调用 Https服务报 SunCertPathBuilderException: unable to find valid certification path to requested target

最新推荐文章于 2025-05-21 11:15:54 发布

xue_15543619

最新推荐文章于 2025-05-21 11:15:54 发布

阅读量1.6k

点赞数 11

CC 4.0 BY-SA版权

文章标签： https 网络协议 http

本文链接：https://blog.youkuaiyun.com/weixin_38605648/article/details/135650034

本文讲述了Java中SSLHandshakeException的常见原因——Java自带安全证书不受信任。提供了解决方案，通过自定义HostnameVerifier和创建TrustManager绕过SSL验证，以解决证书路径问题。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

报错报文：

java.lang.Exception: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

问题原因：Java自带的安全证书不受信任，在代码里面的实现时忽略证书，绕开SSL验证

解决代码如下：

public static void ignoreSsl() throws Exception {
    HostnameVerifier hv = new HostnameVerifier() {
        public boolean verify(String urlHostName, SSLSession session) {
            return true;
        }
    };
    trustAllHttpsCertificates();
    HttpsURLConnection.setDefaultHostnameVerifier(hv);
}
public static void trustAllHttpsCertificates() throws Exception {
    TrustManager[] trustAllCerts = new TrustManager[1];
    TrustManager tm = new miTM();
    trustAllCerts[0] = tm;
    SSLContext sc = SSLContext.getInstance("SSL");
    sc.init(null, trustAllCerts, null);
    HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
}
static class miTM implements TrustManager, X509TrustManager {
    public X509Certificate[] getAcceptedIssuers() {
        return null;
    }

    public void checkServerTrusted(X509Certificate[] certs, String authType)
            throws CertificateException {
        return;
    }

    public void checkClientTrusted(X509Certificate[] certs, String authType)
            throws CertificateException {
        return;
    }
}