add SSLUtil

2025-07-21 15:09:48 +08:00 · 2020-12-02 04:01:59 +08:00
parent 66271e4727
commit 77e6759d9a
4 changed files with 264 additions and 59 deletions
--- a/hutool-http/src/main/java/cn/hutool/http/ssl/SSLSocketFactoryBuilder.java
+++ b/hutool-http/src/main/java/cn/hutool/http/ssl/SSLSocketFactoryBuilder.java
@@ -1,113 +1,122 @@
 package cn.hutool.http.ssl;

+import cn.hutool.core.net.SSLContextBuilder;
+
+import javax.net.ssl.KeyManager;
+import javax.net.ssl.SSLSocketFactory;
+import javax.net.ssl.TrustManager;
 import java.security.KeyManagementException;
 import java.security.NoSuchAlgorithmException;
 import java.security.SecureRandom;

-import javax.net.ssl.KeyManager;
-import javax.net.ssl.SSLContext;
-import javax.net.ssl.SSLSocketFactory;
-import javax.net.ssl.TrustManager;
-
-import cn.hutool.core.util.ArrayUtil;
-import cn.hutool.core.util.StrUtil;
-
 /**
 * SSLSocketFactory构建器
- * @author Looly
 *
+ * @author Looly
+ * @see SSLContextBuilder
 */
-public class SSLSocketFactoryBuilder{
-	
-	/** Supports some version of SSL; may support other versions */
-	public static final String SSL = "SSL";
-	/** Supports SSL version 2 or later; may support other versions */
-	public static final String SSLv2 = "SSLv2";
-	/** Supports SSL version 3; may support other versions */
-	public static final String SSLv3 = "SSLv3";
-	
-	/** Supports some version of TLS; may support other versions */
-	public static final String TLS = "TLS";
-	/** Supports RFC 2246: TLS version 1.0 ; may support other versions */
-	public static final String TLSv1 = "TLSv1";
-	/** Supports RFC 4346: TLS version 1.1 ; may support other versions */
-	public static final String TLSv11 = "TLSv1.1";
-	/** Supports RFC 5246: TLS version 1.2 ; may support other versions */
-	public static final String TLSv12 = "TLSv1.2";
+public class SSLSocketFactoryBuilder {
+
+	/**
+	 * Supports some version of SSL; may support other versions
+	 */
+	public static final String SSL = SSLContextBuilder.SSL;
+	/**
+	 * Supports SSL version 2 or later; may support other versions
+	 */
+	public static final String SSLv2 = SSLContextBuilder.SSLv2;
+	/**
+	 * Supports SSL version 3; may support other versions
+	 */
+	public static final String SSLv3 = SSLContextBuilder.SSLv3;
+
+	/**
+	 * Supports some version of TLS; may support other versions
+	 */
+	public static final String TLS = SSLContextBuilder.TLS;
+	/**
+	 * Supports RFC 2246: TLS version 1.0 ; may support other versions
+	 */
+	public static final String TLSv1 = SSLContextBuilder.TLSv1;
+	/**
+	 * Supports RFC 4346: TLS version 1.1 ; may support other versions
+	 */
+	public static final String TLSv11 = SSLContextBuilder.TLSv11;
+	/**
+	 * Supports RFC 5246: TLS version 1.2 ; may support other versions
+	 */
+	public static final String TLSv12 = SSLContextBuilder.TLSv12;
+
+	SSLContextBuilder sslContextBuilder;
+
+	/**
+	 * 构造
+	 */
+	public SSLSocketFactoryBuilder() {
+		this.sslContextBuilder = SSLContextBuilder.create();
+	}

-	private String protocol = TLS;
-	private KeyManager[] keyManagers;
-	private TrustManager[] trustManagers = {new DefaultTrustManager()};
-	private SecureRandom secureRandom  = new SecureRandom();
-	
-	
 	/**
 	 * 创建 SSLSocketFactoryBuilder
+	 *
 	 * @return SSLSocketFactoryBuilder
 	 */
-	public static SSLSocketFactoryBuilder create(){
+	public static SSLSocketFactoryBuilder create() {
 		return new SSLSocketFactoryBuilder();
 	}
-	
+
 	/**
 	 * 设置协议
+	 *
 	 * @param protocol 协议
 	 * @return 自身
 	 */
-	public SSLSocketFactoryBuilder setProtocol(String protocol){
-		if(StrUtil.isNotBlank(protocol)){
-			this.protocol = protocol;
-		}
+	public SSLSocketFactoryBuilder setProtocol(String protocol) {
+		this.sslContextBuilder.setProtocol(protocol);
 		return this;
 	}
-	
+
 	/**
 	 * 设置信任信息
-	 * 
+	 *
 	 * @param trustManagers TrustManager列表
 	 * @return 自身
 	 */
 	public SSLSocketFactoryBuilder setTrustManagers(TrustManager... trustManagers) {
-		if (ArrayUtil.isNotEmpty(trustManagers)) {
-			this.trustManagers = trustManagers;
-		}
+		this.sslContextBuilder.setTrustManagers(trustManagers);
 		return this;
 	}
-	
+
 	/**
 	 * 设置 JSSE key managers
-	 * 
+	 *
 	 * @param keyManagers JSSE key managers
 	 * @return 自身
 	 */
 	public SSLSocketFactoryBuilder setKeyManagers(KeyManager... keyManagers) {
-		if (ArrayUtil.isNotEmpty(keyManagers)) {
-			this.keyManagers = keyManagers;
-		}
+		this.sslContextBuilder.setKeyManagers(keyManagers);
 		return this;
 	}
-	
+
 	/**
 	 * 设置 SecureRandom
+	 *
 	 * @param secureRandom SecureRandom
 	 * @return 自己
 	 */
-	public SSLSocketFactoryBuilder setSecureRandom(SecureRandom secureRandom){
-		if(null != secureRandom){
-			this.secureRandom = secureRandom;
-		}
+	public SSLSocketFactoryBuilder setSecureRandom(SecureRandom secureRandom) {
+		this.sslContextBuilder.setSecureRandom(secureRandom);
 		return this;
 	}
-	
+
 	/**
 	 * 构建SSLSocketFactory
+	 *
 	 * @return SSLSocketFactory
 	 * @throws NoSuchAlgorithmException 无此算法
-	 * @throws KeyManagementException Key管理异常
+	 * @throws KeyManagementException   Key管理异常
 	 */
-	public SSLSocketFactory build() throws NoSuchAlgorithmException, KeyManagementException{
-		SSLContext sslContext = SSLContext.getInstance(protocol);
-		sslContext.init(this.keyManagers, this.trustManagers, this.secureRandom);
-		return sslContext.getSocketFactory();
+	public SSLSocketFactory build() throws NoSuchAlgorithmException, KeyManagementException {
+		return this.sslContextBuilder.build().getSocketFactory();
 	}
 }