67,513
社区成员
发帖
与我相关
我的任务
分享Received fatal alert: handshake_failure
最近在测试中国银行网上银行,使用httpClient中行发送请求的时候出现了这个问题:
下面是我的源码:
根据在stackoverflow上找到的回答分析:
可能是客户端和服务器上所用的tsl版本不一致,或者客户端没有服务端所需的Cipher造成的,我是一个只有一年工作经验的菜鸟,对于ssl这一块内容并不是十分熟悉,请各位大神帮忙找一下原因,能够告诉我解决办法就更好了。
trigger seeding of SecureRandom
done seeding SecureRandom
....
Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
main, setSoTimeout(0) called
Allow unsafe renegotiation: false
Allow legacy hello messages: true
Is initial handshake: true
Is secure renegotiation: false
%% No cached client session
*** ClientHello, TLSv1.1
RandomCookie: GMT: 1452843664 bytes = { 252, 193, 40, 93, 6, 103, 140, 29, 29, 18, 93, 57, 157, 86, 154, 234, 60, 31, 68, 68, 215, 244, 202, 225, 198, 216, 192, 224 }
Session ID: {}
Cipher Suites: [TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_EMPTY_RENEGOTIATION_INFO_SCSV]
Compression Methods: { 0 }
Extension elliptic_curves, curve names: {secp256r1, sect163k1, sect163r2, secp192r1, secp224r1, sect233k1, sect233r1, sect283k1, sect283r1, secp384r1, sect409k1, sect409r1, secp521r1, sect571k1, sect571r1, secp160k1, secp160r1, secp160r2, sect163r1, secp192k1, sect193r1, sect193r2, secp224k1, sect239k1, secp256k1}
Extension ec_point_formats, formats: [uncompressed]
***
[write] MD5 and SHA1 hashes: len = 137
0000: 01 00 00 85 03 02 57 99 A3 90 FC C1 28 5D 06 67 ......W.....(].g
0010: 8C 1D 1D 12 5D 39 9D 56 9A EA 3C 1F 44 44 D7 F4 ....]9.V..<.DD..
0020: CA E1 C6 D8 C0 E0 00 00 1E C0 09 C0 13 00 2F C0 ............../.
0030: 04 C0 0E 00 33 00 32 C0 08 C0 12 00 0A C0 03 C0 ....3.2.........
0040: 0D 00 16 00 13 00 FF 01 00 00 3E 00 0A 00 34 00 ..........>...4.
0050: 32 00 17 00 01 00 03 00 13 00 15 00 06 00 07 00 2...............
0060: 09 00 0A 00 18 00 0B 00 0C 00 19 00 0D 00 0E 00 ................
0070: 0F 00 10 00 11 00 02 00 12 00 04 00 05 00 14 00 ................
0080: 08 00 16 00 0B 00 02 01 00 .........
main, WRITE: TLSv1.1 Handshake, length = 137
main, READ: TLSv1.1 Alert, length = 2
main, RECV TLSv1.2 ALERT: fatal, handshake_failure
main, called closeSocket()
main, handling exception: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
main, called close()
main, called closeInternal(true)
2016-07-28 14:17:52 [ main:1110] - [ ERROR ] BOCServiceTest:182 - Received fatal alert: handshake_failure
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
at sun.security.ssl.Alerts.getSSLException(Alerts.java:154)
at sun.security.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:2023)
at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1125)
at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1403)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1387)
at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:261)
at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:118)
at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314)
at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:357)
at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:218)
at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:194)
at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:85)
at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108)
at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:106)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:57)
at com.wtkj.kfxt.kfwz.admin.business.bankorder.BOCServiceTest.getResultXml(BOCServiceTest.java:177)
at com.wtkj.kfxt.kfwz.admin.business.bankorder.BOCServiceTest.testQueryOrderInfo(BOCServiceTest.java:81)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:497)
at org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:44)
at org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:15)
at org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:41)
at org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:20)
at org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:76)
at org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:50)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:193)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:52)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:191)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:42)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:184)
at org.junit.runners.ParentRunner.run(ParentRunner.java:236)
at org.eclipse.jdt.internal.junit4.runner.JUnit4TestReference.run(JUnit4TestReference.java:86)
at org.eclipse.jdt.internal.junit.runner.TestExecution.run(TestExecution.java:38)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:459)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:675)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.run(RemoteTestRunner.java:382)
at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.main(RemoteTestRunner.java:192)
下面是我的源码:
SSLContext sslContext = SSLContexts.custom().useProtocol("TLSv1.1").build();
SSLConnectionSocketFactory f = new SSLConnectionSocketFactory(sslContext);
HttpClient httpClient = HttpClients.custom().setSSLSocketFactory(f).build();
HttpPost post = new HttpPost(BankConstant.BANK_BOC_ORDERQUERY);
/*HttpHost proxy = new HttpHost(BankConstant.PROXYSERVER, BankConstant.PROXYPORT);
RequestConfig config = RequestConfig.custom()
.setProxy(proxy)
.build();
post.setConfig(config);*/
List<NameValuePair> formParams = new ArrayList<NameValuePair>();
formParams.add(new BasicNameValuePair("merchantNo", BankConstant.BANK_BOC_MERCCODE));
formParams.add(new BasicNameValuePair("orderNos", orderNo));
formParams.add(new BasicNameValuePair("signData", signData));
HttpEntity entity = new UrlEncodedFormEntity(formParams, BankConstant.BANK_BOC_CHARSET);
post.setEntity(entity);
HttpResponse postRes = httpClient.execute(post);
HttpEntity entityResult = postRes.getEntity();
result = EntityUtils.toString(entityResult);
根据在stackoverflow上找到的回答分析:
可能是客户端和服务器上所用的tsl版本不一致,或者客户端没有服务端所需的Cipher造成的,我是一个只有一年工作经验的菜鸟,对于ssl这一块内容并不是十分熟悉,请各位大神帮忙找一下原因,能够告诉我解决办法就更好了。
...全文
请发表友善的回复…
发表回复
qq_36022621 2019-02-19
- 打赏
- 举报
你好,我和您是一样的问题,只是我在客户端是jdk是1.7的情况下是正常的,jdk是1.6就报错,服务端是使用的1.7的环境,请问您是怎么解决的呢?
