X509TrustManager的此实现有什么问题?

编程问答 2022-07-09

问题描述

我必须访问PlayStore中的应用,两者的实现方式相同 X509TrustManager的版本,但一直被标记为具有“不安全的实现” ',但是代码是相同的...对于如何改进它,我将不胜感激,这不是我最擅长的领域。谢谢

代码:

public void createTrustManager() {
    // Create a trust manager that does not validate certificate chains
    TrustManager[] trustAllCerts = new TrustManager[] {new X509TrustManager() {
        @Override
        public void checkClientTrusted(java.security.cert.X509Certificate[] chain,String authType) {
    }

    @Override
    public void checkServerTrusted(java.security.cert.X509Certificate[] chain,String authType) {


        try {
            try {
                chain[0].checkValidity();
            } catch (java.security.cert.CertificateExpiredException e) {
                e.printStackTrace();
            } catch (java.security.cert.CertificateNotYetValidException e) {
                e.printStackTrace();
            }
        } catch (IllegalArgumentException e) {

            try {
                throw new IllegalArgumentException("CertificateNotYetValidException");
            } catch (IllegalArgumentException ex) {
                ex.printStackTrace();
            }
        }

    }

    public java.security.cert.X509Certificate[] getAcceptedIssuers() {
        return null;
    }
    public void checkClientTrusted(X509Certificate[] certs,String authType) {
    }
    public void checkServerTrusted(X509Certificate[] certs,String authType) {
    }
}
};

// Install the all-trusting trust manager
SSLContext sc = null;
try {
    sc = SSLContext.getInstance("SSL");



} catch (NoSuchAlgorithmException e) {
    e.printStackTrace();
}
try {
    assert sc != null;

    sc.init(null,trustAllCerts,new java.security.SecureRandom());
} catch (KeyManagementException e) {
    e.printStackTrace();
}
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());

// Create all-trusting host name verifier

// Install the all-trusting host verifier
HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier()   {
    @Override
    public boolean verify(String hostname,SSLSession arg1) {
        return hostname.equalsIgnoreCase(RestFUL_URLS.DOMAIN) || hostname.equalsIgnoreCase(RestFUL_URLS.DOMAIN) || hostname.equalsIgnoreCase("reports.crashlytics.com") || hostname.equalsIgnoreCase("api.crashlytics.com")  || hostname.equalsIgnoreCase("api.pushy.me")  || hostname.equalsIgnoreCase("mqtt.pushy.me")  || hostname.equalsIgnoreCase("play.google.com" );

    }
});

}

解决方法

暂无找到可以解决该程序问题的有效方法,小编努力寻找整理中!

如果你已经找到好的解决方法,欢迎将解决方案带上本链接一起发送给小编。

小编邮箱:dio#foxmail.com (将#修改为@)

androidandroidandroid-securityjavajavax509trustmanager

相关问答

matplotlib报错:AttributeError: module 'backend_interagg' has no attribute 'FigureCanvas'. Did you mean: 'FigureCanvasAgg'?
使用本地python环境可以成功执行 import pandas as pd impor...
gitlab登录失败,报错:This challenge page was accidentally cached by an intermediary and is no longer available.
设置时间 控制面板
后端开发常见错误
错误1:Request method ‘DELETE‘ not supported 错误还原:...
docker常见错误
错误1:启动docker镜像时报错:Error response from daemon:...
idea常见错误
错误1:private field ‘xxx‘ is never assigned 按Alt...
pip安装依赖失败
报错如下,通过源不能下载,最后警告pip需升级版本 Requirem...