Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Sergey Shilovsky2020-10-13 18:23:50
Android
Sergey Shilovsky, 2020-10-13 18:23:50

How to add self-signed certificate for SSL connection?

Good day. I'm trying to set up an SSL connection to my server using a self-signed certificate.
But I can't add my certificate to TrustManager, I get an error:

SSLHandshakeException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.

Caused by: java.security.cert.CertificateException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.

To bypass, I created my own TrustManager, but this solution does not seem right to me.

static class MyTrustManger implements X509TrustManager {
        @Override
        public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {

        }

        @Override
        public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {

        }

        @Override
        public X509Certificate[] getAcceptedIssuers() {
            return null;
        }
    }

 public static SSLSocket createSSL() {
        try {
            KeyStore trustStore = KeyStore.getInstance("BKS");
            String tmfAlgorithm = TrustManagerFactory.getDefaultAlgorithm();
            TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance(tmfAlgorithm);
            InputStream trustStoreStream = context.getResources().openRawResource(R.raw.certstore);
            trustStore.load(trustStoreStream, "1234".toCharArray());
            trustManagerFactory.init(trustStore);


            TrustManager[] trustManagers = trustManagerFactory.getTrustManagers(); //Не работает
//            TrustManager[] trustManagers = new TrustManager[]{new MyTrustManger()}; //Работает

            KeyStore keyStore = KeyStore.getInstance("BKS");
            KeyManagerFactory keyManagerFactory = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
            InputStream keyStoreStream = context.getResources().openRawResource(R.raw.clientkeystore);
            keyStore.load(keyStoreStream, "1234".toCharArray());
            keyManagerFactory.init(keyStore, "1234".toCharArray());

            SSLContext sslContext = SSLContext.getInstance("TLS");
            sslContext.init(keyManagerFactory.getKeyManagers(), trustManagers, new SecureRandom());
 
            return (SSLSocket) sslContext.getSocketFactory().createSocket(host, 1443);
        } catch (Exception e) {
            return null;
        }
    }

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
S
SHAKIRA2020-09-26 20:40:34
MacBook Pro 13 with Tourch Bar 2017 does not see a usb flash drive on the right side of any port. This is fine? 2Reply
H
Hikanosu2021-04-22 17:13:36
How do I change the build directory in Arch? 2Reply
S
sulim0003332020-08-04 22:10:39
When compiling the game on android, errors fly out, what's the problem? 1Reply
S
Sufiks Sufiksovich2018-08-30 15:25:12
Teamviewer for Android not working or lagging? 0Reply
M
max3602016-04-05 18:20:48
Android authorization error? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question