Skip to content

Instantly share code, notes, and snippets.

@erlangparasu

erlangparasu/TLSSocketFactory.java

Created April 2, 2019 18:33
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save erlangparasu/0870987f1d563208f35295375e893ad1 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save erlangparasu/0870987f1d563208f35295375e893ad1 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
TLSSocketFactory.java
import java.io.IOException;
import java.net.InetAddress;
import java.net.Socket;
import java.net.UnknownHostException;
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSocket;
import javax.net.ssl.SSLSocketFactory;
/**
* @author fkrauthan (https://blog.dev-area.net/2015/08/13/android-4-1-enable-tls-1-1-and-tls-1-2/)
*/
public class TLSSocketFactory extends SSLSocketFactory {
private SSLSocketFactory delegate; // https://github.com/square/okhttp/issues/2323
public TLSSocketFactory() throws KeyManagementException, NoSuchAlgorithmException {
SSLContext context = SSLContext.getInstance("TLS");
context.init(null, null, null);
delegate = context.getSocketFactory();
}
@Override
public String[] getDefaultCipherSuites() {
return delegate.getDefaultCipherSuites();
}
@Override
public String[] getSupportedCipherSuites() {
return delegate.getSupportedCipherSuites();
}
@Override
public Socket createSocket() throws IOException {
return enableTLSOnSocket(delegate.createSocket());
}
@Override
public Socket createSocket(Socket s, String host, int port, boolean autoClose) throws IOException {
return enableTLSOnSocket(delegate.createSocket(s, host, port, autoClose));
}
@Override
public Socket createSocket(String host, int port) throws IOException, UnknownHostException {
return enableTLSOnSocket(delegate.createSocket(host, port));
}
@Override
public Socket createSocket(String host, int port, InetAddress localHost, int localPort) throws IOException, UnknownHostException {
return enableTLSOnSocket(delegate.createSocket(host, port, localHost, localPort));
}
@Override
public Socket createSocket(InetAddress host, int port) throws IOException {
return enableTLSOnSocket(delegate.createSocket(host, port));
}
@Override
public Socket createSocket(InetAddress address, int port, InetAddress localAddress, int localPort) throws IOException {
return enableTLSOnSocket(delegate.createSocket(address, port, localAddress, localPort));
}
private Socket enableTLSOnSocket(Socket socket) {
if (socket != null && (socket instanceof SSLSocket)) {
((SSLSocket) socket).setEnabledProtocols(new String[]{"TLSv1.2"});
}
return socket;
}
}
@erlangparasu
Copy link
Copy Markdown
Author

erlangparasu commented Apr 2, 2019 

                Request.Builder builder = new Request.Builder();
                builder.url("https://duckduckgo.com");

                OkHttpClient client = new OkHttpClient.Builder()
                        .sslSocketFactory(new TLSSocketFactory())
                        .build();

                Response response = client.newCall(builder.build())
                        .execute();

@erlangparasu
Copy link
Copy Markdown
Author

erlangparasu commented Apr 2, 2019

^ Solution for HTTPS error:

HTTP FAILED: javax.net.ssl.SSLHandshakeException: javax.net.ssl.SSLProtocolException: SSL handshake aborted: ssl=0xb7d88820: Failure in SSL library, usually a protocol error

on Android 4 ( Jelly Bean / KitKat )

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment