509Certificate[] certs, String authType) {
                }
            }};

            SSLContext sc = SSLContext.getInstance("TLS");
            // trustAllCerts信任所有的证书
            sc.init(null, trustAllCerts, new SecureRandom());
            HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
            HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
                @Override
                public boolean verify(String hostname, SSLSession session) {
                    return true;
                }
            });
        } catch (Exception ignored) {
        }
    }

 

---

2、Kotlin 版本：

fun handleSSLHandshake() {
        try {
            var trustAllCerts:Array<TrustManager> = arrayOf<TrustManager>(object: X509TrustManager{
                override fun checkClientTrusted(p0: Array<out X509Certificate>?, p1: String?) {

                }

                override fun checkServerTrusted(p0: Array<out X509Certificate>?, p1: String?) {

                }

                override fun getAcceptedIssuers(): Array<X509Certificate?> {
                    val arrayOfNulls = arrayOfNulls<X509Certificate?>(0)
                    return arrayOfNulls
                }

            })

            val sc: SSLContext = SSLContext.getInstance("TLS")
            // trustAllCerts信任所有的证书
            sc.init(null, trustAllCerts, SecureRandom())
            HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory())

            HttpsURLConnection.setDefaultHostnameVerifier(object : HostnameVerifier{
                override fun verify(p0: String?, p1: SSLSession?): Boolean {
                    return true
                }

            })

        }catch (e:Exception){

        }
    }

 

---

3、然后再oncreate()方法里面调用

handleSSLHandshake()

 

---

       此坑遇到次数实在是多，查了大量博客，才找到好的解决方法，由此转载修改分享给大家，希望能够帮助到大家。