java ssl tcp连接正常,但接收到服务器的数据不正确
我的问题是,我在JavaISO客户机和测试服务器之间有ssl连接。连接正常,握手没有问题,但服务器接收到不正确的数据 正如我在日志中看到的,服务器在一次读取操作中只接收部分数据,而inputstream中也存在一些奇怪的数据——可能它与证书信息有关 请注意,如果没有ssl,此客户端和服务器工作时不会出现任何问题。同样,当我用java密钥工具创建jks标准证书simple时,一切都正常,问题不会发生 但当我使用x509时,无论我是通过从cmd生成jks来发送证书作为服务器jvm的参数,还是使用下面的代码在代码中生成jks,都会出现问题。连接和握手始终正常,但inputstream中的数据已中断 这是我如何使用boucycastle库获取证书的。客户端和服务器几乎相同java ssl tcp连接正常,但接收到服务器的数据不正确,java,ssl,tcp,x509,Java,Ssl,Tcp,X509,我的问题是,我在JavaISO客户机和测试服务器之间有ssl连接。连接正常,握手没有问题,但服务器接收到不正确的数据 正如我在日志中看到的,服务器在一次读取操作中只接收部分数据,而inputstream中也存在一些奇怪的数据——可能它与证书信息有关 请注意,如果没有ssl,此客户端和服务器工作时不会出现任何问题。同样,当我用java密钥工具创建jks标准证书simple时,一切都正常,问题不会发生 但当我使用x509时,无论我是通过从cmd生成jks来发送证书作为服务器jvm的参数,还是使用下面
private SSLServerSocketFactory handleCertificate() throws KeyManagementException, KeyStoreException, NoSuchAlgorithmException, CertificateException, IOException, UnrecoverableKeyException {
Security.addProvider(new BouncyCastleProvider());
PEMReader pr = new PEMReader(new FileReader("p.pem"));
X509CertificateObject cert = (X509CertificateObject) pr.readObject();
PEMReader pr2 = new PEMReader(new FileReader("klient.cer"));
X509CertificateObject cert2 = (X509CertificateObject) pr2.readObject();
PEMReader kr = new PEMReader(new FileReader("001.key"),
new PasswordFinder() {
public char[] getPassword() {
return "password".toCharArray();
}
});
KeyStore trustKeys = KeyStore.getInstance("JKS");
trustKeys.load(null, "".toCharArray());
trustKeys.setCertificateEntry("1", cert);
KeyStore ksKeys = KeyStore.getInstance("JKS");
ksKeys.load(null, "password".toCharArray());
ksKeys.setCertificateEntry("1", cert2);
org.bouncycastle.jce.provider.JCERSAPrivateCrtKey key;
Object PK = kr.readObject();
if (PK instanceof KeyPair) {
key = (JCERSAPrivateCrtKey) ((KeyPair) PK).getPrivate();
} else {
key = (JCERSAPrivateCrtKey) PK;
}
ksKeys.setKeyEntry("1", key, "password".toCharArray(), new Certificate[] { cert2 });
KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
kmf.init(ksKeys, "password".toCharArray());
TrustManagerFactory tmf = TrustManagerFactory.getInstance("SunX509");
tmf.init(trustKeys);
SSLContext sslContext = SSLContext.getInstance("SSLv3");
sslContext.init(kmf.getKeyManagers(), tmf.getTrustManagers(), new java.security.SecureRandom());
SSLServerSocketFactory factory = sslContext.getServerSocketFactory();
return factory;
}
InputStream is = new BufferedInputStream(socket.getInputStream());
while (!Thread.currentThread().isInterrupted()) {
int size = 0;
String mess_length = "";
byte[] lenbuf = new byte[4];
if (socket != null && socket.isConnected()) {
socket.getInputStream().read(lenbuf);
mess_length = new String(lenbuf);
log.debug("Lenth of received message: " + mess_length);
}
int responseSize = 0;
try {
responseSize = Integer.valueOf(mess_length);
size = responseSize;
} catch (Exception int_e) {
log.debug("Error of message lenth numbering: ", int_e);
}
byte[] buf = new byte[size];
if (socket.isConnected() && socket.getInputStream().read(buf) == size) {
log.debug("Message received.");
}
// -----------------------------------------------------------------------------------------------------------
OutputStream out = new BufferedOutputStream(socket.getOutputStream());
if ("echo".equals(EnvironmentProperties.getMode())) {
log.info("responsing in echo mode");
log.debug("Data to send from server: {} in connection id={}", new String(buf,
"UTF-8"), uuid);
out.write(buf);
}
out.flush();
bytesSet.clear();
log.info("responded");