SMACK 4.2.4 通过 TLS 与 ejabberd 连接
SMACK 4.2.4 connection with ejabberd through TLS
我一直在使用 ejabberd 和 smack 4.2.4。在我从 LetsEncrypt 实施 TLS 证书之前一切都很好。现在它给出 SSL 握手错误。
如果我在连接配置中启用 TLS,则相同的安全连接适用于 iOS 和其他客户端。
我进行了搜索,但无法找到解决此问题的方法。请帮助 Android 连接。
谢谢,
我花了很多时间,终于得到了适合我的解决方案。
configBuilder.setSecurityMode(ConnectionConfiguration.SecurityMode.required);
SSLContext sslContext = getSSLContext(context);
configBuilder.setCustomSSLContext(sslContext);
public SSLContext getSSLContext(Context context ) throws IOException, CertificateException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
CertificateFactory cf = null;
try {
cf = CertificateFactory.getInstance("X.509");
} catch (CertificateException e) {
Log.e(TAG, e.getMessage());
}
InputStream in = context.getResources().openRawResource(R.raw.chain); // R.raw.chain is CA Root Certificate added in RAW resources folder
InputStream caInput = new BufferedInputStream(in);
Certificate ca = null;
try {
ca = cf.generateCertificate(caInput);
Log.d(TAG, "ca=" + ((X509Certificate) ca).getSubjectDN());
}
catch (Exception e){
Log.e(TAG, e.getMessage());
}
finally {
caInput.close();
}
// Create a KeyStore containing our trusted CAs
String keyStoreType = KeyStore.getDefaultType();
KeyStore keyStore = KeyStore.getInstance(keyStoreType);
keyStore.load(null, null);
keyStore.setCertificateEntry("ca", ca);
// Create a TrustManager that trusts the CAs in our KeyStore
String tmfAlgorithm = TrustManagerFactory.getDefaultAlgorithm();
TrustManagerFactory tmf = TrustManagerFactory.getInstance(tmfAlgorithm);
tmf.init(keyStore);
// Create an SSLContext that uses our TrustManager
SSLContext sslContext = SSLContext.getInstance("TLS");
sslContext.init(null, tmf.getTrustManagers(), null);
return sslContext;
}
我一直在使用 ejabberd 和 smack 4.2.4。在我从 LetsEncrypt 实施 TLS 证书之前一切都很好。现在它给出 SSL 握手错误。
如果我在连接配置中启用 TLS,则相同的安全连接适用于 iOS 和其他客户端。
我进行了搜索,但无法找到解决此问题的方法。请帮助 Android 连接。
谢谢,
我花了很多时间,终于得到了适合我的解决方案。
configBuilder.setSecurityMode(ConnectionConfiguration.SecurityMode.required);
SSLContext sslContext = getSSLContext(context);
configBuilder.setCustomSSLContext(sslContext);
public SSLContext getSSLContext(Context context ) throws IOException, CertificateException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
CertificateFactory cf = null;
try {
cf = CertificateFactory.getInstance("X.509");
} catch (CertificateException e) {
Log.e(TAG, e.getMessage());
}
InputStream in = context.getResources().openRawResource(R.raw.chain); // R.raw.chain is CA Root Certificate added in RAW resources folder
InputStream caInput = new BufferedInputStream(in);
Certificate ca = null;
try {
ca = cf.generateCertificate(caInput);
Log.d(TAG, "ca=" + ((X509Certificate) ca).getSubjectDN());
}
catch (Exception e){
Log.e(TAG, e.getMessage());
}
finally {
caInput.close();
}
// Create a KeyStore containing our trusted CAs
String keyStoreType = KeyStore.getDefaultType();
KeyStore keyStore = KeyStore.getInstance(keyStoreType);
keyStore.load(null, null);
keyStore.setCertificateEntry("ca", ca);
// Create a TrustManager that trusts the CAs in our KeyStore
String tmfAlgorithm = TrustManagerFactory.getDefaultAlgorithm();
TrustManagerFactory tmf = TrustManagerFactory.getInstance(tmfAlgorithm);
tmf.init(keyStore);
// Create an SSLContext that uses our TrustManager
SSLContext sslContext = SSLContext.getInstance("TLS");
sslContext.init(null, tmf.getTrustManagers(), null);
return sslContext;
}