如何从TLS 1.0密码套件列表中删除TLS_EMPTY_RENEGOTIATION_INFO_SCSV(0x00ff)

时间:2014-11-11 08:20:11

标签: android ssl

我想从TSL 1.0密码套件列表中删除TLS_EMPTY_RENEGOTIATION_INFO_SCSV,代码如下:

public class MySSLSocketFactory extends SSLSocketFactory
{
 //..... 
@Override
public Socket createSocket(Socket socket, String host, int port, boolean autoClose)
    throws IOException
{
    SSLSocket mySocket = (SSLSocket)sslContext.getSocketFactory().createSocket(socket, host, port, autoClose);

    String oriCiphers[] = sock.getEnabledCipherSuites();

    List<String> myCiphersList = new ArrayList<String>();
    for (String string : oriCiphers)
    {
        if (!string.contains("TLS_EMPTY_RENEGOTIATION_INFO_SCSV"))
        {
            myCiphersList .add(string);
        }
    }       
    sock.setEnabledCipherSuites(myCiphersList.toArray(new String[myCiphersList.size()]));
    return mySocket;
}

///
}

但它不起作用〜 如何从TSL 1.0密码套件列表中删除TLS_EMPTY_RENEGOTIATION_INFO_SCSV(0x00ff)。谢谢!

0 个答案:

没有答案
相关问题
最新问题