stackoom
  简体   繁体   中英

I am getting the error handshake_failure when using jersey client to call api with HTTPS. I have turned off the server certificate validity check

 原文  2016-05-18 19:29:51       java/ api/ https/ ssl-certificate/ sslhandshakeexception

Question

I am getting the error handshake_failure when using jersey client to call api with HTTPS. If the site is hosted as HTTP then it is working fine. I have turned off the server certificate validity check as well when using HTTPS.

@Test
public void GetMember2(){
    try{
        System.setProperty("https.protocols", "TLSv1,TLSv1.1,TLSv1.2");

        Date today1 = new Date(); // default window is 1 hour
        String stringToday1 = new SimpleDateFormat("EEE, dd MMM yyyy HH:mm:ss zzz", Locale.US).format(today1);

        Client client = Client.create(configureClient());

        WebResource webResource = client.resource("https://test.abcd.net/Members/72771583886/promotions?startDate=12122015");

        ClientResponse response = webResource.accept("application/xml")
                .type("application/xml")
                .header("Date", stringToday1)
                .get(ClientResponse.class);

        if (response.getStatus() != 200) {
           throw new RuntimeException("Failed : HTTP error code : "
            + response.getStatus());
        }

        String output = response.getEntity(String.class);

        System.out.println("Output from Server .... \n");
        System.out.println(output);

      } catch (Exception e) {
        e.printStackTrace();
      }
}

public static ClientConfig configureClient() {
    TrustManager[ ] certs = new TrustManager[ ] {
            new X509TrustManager() {
                public X509Certificate[] getAcceptedIssuers() {
                    return null;
                }
                public void checkServerTrusted(X509Certificate[] chain, String authType)
                        throws CertificateException {
                }
                public void checkClientTrusted(X509Certificate[] chain, String authType)
                        throws CertificateException {
                }
            }
    };
    SSLContext ctx = null;
    try {
        ctx = SSLContext.getInstance("TLS");
        ctx.init(null, certs, new SecureRandom());
    } catch (java.security.GeneralSecurityException ex) {
    }
    HttpsURLConnection.setDefaultSSLSocketFactory(ctx.getSocketFactory());

    ClientConfig config = new DefaultClientConfig();
    try {
        config.getProperties().put(HTTPSProperties.PROPERTY_HTTPS_PROPERTIES, new HTTPSProperties(
            new HostnameVerifier() {
                public boolean verify(String hostname, SSLSession session) {
                    return true;
                }
            }, 
            ctx
        ));
    } catch(Exception e) {
    }

    return config;
}

Error: com.sun.jersey.api.client.ClientHandlerException: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure at com.sun.jersey.client.urlconnection.URLConnectionClientHandler.handle(URLConnectionClientHandler.java:155) at com.sun.jersey.api.client.Client.handle(Client.java:652) at com.sun.jersey.api.client.WebResource.handle(WebResource.java:682) at com.sun.jersey.api.client.WebResource.access$200(WebResource.java:74) at com.sun.jersey.api.client.WebResource$Builder.get(WebResource.java:509) at Frameworks.Prototype2.GetLoyaltyMember2(Prototype2.java:106) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source)

3 answers

solution1
 1  2016-12-29 19:01:16

暂时打开 Java 网络库的调试以查看您遇到的 SSL 错误类型: -Djavax.net.debug=all

solution2
 0  2016-05-18 19:40:08

Handshake can fail for various reasons and not only for certificate validation problems. It could be for:

  • Not sharing same cipher suites
  • Not sharing SSL versions
  • Certificate validation
  • Intent to change TLS version
  • Others

The best way to figure out what your problem is is to install Wireshark and see the handshake messages. Then based on the SSL alert message sent from server to client you can have more information on the SSL handshake failure, where specifically it happened.

This link might also help: Received fatal alert: handshake_failure through SSLHandshakeException

solution3
 0  2020-12-31 10:25:14

From the oracle website download jce_policy-8.zip and extract it to obtain the following 2 JAR-files.

local_policy.jar US_export_policy.jar

Update the above 2 policies in your JVM ie, in my case /Library/Java/JavaVirtualMachines/jdk1.8.0_102.jdk/Contents/Home/jre/lib/security

And it should work.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Tomcat handshake_failure when https call from the tomcat server I am getting handshake_failure while calling https URL in my program Why am I getting handshake_failure with Java SSL cert? SSL handshake_failure using jersey-apache-client-1.18 Why do I get a handshake_failure error when I try to get more than 1 Document in my class using Jsoup? Webservice access with client auth: handshake_failure java https client throws “Received fatal alert: handshake_failure” with JDK 1.5 but works on JDK1.6 Java - HTTPS GET call fails from EC2 instance with handshake_failure, works locally “Received fatal alert: handshake_failure” when trying to connect to https web service Got handshake_failure using java/netty, but succeeded with curl for the same https url
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM