堆栈内存溢出
  简体   繁体   English

SSL服务器套接字和具有已知证书的握手

[英]SSL server socket and handshake with known certificate

 原文  2015-05-21 19:15:52       java/ security/ ssl/ x509certificate/ serversocket

问题描述

I am new to SSl server sockets. 我是SSl服务器套接字的新手。 All I am tying to do is to read data over SSL. 我想做的就是通过SSL读取数据。 My application listens on port 8000. Please give me few steps on how I can do this. 我的应用程序在端口8000上侦听。请给我几个步骤,以了解如何执行此操作。 When I have a certificate (on my disc), how can I establish the SSL server socket and read from client ? 拥有证书(在光盘上)后,如何建立SSL服务器套接字并从客户端读取?

Here are my steps 这是我的步骤

1) reading server.crt from file and making X509Certificate (has public certificate and private key) 2) Getting instance of JKS keystore 1)从文件中读取server.crt并制作X509Certificate(具有公共证书和私钥)2)获取JKS密钥库的实例

3) Get instance of context 3)获取上下文实例

4) create server socket over the port (8000) 4)通过端口创建服务器套接字(8000) 

InputStream in = new DataInputStream(new FileInputStream(new File("server.crt")));
KeyStore ks = KeyStore.getInstance("JKS");
ks.load(null, null);

CertificateFactory cf = CertificateFactory.getInstance("X.509");
X509Certificate cert = (X509Certificate) cf.generateCertificate(in);
in.close();

ks.setCertificateEntry("dts", cert);

char[] newpass = "password".toCharArray();
String name = "mykeystore.ks";
FileOutputStream output = new FileOutputStream(name);
ks.store(output, newpass);

KeyManagerFactory kmf = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
kmf.init(ks, "password".toCharArray());




try{

    System.setProperty("javax.net.ssl.keyStore","mykeystore.ks");
    System.setProperty("javax.net.ssl.keyStorePassword","password");
    System.setProperty("javax.net.debug","all");



    SSLContext context = SSLContext.getInstance("TLSv1.2");
    context.init(kmf.getKeyManagers(), null, null);
    SSLServerSocketFactory sslServerSocketfactory = context.getServerSocketFactory();
    SSLServerSocket sslServerSocket = (SSLServerSocket)sslServerSocketfactory.createServerSocket(8000);
    SSLSocket sslSocket = (SSLSocket)sslServerSocket.accept();  


    InputStream dataIN = sslSocket.getInputStream();

    byte[] hello = new byte[20];

    dataIN.read(hello);
    System.out.println(new String(hello));

    dataIN.close();

} catch (IOException e){
    e.printStackTrace();
}

1 个解决方案

解决方案1
 1 已采纳  2015-06-05 17:33:58

I got the answer for my question, I did research on how to setup my own keystore with self signed certificate. 我得到了我问题的答案,我研究了如何使用自签名证书设置自己的密钥库。 This way helped me. 这样对我有帮助。

ping me for a detailed solutions. 为我提供详细的解决方案。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 java ssl套接字服务器握手中止 - java ssl socket server handshake aborted 在证书的帮助下使用SSL套接字连接到服务器 - Connect to Server using SSL Socket with the help of certificate Java SSL套接字Web服务器错误证书 - Java SSL Socket Web Server Bad Certificate SSL握手和服务器响应 - SSL Handshake and Server Response SSL客户端(Java)不在两次SSL握手中将证书发送回服务器 - SSL client (Java) is not sending a certificate back to the server in two-way SSL handshake 我的 SSL 客户端 (Java) 未通过双向 SSL 握手将证书发送回服务器 - My SSL client (Java) isn't sending a certificate back to the server in two-way SSL handshake Java ssl握手,无需下载证书 - java ssl handshake without downloading the certificate 在没有证书的SSL握手中添加客户端身份验证 - Adding client authentication in SSL handshake without certificate 在SSL握手中获取任何客户端证书 - Aceepting any Client Certificate in SSL-Handshake 提供的证书和密钥作为SSL握手的一部分 - Provided certificate and key as part of SSL handshake
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM