Добрый день! Удалось решить проблему? Ситуация аналогичная, имеется контейнер сертификатов croinform.p7b, не получается сформировать SSLContext.

Ошибка следующая:
Exception in thread "main" javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:131)
at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:117)
at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:336)
at java.base/sun.security.ssl.Alert$AlertConsumer.consume(Alert.java:293)
at java.base/sun.security.ssl.TransportContext.dispatch(TransportContext.java:185)
at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:172)
at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1426)
at java.base/sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1336)
at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:450)
at java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:421)
at java.base/sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:572)
at java.base/sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:197)
at java.base/sun.net.www.protocol.http.HttpURLConnection.getOutputStream0(HttpURLConnection.java:1367)
at java.base/sun.net.www.protocol.http.HttpURLConnection.getOutputStream(HttpURLConnection.java:1342)
at java.base/sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputStream(HttpsURLConnectionImpl.java:246)
at ru.ifr.lcc.lkb.service.api.impl.Cronos.main(Cronos.java:32)

Process finished with exit code 1

Дело в том, что все сделал по примеру:

```
import javax.net.ssl.*;
import java.io.*;
import java.net.URL;
import java.security.*;
import java.security.cert.CertificateException;

public class Cronos {

public static void main(String[] args) throws IOException, NoSuchAlgorithmException, KeyStoreException, CertificateException, UnrecoverableKeyException, KeyManagementException {

KeyStore store = KeyStore.getInstance("JKS");
store.load(new FileInputStream("C:\\norvik\\croinform.jks"), "changeit".toCharArray());
KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
kmf.init(store, "changeit".toCharArray());
TrustManagerFactory tmf = TrustManagerFactory.getInstance("SunX509");
tmf.init(store);

SSLContext context = SSLContext.getInstance("SSLv3");
context.init(kmf.getKeyManagers(), tmf.getTrustManagers(), null);
SSLSocketFactory factory = context.getSocketFactory();

URL url = new URL("https://test.croinform.ru/request");

HttpsURLConnection conn = (HttpsURLConnection) url.openConnection();
conn.setRequestProperty("Content-Type", "application/json; charset=utf-8");
conn.setRequestMethod("POST");
conn.setDoOutput(true);

String params = "{\"UserName\":\"**********\",\"Password\":\"**********\",\"Params\":{\"SurName\":\"Иванов\",\"FirstName\":\"Иван\",\"MiddleName\":\"Иванович\",\"DateOfBirth\":\"01.01.1911\",\"SeriaNumber\":\"7000123456\",\"Address\":{\"Region\":\"45\",\"City\":\"Москва\",\"Street\":\"Приорова\",\"House\":\"30\",\"noFlat\":true}},\"SubSystem\":\"FL\",\"Services\":[\"Exp\"]}";

try(OutputStream os = conn.getOutputStream()) {
byte[] input = params.getBytes("utf-8");
os.write(input, 0, input.length);
}

conn.setSSLSocketFactory(factory);
InputStream inputstream = conn.getInputStream();
InputStreamReader inputstreamreader = new InputStreamReader(inputstream);
BufferedReader bufferedreader = new BufferedReader(inputstreamreader);

String string = null;
while ((string = bufferedreader.readLine()) != null) {
System.out.println("Received " + string);
}
}
}
```

Коллеги, здравствуйте! Пытаюсь провернуть тоже самое. Сейчас при попытке получаю следующую ошибку

```
2024-03-19 20:40:11.848 ERROR 73143 --- [nio-8084-exec-1] o.a.c.c.C.[.[.[/].[dispatcherServlet] : Servlet.service() for servlet [dispatcherServlet] in context with path [] threw exception [Request processing failed; nested exception is org.springframework.web.client.ResourceAccessException: I/O error on POST request for "https://api.croinform.ru/request": Server selected improper ciphersuite TLS_DH_RSA_WITH_AES_128_CBC_SHA; nested exception is javax.net.ssl.SSLHandshakeException: Server selected improper ciphersuite TLS_DH_RSA_WITH_AES_128_CBC_SHA] with root cause
javax.net.ssl.SSLHandshakeException: Server selected improper ciphersuite TLS_DH_RSA_WITH_AES_128_CBC_SHA
```

В логах вижу, что cpSSL отрабататывает
```
2024-03-19 20:40:09.854 WARN 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : %% No appropriate keys for handshake
2024-03-19 20:40:09.866 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : SSLContextImpl init.
2024-03-19 20:40:09.872 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : trigger seeding of SecureRandom
2024-03-19 20:40:09.873 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : done seeding SecureRandom
2024-03-19 20:40:09.873 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : SSLContextImpl initialized.
2024-03-19 20:40:09.948 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : trustStore is : No File Available, using empty keystore.
2024-03-19 20:40:09.949 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : trustStore type is : CertStore
2024-03-19 20:40:09.949 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : trustStore provider is :
2024-03-19 20:40:09.949 INFO 73143 --- [nio-8084-exec-1] ru.CryptoPro.ssl.SSLLogger : init truststore
```

Пароль от CertStore - 12345678
Подскажите пожалуйста в чем может быть проблема?
Прикладываю также проект для воспроизведения - https://disk.yandex.ru/d/Drah5HKPy80jUQ

Отредактировано пользователем 19 марта 2024 г. 18:27:45(UTC)  | Причина: Стер ненамеренно пароль от ключницы

Вот полный лог с включенным уровнем логгирования
cronos.log (71kb) загружен 4 раз(а).