java - 即使我已经添加了证书,如何修复 javax.net.ssl.SSLHandshakeException
问题描述
我正在编写一个脚本来控制我的灯,并且因为我很懒,所以通过电子邮件进行通信(我知道它运行得相当快,因为它曾经在 python 上运行,但由于某些不同的原因我正在用 java 编写它)知道这个问题我是否一直收到javax.net.ssl.SSLHandshakeException错误并且我尝试了此溢出页面但即使我添加了受信任的证书它也不起作用并且我一直收到相同的错误以下是我的代码、完整错误以及显示我拥有证书的图片添加
import java.util.Properties;
import javax.mail.Folder;
import javax.mail.Message;
import javax.mail.MessagingException;
import javax.mail.NoSuchProviderException;
import javax.mail.Session;
import javax.mail.Store;
public class test {
public static void check(String host, String storeType, String user,
String password)
{
try {
//create properties field
Properties properties = new Properties();
properties.put("mail.pop3.host", host);
properties.put("mail.pop3.port", "995");
properties.put("mail.pop3.starttls.enable", "true");
Session emailSession = Session.getDefaultInstance(properties);
//create the POP3 store object and connect with the pop server
Store store = emailSession.getStore("pop3s");
store.connect(host, user, password);
//create the folder object and open it
Folder emailFolder = store.getFolder("INBOX");
emailFolder.open(Folder.READ_ONLY);
// retrieve the messages from the folder in an array and print it
Message[] messages = emailFolder.getMessages();
System.out.println("messages.length---" + messages.length);
for (int i = 0, n = messages.length; i < n; i++) {
Message message = messages[i];
System.out.println("---------------------------------");
System.out.println("Email Number " + (i + 1));
System.out.println("Subject: " + message.getSubject());
System.out.println("From: " + message.getFrom()[0]);
System.out.println("Text: " + message.getContent().toString());
}
//close the store and folder objects
emailFolder.close(false);
store.close();
} catch (NoSuchProviderException e) {
e.printStackTrace();
} catch (MessagingException e) {
e.printStackTrace();
} catch (Exception e) {
e.printStackTrace();
}
}
public static void main(String[] args) {
String host = "pop.gmail.com";// change accordingly
String mailStoreType = "pop3";
String username = "EMAIL";// change accordingly
String password = "PASSWORD";// change accordingly
check(host, mailStoreType, username, password);
}
}
错误
javax.mail.MessagingException: Connect failed;
nested exception is:
javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)
at com.sun.mail.pop3.POP3Store.protocolConnect(POP3Store.java:160)
at javax.mail.Service.connect(Service.java:291)
at javax.mail.Service.connect(Service.java:172)
at test.check(test.java:28)
at test.main(test.java:68)
Caused by: javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)
at java.base/sun.security.ssl.HandshakeContext.<init>(HandshakeContext.java:172)
at java.base/sun.security.ssl.ClientHandshakeContext.<init>(ClientHandshakeContext.java:98)
at java.base/sun.security.ssl.TransportContext.kickstart(TransportContext.java:238)
at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:434)
at java.base/sun.security.ssl.SSLSocketImpl.ensureNegotiated(SSLSocketImpl.java:904)
at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:995)
at java.base/java.io.BufferedInputStream.fill(BufferedInputStream.java:244)
at java.base/java.io.BufferedInputStream.read(BufferedInputStream.java:263)
at java.base/java.io.DataInputStream.readLine(DataInputStream.java:519)
at com.sun.mail.pop3.Protocol.simpleCommand(Protocol.java:359)
at com.sun.mail.pop3.Protocol.<init>(Protocol.java:101)
at com.sun.mail.pop3.POP3Store.getPort(POP3Store.java:213)
at com.sun.mail.pop3.POP3Store.protocolConnect(POP3Store.java:156)
... 4 more
Process finished with exit code 0
Java.安全
这是您删除 TLS1 并离开 TSL 1.1 时的错误
Exception in thread "main" java.lang.NoClassDefFoundError: javax/activation/DataSource
at com.sun.mail.pop3.POP3Folder.createMessage(POP3Folder.java:326)
at com.sun.mail.pop3.POP3Folder.getMessage(POP3Folder.java:307)
at javax.mail.Folder.getMessages(Folder.java:943)
at test.check(test.java:35)
at test.main(test.java:68)
Caused by: java.lang.ClassNotFoundException: javax.activation.DataSource
at java.base/jdk.internal.loader.BuiltinClassLoader.loadClass(BuiltinClassLoader.java:636)
at java.base/jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(ClassLoaders.java:182)
at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:519)
... 5 more
解决方案
根据日志,此阶段的问题与验证服务器身份所需的客户端缺少证书无关。在您的情况下,SSL 握手过程中需要协议或密码套件不匹配的问题。
没有合适的协议(协议被禁用或密码套件不合适)
正如我所看到的,您使用的是最新版本的 java,其中对旧版本 TLS 协议的支持(例如TLSv1和TLSv1.1默认情况下已禁用),因此您可以通过从配置文件jdk.tls.disabledAlgorithms中的安全属性中删除已禁用的选项来启用它们。java.security
jdk.tls.disabledAlgorithms=SSLv3, TLSv1, TLSv1.1, RC4, DES, MD5withRSA,
DH keySize < 1024, EC keySize < 224, 3DES_EDE_CBC, anon, NULL
对于旧版本的 Java,可以在以下位置找到安全文件
JAVA_HOME/jre/lib/security/java.security
特定于较新版本和 Java 16
JAVA_HOME/conf/security
推荐阅读
- javascript - 如何解决问题当前未启用对实验语法“classProperties”的支持
- tensorflow - 用于张量流管道的大图像切片
- python - 我在 python 中有一个缩进错误
- r - 获取具有特定数量重复值的行
- webpack - 如何防止Vue全局css多次覆盖自身
- excel - 无法从网页中获取数据 - dom 查询
- javascript - 无法设置 null-Chrome 扩展的属性“src”
- java - 如何在类型处理程序中使用 spring 注入属性?
- c++ - 我的类的可变参数模板构造函数不能修改我的类成员,为什么会这样?
- python - 如何打印出仅包含某些字母的列表元素?