The problem you're having is with the certificates. Here is a list of things you might need to be familiar with before working with a secure SSL program. There must be a truststore, keystore, and the certs have to be added. To add the key to your cacerts file, as in step 6, the computer might ask you for a password that you don't know. It is "changeit" mostt likely
1) To create a new keystore and self-signed certificate with corresponding public/private keys:
keytool -genkeypair -alias "username" -keyalg RSA -validity 7 -keystore keystore
2) To Examine the keystore:
keytool -list -v -keystore keystore
3) Export and examine the self-signed certificate:
keytool -export -alias "username" -keystore keystore -rfc -file "username".cer
4) Import the certificate into a new truststore:
keytool -import -alias "username" -file "username".cer -keystore truststore
5) Examine the truststore:
keytool -list -v -keystore truststore
6) Add to keystore (this is what your looking for):
sudo keytool -import -file "username".cer -alias "username" -keystore "path-to-keystore"
On some systems this is found in
/usr/lib/jvm/<java version folder>/jre/lib/security/cacerts
and on other systems it is something like
/etc/ssl/certs/java/cacerts
Check out this project on Git-Hub if you need more clarification:
https://github.com/rabbitfighter81/JSSLInfoCollectionServer
And here is a shell script that helps with keys.
https://github.com/rabbitfighter81/SSLKeytool
与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…