系统调用期间的 I/O 错误，对等方重置连接

Question

近 2 年来，我们一直成功地从具有 HTTP url 的网络服务器获取数据，没有任何问题。

最近，出于某种安全原因，我们已经迁移到 HTTPS。这就是问题出现的时候。

使用 WiFi 一切正常，当我定期连接到 2G 袖珍数据时，服务器问题会重置连接。

我正在使用 DefaultHttpClient 连接到服务器。

我已经尝试了很多解决方法，但都没有救我。

1. javax.net.ssl.SSLException: Read error: ssl=0x56e63588: I/O error during system call, Connection reset by peer

2. 我已将所有可用属性应用于 HttpConnectionParams

   HttpConnectionParams.setConnectionTimeout(httpClient.getParams(),120000);
   HttpConnectionParams.setSoTimeout(httpClient.getParams(), 120000);
   HttpConnectionParams.setLinger(httpClient.getParams(), 120000);
   HttpConnectionParams.setTcpNoDelay(httpClient.getParams(), true);
   HttpConnectionParams.setStaleCheckingEnabled(httpClient.getParams(), false);
   

3. 另一个谷歌小组讨论表明这个问题可能是活动理想状态的原因。所以我实现了这样的东西来保持屏幕清醒。

   powerManager = (PowerManager) getSystemService(Context.POWER_SERVICE);
   wakeLock = powerManager.newWakeLock(PowerManager.FULL_WAKE_LOCK,"My Tag");
   wakeLock.acquire();
   

在onDestroy() 我用wakeLock.release(); 发布了它

但这也无济于事。

还有什么我需要在服务器端检查的吗？

Answer 1

我遇到了类似的 SSL 错误。原来 Pre-lollipop 设备不支持 SSL TLSv1.1、TLSv1.2。我通过包含启用这些 SSL 协议的 TLSSocketFactory 包装类来修复它。 尝试将以下内容添加到您的代码中：

    static {
    final SSLSocketFactory sslSocketFactory;
    try {
        sslSocketFactory = new TLSSocketFactory();
        HttpsURLConnection.setDefaultSSLSocketFactory(sslSocketFactory);
    } catch (KeyManagementException ignored) {

    } catch (NoSuchAlgorithmException e) {
        e.printStackTrace();
    }
}

---

import java.io.IOException;
import java.net.InetAddress;
import java.net.Socket;
import java.net.UnknownHostException;
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;

import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSocket;
import javax.net.ssl.SSLSocketFactory;

/**
 * @author fkrauthan
 * http://blog.dev-area.net/2015/08/13/android-4-1-enable-tls-1-1-and-tls-1-2/
 *
 *
// IMPORTANT: Pre-lollipop devices do not support SSL TLSv1.1, TLSv1.2
// so I've included a TLSSocketFactory wrapper class that enables these SSL
// protocols.
 */
public class TLSSocketFactory extends SSLSocketFactory {

    private SSLSocketFactory internalSSLSocketFactory;

    public TLSSocketFactory() throws KeyManagementException, NoSuchAlgorithmException {
        SSLContext context = SSLContext.getInstance("TLS");
        context.init(null, null, null);
        internalSSLSocketFactory = context.getSocketFactory();
    }

    @Override
    public String[] getDefaultCipherSuites() {
        return internalSSLSocketFactory.getDefaultCipherSuites();
    }

    @Override
    public String[] getSupportedCipherSuites() {
        return internalSSLSocketFactory.getSupportedCipherSuites();
    }

    @Override
    public Socket createSocket(Socket s, String host, int port, boolean autoClose) throws IOException {
        return enableTLSOnSocket(internalSSLSocketFactory.createSocket(s, host, port, autoClose));
    }

    @Override
    public Socket createSocket(String host, int port) throws IOException, UnknownHostException {
        return enableTLSOnSocket(internalSSLSocketFactory.createSocket(host, port));
    }

    @Override
    public Socket createSocket(String host, int port, InetAddress localHost, int localPort) throws IOException, UnknownHostException {
        return enableTLSOnSocket(internalSSLSocketFactory.createSocket(host, port, localHost, localPort));
    }

    @Override
    public Socket createSocket(InetAddress host, int port) throws IOException {
        return enableTLSOnSocket(internalSSLSocketFactory.createSocket(host, port));
    }

    @Override
    public Socket createSocket(InetAddress address, int port, InetAddress localAddress, int localPort) throws IOException {
        return enableTLSOnSocket(internalSSLSocketFactory.createSocket(address, port, localAddress, localPort));
    }

    private Socket enableTLSOnSocket(Socket socket) {
        if(socket != null && (socket instanceof SSLSocket)) {
            ((SSLSocket)socket).setEnabledProtocols(new String[] {"TLSv1.1", "TLSv1.2"});
        }
        return socket;
    }
}