不能用java ssl套接字发送ssl消息

 

我正在尝试创建一个服务器 - 客户端软件包,它允许我发送带有SSL支持的简单消息。 我在java中很新,我无法弄清楚我的问题是什么。 我在同一网络的两台电脑上运行服务器和客户端程序,我可以发送消息。 我的问题是,当我用wireshark捕获邮件的协议是TCP,我现在可以读取关于证书的消息,我已经用openssl创建了所有的证书,并且已经使用keytool将它们转换为.jks。 Myca.jks是自签名ca的证书,我用这个证书签署了服务器和客户端。 感谢您的任何提示! 

import java.io.*;
import java.net.*;
import java.security.*;
import java.util.*;
import javax.net.ssl.*;


public class sslserver {



 ObjectOutputStream out;
 ObjectInputStream in;
 String message;
 sslserver(){}
 void run() throws Exception
 {

                        char[] passphrase = "123456".toCharArray();
                         KeyStore keystore = KeyStore.getInstance("JKS");
                         keystore.load(new FileInputStream("/home/jimmysnn/JavaApplication4/src/keystore.jks"), passphrase);
                         KeyStore serverkeystore = KeyStore.getInstance("JKS");
                         serverkeystore.load(new FileInputStream("/home/jimmysnn/JavaApplication4/src/server.jks"), passphrase);

                         KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
                         kmf.init(keystore, passphrase);

                         TrustManagerFactory tmf = TrustManagerFactory.getInstance("SunX509");
                         tmf.init(serverkeystore);

                         SSLContext context = SSLContext.getInstance("TLS");
                         TrustManager[] trustManagers = tmf.getTrustManagers();
                         KeyManager[] keyManagers = kmf.getKeyManagers();

                         context.init(keyManagers, trustManagers, null);

   //1. creating a server socket
                        SSLServerSocketFactory ssf = context.getServerSocketFactory();
                        ServerSocket ss = ssf.createServerSocket(2004);
   //2. Wait for connection
   System.out.println("Waiting for connection");
   Socket s = ss.accept();
   System.out.println("Connection received from " + s.getInetAddress().getHostName());
   //3. get Input and Output streams
   out = new ObjectOutputStream(s.getOutputStream());
   out.flush();
   in = new ObjectInputStream(s.getInputStream());
   sendMessage("Connection successful");
   //4. The two parts communicate via the input and output streams
   Scanner input = new Scanner( System.in );

                        do{

     message = (String)in.readObject();
     System.out.println("client>" + message);
     if (message.equals("bye"))
      sendMessage("bye");

   }while(!message.equals("bye"));



   //4: Closing connection

    in.close();
    out.close();
    ss.close();


 }
 void sendMessage(String msg) throws Exception
 {
   out.writeObject(msg);
   out.flush();
   System.out.println("server>" + msg);

 }
 public static void main(String args[]) throws Exception
 {
  Server server = new Server();
  while(true){
   server.run();
  }
 }



}

import java.io.*;
import java.net.*;
import java.util.*;
import java.security.*;
import javax.net.ssl.*;

public class sslclient {


 ObjectOutputStream out;
  ObjectInputStream in;
  String message;
 sslclient(){}
 void run()  throws Exception
 {

                         char[] passphrase = "123456".toCharArray();
                         KeyStore keystore = KeyStore.getInstance("JKS");
                         keystore.load(new FileInputStream("/home/ge0rge/Javaaskhsh4/src/myca.jks"), passphrase);

                        KeyStore keystoreclient = KeyStore.getInstance("JKS");
                        keystoreclient.load(new FileInputStream("/home/ge0rge/Javaaskhsh4/src/client.jks"), passphrase);

                        TrustManagerFactory tmf = TrustManagerFactory.getInstance("SunX509");
                        tmf.init(keystore);

                        KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
                        kmf.init(keystoreclient, passphrase);

                        SSLContext context = SSLContext.getInstance("TLS");
                        TrustManager[] trustManagers = tmf.getTrustManagers();
                        KeyManager[] keyManagers = kmf.getKeyManagers();

                        context.init( keyManagers, trustManagers, null);

                        SSLSocketFactory sf = context.getSocketFactory();
               Socket s = sf.createSocket("192.168.1.5", 443);
                        System.out.println("Connected to localhost in port 2004");
   //2. get Input and Output streams
   out = new ObjectOutputStream(s.getOutputStream());
   out.flush();
   in = new ObjectInputStream(s.getInputStream());
   //3: Communicating with the server
                        Scanner input = new Scanner( System.in );


                         message = (String)in.readObject();
     System.out.println("server>" + message);





                        //message = input.nextLine();
                        sendMessage("Hi my server");
   do{

     message = input.nextLine();
     sendMessage(message);
                                        if(message.equals("bye")){
                                        message = (String)in.readObject();
     System.out.println("server>" + message);
                                    }

   }while(!message.equals("bye"));

    in.close();
    out.close();
    s.close();

 }
 void sendMessage(String msg)  throws Exception
 {
   out.writeObject(msg);
   out.flush();
   System.out.println("client>" + msg);

 }
public static void main(String args[])  throws Exception
 {
  Client client = new Client();
  client.run();
 }
}

您在代码中使用了一些非标准术语,这可能反映出您的实现中存在一些混淆或者确实存在一些错误。

  • 服务器需要一个密钥库,其中包含他的私钥。

  • 客户端有一个可信任的账户,其中包含他准备从其他人(即服务器)信任的证书。

  • 服务器的证书需要从服务器的密钥库导出并导入到客户端的信任库中,除非它是由建议和正常的CA签名的。

  • 服务器的密钥库保留在服务器上; 客户的信任库在客户端。 所以你不需要象'serverKeystore'等变量名称。只需要'keystore'和'truststore'。

  • 您没有使用客户端身份验证,因此客户端不需要密钥库,并且服务器不需要信任库。

    • 我建议你使用这些概念来重做你的代码,然后所有人都会变得更清楚,特别是你。

    如果仍不起作用,您必须发布异常和堆栈跟踪。 您可能还需要使用-Djavax.net.debug=ssl,handshake来运行您的服务器或您的客户端或两者-Djavax.net.debug=ssl,handshake并在此处发布结果。

    链接地址: http://www.djcxy.com/p/5977.html

    上一篇: Cant send ssl messages with java ssl socket

    下一篇: How to hide expand/collapse button in Virtual Treeview?