stackoom
  简体   繁体   中英

Javamail and gmail, getting "PKIX path building failed"

 原文  2020-03-19 03:05:54       java/ eclipse/ gmail/ jakarta-mail

Question

I'm trying to run a standalone Java class that will connect to Gmail as imap. Here is the code excerpt (username and pass masked)


    Properties props = System.getProperties();

    props.setProperty("mail.store.protocol", "imap"); 

    System.out.println("getting session");

    Session session = Session.getInstance(props);

    System.out.println("getting store");

    Store store = session.getStore("imaps");

    System.out.println("connecting");

    store.connect("imap.gmail.com", "xxxxx", "yyyyyy");

When trying to run, it displays the "connecting" message but throws this

javax.mail.MessagingException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target;
  nested exception is:
    javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

I had done the following steps:

  • a) (from a Linux instance): openssl s_client -connect imap.gmail.com:993
  • b) from the above output copied the certificate into a pem file, then ran this on Windows 
keytool -keystore cacerts -import -trustcacerts -alias gmailcert -file c:\gmailcert.pem -storepass changeit

The above step was in this folder C:\\Program Files\\Amazon Corretto\\jdk11.0.6_10\\lib\\security

In Eclipse, where I'm running the class, I set these jvm args

-Djavax.net.ssl.trustStore="c:/Program Files/Amazon Corretto/jdk11.0.6_10/lib/security/cacerts"
-Djavax.net.ssl.trustStorePassword="changeit"

I also tried

-Djavax.net.ssl.trustStore="c:\Program Files\Amazon Corretto\jdk11.0.6_10\lib/security\cacerts"
-Djavax.net.ssl.trustStorePassword="changeit"

and

-Djavax.net.ssl.trustStore="c:\\Program Files\\Amazon Corretto\\jdk11.0.6_10\\lib\\security\\cacerts"
-Djavax.net.ssl.trustStorePassword="changeit"

I also referred to this site , to make sure I'm importing the gmail cert correctly. I then ran an SSLPoke utility and get the same error, so it's something with the way I'm getting and importing the cert.

What am I missing?

1 answers

solution1
 0  2020-03-20 20:08:38

Most likely you have an anti-virus program that's intercepting the connection. It would be better if you could configure it to allow a direct connection from your program. Lacking that, see the JavaMail FAQ for help with the certificate.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question PKIX path building failed: Error in JavaMail : PKIX path building failed unable to find valid certification path to requested target PKIX path building failed in Centos 7 PKIX path building failed in Eclipse SSLHandshakeException: PKIX path building failed SOAP - PKIX path building failed getting sun.security.validator.ValidatorException: PKIX path building failed: Getting PKIX path building failed, ValidatorException while requesting a url PKIX path building failed when getting data from URL getting PKIX path build failed
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM