jenkins There were errors checking the update sites: SSLHandshakeException: sun.security.validator.V

jenkins There were errors checking the update sites: SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderExcep

天农学子

8895人浏览 · 2021-08-31 17:34:16

天农学子 · 2021-08-31 17:34:16 发布

jenkins There were errors checking the update sites: SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Jenkins SSL问题解决方案

问题现象：

jenkins无法安装插件
出现如下错误
jenkins There were errors checking the update sites: SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

问题出现背景：

在安装jenkins的时候，使用的是jdk1.8不是使用的openjdk
SSL正式数显问题

解决方案

[root@duan ~]# find / -type f -name cacerts
/usr/java/jdk1.8.0_91/jre/lib/security/cacerts
/etc/pki/ca-trust/extracted/java/cacerts

找到系统的java证书

[root@duan ~]# cd /usr/local/jdk1.8.0_20/jre/lib/security/
[root@duan  security]# mv cacerts cacerts.bak
[root@duan security]# cp /etc/pki/ca-trust/extracted/java/cacerts ./

将证书复制到java的证书目录

测试

[root@duan ~]# wget https://confluence.atlassian.com/kb/files/779355358/779355357/1/1441897666313/SSLPoke.class
--2021-08-31 17:12:22--  https://confluence.atlassian.com/kb/files/779355358/779355357/1/1441897666313/SSLPoke.class
正在解析主机 confluence.atlassian.com (confluence.atlassian.com)... 99.84.48.31, 99.84.48.79, 99.84.48.92, ...
正在连接 confluence.atlassian.com (confluence.atlassian.com)|99.84.48.31|:443... 已连接。
已发出 HTTP 请求，正在等待回应... 200 OK
长度：1959 (1.9K) [application/octet-stream]
正在保存至: “SSLPoke.class”

100%[=============================================================================================================================================================================================================>] 1,959       --.-K/s 用时 0s      

2021-08-31 17:12:25 (430 MB/s) - 已保存 “SSLPoke.class” [1959/1959])
[root@duan ~]# $JAVA_HOME/bin/java SSLPoke updates.jenkins.io 443

Successfully connected

这样证书就生效了

如果有问题，则出现这样的错误提示

[root@duan ~]# $JAVA_HOME/bin/java SSLPoke updates.jenkins.io 443
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
        at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:387)
        at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292)
        at sun.security.validator.Validator.validate(Validator.java:260)
        at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:324)
        at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:229)
        at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124)
        at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1491)
        at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)
        at sun.security.ssl.Handshaker.processLoop(Handshaker.java:979)
        at sun.security.ssl.Handshaker.process_record(Handshaker.java:914)
        at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1062)
        at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)
        at sun.security.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:747)
        at sun.security.ssl.AppOutputStream.write(AppOutputStream.java:123)
        at sun.security.ssl.AppOutputStream.write(AppOutputStream.java:138)
        at SSLPoke.main(SSLPoke.java:31)
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
        at sun.security.provider.certpath.SunCertPathBuilder.build(SunCertPathBuilder.java:141)
        at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:126)
        at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:280)
        at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:382)
        ... 15 more

重启jenkins

问题得到解决

参考文章：https://www.cnblogs.com/tanghu/p/12869658.html

向您推荐>>Eolink开发者社区

权威｜前沿｜技术｜干货｜国内首个API全生命周期开发者社区

更多推荐

ELK实现containerd的容器日志采集展示【基于logging的全栈监测】

企业级ELK Stack构建介绍

云原生

深入理解 Mocha 测试框架：从零实现一个 Mocha

前言什么是自动化测试自动化测试在很多团队中都是Devops环节中很难执行起来的一个环节，主要原因在于测试代码的编写工作很难抽象，99%的场景都需要和业务强绑定，而且写测试代码的编写工作量往往比编写实际业务代码的工作量更多。在一些很多业务场景中投入产出比很低，适合写自动化测试的应该是那些中长期业务以及一些诸如组件一样的基础库。自动化测试是个比较大的概念，其中分类也比较多，比如单元测试，端对端测试，集

云原生

(20200916 Solved)docker-compose up创建容器自动退出

问题描述如题，创建容器后自动退出了。并且docker start container无效解决方案原因是缺失了控制终端的配置，需要在docker-compose.yml中增加tty:true ，有时候这样也不行，需要再增加一个command:/bin/bash，命令不一定是这个，需要是一个不会退出的命令，然后用-d后台启动容器。Referencesdocker-compose启动容器后自动退出...