我在我的服务器上运行一个java Web应用程序,它在内部调用一个URL:
https://xxx.xx.x.xx:9443/services/spm/spm
此网址使用自签名证书,其中CN is localhost.localdomain
因此,我在代码中进行了更改以忽略证书验证,如下面的代码所示 并且工作正常。
HostnameVerifier hv = new HostnameVerifier() {
public boolean verify(String urlHostName, SSLSession session) {
log.info("Host Name Warning:" + urlHostName);
return true;
}
};
try {
trustAllHttpsCertificates();
} catch (Exception ex) {
log.error(ex.getMessage());
}
HttpsURLConnection.setDefaultHostnameVerifier(hv);
----
----
private static void trustAllHttpsCertificates() throws Exception {
// Create a trust manager that does not validate certificate chains:
TrustManager[] trustAllCerts = new TrustManager[1];
TrustManager tm = new miTM();
trustAllCerts[0] = tm;
SSLContext sc = SSLContext.getInstance("SSL");
sc.init(null, trustAllCerts, null);
HttpsURLConnection.setDefaultSSLSocketFactory(
sc.getSocketFactory());
}
public static class miTM implements TrustManager,
X509TrustManager {
public X509Certificate[] getAcceptedIssuers() {
return null;
}
public boolean isServerTrusted(
X509Certificate[] certs) {
return true;
}
public boolean isClientTrusted(
X509Certificate[] certs) {
return true;
}
public void checkServerTrusted(
X509Certificate[] certs, String authType)
throws CertificateException {
}
public void checkClientTrusted(
X509Certificate[] certs, String authType)
throws CertificateException {
}
}
但是,我的问题是它会随机运行一段时间(1到5天,比这个时间多一些),之后会抛出异常:
java.io.IOException: HTTPS hostname wrong: should be <xxx.xx.x.xx>
at sun.net.www.protocol.https.HttpsClient.checkURLSpoofing(Unknown Source)
at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown Source)
at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.getOutputStream(Unknown Source)
at com.sun.net.ssl.internal.www.protocol.https.HttpsURLConnectionOldImpl.getOutputStream(Unknown Source)
at Info.YatraPayIVRDetails.processRequest(YatraPayIVRDetails.java:173)
at Info.YatraPayIVRDetails.doGet(YatraPayIVRDetails.java:405)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:617)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:845)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Unknown Source)
服务器端是否有为此URL提供服务的更改? 如果我从webapps中删除我的.war文件并重新启动Apache Tomcat并再次过去,则Exception消失,应用程序再次开始正常工作。
这种情况一次又一次地发生,为什么会发生这种情况?
任何人都可以帮助我,提前谢谢。