在用SSL立连接,但总是提示握手失败,对方关闭连接。
avax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)
at ssl.HTTPSClient.main(HTTPSClient.java:31)
Caused by: java.io.EOFException: SSL peer shut down incorrectly
at com.sun.net.ssl.internal.ssl.InputRecord.read(Unknown Source)
... 4 more
后来在网上找到是如下原因:
SSLContext.getInstance("TSLv1");(此处用于指定安全协议)
得到的SSLContext再生成SSLSocketFactory再得到SSLSocket。
而此时的SSLSocket支持SSL的多个版本,所以需要用
SSLSocket.setEnabledProtocols(String[] protocols)指定协议版本,(此处才指定协议版本)
如果缺少这步,在握手时会采用缺省的SSLv2。