登录
当前位置: 首页 > 知识库问答 >
问题:

SSLSocket异常尝试发送到SSLServerSocket时发生握手错误

弓胜泫
2023-03-14

这是我第一次处理SSLSockets,

public class SSocket implements Runnable{    
    SSLServerSocket ss;
    DataOutputStream doo;
    DataInputStream di;

    public SSocket(){
        try {
                System.setProperty("javax.net.ssl.keyStore",System.getProperty("user.dir")+"/src/cacerts.jks");
                System.setProperty("javax.net.ssl.keyStorePassword","ja142236");

            SSLServerSocketFactory sf = (SSLServerSocketFactory) SSLServerSocketFactory.getDefault();

            ss = (SSLServerSocket) sf.createServerSocket(2149);
            //ss.setSoTimeout(5000);

        } catch (IOException ex) {
            Logger.getLogger(SSocket.class.getName()).log(Level.SEVERE, null, ex);
        }
    }

    @Override
    public void run() {
        SSLSocket s;
        try {        

                while(true){
                        System.out.println("Waiting Client Message!");

                        s = (SSLSocket) ss.accept();
                        System.out.println("Acceptted!"+s.getRemoteSocketAddress());
                        s.close();
                 }

         } catch (IOException ex) {
                 System.out.println(ex.getMessage());
         }finally{
            try {
                ss.close();
            } catch (IOException ex) {
                Logger.getLogger(SSocket.class.getName()).log(Level.SEVERE, null, ex);
            }
        }
    }

    public static void main(String[] args){
        SSocket ss = new SSocket();
        ss.run();
    }

}

public class SS {
    public SS() throws KeyStoreException, NoSuchAlgorithmException, CertificateException, KeyManagementException{
        try {
                /*
                System.setProperty("javax.net.ssl.trustStore", System.getProperty("user.dir")+"/src/cacerts.jks");
                System.setProperty("javax.net.ssl.trustStorePassword", "ja142236"); 
            */
                KeyStore ks = KeyStore.getInstance("JKS");
                ks.load(new FileInputStream(System.getProperty("user.dir")+"/src/cacerts.jks"), ("ahmed149").toCharArray());
                TrustManagerFactory kmf = TrustManagerFactory.getInstance("SunX509");
                kmf.init(ks);
                SSLContext sslcontext = SSLContext.getInstance("SSLv3");
                sslcontext.init(null, kmf.getTrustManagers(), null);

                SSLSocketFactory sf = (SSLSocketFactory) sslcontext.getSocketFactory();
                SSLSocket s = (SSLSocket) sf.createSocket("localhost",2149);
                s.startHandshake();

                DataOutputStream doo = new DataOutputStream(s.getOutputStream());

            DataInputStream di = new DataInputStream(s.getInputStream());

            doo.writeUTF(" Hiii From Client");

            System.out.println(di.readUTF());

            doo.close();
            di.close();
                        s.close();


        } catch (UnknownHostException ex) {
            Logger.getLogger(SS.class.getName()).log(Level.SEVERE, null, ex);
        } catch (IOException ex) {
            Logger.getLogger(SS.class.getName()).log(Level.SEVERE, null, ex);
        }
    }

    public static void main(String[] args) throws KeyStoreException, NoSuchAlgorithmException, CertificateException, KeyManagementException{
        new SS();
    }
}

谢谢你,

编辑1:我启用了调试,这是调试:

    keyStore is : 
keyStore type is : jks
keyStore provider is : 
init keystore
init keymanager of type SunX509
trustStore is: D:\Java\learn\Chat\src\cacerts.jks
trustStore type is : jks
trustStore provider is : 
init truststore
adding as trusted cert:
  Subject: EMAILADDRESS=admin@server.com, CN=localhost, OU=Inc., O=server, L=CA, ST=KFS, C=US
  Issuer:  EMAILADDRESS=admin@server.com, CN=localhost, OU=Inc., O=server, L=CA, ST=KFS, C=US
  Algorithm: RSA; Serial number: 0x821112e48bd394ff
  Valid from Fri Jun 14 15:54:57 EET 2013 until Sat Jun 14 15:54:57 EET 2014

trigger seeding of SecureRandom
done seeding SecureRandom
Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA
Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA
Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
Allow unsafe renegotiation: true
Allow legacy hello messages: true
Is initial handshake: true
Is secure renegotiation: false
Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
Ignoring unavailable cipher suite: TLS_ECDH_anon_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_DH_anon_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
Ignoring unavailable cipher suite: TLS_DH_anon_WITH_AES_256_CBC_SHA256
Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA
Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 for SSLv3
Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 for SSLv3
Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256 for SSLv3
Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 for SSLv3
Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 for SSLv3
Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 for SSLv3
Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 for SSLv3
Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1
Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1
Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256 for TLSv1
Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1
Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 for TLSv1
Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1
Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 for TLSv1
Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DH_anon_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_RSA_WITH_NULL_SHA256
%% No cached client session
*** ClientHello, TLSv1
RandomCookie:  GMT: 1354403376 bytes = { 85, 58, 178, 64, 15, 222, 86, 91, 231, 60, 74, 9, 113, 221, 77, 62, 87, 208, 53, 100, 37, 103, 21, 16, 172, 127, 133, 167 }
Session ID:  {}
Cipher Suites: [TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_RC4_128_SHA, SSL_RSA_WITH_RC4_128_SHA, TLS_ECDH_ECDSA_WITH_RC4_128_SHA, TLS_ECDH_RSA_WITH_RC4_128_SHA, TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_RC4_128_MD5, TLS_EMPTY_RENEGOTIATION_INFO_SCSV, TLS_ECDH_anon_WITH_AES_128_CBC_SHA, TLS_DH_anon_WITH_AES_128_CBC_SHA, TLS_ECDH_anon_WITH_RC4_128_SHA, SSL_DH_anon_WITH_RC4_128_MD5, TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA, SSL_DH_anon_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_ECDSA_WITH_NULL_SHA, TLS_ECDHE_RSA_WITH_NULL_SHA, SSL_RSA_WITH_NULL_SHA, TLS_ECDH_ECDSA_WITH_NULL_SHA, TLS_ECDH_RSA_WITH_NULL_SHA, TLS_ECDH_anon_WITH_NULL_SHA, SSL_RSA_WITH_NULL_MD5, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_DH_anon_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_DH_anon_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA, SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA, TLS_KRB5_WITH_RC4_128_SHA, TLS_KRB5_WITH_RC4_128_MD5, TLS_KRB5_WITH_3DES_EDE_CBC_SHA, TLS_KRB5_WITH_3DES_EDE_CBC_MD5, TLS_KRB5_WITH_DES_CBC_SHA, TLS_KRB5_WITH_DES_CBC_MD5, TLS_KRB5_EXPORT_WITH_RC4_40_SHA, TLS_KRB5_EXPORT_WITH_RC4_40_MD5, TLS_KRB5_EXPORT_WITH_DES_CBC_40_SHA, TLS_KRB5_EXPORT_WITH_DES_CBC_40_MD5]
Compression Methods:  { 0 }
Extension elliptic_curves, curve names: {secp256r1, sect163k1, sect163r2, secp192r1, secp224r1, sect233k1, sect233r1, sect283k1, sect283r1, secp384r1, sect409k1, sect409r1, secp521r1, sect571k1, sect571r1, secp160k1, secp160r1, secp160r2, sect163r1, secp192k1, sect193r1, sect193r2, secp224k1, sect239k1, secp256k1}
Extension ec_point_formats, formats: [uncompressed]
***
[write] MD5 and SHA1 hashes:  len = 215
0000: 01 00 00 D3 03 01 51 BB   8E 30 55 3A B2 40 0F DE  ......Q..0U:.@..
0010: 56 5B E7 3C 4A 09 71 DD   4D 3E 57 D0 35 64 25 67  V[.<J.q.M>W.5d%g
0020: 15 10 AC 7F 85 A7 00 00   6C C0 09 C0 13 00 2F C0  ........l...../.
0030: 04 C0 0E 00 33 00 32 C0   07 C0 11 00 05 C0 02 C0  ....3.2.........
0040: 0C C0 08 C0 12 00 0A C0   03 C0 0D 00 16 00 13 00  ................
0050: 04 00 FF C0 18 00 34 C0   16 00 18 C0 17 00 1B C0  ......4.........
0060: 06 C0 10 00 02 C0 01 C0   0B C0 15 00 01 00 09 00  ................
0070: 15 00 12 00 1A 00 03 00   17 00 08 00 14 00 11 00  ................
0080: 19 00 20 00 24 00 1F 00   23 00 1E 00 22 00 28 00  .. .$...#...".(.
0090: 2B 00 26 00 29 01 00 00   3E 00 0A 00 34 00 32 00  +.&.)...>...4.2.
00A0: 17 00 01 00 03 00 13 00   15 00 06 00 07 00 09 00  ................
00B0: 0A 00 18 00 0B 00 0C 00   19 00 0D 00 0E 00 0F 00  ................
00C0: 10 00 11 00 02 00 12 00   04 00 05 00 14 00 08 00  ................
00D0: 16 00 0B 00 02 01 00                               .......
main, WRITE: TLSv1 Handshake, length = 215
[Raw write]: length = 220
0000: 16 03 01 00 D7 01 00 00   D3 03 01 51 BB 8E 30 55  ...........Q..0U
0010: 3A B2 40 0F DE 56 5B E7   3C 4A 09 71 DD 4D 3E 57  :.@..V[.<J.q.M>W
0020: D0 35 64 25 67 15 10 AC   7F 85 A7 00 00 6C C0 09  .5d%g........l..
0030: C0 13 00 2F C0 04 C0 0E   00 33 00 32 C0 07 C0 11  .../.....3.2....
0040: 00 05 C0 02 C0 0C C0 08   C0 12 00 0A C0 03 C0 0D  ................
0050: 00 16 00 13 00 04 00 FF   C0 18 00 34 C0 16 00 18  ...........4....
0060: C0 17 00 1B C0 06 C0 10   00 02 C0 01 C0 0B C0 15  ................
0070: 00 01 00 09 00 15 00 12   00 1A 00 03 00 17 00 08  ................
0080: 00 14 00 11 00 19 00 20   00 24 00 1F 00 23 00 1E  ....... .$...#..
0090: 00 22 00 28 00 2B 00 26   00 29 01 00 00 3E 00 0A  .".(.+.&.)...>..
00A0: 00 34 00 32 00 17 00 01   00 03 00 13 00 15 00 06  .4.2............
00B0: 00 07 00 09 00 0A 00 18   00 0B 00 0C 00 19 00 0D  ................
00C0: 00 0E 00 0F 00 10 00 11   00 02 00 12 00 04 00 05  ................
00D0: 00 14 00 08 00 16 00 0B   00 02 01 00              ............
[Raw read]: length = 5
0000: 15 03 01 00 02                                     .....
[Raw read]: length = 2
0000: 02 28                                              .(
main, READ: TLSv1 Alert, length = 2
main, RECV TLSv1 ALERT:  fatal, handshake_failure
main, called closeSocket()
main, handling exception: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
Jun 14, 2013 11:42:08 PM chat.SS <init>
SEVERE: null
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
    at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
    at sun.security.ssl.Alerts.getSSLException(Alerts.java:154)
    at sun.security.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:1961)
    at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1077)
    at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312)
    at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339)
    at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323)
    at chat.SS.<init>(SS.java:44)
    at chat.SS.main(SS.java:69)

共有1个答案

孔正文
2023-03-14

您没有服务器的证书。

javax.net.ssl.keystore属性应该引用一个密钥存储区,该密钥存储区将您的证书包含在具有相应私钥的条目中。

 类似资料:
  • 尝试解析LocalDateTime时发生异常

    问题内容: 我正在使用以下时间戳格式: 以下方法可以正常工作: 而且,当我使用该格式字符串传递时间戳时,它返回,例如: 然后,我需要再次从该字符串映射到时间戳,本质上是相反的操作。我知道我可以使用和及其方法,但是如果可能的话,我宁愿坚持使用样式格式。 我写了这段代码(相当hacky),它适用于某些格式,但不适用于特定格式: 在第二部分,它失败了。 堆栈跟踪: 有没有一种更简单的方法可以在不利用我的

  • 尝试登录时发生JDBC异常

    我还更新了相关的XML文件,其中提到了spring security bean。我在用Postgres数据库。而且,在我的系统中,一切都运行良好,当我将这些更改提交到QA环境时,登录不工作。我在登录到应用程序时检查了日志,它显示了一些错误。这是日志 还有,如何检查ubuntu服务器中的PostgreSQL JDBC驱动程序版本?有人能帮我解决这个问题吗?谢谢

  • 尝试保存图像时发生异常

    问题内容: 启动Java应用程序时,尝试保存图像时出现异常。但是,在Eclipse中,一切正常。该应用程序是使用fatjar构建的,并且还选择了必需的库(jar_imageio.jar和ij.jar)进行导出。 我尝试使用ImageIO和ImageJ: a。)ImageIO: b。)ImageJ: 问题答案: 正如@Victor说的,我认为您应该看看 我昨天才遇到这个问题,这很棘手。有类似的问题在

  • 使用Imageloader加载图像时发生SSL握手异常

    首先,我想说我是stackoverflow的新手,也是Android的新手,所以如果我犯了什么错误,请给我一些最好的建议,帮助我成为最好的程序员。 所以我的问题是在标题中定义的,但我可以在这里解释更多。 我正在使用ImageLoader,并且正在从URL https://s3.ap-south-1.amazonaws.com/aolmislogs/buyer/payment_proof/1.jpg

  • 使用Java mail发送邮件时发生握手异常时远程主机关闭连接

    我正在使用Java Mail API Ver。1.4.2用于在基于JSF1.2-Spring的Web应用程序中发送电子邮件。我正在使用不安全的SMTP连接发送邮件。此电子邮件配置独立运行良好。还使用JUnit4测试验证了这个实用程序,并且我能够使用非安全连接发送邮件。 javax.mail.MessagingException:异常读取响应;嵌套异常为:javax.net.ssl.sslhands

  • Docker:尝试连接时发生错误

    问题内容: 在Windows上安装了Docker,并额外安装了2个Oracle VM VirualBox和Kitematic。我在Windows 10 PC中禁用了Hyper-V。现在的问题是我无法从DockerHub下载任何Docker映像,甚至我都无法以如下方式运行命令 两端都显示以下错误。 尝试连接时发生错误:获取 http:// localhost:2375 / v1.21 / info

相关问答

从json发送日期字段时发生异常尝试使用自定义JsonSerializer(Jackson)时发生Stackoverflow异常尝试更改CGLib代理字段值时发生异常尝试从json字符串获取数据时发生异常Integer在尝试修改时引发NullPointer异常

相关文章

调用MessageDigest.getInstance(“ SHA256”)时发生异常尝试安排计时器时发生IllegalStateException尝试插入SQLite时发生NullPointerException-Android遇到mysql:=运算符时发生休眠异常尝试使用Java解析JSON字符串时发生错误

相关阅读

快手测试开发一面快手游戏开发笔试快手测试开发二面快手测试开发一面捕获握手

相关工具

Mac 开发配置手册输入发送工具条邮件发送Document文件蓝牙接收与发送数据生日小助手

相关文档

ThinkCMF6 开发手册FreeBSD 开发手册GitBook 开发者手册BUI-Weex 开发手册ThinkCMF 开发手册 v5.0
快捷导航: 新手教程 算法原理 架构设计 Java进阶 数据库进阶 大厂专栏 面试经验 编程笔记 编程问答 所有专题 文档资料 工具软件 电子书籍 小牛导航
在线工具: 房贷计算器 个税计算器 Linux命令查询 Json格式化 正则表达式 颜色转换 AES加解密 SHA1加密 MD5加密 毒鸡汤 字数统计 随机密码生成 进制转换 Base64编解码 励志句子
Copyright © 2019-2024 小牛知识库@xnip.cn. All Rights Reserved.