-
-
Save mlc/549409f649251897ebef to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import java.io.IOException; | |
import java.net.InetAddress; | |
import java.net.Socket; | |
import java.net.UnknownHostException; | |
import javax.net.ssl.SSLSocket; | |
import javax.net.ssl.SSLSocketFactory; | |
/** | |
* Enables TLS v1.2 when creating SSLSockets. | |
* <p/> | |
* For some reason, android supports TLS v1.2 from API 16, but enables it by | |
* default only from API 20. | |
* @link https://developer.android.com/reference/javax/net/ssl/SSLSocket.html | |
* @see SSLSocketFactory | |
*/ | |
class Tls12SocketFactory extends SSLSocketFactory { | |
private static final String[] TLS_V12_ONLY = {"TLSv1.2"}; | |
final SSLSocketFactory base; | |
public Tls12SocketFactory(SSLSocketFactory base) { | |
this.base = base; | |
} | |
@Override | |
public String[] getDefaultCipherSuites() { | |
return base.getDefaultCipherSuites(); | |
} | |
@Override | |
public String[] getSupportedCipherSuites() { | |
return base.getSupportedCipherSuites(); | |
} | |
@Override | |
public Socket createSocket(Socket s, String host, int port, boolean autoClose) throws IOException { | |
return patch(base.createSocket(s, host, port, autoClose)); | |
} | |
@Override | |
public Socket createSocket(String host, int port) throws IOException, UnknownHostException { | |
return patch(base.createSocket(host, port)); | |
} | |
@Override | |
public Socket createSocket(String host, int port, InetAddress localHost, int localPort) throws IOException, UnknownHostException { | |
return patch(base.createSocket(host, port, localHost, localPort)); | |
} | |
@Override | |
public Socket createSocket(InetAddress host, int port) throws IOException { | |
return patch(base.createSocket(host, port)); | |
} | |
@Override | |
public Socket createSocket(InetAddress address, int port, InetAddress localAddress, int localPort) throws IOException { | |
return patch(base.createSocket(address, port, localAddress, localPort)); | |
} | |
private Socket patch(Socket s) { | |
if (s instanceof SSLSocket) { | |
((SSLSocket) s).setEnabledProtocols(TLS_V12_ONLY); | |
} | |
return s; | |
} | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment