1. Exception details:

When doing OkHttp to access the network, the following error always occurs.

java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.

Second, the cause of the problem:

Because the https.bks certificate of the project is not a certificate issued by a formal CA, but a certificate issued by a secondary agent, etc., the verification fails!!!

Third, the solution:

Ignore https certificate verification

Specific method: When obtaining sslParams, modify and customize TrustManager to trustAllCerts
Then add this method to the main class

1, JAVA version:

public static void handleSSLHandshake() {try {TrustManager[] trustAllCerts = new TrustManager[]{new X509TrustManager() {public X509Certificate[] getAcceptedIssuers() {return new X509Certificate[0];}@Overridepublic void checkClientTrusted(X509Certificate[] certs, String authType) {}@Overridepublic void checkServerTrusted(X509Certificate[] certs, String authType) {}}};SSLContext sc = SSLContext.getInstance("TLS");// trustAllCerts trust all certificatessc.init(null, trustAllCerts, new SecureRandom());HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {@Overridepublic boolean verify(String hostname, SSLSession session) {return true;}});} catch (Exception ignored) {}}

2, Kotlin version:

fun handleSSLHandshake() {try {var trustAllCerts:Array = arrayOf(object: X509TrustManager{override fun checkClientTrusted(p0: Array?, p1: String?) {}override fun checkServerTrusted(p0: Array?, p1: String?) {}override fun getAcceptedIssuers(): Array {val arrayOfNulls = arrayOfNulls(0)return arrayOfNulls}})val sc: SSLContext = SSLContext.getInstance("TLS")// trustAllCerts trust all certificatessc.init(null, trustAllCerts, SecureRandom())HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory())HttpsURLConnection.setDefaultHostnameVerifier(object : HostnameVerifier{override fun verify(p0: String?, p1: SSLSession?): Boolean {return true}})}catch(e:Exception){}}

3, and then call it in the oncreate() method

handleSSLHandshake()

  This pit has been encountered a lot of times. After checking a lot of blogs, I found a good solution. I reprinted it and shared it with everyone, hoping to help everyone.