我有一个使用wiremock作为模拟服务器的集成测试。
我按如下方式设置了我的服务器:
@ClassRule
public static WireMockClassRule wireMockRule = new WireMockClassRule(wireMockConfig()
.port(9998)
.httpsPort(7777)
.needClientAuth(true)
.trustStorePath(WireMockConfiguration.getTruststorePath())
.trustStorePassword("changeit")
.keystorePath(WireMockConfiguration.getTruststorePath())
.keystorePassword("changeit")
);
// we only use a single instance of the server across all tests in the class
@Rule
public WireMockClassRule instanceRule = wireMockRule;
其中WireMockConfiguration是:
public static String getTruststorePath() {
return resolveFile("server.truststore");
}
public static String getKeystorePath() {
return resolveFile("server.jks");
}
private static String resolveFile(final String file) {
final URL resource = WireMockConfiguration.class.getClassLoader().getResource(file);
if (resource == null) {
throw new IllegalStateException("Could not resolve property");
}
return resource.getFile();
}
这在我的本地Windows机器上运行正常,但是当我在CentOS上的jenkins服务器上运行时,我得到了例外:
javax.net.ssl.SSLHandshakeException: no cipher suites in common
at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1949)
at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:302)
at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:292)
at sun.security.ssl.ServerHandshaker.chooseCipherSuite(ServerHandshaker.java:1035)
at sun.security.ssl.ServerHandshaker.clientHello(ServerHandshaker.java:738)
at sun.security.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:221)
at sun.security.ssl.Handshaker.processLoop(Handshaker.java:979)
at sun.security.ssl.Handshaker.process_record(Handshaker.java:914)
at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1062)
at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1403)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1387)
at org.mortbay.jetty.security.SslSocketConnector$SslConnection.run(SslSocketConnector.java:708)
at com.github.tomakehurst.wiremock.jetty6.DelayableSslSocketConnector$1.run(DelayableSslSocketConnector.java:52)
at org.mortbay.thread.QueuedThreadPool$PoolThread.run(QueuedThreadPool.java:582)
我按如下方式生成了密钥库和信任库:
keytool -genkey -alias server-alias -keyalg RSA -keypass changeit -storepass changeit -keystore server.jks
keytool -genkey -alias client-alias -keyalg RSA -keypass changeit -storepass changeit -keystore client.jks
keytool -export -alias client-alias -storepass changeit -file client.cer -keystore client.jks
keytool -import -v -trustcacerts -alias client-alias -file client.cer -keystore server.truststore -keypass changeit -storepass changeit
答案 0 :(得分:1)
问题实际上在规则配置
中 .trustStorePath(WireMockConfiguration.getTruststorePath())
.trustStorePassword("changeit")
.keystorePath(WireMockConfiguration.getTruststorePath())
我将truststore设置为信任库和密钥库。