我正在处理这个问题,并坦率地允许MITM攻击是一个邻没有。这是一个支持固定的更清洁的解决方案。将证书保存到您的原始资源文件夹中。
注意:可悲的是,当您调用getCertificate()时,SSLError会给我们一个SslCertificate。 SslCertificate是没用的。它的公开API不允许你验证公钥,只有创建日期,发布日期,发布时间等。但是,如果您打开此类,则会看到未公开的X509Certificate成员变量。 IDK为什么做出这个设计决定。但是有一个获取Bundle的API,并且X509 Certificate成员变量被存储在那里。所以我们以这种方式访问它,因为证书有更多有用的方法。
@Override
public void onReceivedSslError(WebView view, SslErrorHandler handler, SslError error) {
SslCertificate sslCertificateServer = error.getCertificate();
Certificate pinnedCert = getCertificateForRawResource(R.raw.your_cert, mContext);
Certificate serverCert = convertSSLCertificateToCertificate(sslCertificateServer);
if(pinnedCert.equals(serverCert)) {
handler.proceed();
} else {
super.onReceivedSslError(view, handler, error);
}
}
public static Certificate getCertificateForRawResource(int resourceId, Context context) {
CertificateFactory cf = null;
Certificate ca = null;
Resources resources = context.getResources();
InputStream caInput = resources.openRawResource(resourceId);
try {
cf = CertificateFactory.getInstance("X.509");
ca = cf.generateCertificate(caInput);
} catch (CertificateException e) {
Log.e(TAG, "exception", e);
} finally {
try {
caInput.close();
} catch (IOException e) {
Log.e(TAG, "exception", e);
}
}
return ca;
}
public static Certificate convertSSLCertificateToCertificate(SslCertificate sslCertificate) {
CertificateFactory cf = null;
Certificate certificate = null;
Bundle bundle = sslCertificate.saveState(sslCertificate);
byte[] bytes = bundle.getByteArray("x509-certificate");
if (bytes != null) {
try {
CertificateFactory certFactory = CertificateFactory.getInstance("X.509");
Certificate cert = certFactory.generateCertificate(new ByteArrayInputStream(bytes));
certificate = cert;
} catch (CertificateException e) {
Log.e(TAG, "exception", e);
}
}
return certificate;
}
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
