java 使用ssl，tls 证书认证

public class HttpsTest {

public static void test(Context context)throws Exception {

//获得ssl上下文

        SSLContext sslContext = SSLContext.getInstance("TLS");

        //信任证书管理器

        TrustManagerFactory trustManager = TrustManagerFactory.getInstance("X509");

        //证书 第一种，导入成bks或者jks的证书

//        KeyStore keyStore = KeyStore.getInstance("BKS");

//        keyStore.load(context.getAssets().open("12306.bks"),"123456".toCharArray());

 //证书 第二种，直接使用cer证书      

  CertificateFactory cf = CertificateFactory.getInstance("X.509");

        X509Certificate cert = (X509Certificate)cf.generateCertificate(context.getAssets().open("srca.cer"));

        KeyStore keyStore = KeyStore.getInstance(KeyStore.getDefaultType());

        keyStore.load(null, null);

        keyStore.setCertificateEntry("certificate", cert);

        trustManager.init(keyStore);

   //KeyManager[] 第一个参数是授权的密钥管理器，用来授权验证。第二个是被授权的证书管理器，  

  //用来验证服务器端的证书。只验证服务器数据，第一个管理器可以为null  

   //ssl socket工厂创建socket

      sslContext.init(null,trustManager.getTrustManagers(),null);

        SSLSocketFactory socketFactory = sslContext.getSocketFactory();

        SSLSocket socket = (SSLSocket) socketFactory.createSocket("www.12306.cn", 443);

//        Socket socket = SSLSocketFactory.getDefault().createSocket("www.12306.cn", 443);//有ca认证的证书使用默认

        doHttps(socket);

    }

static void doHttps(Socket socket)throws Exception {

//接受数据的输入流

        final BufferedReader br =new BufferedReader(new InputStreamReader(socket.getInputStream()));

        //发送数据 输出流

        BufferedWriter bw =new BufferedWriter(new OutputStreamWriter(socket.getOutputStream()));

        new Thread() {

@Override

            public void run() {

while (true) {

String line =null;

                    try {

while ((line =br.readLine()) !=null) {

System.out.println("recv :" + line);

                        }

}catch (IOException e) {

e.printStackTrace();

                    }

}

}

}.start();

        bw.write("GET / HTTP/1.1\r\n");

        bw.write("Host: www.12306.cn\r\n\r\n");

        bw.flush();

    }

}