JAVA-Exploit编写(4)--连接池

目录

1. 连接池简介

2. 代码实现

3. 访问https网站处理证书验证引起的问题 

---

1. 连接池简介

        Http1.0连接是无状态的，短链接，每次请求时建立连接、请求结束后Connection:keep-alive来实现Http的长连接。Http连接的建立和关闭本质上就是TCP连接的建立和关闭，在建立和关闭时会有三次握手和四次挥手的过程，占用资源多、开销大。为了降低频繁建立和断开Http连接对资源的消耗，就需要使用Http连接池来管理Http的连接，并保证一定数量的长连接，且系统能拥有更高的并发性能。

        HttpClient中创建http连接池的方式是使用定义的PoolingHttpClientConnectionManager类，该类实现了HttpClientConnectionManager接囗和ConnPoolControl接口，初始化连接池对象时，可以在构造函数中传入时间值参数，指定连接存活时间使用对象的setMaxTota1(0)方法来设置连接池的最大连接数，使用对象的setDefaultMaxPerRoute()方法设置路由最大连接数创建连接池.

2. 代码实现

package com.deger;

import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
import org.apache.http.util.EntityUtils;

import java.io.IOException;
import java.net.http.HttpClient;
import java.util.concurrent.TimeUnit;

public class PoolingHttpClient {
    public static void main(String[] args) {
        System.out.println(Doget("http://127.0.0.1/test.php?username=admin", getCm()));
    }

    public static PoolingHttpClientConnectionManager getCm() {
        PoolingHttpClientConnectionManager cm = new PoolingHttpClientConnectionManager(6000, TimeUnit.MICROSECONDS);
        //设置最大连接数
        cm.setMaxTotal(300);
        //每个主机的链接数
        cm.setDefaultMaxPerRoute(10);
        return cm;
    }

    public static String Doget(String url, PoolingHttpClientConnectionManager cm) {
        String res = null;
        CloseableHttpClient httpClient = null;
        CloseableHttpResponse response = null;
        httpClient = HttpClients.custom().setConnectionManager(cm).build();
        HttpGet httpGet = new HttpGet(url);


        try {
            response = httpClient.execute(httpGet);
            if (response.getStatusLine().getStatusCode() == 200) {
                res = EntityUtils.toString(response.getEntity());
            }
        } catch (IOException e) {
            e.printStackTrace();
        } finally {
            try {
                response.close();
            } catch (IOException e) {
                e.printStackTrace();
            }
            return res;
        }
    }
}

3. 访问https网站处理证书验证引起的问题 

package com.deger;

import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.config.Registry;
import org.apache.http.config.RegistryBuilder;
import org.apache.http.conn.socket.ConnectionSocketFactory;
import org.apache.http.conn.socket.PlainConnectionSocketFactory;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
import org.apache.http.util.EntityUtils;

import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import java.io.IOException;
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;

public class HttpClientSsl {
    public static void main(String[] args) throws NoSuchAlgorithmException, KeyManagementException {

        System.out.println(Doget("http://www.xxxxx.com"));
    }
    public static String Doget(String url) throws NoSuchAlgorithmException, KeyManagementException {
        CloseableHttpClient httpClient = null;
        CloseableHttpResponse response = null;
        String res = null;

        // 采用绕过验证的方式处理https请求
        SSLContext sslContext = createIgnoreVerifySSL();

        // 设置协议http和https对应的处理socket链接工厂的对象
        Registry<ConnectionSocketFactory> socketFactoryRegistry = RegistryBuilder.<ConnectionSocketFactory>create()
                .register("http", PlainConnectionSocketFactory.INSTANCE)
                .register("https", new SSLConnectionSocketFactory(sslContext))
                .build();

        PoolingHttpClientConnectionManager connManager = new PoolingHttpClientConnectionManager(socketFactoryRegistry);
        HttpClients.custom().setConnectionManager(connManager);
        // 创建HttpClient实例并设置连接管理器
        httpClient = HttpClients.custom().setConnectionManager(connManager).build();

        HttpGet httpGet = new HttpGet(url);


        try {
            response = httpClient.execute(httpGet);
            if (response.getStatusLine().getStatusCode() == 200) {
                res = EntityUtils.toString(response.getEntity());
            }
        } catch (IOException e) {
            e.printStackTrace();
        } finally {
            try {
                response.close();
                httpClient.close();
            } catch (IOException e) {
                e.printStackTrace();
            }
            return res;
        }


    }
    public static SSLContext createIgnoreVerifySSL() throws NoSuchAlgorithmException, KeyManagementException {
        SSLContext sc = SSLContext.getInstance("TLSv1.2");

        // 实现一个X509TrustManager
        X509TrustManager trustManager = new X509TrustManager() {
            @Override
            public void checkClientTrusted(X509Certificate[] paramArrayOfX509Certificate, String paramString) throws CertificateException {
                // 不进行任何客户端证书验证
            }

            @Override
            public void checkServerTrusted(X509Certificate[] paramArrayOfX509Certificate, String paramString) throws CertificateException {
                // 不进行任何服务器证书验证
            }

            @Override
            public X509Certificate[] getAcceptedIssuers() {
                return null; // 不接受任何颁发者
            }
        };

        // 初始化SSLContext
        sc.init(null, new TrustManager[]{trustManager}, null);

        return sc;
    }

}