登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 3 Fork 0

清风/CommonUtils

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
SSLUtils.java 4.24 KB
一键复制 编辑 原始数据 按行查看 历史
清风 提交于 2018-08-14 14:30 . ssl 握手
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156




import java.io.File;

import java.io.FileInputStream;

import java.io.IOException;

import java.io.InputStream;

import java.security.KeyManagementException;

import java.security.KeyStore;

import java.security.KeyStoreException;

import java.security.NoSuchAlgorithmException;

import java.security.cert.CertificateException;

import java.security.cert.X509Certificate;



import javax.net.ssl.SSLContext;



import org.apache.http.conn.ssl.SSLConnectionSocketFactory;

import org.apache.http.conn.ssl.SSLContextBuilder;

import org.apache.http.conn.ssl.SSLContexts;

import org.apache.http.conn.ssl.TrustSelfSignedStrategy;

import org.apache.http.conn.ssl.TrustStrategy;

import org.apache.log4j.Logger;



/**

 * 

 * 

 * @Description:http ssl 认证握手

 * 

 * @author:lixin

 * 

 * @time:2016年8月31日 上午11:34:31

 */

public class SSLUtils {

	private static final Logger LOGGER = Logger.getLogger(SSLUtils.class);

	private SSLUtils() {

	}

	/**

	 * 

	 * @param file

	 * @param password

	 * @return

	 * @throws Exception

	 */

	public static SSLConnectionSocketFactory createSSLConnectionSocketFactory(File file, String password)

			throws Exception {

		KeyStore trustStore = KeyStore.getInstance(KeyStore.getDefaultType());

		FileInputStream instream = new FileInputStream(file);

		try {

			trustStore.load(instream, password.toCharArray());

		} finally {

			instream.close();

		}



		// Trust own CA and all self-signed certs

		SSLContext sslcontext = SSLContexts.custom().loadTrustMaterial(trustStore, new TrustSelfSignedStrategy())

				.build();

		// Allow TLSv1 protocol only

		return new SSLConnectionSocketFactory(sslcontext, new String[] { "TLSv1" }, null,

				SSLConnectionSocketFactory.BROWSER_COMPATIBLE_HOSTNAME_VERIFIER);

	}



	



	/**

	 * 

	 * @param in

	 * @param password

	 * @return

	 */

	public static SSLConnectionSocketFactory createSSLConnectionSocketFactory(InputStream in, String password) {

		KeyStore trustStore = null;

		try {

			trustStore = KeyStore.getInstance(KeyStore.getDefaultType());

			trustStore.load(in, password.toCharArray());

			// Trust own CA and all self-signed certs

			SSLContext sslcontext = SSLContexts.custom().loadTrustMaterial(trustStore, new TrustSelfSignedStrategy())

					.build();

			// Allow TLSv1 protocol only

			return  new SSLConnectionSocketFactory(sslcontext, new String[] { "TLSv1" },

					null, SSLConnectionSocketFactory.BROWSER_COMPATIBLE_HOSTNAME_VERIFIER);

		} catch (Exception e) {

			LOGGER.error(e.getMessage(),e);

		} finally {

			try {

				in.close();

			} catch (IOException e) {

				LOGGER.error(e.getMessage(),e);

			}

		}

		return null;

	}



	/***

	 * 

	 * @param file

	 * @return

	 */

	public static SSLConnectionSocketFactory createSSLConnectionSocketFactory(String file) {

		InputStream in = null;

		KeyStore trustStore = null;

		try {

			trustStore = KeyStore.getInstance(KeyStore.getDefaultType());

			in = SSLUtils.class.getResourceAsStream(file);

			trustStore.load(in, "123456".toCharArray());

			// Trust own CA and all self-signed certs

			SSLContext sslcontext = SSLContexts.custom().loadTrustMaterial(trustStore, new TrustSelfSignedStrategy())

					.build();

			// Allow TLSv1 protocol only

			return  new SSLConnectionSocketFactory(sslcontext, new String[] { "TLSv1" },

					null, SSLConnectionSocketFactory.BROWSER_COMPATIBLE_HOSTNAME_VERIFIER);

		} catch (Exception e) {

			LOGGER.error(e.getMessage(),e);

		} finally {

			try {

				if(in !=null){

					in.close();

				}

			} catch (IOException e) {

				LOGGER.error(e.getMessage(),e);

			}

		}

		return null;

	}

/**

 * 

 * @return

 */

	public static SSLContext gettrustAllSSLContext() {

		try {

			return new SSLContextBuilder().loadTrustMaterial(null, new TrustAllStrategy()).build();

		} catch (KeyManagementException | NoSuchAlgorithmException | KeyStoreException e) {

			LOGGER.error(e.getMessage(),e);

		}

		return null;

	}

/**

 * 



 * @Description: 内部类



 * @author:lixin



 * @time:2016年8月31日 上午11:42:23

 */

	public static class TrustAllStrategy implements TrustStrategy {

		// 信任所有

		@Override

		public boolean isTrusted(X509Certificate[] chain, String authType) throws CertificateException {

			return true;

		}

	}

	/**

	 * 创建捂手连接

	 */

	public final static SSLConnectionSocketFactory TRUAT_ALL_SSLSF = new SSLConnectionSocketFactory(

			gettrustAllSSLContext(), null);

}
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
Java
1
https://gitee.com/agp5050/CommonUtils.git
[email protected]:agp5050/CommonUtils.git
agp5050
CommonUtils
CommonUtils
master
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部