修复javax.net.ssl.SSLPeerUnverifiedException:无对等证书
我正在开发一个android应用程序,该应用程序必须使用自签名证书(SSL/TLS1.2)通过https与服务器通信。我也在使用截击 我正在学习教程。保存.crt文件,使用修复javax.net.ssl.SSLPeerUnverifiedException:无对等证书,java,android,https,ssl-certificate,android-volley,Java,Android,Https,Ssl Certificate,Android Volley,我正在开发一个android应用程序,该应用程序必须使用自签名证书(SSL/TLS1.2)通过https与服务器通信。我也在使用截击 我正在学习教程。保存.crt文件,使用keytool-importcert-v-trustcacerts-file“cert.crt”-别名mediateca-keystore“key.bks”-provider org.bouncycastle.jce.provider.BouncyCastleProvider-providerpath“bcprov-jdk16
keytool-importcert-v-trustcacerts-file“cert.crt”-别名mediateca-keystore“key.bks”-provider org.bouncycastle.jce.provider.BouncyCastleProvider-providerpath“bcprov-jdk16-146.jar”-storetype bks-storepass blablablablabla在原始目录中创建key.bks
等等
当我向服务器发送数据时,Response.ErrorListener()没有收到对等证书错误
尝试用邮递员发送我的json(当然,必须添加证书)-效果很好
在我的android设备上手动安装证书-工作正常
我怎样才能让它工作呢?我为这个问题做了很多努力。
我发送到的服务器似乎有一个虚拟主机(托管在GAE上)。在安卓5.0上,这个问题已经解决,但在安卓5.0下,您必须自己添加支持。
下面是对这个问题的解释
因此,为了使代码正常工作,我必须从教程中更改SslSocketFactory类。它发挥了神奇的作用
import java.io.IOException;
import java.io.InputStream;
import java.net.InetAddress;
import java.net.Socket;
import java.net.UnknownHostException;
import java.security.GeneralSecurityException;
import java.security.KeyManagementException;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.UnrecoverableKeyException;
import javax.net.ssl.SSLSocket;
import javax.net.ssl.TrustManager;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.params.HttpParams;
import android.annotation.TargetApi;
import android.net.SSLCertificateSocketFactory;
import android.os.Build;
class SslSocketFactory extends SSLSocketFactory {
InputStream mkeyStore;
String mkeyStorePassword;
public SslSocketFactory(InputStream keyStore, String keyStorePassword) throws KeyManagementException, UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException{
super(null);
mkeyStore=keyStore;
mkeyStorePassword=keyStorePassword;
}
@Override
public Socket connectSocket(Socket s, String host, int port, InetAddress localAddress, int localPort, HttpParams params) throws IOException {
return null;
}
@Override
public Socket createSocket() throws IOException {
return null;
}
@Override
public boolean isSecure(Socket s) throws IllegalArgumentException {
if (s instanceof SSLSocket) {
return ((SSLSocket) s).isConnected();
}
return false;
}
@TargetApi(Build.VERSION_CODES.JELLY_BEAN_MR1)
@Override
public Socket createSocket(Socket socket, String host, int port, boolean autoClose) throws IOException, UnknownHostException {
SSLSocket sslSocket = null;
if (autoClose) {
socket.close();
}
SSLCertificateSocketFactory sslSocketFactory = (SSLCertificateSocketFactory) SSLCertificateSocketFactory.getDefault(0, null);
try {
sslSocketFactory.setTrustManagers(new TrustManager[] { new SsX509TrustManager( mkeyStore, mkeyStorePassword) });
} catch (GeneralSecurityException e1) {
e1.printStackTrace();
}
sslSocket = (SSLSocket) sslSocketFactory.createSocket(InetAddress.getByName(host), port);
sslSocket.setEnabledProtocols(sslSocket.getSupportedProtocols());
if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.JELLY_BEAN_MR1) {
sslSocketFactory.setHostname(sslSocket, host);
} else {
try {
java.lang.reflect.Method setHostnameMethod = sslSocket.getClass().getMethod("setHostname", String.class);
setHostnameMethod.invoke(sslSocket, host);
} catch (Exception e) {
}
}
return sslSocket;
}
}
多拉,我也面临同样的问题。一旦你有了解决方案,请告诉我。@OMG,我已经发布了答案。