堆栈内存溢出
  简体   繁体   English

在Java 6上使用httpClient 4.3.6在客户端中强制使用协议

[英]Force protocol in Client using httpClient 4.3.6 on Java 6

 原文  2018-03-08 07:30:06       java/ ssl/ apache-httpclient-4.x/ java-6/ sslv3

问题描述

For some testing reason I need to force SSLv3 to be used by Client. 由于某些测试原因,我需要强制客户端使用SSLv3。 SSLv3 is an accepted protocol in server. SSLv3是服务器中可接受的协议。 Tried to force by using SSLContextBuilder.useProtocol("SSLv3") as below: 尝试通过使用SSLContextBuilder.useProtocol(“ SSLv3”)强制如下:

SSLContextBuilder initiated as below: SSLContextBuilder的启动如下: 

    SSLContextBuilder builder = SSLContexts.custom();

    SSLContext sslContext = builder.useProtocol("SSLv3").build();

    SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(sslContext, new X509HostnameVerifier() {
        @Override
        public void verify(String host, SSLSocket ssl) throws IOException {
        }
     ....
     ....);
    return sslsf;
}

But the result in log shows handshaking always do in TLSv1: 但是日志中的结果显示握手始终在TLSv1中执行: 

....
....
Allow legacy hello messages: true
Is initial handshake: true
Is secure renegotiation: false
%% No cached client session
*** ClientHello, TLSv1
RandomCookie:  
GMT: 1503650935 
bytes = { 
255, 
....
....

My understanding, client should request for the protocol that is defined whether server accept or not. 我的理解是,客户端应请求服务器是否接受定义的协议。 In this case, I expect to see client should request to use SSLv3 not TLSv1. 在这种情况下,我希望看到客户端应请求使用SSLv3,而不是TLSv1。

1 个解决方案

解决方案1
 1 已采纳  2018-03-08 10:41:36

That will force HC 4.3 to use SSLv3 only 这将迫使HC 4.3仅使用SSLv3 

SSLConnectionSocketFactory sslSocketFactory = new SSLConnectionSocketFactory(
        SSLContext.getDefault(), new String[] {"SSLv3"}, null, SSLConnectionSocketFactory.STRICT_HOSTNAME_VERIFIER);
CloseableHttpClient httpClient = HttpClients.custom()
        .setSSLSocketFactory(sslSocketFactory)
        .build();

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 具有完整URI和方案的Java httpClient 4.3.6基本身份验证 - Java httpClient 4.3.6 basic Authentication with complete URI and scheme 在Apache HttpClient 4.3.6上禁用NTLM - Disable NTLM on Apache HttpClient 4.3.6 Httpclient 4.3.6:无效的重定向URI - Httpclient 4.3.6: Invalid redirect URI HttpClient 4.3.6返回“警告:NEGOTIATE身份验证错误” - HttpClient 4.3.6 returning “WARNING: NEGOTIATE authentication error” RESTful Java客户端和HttpClient - RESTful java Client and HttpClient java客户端程序使用HttpClient API发送摘要认证请求 - java client program to send digest authentication request using HttpClient API 使用 HttpClient 通过 java 客户端访问 power Bi 组 - Access power Bi groups with java client using HttpClient 将SBLIM CIM客户端(用于Java)与WS-Management协议一起使用 - Using SBLIM CIM Client (for Java) with WS-Management protocol 使用java在客户端服务器的协议缓冲区中需要帮助 - Need help in protocol buffer in client server using java 如何在apache httpclient上强制使用IPv4? (Java)的 - How to Force IPv4 on apache httpclient? (java)
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM