devbox
小小林熬夜学编程
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

【解决】Caused by: javax.net.ssl.SSLHandshakeException: PKIX path building failed

作者:小小林熬夜学编程 | 2024-04-26 08:02:15

【解决】Caused by: javax.net.ssl.SSLHandshakeException: PKIX path building failed

问题原因:

Java8及高版本以上的版本在源应用程序不信任目标应用程序的证书,因为在源应用程序的JVM信任库中找不到该证书或证书链。也就是目标站点启用了HTTPS 而缺少安全证书时出现的异常

解决方案:

我使用的是忽略证书验证

  1. public class Base64Util {
  2.  
  3.     public static String getBase64FromUrl(String fileUrl) {
  4.         InputStream inputStream = null;
  5.         byte[] data = null;
  6.         ByteArrayOutputStream swapStream = null;
  7.         HttpsURLConnection conn = null;
  8.         try {
  9.             URL url = new URL(fileUrl);
  10.             //判断当前文件url是否是https
  11.             if (fileUrl.contains("https:")){
  12.                 //是https
  13.                 //绕过证书
  14.                 SSLContext context = createIgnoreVerifySSL();
  15.                 conn = (HttpsURLConnection) url.openConnection();
  16.                 conn.setSSLSocketFactory(context.getSocketFactory());
  17.                 inputStream = conn.getInputStream();
  18.             }else {
  19.                 //当前链接是http
  20.                 inputStream =  url.openConnection().getInputStream();
  21.             }
  22.  
  23.             swapStream = new ByteArrayOutputStream();
  24.             byte[] buff = new byte[100];
  25.             int rc = 0;
  26.             while ((rc = inputStream.read(buff, 0, 100)) > 0) {
  27.                 swapStream.write(buff, 0, rc);
  28.             }
  29.             data = swapStream.toByteArray();
  30.         } catch (Exception e) {
  31.             e.printStackTrace();
  32.         } finally {
  33.             IOUtils.closeQuietly(inputStream);
  34.             IOUtils.closeQuietly(swapStream);
  35.         }
  36.         return new String(Base64.encodeBase64(data));
  37.     }
  38.  
  39.     //绕过SSL、TLS证书
  40.     public static SSLContext createIgnoreVerifySSL() throws NoSuchAlgorithmException, KeyManagementException {
  41.         SSLContext sc = SSLContext.getInstance("TLS");
  42.         // 实现一个X509TrustManager接口,用于绕过验证,不用修改里面的方法
  43.         X509TrustManager trustManager = new X509TrustManager() {
  44.             @Override
  45.             public void checkClientTrusted(
  46.                     java.security.cert.X509Certificate[] paramArrayOfX509Certificate,
  47.                     String paramString) throws CertificateException {
  48.             }
  49.  
  50.             @Override
  51.             public void checkServerTrusted(
  52.                     java.security.cert.X509Certificate[] paramArrayOfX509Certificate,
  53.                     String paramString) throws CertificateException {
  54.             }
  55.  
  56.             @Override
  57.             public java.security.cert.X509Certificate[] getAcceptedIssuers() {
  58.                 return null;
  59.             }
  60.         };
  61.  
  62.         sc.init(null, new TrustManager[]{trustManager}, null);
  63.         return sc;
  64.     }
  65. }

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/小小林熬夜学编程/article/detail/489868
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号