android中出现javax.net.ssl.SSLPeerUnverifiedException的解决方案

javax.net.ssl.SSLPeerUnverifiedException: No peer certificate的错误，根据有关资料解决如下：

1、编写SSLSocketFactoryEx，以代替原有的SSLSocketFactory，代码如下：

 

package com.nbcio.baishicha.yunbiji;

 

import java.io.IOException;

import java.net.Socket;

import java.net.UnknownHostException;

import java.security.KeyManagementException;

import java.security.KeyStore;

import java.security.KeyStoreException;

import java.security.NoSuchAlgorithmException;

import java.security.UnrecoverableKeyException;

 

import javax.net.ssl.SSLContext;

import javax.net.ssl.TrustManager;

import javax.net.ssl.X509TrustManager;

 

import org.apache.http.conn.ssl.SSLSocketFactory;

 

public class SSLSocketFactoryEx extends SSLSocketFactory {

    SSLContext sslContext = SSLContext.getInstance("TLS");

    

    public SSLSocketFactoryEx(KeyStore truststore) throws NoSuchAlgorithmException,

            KeyManagementException, KeyStoreException, UnrecoverableKeyException {

        super(truststore);

        // set up a TrustManager that trusts everything

        TrustManager tm = new X509TrustManager() {

           

            public X509Certificate[] getAcceptedIssuers() {

                //return new X509Certificate[]{};

                return null;

            }

@Override

            public void checkClientTrusted(X509Certificate[] arg0, String arg1) throws CertificateException {

           // TODO Auto-generated method stub

           

            }

@Override

            public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {

           // TODO Auto-generated method stub

           

            }

        };

        sslContext.init(null, new TrustManager[] { tm }, new java.security.SecureRandom());

    }

    @Override

    public Socket createSocket(Socket socket, String host, int port, boolean autoClose)

            throws IOException, UnknownHostException {

        injectHostname(socket, host);

        return sslContext.getSocketFactory().createSocket(socket, host, port, autoClose);

    }

    @Override

    public Socket createSocket() throws IOException {

        return sslContext.getSocketFactory().createSocket();

    }

    

    private void injectHostname(Socket socket, String host) {

        try {

            Field field = InetAddress.class.getDeclaredField("hostName");

            field.setAccessible(true);

            field.set(socket.getInetAddress(), host);

        } catch (Exception ignored) {

        }

    }

}

2、编写新的HttpClient  getNewHttpClient来代替原有的DefaultHttpClient，代码如下：

public static HttpClient getNewHttpClient() {

   try {

       KeyStore trustStore = KeyStore.getInstance(KeyStore.getDefaultType());

       trustStore.load(null, null);

 

       SSLSocketFactory sf = new SSLSocketFactoryEx(trustStore);

       sf.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);

 

       HttpParams params = new BasicHttpParams();

       HttpProtocolParams.setVersion(params, HttpVersion.HTTP_1_1);

       HttpProtocolParams.setContentCharset(params, HTTP.UTF_8);

 

       SchemeRegistry registry = new SchemeRegistry();

       registry.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));

       registry.register(new Scheme("https", sf, 443));

 

       ClientConnectionManager ccm = new ThreadSafeClientConnManager(params, registry);

 

       return new DefaultHttpClient(ccm, params);

   } catch (Exception e) {

       return new DefaultHttpClient();

   }

}

3、在postRequest调用的时候如下方式就可以：

HttpResponse httpResponse =  (HttpResponse) getNewHttpClient().execute(postMethod);

Related posts: