Maven编译打包时报“PKIX path building failed”异常

最新推荐文章于 2025-03-26 16:20:46 发布
最新推荐文章于 2025-03-26 16:20:46 发布
阅读量884 收藏 4
点赞数 4
分类专栏: 项目-demo---技术点 文章标签: maven java
原文链接:https://blog.csdn.net/qq_43657722/article/details/137015542
版权

提示:文章写完后,目录可以自动生成,如何生成可参考右边的帮助文档

文章目录

方法1

1.报错信息

在这里插入图片描述

com.google.guava:guava:pom:unknown failed to transfer from https://nexus.app.h5no1.com/repository/maven-public/ during a previous attempt. This failure was cached in the local repository and resolution is not reattempted until the update interval of rpgz has elapsed or updates are forced. Original error: Could not transfer artifact com.google.guava:guava:pom:unknown from/to rpgz (https://nexus.app.h5no1.com/repository/maven-public/): sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Try to run Maven import with -U flag (force update snapshots)

2.InstallCert.java

/*
 * Copyright 2006 Sun Microsystems, Inc.  All Rights Reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 *   - Redistributions of source code must retain the above copyright
 *     notice, this list of conditions and the following disclaimer.
 *
 *   - Redistributions in binary form must reproduce the above copyright
 *     notice, this list of conditions and the following disclaimer in the
 *     documentation and/or other materials provided with the distribution.
 *
 *   - Neither the name of Sun Microsystems nor the names of its
 *     contributors may be used to endorse or promote products derived
 *     from this software without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
 * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
 * THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE COPYRIGHT OWNER OR
 * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
 * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
 * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
 * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
 * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
 * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */
 
import java.io.*;
import java.net.URL;
 
import java.security.*;
import java.security.cert.*;
 
import javax.net.ssl.*;
 
public class InstallCert {
 
    public static void main(String[] args) throws Exception {
    String host;
    int port;
    char[] passphrase;
    if ((args.length == 1) || (args.length == 2)) {
        String[] c = args[0].split(":");
        host = c[0];
        port = (c.length == 1) ? 443 : Integer.parseInt(c[1]);
        String p = (args.length == 1) ? "changeit" : args[1];
        passphrase = p.toCharArray();
    } else {
        System.out.println("Usage: java InstallCert <host>[:port] [passphrase]");
        return;
    }
 
    File file = new File("jssecacerts");
    if (file.isFile() == false) {
        char SEP = File.separatorChar;
        File dir = new File(System.getProperty("java.home") + SEP
            + "lib" + SEP + "security");
        file = new File(dir, "jssecacerts");
        if (file.isFile() == false) {
        file = new File(dir, "cacerts");
        }
    }
    System.out.println("Loading KeyStore " + file + "...");
    InputStream in = new FileInputStream(file);
    KeyStore ks = KeyStore.getInstance(KeyStore.getDefaultType());
    ks.load(in, passphrase);
    in.close();
 
    SSLContext context = SSLContext.getInstance("TLS");
    TrustManagerFactory tmf =
        TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
    tmf.init(ks);
    X509TrustManager defaultTrustManager = (X509TrustManager)tmf.getTrustManagers()[0];
    SavingTrustManager tm = new SavingTrustManager(defaultTrustManager);
    context.init(null, new TrustManager[] {tm}, null);
    SSLSocketFactory factory = context.getSocketFactory();
 
    System.out.println("Opening connection to " + host + ":" + port + "...");
    SSLSocket socket = (SSLSocket)factory.createSocket(host, port);
    socket.setSoTimeout(10000);
    try {
        System.out.println("Starting SSL handshake...");
        socket.startHandshake();
        socket.close();
        System.out.println();
        System.out.println("No errors, certificate is already trusted");
    } catch (SSLException e) {
        System.out.println();
        e.printStackTrace(System.out);
    }
 
    X509Certificate[] chain = tm.chain;
    if (chain == null) {
        System.out.println("Could not obtain server certificate chain");
        return;
    }
 
    BufferedReader reader =
        new BufferedReader(new InputStreamReader(System.in));
 
    System.out.println();
    System.out.println("Server sent " + chain.length + " certificate(s):");
    System.out.println();
    MessageDigest sha1 = MessageDigest.getInstance("SHA1");
    MessageDigest md5 = MessageDigest.getInstance("MD5");
    for (int i = 0; i < chain.length; i++) {
        X509Certificate cert = chain[i];
        System.out.println
            (" " + (i + 1) + " Subject " + cert.getSubjectDN());
        System.out.println("   Issuer  " + cert.getIssuerDN());
        sha1.update(cert.getEncoded());
        System.out.println("   sha1    " + toHexString(sha1.digest()));
        md5.update(cert.getEncoded());
        System.out.println("   md5     " + toHexString(md5.digest()));
        System.out.println();
    }
 
    System.out.println("Enter certificate to add to trusted keystore or 'q' to quit: [1]");
    String line = reader.readLine().trim();
    int k;
    try {
        k = (line.length() == 0) ? 0 : Integer.parseInt(line) - 1;
    } catch (NumberFormatException e) {
        System.out.println("KeyStore not changed");
        return;
    }
 
    X509Certificate cert = chain[k];
    String alias = host + "-" + (k + 1);
    ks.setCertificateEntry(alias, cert);
 
    OutputStream out = new FileOutputStream("jssecacerts");
    ks.store(out, passphrase);
    out.close();
 
    System.out.println();
    System.out.println(cert);
    System.out.println();
    System.out.println
        ("Added certificate to keystore 'jssecacerts' using alias '"
        + alias + "'");
    }
 
    private static final char[] HEXDIGITS = "0123456789abcdef".toCharArray();
 
    private static String toHexString(byte[] bytes) {
    StringBuilder sb = new StringBuilder(bytes.length * 3);
    for (int b : bytes) {
        b &= 0xff;
        sb.append(HEXDIGITS[b >> 4]);
        sb.append(HEXDIGITS[b & 15]);
        sb.append(' ');
    }
    return sb.toString();
    }
 
    private static class SavingTrustManager implements X509TrustManager {
 
    private final X509TrustManager tm;
    private X509Certificate[] chain;
 
    SavingTrustManager(X509TrustManager tm) {
        this.tm = tm;
    }
 
    public X509Certificate[] getAcceptedIssuers() {
        throw new UnsupportedOperationException();
    }
 
    public void checkClientTrusted(X509Certificate[] chain, String authType)
        throws CertificateException {
        throw new UnsupportedOperationException();
    }
 
    public void checkServerTrusted(X509Certificate[] chain, String authType)
        throws CertificateException {
        this.chain = chain;
        tm.checkServerTrusted(chain, authType);
    }
    }
 
}

3.生成证书文件 jssecacerts

在该java文件所在的目录下,打开cmd界面

 `javac InstallCert.java`

在这里插入图片描述
然后执行

  • 例如:博主这里要访问的是清华大学开源镜像网站(https://mirrors.tuna.tsinghua.edu.cn/) 执行
    java InstallCert.java mirrors.tuna.tsinghua.edu.cn
 `java InstallCert.java nexus.app.h5no1.com`

在这里插入图片描述

4.复制 jssecacerts 文件

将 jssecacerts 文件复制到 $JAVA_HOME/jre/lib/security 目录下
$JAVA_HOME 为大家JDK安装的目录
在这里插入图片描述

5. 然后重启Jenkins 或者maven即可

方法2

1.下载证书

在这里插入图片描述
在这里插入图片描述
在这里插入图片描述

2. 导入证书

执行keytool指令

-file后面的文件名修改为自己的。同时修改jdk安装目录下的cacerts文件的位置,注意需要绝对路径才行。

keytool -import -alias subconverter -file "C:\Users\EDY\Desktop\fsdownload\nexus.app.h5no1.crt" -keystore "D:\JDK\jdk1.8.0_121\JDK\jre\lib\security\cacerts" -storepass changeit

keytool -import -alias subconverter -file "C:\Users\EDY\Desktop\fsdownload\ISRG Root X1.crt" -keystore "D:\JDK\jdk1.8.0_121\JDK\jre\lib\security\cacerts" -storepass changeit

在这里插入图片描述
在这里插入图片描述
在这里插入图片描述

删除 别名命令

需要注意的是证书是有截止日期的,过期了需要重新导入。
证书过期了如何再次导入

需要先删除过期的证书,再执行上面的导入指令即可。

keytool -delete -alias subconverter -keystore "D:\JDK\jdk1.8.0_121\JDK\JRE\lib\security\cacerts" -storepass changeit

在这里插入图片描述

Maven使用中PKIX path building failed: unable to find valid certification path to requested target问题解决
拾年一剑 的专栏
03-14 2413
Maven使用中PKIX path building failed:unable to find valid certification path to requested target 解决办法
IDEA编译报错:PKIX path building failed
大数据实验室
02-06 1247
报错信息如下: [ERROR] Failed to execute goal org.apache.maven.plugins:maven-assembly-plugin:2.2-beta-5:single (src-dist) on project assembly-test: Execution src-dist of goal org.apache.maven.plugins:maven-assembly-plugin:2.2-beta-5:single failed: Plugin org.ap
解决PKIX path building failed的问题
热门推荐
qq_34778576的博客
09-09 4万+
解决PKIX path building failed的问题 PKIX path building failed 通俗讲解 通俗的讲,PKIX path building failed 出现的原因是因为自己的Java环境没有相关网站的证书而导致的 PKIX path building failed 具体内容 PKIX的全称为Public-Key Infrastructure (X.509),通过wiki百科我们可以知道X.509是一种证书的标准,这种标准用在很多网络协议,比如TLS/SSL。而TLS/SSL
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException
最新发布
qq_1259799716的博客
03-26 976
相信大家在开发过程中肯定遇到过这样的异常信息这个异常信息的大致意思就是咱们用java发送http请求时,证书无法验证目标网址的证书是否有效。关于这块的原因分析大家请自行百度~
Maven PKIX path building failed 错误提示
HONEY MOOSE
05-18 1753
最近公司的项目突然出现了下面的提示。
maven PKIX path building failed
不积跬步无以至千里
07-14 8997
maven PKIX path building failed1. 问题描述2. 原因3. 解决办法:3.1. 把jar下载过来,然后然后打包maven 仓库3.2. 在idea的maven配置中添加参数 1. 问题描述 项目编译报:maven PKIX path building failed 2. 原因 下载某些jar是不,需要证书 3. 解决办法: 3.1. 把jar下载过来,然后然后打包...
解决:Maven PKIX path building failed
dadao2003的博客
03-24 728
网上查了很多方法都无效。 最后解决: 1、设置File | Settings | Build, Execution, Deployment | Build Tools | Maven | Runner, VM options -Dmaven.multiModuleProjectDirectory=$MAVEN_HOME -Dmaven.wagon.http.ssl.insecure=true -D...
升级Android 2024.1.1 Studio后 报gradle build error: PKIX path building failed解决方法
qq_41637249的博客
08-12 882
gradle build error: PKIX path building failed
使用Maven时出现“jssecacerts PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilde”错
苏美尔人的天空
03-19 9544
方法一:忽略SSL证书检查在Maven命令后加入参数“-Dmaven.wagon.http.ssl.insecure=true -Dmaven.wagon.http.ssl.allowall=true”方法二. 生成JDK证书并导入JRE security中1. 生成JDK证书import javax.net.ssl.*; import java.io.*; import java.securit...
Maven编译过程中下载失败报错PKIX:unable to find valid certification path to requested target
猫不夜行的博客
01-08 1644
编译Flink源码时报如下错误,通过错误结合网上一些解决方法看得出来是因为访问网站需要证书验证,因此解决方法就是在网站上下载下来证书,再安装到jdk的jre/lib/security中。 Downloading: https://repo.hortonworks.com/content/repositories/jetty-hadoop/com/microsoft/azure/azure-mgm...
Maven 环境搭建和ecplise配置
07-11
**Maven环境搭建** Maven是一个强大的项目管理工具,它帮助Java开发者管理和构建项目,统一项目的构建过程,...在开发过程中,Maven会自动处理项目的依赖关系,编译,测试,打包,部署等步骤,大大提高了开发效率。
maven报错PKIX path building failed
Awsl_yq的博客
05-11 381
maven报错PKIX path building failed 修改Importing中的运行参数,添加下面的运行参数 -Dmaven.multiModuleProjectDirectory=$MAVEN_HOME -Dmaven.wagon.http.ssl.insecure=true -Dmaven.wagon.http.ssl.allowall=true -Dmaven.wagon.http.ssl.ignore.validity.dates=true 修改Runner中的运行参数,添加下面的
maven报错pkix path build failed异常记录,maven依赖拉取问题。
L1511768722的博客
01-10 632
之前的工作基本都是在外网环境中的,所以也是第一次遇见这个问题。产生的主要的原因是拉取的是私库的依赖包,自己的Java环境没有相关网站的证书而导致。解决的方案就是在下面截图滴地方加上-Dmaven.wagon.http.ssl.insecure=true -Dmaven.wagon.http.ssl.allowall=true。
idea maven PKIX path building failed
weixin_42463873的博客
05-23 227
idea使用maven导入jar包, 打包项目时的错. 解决办法, 使maven忽略关于SSL证书的验证. -Dmaven.wagon.http.ssl.insecure=true -Dmaven.wagon.http.ssl.allowall=true -Dmaven.wagon.http.ssl.ignore.validity.dates=true ———————————————— 版权声明:本文为CSDN博主「傲慢二锅头」的原创文章,遵循CC 4.0 BY-SA版权协议,转载请附.
Maven神坑之PKIX path building failed终极解决办法
我的博客
10-14 1万+
项目编译报:maven PKIX path building failed 原因:下载某些jar需要证书。 本地使用ailiyun镜像进行mvn install/package/complie等一系列操作时, 发现并不能正常运行, 通常会报PKIX path building failed的错误。如下: 解决方案:mvn命令执行时忽略证书检查,不受站点限制 Idea的File -->settings中,设置Maven的importing和Runner参数,忽略证书检查即可。(Eclipse下解决原理
maven 命令执行时报PKIX path building failed
zona
01-22 822
感谢前辈分享, 参考链接:https://dotblogs.com.tw/grayyin/2018/08/14/120458 使用idea构建了springboot项目, parent 默认是最新版本2.2.4.RELEASE, 但是版本号报错, 也就是说maven没有下载到这个版本的相关信息, 去maven中央仓库确认了下该版本信息确实存在, 执行了maven 的clean命令, 发现下载相...
maven PKIX path building failed
jsp_will的博客
02-26 5825
最近用idea创建maven web 项目 死活创建不出来 报的错是:maven PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path   在网上找了很多都是关于maven远程库的修改 我修改了 阿里...
dbeaver连接hive报错:sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException
03-11
### DBeaver 连接 Hive 安全证书验证错误解决方案 当遇到 `sun.security.validator.ValidatorException` 和 `PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException` 错误时,这通常意味着 Java 应用程序无法找到有效的认证路径来验证服务器的 SSL/TLS 证书。对于 DBeaver 连接到 Hive 的情况,可以采取以下措施: #### 修改 JVM 参数配置 为了使 DBeaver 能够信任特定的 CA 或自签名证书,在启动 DBeaver 之前设置环境变量或者修改其快捷方式中的目标字段,加入如下参数[^1]: ```bash -Djavax.net.ssl.trustStore=/path/to/trusted/cacerts.jks \ -Djavax.net.ssl.trustStorePassword=changeit ``` #### 导入所需证书到 cacerts 文件 如果问题是由于缺少某些根证书引起的,则可以通过导入这些缺失的证书至 JDK/JRE 自带的信任存储文件 (cacerts) 来解决问题。具体操作命令如下所示[^3]: ```bash keytool -importcert -file /path/to/your_certificate.cer \ -alias your_alias_name \ -keystore "$JAVA_HOME/jre/lib/security/cacerts" \ -storepass changeit ``` #### 配置 Maven 设置(适用于通过 Maven 构建项目) 如果是基于 Maven 开发的应用,并且遇到了类似的依赖项下载失败的情况,那么还需要确保本地计算机上的 Maven 已经被正确设置了全局级别的 trustStore 属性。 另外需要注意的是,有时可能是因为网络代理的原因导致 HTTPS 请求受阻而引发此类异常;此时应检查是否有合适的 HTTP(S)_PROXY 变量已定义并生效于当前运行环境中。 以上方法应该可以帮助解决大部分由 PKIX Path Building Failed 引起的问题。不过值得注意的是,安全性和合规性始终是最重要的考虑因素之一,因此建议仅限于开发测试环境下使用上述手段绕过严格的SSL握手流程。
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值