我想使用SSL连接连接到我们的大学服务器。
我在配置文件夹中有以下文件:
- client.policy
- uni_keystore.jks
- uni_server.cer
- uni_truststore.jks
client.policy文件包含以下内容:
grant {
permission java.security.AllPermission ;
};
建立了与服务器的连接,但是当我尝试从服务器读取时,我得到了异常:
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException:
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException:
unable to find valid certification path to requested target
这就是我连接服务器的方式(我修剪了try / catch块来缩短代码):
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
SSLSocketFactory factory = (SSLSocketFactory)SSLSocketFactory.getDefault();
String configPath = "C:/eclipse/workspace/uniproject/";
Properties systemProps = System.getProperties();
systemProps.put( "javax.net.ssl.trustStore", configPath+"uni_truststore.jks");
systemProps.put( "javax.net.ssl.keyStore", configPath+"uni_keystore.jks");
System.setProperties(systemProps);
s = (SSLSocket) factory.createSocket(UNI_ADDRESS, UNI_PORT);
我通过VPN连接到服务器。
这就是我尝试阅读的方式(我修剪了try / catch块来缩短代码):
InputStream istream = s.getInputStream();
BufferedReader reader = new BufferedReader( new InputStreamReader(istream) );
String data;
do {
// this lines throws exception
data = reader.readLine();
System.out.println(data);
}
while(data != null);
我没有对代码中的client.policy和uni_server.cer文件做任何事情。这可能是问题吗?我错过了什么?
感谢。
另外两件事:
- 我安装了认证(在这篇文章之前,我还没有)
- 我添加了一行:
systemProps.put( "javax.net.ssl.keyStorePassword", "pass");
答案 0 :(得分:2)
尝试重新排序您的通话,如下所示:
String configPath = "C:/eclipse/workspace/uniproject/";
Properties systemProps = System.getProperties();
systemProps.put( "javax.net.ssl.trustStore", configPath+"uni_truststore.jks");
systemProps.put( "javax.net.ssl.keyStore", configPath+"uni_keystore.jks");
System.setProperties(systemProps);
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
SSLSocketFactory factory = (SSLSocketFactory)SSLSocketFactory.getDefault();
s = (SSLSocket) factory.createSocket(UNI_ADDRESS, UNI_PORT);