堆栈内存溢出
  繁体   English   中英

握手失败 Android 23

[英]Handshake failed Android 23

 原文  2015-10-19 17:11:34       java/ android/ ssl/ keystore/ android-keystore

问题描述

我在 Android 中遇到了密钥库问题。

我正在尝试将 android 中的客户端连接到 java 中的服务器。 我的代码适用于 15 到 22 的 android API,但不适用于新的 API 23 更新:

我在 android 客户端上遇到错误:

javax.net.ssl.SSLHandshakeException: Handshake failed

和服务器上的这个错误:

javax.net.ssl.SSLHandshakeException: no cipher suites in common

这是我的代码,它适用于 API 22 或更早版本:

在客户端,R.raw.publickey 是公共 .bks 证书,R.raw.publickey_v1 是旧版本的 .bks 以兼容 API 15。

服务器:

public static SSLServerSocket getServerSocketWithCert(int port, InputStream pathToCert, String passwordFromCert) throws IOException,
                                KeyManagementException, NoSuchAlgorithmException, CertificateException, KeyStoreException, UnrecoverableKeyException{
    TrustManager[] tmm;
    KeyManager[] kmm;
    KeyStore ks  = KeyStore.getInstance("JKS");
    ks.load(pathToCert, passwordFromCert.toCharArray());
    tmm=tm(ks);
    kmm=km(ks, passwordFromCert);
    SSLContext ctx = SSLContext.getInstance("TLS");
    ctx.init(kmm, tmm, null);
    SSLServerSocketFactory socketFactory = (SSLServerSocketFactory) ctx.getServerSocketFactory();
    SSLServerSocket ssocket = (SSLServerSocket)        socketFactory.createServerSocket(port);
    return ssocket;
}
private static TrustManager[] tm(KeyStore keystore) throws NoSuchAlgorithmException, KeyStoreException {
    TrustManagerFactory trustMgrFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
    trustMgrFactory.init(keystore);
    return trustMgrFactory.getTrustManagers();
};
private static KeyManager[] km(KeyStore keystore, String password) throws NoSuchAlgorithmException, KeyStoreException, UnrecoverableKeyException {
    KeyManagerFactory keyMgrFactory = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
    keyMgrFactory.init(keystore, password.toCharArray());
    return keyMgrFactory.getKeyManagers();
};

    public static void main(String[] args){
        SSLServerSocket ss = null;
        try {
            ss = getServerSocketWithCert(12345, Server.class.getResourceAsStream("/privateKey.store"), "password");
        } catch(BindException e){
            e.printStackTrace();
            System.exit(1);
        } catch (KeyManagementException e) {
            e.printStackTrace();
        } catch (NoSuchAlgorithmException e) {
            e.printStackTrace();
        } catch (CertificateException e) {
            e.printStackTrace();
        } catch (KeyStoreException e) {
            e.printStackTrace();
        } catch (UnrecoverableKeyException e) {
            e.printStackTrace();
        }
        while(true){
            SSLSocket s = ss.accept();
            new DataOutputStream(s.getOutputStream()).writeUTF("test");
            //TODO ERROR IS APPENING HERE
        }
    }

客户:

public static SSLSocket getSocketWithCert(InetAddress ip, int port, InputStream pathToCert, String passwordFromCert) throws IOException,
                                KeyManagementException, NoSuchAlgorithmException, CertificateException, KeyStoreException {
    TrustManager[] tmm;
    KeyStore ks  = KeyStore.getInstance("BKS");
    ks.load(pathToCert, passwordFromCert.toCharArray());
    tmm=tm(ks);
    SSLContext ctx = SSLContext.getInstance("TLS");
    ctx.init(null, tmm, null);
    SSLSocketFactory SocketFactory = (SSLSocketFactory) ctx.getSocketFactory();
    SSLSocket socket = (SSLSocket) SocketFactory.createSocket();
    socket.connect(new InetSocketAddress(ip, port), 5000);
    return socket;
}

private static TrustManager[] tm(KeyStore keystore) throws NoSuchAlgorithmException, KeyStoreException {
    TrustManagerFactory trustMgrFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
    trustMgrFactory.init(keystore);
    return trustMgrFactory.getTrustManagers();
};
public static void(String[] args){
        int id;
        if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.JELLY_BEAN){
            id = R.raw.publickey;
        } else {
            id = R.raw.publickey_v1;
        }
        try {
            Socket s = SSLSocketKeystoreFactory.getSocketWithCert("myip", 12345, HackerMainActivity.this.getResources().openRawResource(id), "password");
        } catch (UnknownHostException | SecurityException e) {
            e.printStackTrace();
            return;
        } catch(SocketTimeoutException e){
            e.printStackTrace();
            return;
        } catch (KeyManagementException | NoSuchAlgorithmException | CertificateException | KeyStoreException e) {
            e.printStackTrace();
        }
        DataInputStream in = new DataInputStream(s.getInputStream());
        //TODO ERROR IS APPENING HERE
}

非常感谢您的帮助!

1 个解决方案

解决方案1
 0 已采纳  2015-11-25 18:01:34

我终于设法修复它...

错误是 Android 6.0 是放弃对 SHA-1 支持的版本。 对于有同样错误的人,只需使用 SHA-256 重新创建您的证书...

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 SSL 握手失败 Android 5.1 SSLHandshakeException-Android 6.0上的握手失败 套接字 io android 作为客户端握手失败 Eclipse-Java-解析Android-23的数据失败 android asynchttpclient javax.net.ssl.SSLHandshakeException:握手失败 javax.net.ssl.SSLHandshakeException:Android 7.0中握手失败 Websocket握手在Java中失败 Webview HTTPS 握手失败 带有SSL的RMI:握手失败 无法解决 RecyclerView 版本 23
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM