stackoom
  简体   繁体   中英

SMACK 4.2.4 connection with ejabberd through TLS

 原文  2018-06-16 21:43:13       android/ ejabberd/ smack

Question

I have been working with ejabberd and smack 4.2.4. It was fine until I implemented TLS certificate from LetsEncrypt. Now it gives SSL handshake error.

Same secure connection works for iOS and other clients if I enable TLS in connection configuration.

I searched but could find any idea how to fix this. Please help for Android connection.

Thanks,

1 answers

solution1
 0 ACCPTED  2018-07-03 13:13:23

I spent time and finally got this solution working for me. 

configBuilder.setSecurityMode(ConnectionConfiguration.SecurityMode.required);
SSLContext sslContext = getSSLContext(context);
configBuilder.setCustomSSLContext(sslContext);


public SSLContext getSSLContext(Context context ) throws IOException, CertificateException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
        CertificateFactory cf = null;

        try {
            cf = CertificateFactory.getInstance("X.509");
        } catch (CertificateException e) {
            Log.e(TAG, e.getMessage());
        }

        InputStream in = context.getResources().openRawResource(R.raw.chain); // R.raw.chain is CA Root Certificate added in RAW resources folder

        InputStream caInput = new BufferedInputStream(in);
        Certificate ca = null;
        try {
            ca = cf.generateCertificate(caInput);
            Log.d(TAG, "ca=" + ((X509Certificate) ca).getSubjectDN());
        }
        catch (Exception e){
            Log.e(TAG, e.getMessage());
        }
        finally {
            caInput.close();
        }

        // Create a KeyStore containing our trusted CAs
        String keyStoreType = KeyStore.getDefaultType();
        KeyStore keyStore = KeyStore.getInstance(keyStoreType);
        keyStore.load(null, null);
        keyStore.setCertificateEntry("ca", ca);

        // Create a TrustManager that trusts the CAs in our KeyStore
        String tmfAlgorithm = TrustManagerFactory.getDefaultAlgorithm();
        TrustManagerFactory tmf = TrustManagerFactory.getInstance(tmfAlgorithm);
        tmf.init(keyStore);

        // Create an SSLContext that uses our TrustManager
        SSLContext sslContext = SSLContext.getInstance("TLS");
        sslContext.init(null, tmf.getTrustManagers(), null);
        return sslContext;

    }

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Android Smack SSL/TLS connection to XMPP Ejabberd server with CA Certificate smack / ejabberd Connection Timeout tls smack ejabberd Android Studio How to make Ejabberd connection with Smack client Android? Android Smack Ejabberd multiple connection issue ejabberd connection using Smack in android giving connection timed out error Adding new user to ejabberd through Smack android api Ejabberd 14.07: smack StreamManagementNotEnabledException ejabberd and smack handshake fails smack UserSearchManager with ejabberd
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM