发布消息时出现“无法识别的 Windows 套接字错误:0:recv 失败”

【问题标题】:Got "Unrecognized Windows Sockets error: 0: recv failed" while posting message发布消息时出现“无法识别的 Windows 套接字错误:0:recv 失败”
【发布时间】:2017-08-21 12:45:56
【问题描述】:

我正在尝试通过 HttpClient 将 HTTP POST 发布到启用了客户端身份验证的服务器。这是我的代码

public class Send2Remote {

private static String sslMode = null;
private static String clientKeyStore = null;
private static String clientStoreType = null;
private static String clientStorePW = null;

private static String trustKeyStore = null;
private static String trustStoreType = null;
private static String trustStorePW = null;

public Send2Remote(String sslmode, String clientKS, String clientST, String clientTPW, 
        String trustKS, String trustST, String trustSPW) {
    sslMode = sslmode;
    clientKeyStore = clientKS;
    clientStoreType = clientST;
    clientStorePW = clientTPW;

    trustKeyStore = trustKS;
    trustStoreType = trustST;
    trustStorePW = trustSPW;
}

private final class X509HostnameVerifierImplementation implements X509HostnameVerifier {
    @Override
    public void verify(String host, SSLSocket ssl) throws IOException {
    }

    @Override
    public void verify(String host, X509Certificate cert) throws SSLException {
    }

    @Override
    public void verify(String host, String[] cns, String[] subjectAlts) throws SSLException {
    }

    @Override
    public boolean verify(String s, SSLSession sslSession) {
        return true;
    }
}

public String post(String uRL, List<NameValuePair> formparams) {        
    SSLContext sslContext = null;
    KeyManagerFactory kmf = null;
    TrustManagerFactory tmf = null;
    KeyStore ks = null;
    KeyStore tks = null;
    try {           
        sslContext = SSLContext.getInstance(sslMode);
        kmf = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
        tmf = TrustManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());

        ks = KeyStore.getInstance(clientStoreType);
        tks = KeyStore.getInstance(trustStoreType);

        ks.load(new FileInputStream(clientKeyStore), clientStorePW.toCharArray());
        tks.load(new FileInputStream(trustKeyStore), trustStorePW.toCharArray());

        kmf.init(ks, clientStorePW.toCharArray());
        tmf.init(tks);

        sslContext.init(kmf.getKeyManagers(), tmf.getTrustManagers(), null);

    } catch (NoSuchAlgorithmException | CertificateException | IOException | KeyStoreException | UnrecoverableKeyException | KeyManagementException e1) {
        Log4j.log.error("Error occurred: " + e1.getClass() + ":" + e1.getMessage() + ", Full Stacktrace: " + new Gson().toJson(e1.getStackTrace()));
        return null;
    }

    SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(
            sslContext, new X509HostnameVerifierImplementation());

    Registry<ConnectionSocketFactory> socketFactoryRegistry = RegistryBuilder
            .<ConnectionSocketFactory> create().register("https", sslsf)
            .build();

    PoolingHttpClientConnectionManager cm = new PoolingHttpClientConnectionManager(
            socketFactoryRegistry);
    CloseableHttpClient httpclient = HttpClients.custom()
            .setConnectionManager(cm).build();

    HttpPost httppost = new HttpPost(uRL);

    UrlEncodedFormEntity uefEntity;
    String returnCode = null;
    try {
        uefEntity = new UrlEncodedFormEntity(formparams, "UTF-8");
        httppost.setEntity(uefEntity);

        CloseableHttpResponse response = httpclient.execute(httppost);
        try {
            HttpEntity entity = response.getEntity();
            if (entity != null) {
                returnCode = EntityUtils.toString(entity, "UTF-8");
            }
        } finally {
            response.close();
        }
    } catch (ClientProtocolException e) {
        Log4j.log.error("Error occurred: " + e.getClass() + ":" + e.getMessage() + ", Full Stacktrace: " + new Gson().toJson(e.getStackTrace()));
        return null;
    } catch (UnsupportedEncodingException e1) {
        Log4j.log.error("Error occurred: " + e1.getClass() + ":" + e1.getMessage() + ", Full Stacktrace: " + new Gson().toJson(e1.getStackTrace()));
        return null;
    } catch (IOException e) {
        Log4j.log.error("Error occurred: " + e.getClass() + ":" + e.getMessage() + ", Full Stacktrace: " + new Gson().toJson(e.getStackTrace()));
        return null;
    } finally {
        try {
            httpclient.close();
        } catch (IOException e) {
            e.printStackTrace();
        } finally {
            close(httpclient);
        }
    }
    return returnCode;
}

public void close(Closeable io) {
    if (io != null) {
        try {
            io.close();
        } catch (IOException ignore) {
        }
    }
}

}

当我使用自己的密钥库执行它时,发布消息时出现异常

class javax.net.ssl.SSLHandshakeException:java.net.SocketException: Unrecognized Windows Sockets error: 0: recv failed

服务器管理员给了我他的部分日志

[2017/8/21   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, WRITE: TLSv1.2 Handshake, length = 96
[2017/8/21   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, waiting for close_notify or alert: state 1
[2017/8/21   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, Exception while waiting for close java.net.SocketException: Unrecognized Windows Sockets error: 0: recv failed
[2017/8/21   20:10:16:477 CST] 000000f7 SystemOut     O %% Invalidated:  [Session-18, SSL_ECDHE_RSA_WITH_AES_256_CBC_SHA384]
[2017/8/21   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, SEND TLSv1.2 ALERT:  fatal, description = handshake_failure
[2017/8/21   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, WRITE: TLSv1.2 Alert, length = 80
[2017/8/20   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, Exception sending alert: java.net.SocketException: Unrecognized Windows Sockets error: 0: socket write error
[2017/8/20   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, called closeSocket()
[2017/8/20   20:10:16:477 CST] 000000f7 SystemOut     O WebContainer : 20, handling exception: javax.net.ssl.SSLHandshakeException: java.net.SocketException: Unrecognized Windows Sockets error: 0: recv failed

服务器和我将彼此的证书添加到自己的信任密钥库中,所以这不应该是相互信任的问题。但我也找不到其他可以解决此问题的线程。

【问题讨论】:

  • 您尝试通过 SSL 连接哪个端口?
  • @Rizwan 9443,服务器管理员告诉我
  • 您能否再次确认证书和证书链是否已被添加为服务器端的受信任部分?您正在尝试访问网络容器?

标签: java ssl apache-httpclient-4.x mutual-authentication


【解决方案1】:

这可能会导致问题:

服务器是否同时启用了 IPv4 和 IPv6?

原因:

当在 Windows 服务器上同时启用 IPv4 和 IPv6 时,Java 虚拟机 (JVM) 在操作系统级别打开或关闭套接字时可能会出现问题。

可能的修复:

如果可能,JVM 将需要在 IPv4 上运行。为此,请添加以下设置 JVM 选项:
-Djava.net.preferIPv4Stack=true

【讨论】:

  • 我询问了服务器管理员,他将这一行放入启动参数并重新启动,但同样的问题仍然存在
  • @user6309529 将相同的参数放在打开与服务器连接的客户端机器上。
  • 添加了,但到目前为止还是一样,伤心
  • @user6309529 需要诊断。请跟踪在客户端和服务器上启用日志并在服务器和客户端上发布完整的堆栈跟踪。此外,如果您可以跟踪请求,如果它通过任何其他客户端(如 openssl 或浏览器)命中服务器,并且证书已安装到异常/受信任。看看这种情况下的行为是什么
  • @user6309529 你能通过wireshark检查网络嗅探[wireshark.org],这可以让你更了解是否有任何类型的超时或连接突然被关闭?
【解决方案2】:

我收到“0:recv failed”消息。我正在从一个线程读取套接字并在另一个线程上写入它。我重写了代码以始终从同一个线程读取/写入套接字,我不再遇到问题了。

【讨论】:

  • 我有一种奇怪的感觉,这就是我的原因。我们有一个多线程应用程序,看起来这会导致应用程序出现此错误。知道什么是“无法识别的 Windows 套接字错误:套接字写入错误”。这是您的错误代码吗??
  • @DonWoodward 我收到“recv failed”错误。我怀疑如果有可能通过从不同线程写入来中断读取端,那么从不同线程读取中断写入也是同样可能的。我不建议从 Windows 上的不同线程读取/写入套接字。
猜你喜欢
  • 1970-01-01
  • 1970-01-01
  • 2011-04-26
  • 1970-01-01
  • 1970-01-01
  • 1970-01-01
  • 1970-01-01
  • 2013-06-13
  • 2021-03-24
相关资源
最近更新 更多
热门标签
Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode