当前位置：首页 > article >正文

解决Jsoup 访问 https协议网站时产生connect reset错误

article 2025/8/22 0:17:10

一、问题现象

二、问题分析

三、解决问题过程

四、参考内容

一、问题现象

1.通过jsoup访问https://www.xncx.gov.cn/Item/13754.aspx 时报connect reset错误（jsoup 已经设置了忽略证书，信任所有主机）

2.通过chrome浏览器,fiddler访问目标URL正常。

二、问题分析

Connection Reset——其中一端主动断开连接

Connection Reset是在建立TCP连接之后，其中一方的TCP标志位使用了Reset标志主动重置了连接

客户端Or服务器端

而我这里既然是客户端报的错误信息，那势必是服务器主动断开了连接，为什么它要断开连接？

服务器主动断开连接的原因：

1.服务器异常

2.服务器和客户端长短连接不匹配

3.Https连接，服务器和客户端的TLS版本不一致

三、解决问题过程

首先怀疑是客户端与服务器端使用的TLS协议版本不同导致。

1.确认客户端tls版本(jdk1.8)

设置-Djavax.net.debug=all ,再次用jsoup 访问时返回以下日志：

Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_DH_anon_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DH_anon_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDH_anon_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_DH_anon_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384trustStore is: C:\Program Files\Java\jdk1.8.0_131\jre\lib\security\cacertstrustStore type is : jkstrustStore provider is :init truststoreadding as trusted cert:Subject: CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=USIssuer: CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=USAlgorithm: RSA; Serial number: 0xc3517Valid from Mon Jun 21 12:00:00 CST 1999 until Mon Jun 22 12:00:00 CST 2020adding as trusted cert:Subject: CN=Entrust Root Certification Authority - EC1, OU="(c) 2012 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=USIssuer: CN=Entrust Root Certification Authority - EC1, OU="(c) 2012 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=USAlgorithm: EC; Serial number: 0xa68b79290000000050d091f9Valid from Tue Dec 18 23:25:36 CST 2012 until Fri Dec 18 23:55:36 CST 2037adding as trusted cert:Subject: CN=SecureTrust CA, O=SecureTrust Corporation, C=USIssuer: CN=SecureTrust CA, O=SecureTrust Corporation, C=USAlgorithm: RSA; Serial number: 0xcf08e5c0816a5ad427ff0eb271859d0Valid from Wed Nov 08 03:31:18 CST 2006 until Tue Jan 01 03:40:55 CST 2030keyStore is :keyStore type is : jkskeyStore provider is :init keystoreinit keymanager of type SunX509trigger seeding of SecureRandomdone seeding SecureRandomIgnoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHAIgnoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384trigger seeding of SecureRandomdone seeding SecureRandomAllow unsafe renegotiation: falseAllow legacy hello messages: trueIs initial handshake: trueIs secure renegotiation: falsemain, setSoTimeout(30000) calledIgnoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256 for TLSv1Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 for TLSv1Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 for TLSv1Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1.1Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1.1Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256 for TLSv1.1Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1.1Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 for TLSv1.1Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1.1Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 for TLSv1.1%% No cached client session*** ClientHello, TLSv1.2RandomCookie: GMT: 1595891766 bytes = { 13, 206, 82, 66, 76, 253, 107, 89, 152, 84, 212, 156, 85, 89, 140, 88, 170, 187, 24, 20, 10, 89, 235, 192, 196, 128, 57, 63 }Session ID: {}Cipher Suites: [TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_DSS_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_EMPTY_RENEGOTIATION_INFO_SCSV]Compression Methods: { 0 }Extension elliptic_curves, curve names: {secp256r1, secp384r1, secp521r1, sect283k1, sect283r1, sect409k1, sect409r1, sect571k1, sect571r1, secp256k1}Extension ec_point_formats, formats: [uncompressed]Extension signature_algorithms, signature_algorithms: SHA512withECDSA, SHA512withRSA, SHA384withECDSA, SHA384withRSA, SHA256withECDSA, SHA256withRSA, SHA256withDSA, SHA1withECDSA, SHA1withRSA, SHA1withDSA***[write] MD5 and SHA1 hashes: len = 1610000: 01 00 00 9D 03 03 5F 1F 60 36 0D CE 52 42 4C FD ......_.`6..RBL.0010: 6B 59 98 54 D4 9C 55 59 8C 58 AA BB 18 14 0A 59 kY.T..UY.X.....Y0020: EB C0 C4 80 39 3F 00 00 3A C0 23 C0 27 00 3C C0 ....9?..:.#.'.<.0030: 25 C0 29 00 67 00 40 C0 09 C0 13 00 2F C0 04 C0 %.).g.@...../...0040: 0E 00 33 00 32 C0 2B C0 2F 00 9C C0 2D C0 31 00 ..3.2.+./...-.1.0050: 9E 00 A2 C0 08 C0 12 00 0A C0 03 C0 0D 00 16 00 ................0060: 13 00 FF 01 00 00 3A 00 0A 00 16 00 14 00 17 00 ......:.........0070: 18 00 19 00 09 00 0A 00 0B 00 0C 00 0D 00 0E 00 ................0080: 16 00 0B 00 02 01 00 00 0D 00 16 00 14 06 03 06 ................0090: 01 05 03 05 01 04 03 04 01 04 02 02 03 02 01 02 ................00A0: 02 .main, WRITE: TLSv1.2 Handshake, length = 161[Raw write]: length = 1660000: 16 03 03 00 A1 01 00 00 9D 03 03 5F 1F 60 36 0D ..........._.`6.0010: CE 52 42 4C FD 6B 59 98 54 D4 9C 55 59 8C 58 AA .RBL.kY.T..UY.X.0020: BB 18 14 0A 59 EB C0 C4 80 39 3F 00 00 3A C0 23 ....Y....9?..:.#0030: C0 27 00 3C C0 25 C0 29 00 67 00 40 C0 09 C0 13 .'.<.%.).g.@....0040: 00 2F C0 04 C0 0E 00 33 00 32 C0 2B C0 2F 00 9C ./.....3.2.+./..0050: C0 2D C0 31 00 9E 00 A2 C0 08 C0 12 00 0A C0 03 .-.1............0060: C0 0D 00 16 00 13 00 FF 01 00 00 3A 00 0A 00 16 ...........:....0070: 00 14 00 17 00 18 00 19 00 09 00 0A 00 0B 00 0C ................0080: 00 0D 00 0E 00 16 00 0B 00 02 01 00 00 0D 00 16 ................0090: 00 14 06 03 06 01 05 03 05 01 04 03 04 01 04 02 ................00A0: 02 03 02 01 02 02 ......main, handling exception: java.net.SocketException: Connection resetmain, SEND TLSv1.2 ALERT: fatal, description = unexpected_messagemain, WRITE: TLSv1.2 Alert, length = 2main, Exception sending alert: java.net.SocketException: Connection reset by peer: socket write errormain, called closeSocket()main, called close()main, called closeInternal(true)java.net.SocketException: Connection resetat java.net.SocketInputStream.read(SocketInputStream.java:210)at java.net.SocketInputStream.read(SocketInputStream.java:141)at sun.security.ssl.InputRecord.readFully(InputRecord.java:465)at sun.security.ssl.InputRecord.read(InputRecord.java:503)at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:973)at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1403)at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1387)at sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:559)at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:185)at sun.net.www.protocol.https.HttpsURLConnectionImpl.connect(HttpsURLConnectionImpl.java:153)at org.jsoup.helper.HttpConnection$Response.execute(HttpConnection.java:653)at org.jsoup.helper.HttpConnection$Response.execute(HttpConnection.java:630)at org.jsoup.helper.HttpConnection.execute(HttpConnection.java:262)

通过日志发现

ClientHello, TLSv1.2，确认客户端使用的是TLSV1.2

2.通过https://www.ssllabs.com/ssltest/index.html 查服务器端支持的TLS版本，最终发现也是支持TLS1.2

3.使用chrome 访问https://www.xncx.gov.cn/Item/13754.aspx 查看协议版本也是TLS1.2

通过以上验证发现使用的协议版本全是TLS1.2,基本上确认不是协议版本的问题。

再次决定通过fiddler抓包分析问题

1.配置jsoup 使用fiddler作为代理,访问目标地址，结果竟然没有异常。

通过对比正常与异常结果的日志发现：

正常访问时有extension server_name 值指定，指定-Djsse.enableSNIExtension=true,再次测试，还是connect reset 异常，同时日志中也没有看到Server Name Identification (SNI) 内容。最后决定修改HttpConnection.java 增加Server Name Identification(SNI)，最终问题解决。

附修改后的HttpConnection.java

package org.jsoup.helper;import org.jsoup.*;import org.jsoup.nodes.Document;import org.jsoup.parser.Parser;import org.jsoup.parser.TokenQueue;import javax.net.ssl.*;import java.io.*;import java.net.*;import java.nio.ByteBuffer;import java.nio.charset.Charset;import java.nio.charset.IllegalCharsetNameException;import java.security.KeyManagementException;import java.security.NoSuchAlgorithmException;import java.security.cert.X509Certificate;import java.util.*;import java.util.regex.Pattern;import java.util.zip.GZIPInputStream;import static org.jsoup.Connection.Method.HEAD;import static org.jsoup.internal.Normalizer.lowerCase;/*** Implementation of {@link Connection}.* @see org.jsoup.Jsoup#connect(String)*/public class HttpConnection implements Connection {public static final String CONTENT_ENCODING = "Content-Encoding";/*** Many users would get caught by not setting a user-agent and therefore getting different responses on their desktop* vs in jsoup, which would otherwise default to {@code Java}. So by default, use a desktop UA.*/public static final String DEFAULT_UA ="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36";private static final String USER_AGENT = "User-Agent";private static final String CONTENT_TYPE = "Content-Type";private static final String MULTIPART_FORM_DATA = "multipart/form-data";private static final String FORM_URL_ENCODED = "application/x-www-form-urlencoded";private static final int HTTP_TEMP_REDIR = 307; // http/1.1 temporary redirect, not in Java's set.public static Connection connect(String url) {Connection con = new HttpConnection();con.url(url);return con;}public static Connection connect(URL url) {Connection con = new HttpConnection();con.url(url);return con;}/*** Encodes the input URL into a safe ASCII URL string* @param url unescaped URL* @return escaped URL*/private static String encodeUrl(String url) {try {URL u = new URL(url);return encodeUrl(u).toExternalForm();} catch (Exception e) {return url;}}private static URL encodeUrl(URL u) {try {// odd way to encode urls, but it works!final URI uri = new URI(u.toExternalForm());return new URL(uri.toASCIIString());} catch (Exception e) {return u;}}private static String encodeMimeName(String val) {if (val == null)return null;return val.replaceAll("\"", "%22");}private Connection.Request req;private Connection.Response res;private HttpConnection() {req = new Request();res = new Response();}public Connection url(URL url) {req.url(url);return this;}public Connection url(String url) {Validate.notEmpty(url, "Must supply a valid URL");try {req.url(new URL(encodeUrl(url)));} catch (MalformedURLException e) {throw new IllegalArgumentException("Malformed URL: " + url, e);}return this;}public Connection proxy(Proxy proxy) {req.proxy(proxy);return this;}public Connection proxy(String host, int port) {req.proxy(host, port);return this;}public Connection userAgent(String userAgent) {Validate.notNull(userAgent, "User agent must not be null");req.header(USER_AGENT, userAgent);return this;}public Connection timeout(int millis) {req.timeout(millis);return this;}public Connection maxBodySize(int bytes) {req.maxBodySize(bytes);return this;}public Connection followRedirects(boolean followRedirects) {req.followRedirects(followRedirects);return this;}public Connection referrer(String referrer) {Validate.notNull(referrer, "Referrer must not be null");req.header("Referer", referrer);return this;}public Connection method(Method method) {req.method(method);return this;}public Connection ignoreHttpErrors(boolean ignoreHttpErrors) {req.ignoreHttpErrors(ignoreHttpErrors);return this;}public Connection ignoreContentType(boolean ignoreContentType) {req.ignoreContentType(ignoreContentType);return this;}public Connection validateTLSCertificates(boolean value) {req.validateTLSCertificates(value);return this;}public Connection data(String key, String value) {req.data(KeyVal.create(key, value));return this;}public Connection data(String key, String filename, InputStream inputStream) {req.data(KeyVal.create(key, filename, inputStream));return this;}public Connection data(Map<String, String> data) {Validate.notNull(data, "Data map must not be null");for (Map.Entry<String, String> entry : data.entrySet()) {req.data(KeyVal.create(entry.getKey(), entry.getValue()));}return this;}public Connection data(String... keyvals) {Validate.notNull(keyvals, "Data key value pairs must not be null");Validate.isTrue(keyvals.length %2 == 0, "Must supply an even number of key value pairs");for (int i = 0; i < keyvals.length; i += 2) {String key = keyvals[i];String value = keyvals[i+1];Validate.notEmpty(key, "Data key must not be empty");Validate.notNull(value, "Data value must not be null");req.data(KeyVal.create(key, value));}return this;}public Connection data(Collection<Connection.KeyVal> data) {Validate.notNull(data, "Data collection must not be null");for (Connection.KeyVal entry: data) {req.data(entry);}return this;}public Connection.KeyVal data(String key) {Validate.notEmpty(key, "Data key must not be empty");for (Connection.KeyVal keyVal : request().data()) {if (keyVal.key().equals(key))return keyVal;}return null;}public Connection requestBody(String body) {req.requestBody(body);return this;}public Connection header(String name, String value) {req.header(name, value);return this;}public Connection headers(Map<String,String> headers) {Validate.notNull(headers, "Header map must not be null");for (Map.Entry<String,String> entry : headers.entrySet()) {req.header(entry.getKey(),entry.getValue());}return this;}public Connection cookie(String name, String value) {req.cookie(name, value);return this;}public Connection cookies(Map<String, String> cookies) {Validate.notNull(cookies, "Cookie map must not be null");for (Map.Entry<String, String> entry : cookies.entrySet()) {req.cookie(entry.getKey(), entry.getValue());}return this;}public Connection parser(Parser parser) {req.parser(parser);return this;}public Document get() throws IOException {req.method(Method.GET);execute();return res.parse();}public Document post() throws IOException {req.method(Method.POST);execute();return res.parse();}public Connection.Response execute() throws IOException {res = Response.execute(req);return res;}public Connection.Request request() {return req;}public Connection request(Connection.Request request) {req = request;return this;}public Connection.Response response() {return res;}public Connection response(Connection.Response response) {res = response;return this;}public Connection postDataCharset(String charset) {req.postDataCharset(charset);return this;}@SuppressWarnings({"unchecked"})private static abstract class Base<T extends Connection.Base> implements Connection.Base<T> {URL url;Method method;Map<String, String> headers;Map<String, String> cookies;private Base() {headers = new LinkedHashMap<String, String>();cookies = new LinkedHashMap<String, String>();}public URL url() {return url;}public T url(URL url) {Validate.notNull(url, "URL must not be null");this.url = url;return (T) this;}public Method method() {return method;}public T method(Method method) {Validate.notNull(method, "Method must not be null");this.method = method;return (T) this;}public String header(String name) {Validate.notNull(name, "Header name must not be null");String val = getHeaderCaseInsensitive(name);if (val != null) {// headers should be ISO8859 - but values are often actually UTF-8. Test if it looks like UTF8 and convert if soval = fixHeaderEncoding(val);}return val;}private static String fixHeaderEncoding(String val) {try {byte[] bytes = val.getBytes("ISO-8859-1");if (!looksLikeUtf8(bytes))return val;return new String(bytes, "UTF-8");} catch (UnsupportedEncodingException e) {// shouldn't happen as these both always existreturn val;}}private static boolean looksLikeUtf8(byte[] input) {int i = 0;// BOM:if (input.length >= 3 && (input[0] & 0xFF) == 0xEF&& (input[1] & 0xFF) == 0xBB & (input[2] & 0xFF) == 0xBF) {i = 3;}int end;for (int j = input.length; i < j; ++i) {int o = input[i];if ((o & 0x80) == 0) {continue; // ASCII}// UTF-8 leading:if ((o & 0xE0) == 0xC0) {end = i + 1;} else if ((o & 0xF0) == 0xE0) {end = i + 2;} else if ((o & 0xF8) == 0xF0) {end = i + 3;} else {return false;}while (i < end) {i++;o = input[i];if ((o & 0xC0) != 0x80) {return false;}}}return true;}public T header(String name, String value) {Validate.notEmpty(name, "Header name must not be empty");Validate.notNull(value, "Header value must not be null");removeHeader(name); // ensures we don't get an "accept-encoding" and a "Accept-Encoding"headers.put(name, value);return (T) this;}public boolean hasHeader(String name) {Validate.notEmpty(name, "Header name must not be empty");return getHeaderCaseInsensitive(name) != null;}/*** Test if the request has a header with this value (case insensitive).*/public boolean hasHeaderWithValue(String name, String value) {return hasHeader(name) && header(name).equalsIgnoreCase(value);}public T removeHeader(String name) {Validate.notEmpty(name, "Header name must not be empty");Map.Entry<String, String> entry = scanHeaders(name); // remove is case insensitive tooif (entry != null)headers.remove(entry.getKey()); // ensures correct casereturn (T) this;}public Map<String, String> headers() {return headers;}private String getHeaderCaseInsensitive(String name) {Validate.notNull(name, "Header name must not be null");// quick evals for common case of title case, lower case, then scan for mixedString value = headers.get(name);if (value == null)value = headers.get(lowerCase(name));if (value == null) {Map.Entry<String, String> entry = scanHeaders(name);if (entry != null)value = entry.getValue();}return value;}private Map.Entry<String, String> scanHeaders(String name) {String lc = lowerCase(name);for (Map.Entry<String, String> entry : headers.entrySet()) {if (lowerCase(entry.getKey()).equals(lc))return entry;}return null;}public String cookie(String name) {Validate.notEmpty(name, "Cookie name must not be empty");return cookies.get(name);}public T cookie(String name, String value) {Validate.notEmpty(name, "Cookie name must not be empty");Validate.notNull(value, "Cookie value must not be null");cookies.put(name, value);return (T) this;}public boolean hasCookie(String name) {Validate.notEmpty(name, "Cookie name must not be empty");return cookies.containsKey(name);}public T removeCookie(String name) {Validate.notEmpty(name, "Cookie name must not be empty");cookies.remove(name);return (T) this;}public Map<String, String> cookies() {return cookies;}}public static class Request extends HttpConnection.Base<Connection.Request> implements Connection.Request {private Proxy proxy; // nullableprivate int timeoutMilliseconds;private int maxBodySizeBytes;private boolean followRedirects;private Collection<Connection.KeyVal> data;private String body = null;private boolean ignoreHttpErrors = false;private boolean ignoreContentType = false;private Parser parser;private boolean parserDefined = false; // called parser(...) vs initialized in ctorprivate boolean validateTSLCertificates = true;private String postDataCharset = DataUtil.defaultCharset;private Request() {timeoutMilliseconds = 30000; // 30 secondsmaxBodySizeBytes = 1024 * 1024; // 1MBfollowRedirects = true;data = new ArrayList<Connection.KeyVal>();method = Method.GET;headers.put("Accept-Encoding", "gzip");headers.put(USER_AGENT, DEFAULT_UA);parser = Parser.htmlParser();}public Proxy proxy() {return proxy;}public Request proxy(Proxy proxy) {this.proxy = proxy;return this;}public Request proxy(String host, int port) {this.proxy = new Proxy(Proxy.Type.HTTP, InetSocketAddress.createUnresolved(host, port));return this;}public int timeout() {return timeoutMilliseconds;}public Request timeout(int millis) {Validate.isTrue(millis >= 0, "Timeout milliseconds must be 0 (infinite) or greater");timeoutMilliseconds = millis;return this;}public int maxBodySize() {return maxBodySizeBytes;}public Connection.Request maxBodySize(int bytes) {Validate.isTrue(bytes >= 0, "maxSize must be 0 (unlimited) or larger");maxBodySizeBytes = bytes;return this;}public boolean followRedirects() {return followRedirects;}public Connection.Request followRedirects(boolean followRedirects) {this.followRedirects = followRedirects;return this;}public boolean ignoreHttpErrors() {return ignoreHttpErrors;}public boolean validateTLSCertificates() {return validateTSLCertificates;}public void validateTLSCertificates(boolean value) {validateTSLCertificates = value;}public Connection.Request ignoreHttpErrors(boolean ignoreHttpErrors) {this.ignoreHttpErrors = ignoreHttpErrors;return this;}public boolean ignoreContentType() {return ignoreContentType;}public Connection.Request ignoreContentType(boolean ignoreContentType) {this.ignoreContentType = ignoreContentType;return this;}public Request data(Connection.KeyVal keyval) {Validate.notNull(keyval, "Key val must not be null");data.add(keyval);return this;}public Collection<Connection.KeyVal> data() {return data;}public Connection.Request requestBody(String body) {this.body = body;return this;}public String requestBody() {return body;}public Request parser(Parser parser) {this.parser = parser;parserDefined = true;return this;}public Parser parser() {return parser;}public Connection.Request postDataCharset(String charset) {Validate.notNull(charset, "Charset must not be null");if (!Charset.isSupported(charset)) throw new IllegalCharsetNameException(charset);this.postDataCharset = charset;return this;}public String postDataCharset() {return postDataCharset;}}public static class Response extends HttpConnection.Base<Connection.Response> implements Connection.Response {private static final int MAX_REDIRECTS = 20;private static SSLSocketFactory sslSocketFactory;private static final String LOCATION = "Location";private int statusCode;private String statusMessage;private ByteBuffer byteData;private String charset;private String contentType;private boolean executed = false;private int numRedirects = 0;private Connection.Request req;/** Matches XML content types (like text/xml, application/xhtml+xml;charset=UTF8, etc)*/private static final Pattern xmlContentTypeRxp = Pattern.compile("(application|text)/\\w*\\+?xml.*");Response() {super();}private Response(Response previousResponse) throws IOException {super();if (previousResponse != null) {numRedirects = previousResponse.numRedirects + 1;if (numRedirects >= MAX_REDIRECTS)throw new IOException(String.format("Too many redirects occurred trying to load URL %s", previousResponse.url()));}}static Response execute(Connection.Request req) throws IOException {return execute(req, null);}static Response execute(Connection.Request req, Response previousResponse) throws IOException {Validate.notNull(req, "Request must not be null");String protocol = req.url().getProtocol();if (!protocol.equals("http") && !protocol.equals("https"))throw new MalformedURLException("Only http & https protocols supported");final boolean methodHasBody = req.method().hasBody();final boolean hasRequestBody = req.requestBody() != null;if (!methodHasBody)Validate.isFalse(hasRequestBody, "Cannot set a request body for HTTP method " + req.method());// set up the request for executionString mimeBoundary = null;if (req.data().size() > 0 && (!methodHasBody || hasRequestBody))serialiseRequestUrl(req);else if (methodHasBody)mimeBoundary = setOutputContentType(req);HttpURLConnection conn = createConnection(req);Response res;try {conn.connect();if (conn.getDoOutput())writePost(req, conn.getOutputStream(), mimeBoundary);int status = conn.getResponseCode();res = new Response(previousResponse);res.setupFromConnection(conn, previousResponse);res.req = req;// redirect if there's a location header (from 3xx, or 201 etc)if (res.hasHeader(LOCATION) && req.followRedirects()) {if (status != HTTP_TEMP_REDIR) {req.method(Method.GET); // always redirect with a get. any data param from original req are dropped.req.data().clear();req.requestBody(null);req.removeHeader(CONTENT_TYPE);}String location = res.header(LOCATION);if (location != null && location.startsWith("http:/") && location.charAt(6) != '/') // fix broken Location: http:/temp/AAG_New/en/index.phplocation = location.substring(6);URL redir = StringUtil.resolve(req.url(), location);req.url(encodeUrl(redir));for (Map.Entry<String, String> cookie : res.cookies.entrySet()) { // add response cookies to request (for e.g. login posts)req.cookie(cookie.getKey(), cookie.getValue());}return execute(req, res);}if ((status < 200 || status >= 400) && !req.ignoreHttpErrors())throw new HttpStatusException("HTTP error fetching URL", status, req.url().toString());// check that we can handle the returned content type; if not, abort before fetching itString contentType = res.contentType();if (contentType != null&& !req.ignoreContentType()&& !contentType.startsWith("text/")&& !xmlContentTypeRxp.matcher(contentType).matches())throw new UnsupportedMimeTypeException("Unhandled content type. Must be text/*, application/xml, or application/xhtml+xml",contentType, req.url().toString());// switch to the XML parser if content type is xml and not parser not explicitly setif (contentType != null && xmlContentTypeRxp.matcher(contentType).matches()) {// only flip it if a HttpConnection.Request (i.e. don't presume other impls want it):if (req instanceof HttpConnection.Request && !((Request) req).parserDefined) {req.parser(Parser.xmlParser());}}res.charset = DataUtil.getCharsetFromContentType(res.contentType); // may be null, readInputStream deals with itif (conn.getContentLength() != 0 && req.method() != HEAD) { // -1 means unknown, chunked. sun throws an IO exception on 500 response with no content when trying to read bodyInputStream bodyStream = null;try {bodyStream = conn.getErrorStream() != null ? conn.getErrorStream() : conn.getInputStream();if (res.hasHeaderWithValue(CONTENT_ENCODING, "gzip"))bodyStream = new GZIPInputStream(bodyStream);res.byteData = DataUtil.readToByteBuffer(bodyStream, req.maxBodySize());} finally {if (bodyStream != null) bodyStream.close();}} else {res.byteData = DataUtil.emptyByteBuffer();}} finally {// per Java's documentation, this is not necessary, and precludes keepalives. However in practise,// connection errors will not be released quickly enough and can cause a too many open files error.conn.disconnect();}res.executed = true;return res;}public int statusCode() {return statusCode;}public String statusMessage() {return statusMessage;}public String charset() {return charset;}public Response charset(String charset) {this.charset = charset;return this;}public String contentType() {return contentType;}public Document parse() throws IOException {Validate.isTrue(executed, "Request must be executed (with .execute(), .get(), or .post() before parsing response");Document doc = DataUtil.parseByteData(byteData, charset, url.toExternalForm(), req.parser());byteData.rewind();charset = doc.outputSettings().charset().name(); // update charset from meta-equiv, possiblyreturn doc;}public String body() {Validate.isTrue(executed, "Request must be executed (with .execute(), .get(), or .post() before getting response body");// charset gets set from header on execute, and from meta-equiv on parse. parse may not have happened yetString body;if (charset == null)body = Charset.forName(DataUtil.defaultCharset).decode(byteData).toString();elsebody = Charset.forName(charset).decode(byteData).toString();byteData.rewind();return body;}public byte[] bodyAsBytes() {Validate.isTrue(executed, "Request must be executed (with .execute(), .get(), or .post() before getting response body");return byteData.array();}// set up connection defaults, and details from requestprivate static HttpURLConnection createConnection(Connection.Request req) throws IOException {final HttpURLConnection conn = (HttpURLConnection) (req.proxy() == null ?req.url().openConnection() :req.url().openConnection(req.proxy()));conn.setRequestMethod(req.method().name());conn.setInstanceFollowRedirects(false); // don't rely on native redirection supportconn.setConnectTimeout(req.timeout());conn.setReadTimeout(req.timeout());if (conn instanceof HttpsURLConnection) {if (!req.validateTLSCertificates()) {//modify by zhxj 200728initUnSecureTSL(req.url());((HttpsURLConnection)conn).setSSLSocketFactory(sslSocketFactory);((HttpsURLConnection)conn).setHostnameVerifier(getInsecureVerifier());}}if (req.method().hasBody())conn.setDoOutput(true);if (req.cookies().size() > 0)conn.addRequestProperty("Cookie", getRequestCookieString(req));for (Map.Entry<String, String> header : req.headers().entrySet()) {conn.addRequestProperty(header.getKey(), header.getValue());}return conn;}/*** Instantiate Hostname Verifier that does nothing.* This is used for connections with disabled SSL certificates validation.*** @return Hostname Verifier that does nothing and accepts all hostnames*/private static HostnameVerifier getInsecureVerifier() {return new HostnameVerifier() {public boolean verify(String urlHostName, SSLSession session) {return true;}};}/*** Initialise Trust manager that does not validate certificate chains and* add it to current SSLContext.* <p/>* please not that this method will only perform action if sslSocketFactory is not yet* instantiated.** @throws IOException*/private static synchronized void initUnSecureTSL(final URL url) throws IOException {if (sslSocketFactory == null) {// Create a trust manager that does not validate certificate chainsfinal TrustManager[] trustAllCerts = new TrustManager[]{new X509TrustManager() {public void checkClientTrusted(final X509Certificate[] chain, final String authType) {}public void checkServerTrusted(final X509Certificate[] chain, final String authType) {}public X509Certificate[] getAcceptedIssuers() {return null;}}};// Install the all-trusting trust managerfinal SSLContext sslContext;try {//modify by zhxj 200728sslContext = SSLContext.getInstance("TLS");sslContext.init(null, trustAllCerts, new java.security.SecureRandom());// Create an ssl socket factory with our all-trusting manager//modify by zhxj 200728//sslSocketFactory = sslContext.getSocketFactory();SSLParameters sslParameters = new SSLParameters();List sniHostNames = new ArrayList(1);sniHostNames.add(new SNIHostName(url.getHost()));sslParameters.setServerNames(sniHostNames);sslSocketFactory = new SSLSocketFactoryWrapper(sslContext.getSocketFactory(), sslParameters);} catch (NoSuchAlgorithmException e) {throw new IOException("Can't create unsecure trust manager");} catch (KeyManagementException e) {throw new IOException("Can't create unsecure trust manager");}}}// set up url, method, header, cookiesprivate void setupFromConnection(HttpURLConnection conn, Connection.Response previousResponse) throws IOException {method = Method.valueOf(conn.getRequestMethod());url = conn.getURL();statusCode = conn.getResponseCode();statusMessage = conn.getResponseMessage();contentType = conn.getContentType();Map<String, List<String>> resHeaders = createHeaderMap(conn);processResponseHeaders(resHeaders);// if from a redirect, map previous response cookies into this responseif (previousResponse != null) {for (Map.Entry<String, String> prevCookie : previousResponse.cookies().entrySet()) {if (!hasCookie(prevCookie.getKey()))cookie(prevCookie.getKey(), prevCookie.getValue());}}}private static LinkedHashMap<String, List<String>> createHeaderMap(HttpURLConnection conn) {// the default sun impl of conn.getHeaderFields() returns header values out of orderfinal LinkedHashMap<String, List<String>> headers = new LinkedHashMap<String, List<String>>();int i = 0;while (true) {final String key = conn.getHeaderFieldKey(i);final String val = conn.getHeaderField(i);if (key == null && val == null)break;i++;if (key == null || val == null)continue; // skip http1.1 lineif (headers.containsKey(key))headers.get(key).add(val);else {final ArrayList<String> vals = new ArrayList<String>();vals.add(val);headers.put(key, vals);}}return headers;}void processResponseHeaders(Map<String, List<String>> resHeaders) {for (Map.Entry<String, List<String>> entry : resHeaders.entrySet()) {String name = entry.getKey();if (name == null)continue; // http/1.1 lineList<String> values = entry.getValue();if (name.equalsIgnoreCase("Set-Cookie")) {for (String value : values) {if (value == null)continue;TokenQueue cd = new TokenQueue(value);String cookieName = cd.chompTo("=").trim();String cookieVal = cd.consumeTo(";").trim();// ignores path, date, domain, validateTLSCertificates et al. req'd?// name not blank, value not nullif (cookieName.length() > 0)cookie(cookieName, cookieVal);}} else { // combine same header names with comma: http://www.w3.org/Protocols/rfc2616/rfc2616-sec4.html#sec4.2if (values.size() == 1)header(name, values.get(0));else if (values.size() > 1) {StringBuilder accum = new StringBuilder();for (int i = 0; i < values.size(); i++) {final String val = values.get(i);if (i != 0)accum.append(", ");accum.append(val);}header(name, accum.toString());}}}}private static String setOutputContentType(final Connection.Request req) {String bound = null;if (req.hasHeader(CONTENT_TYPE)) {// no-op; don't add content type as already set (e.g. for requestBody())// todo - if content type already set, we could add charset or boundary if those aren't included}else if (needsMultipart(req)) {bound = DataUtil.mimeBoundary();req.header(CONTENT_TYPE, MULTIPART_FORM_DATA + "; boundary=" + bound);} else {req.header(CONTENT_TYPE, FORM_URL_ENCODED + "; charset=" + req.postDataCharset());}return bound;}private static void writePost(final Connection.Request req, final OutputStream outputStream, final String bound) throws IOException {final Collection<Connection.KeyVal> data = req.data();final BufferedWriter w = new BufferedWriter(new OutputStreamWriter(outputStream, req.postDataCharset()));if (bound != null) {// boundary will be set if we're in multipart modefor (Connection.KeyVal keyVal : data) {w.write("--");w.write(bound);w.write("\r\n");w.write("Content-Disposition: form-data; name=\"");w.write(encodeMimeName(keyVal.key())); // encodes " to %22w.write("\"");if (keyVal.hasInputStream()) {w.write("; filename=\"");w.write(encodeMimeName(keyVal.value()));w.write("\"\r\nContent-Type: application/octet-stream\r\n\r\n");w.flush(); // flushDataUtil.crossStreams(keyVal.inputStream(), outputStream);outputStream.flush();} else {w.write("\r\n\r\n");w.write(keyVal.value());}w.write("\r\n");}w.write("--");w.write(bound);w.write("--");} else if (req.requestBody() != null) {// data will be in query string, we're sending a plaintext bodyw.write(req.requestBody());}else {// regular form data (application/x-www-form-urlencoded)boolean first = true;for (Connection.KeyVal keyVal : data) {if (!first)w.append('&');elsefirst = false;w.write(URLEncoder.encode(keyVal.key(), req.postDataCharset()));w.write('=');w.write(URLEncoder.encode(keyVal.value(), req.postDataCharset()));}}w.close();}private static String getRequestCookieString(Connection.Request req) {StringBuilder sb = new StringBuilder();boolean first = true;for (Map.Entry<String, String> cookie : req.cookies().entrySet()) {if (!first)sb.append("; ");elsefirst = false;sb.append(cookie.getKey()).append('=').append(cookie.getValue());// todo: spec says only ascii, no escaping / encoding defined. validate on set? or escape somehow here?}return sb.toString();}// for get url reqs, serialise the data map into the urlprivate static void serialiseRequestUrl(Connection.Request req) throws IOException {URL in = req.url();StringBuilder url = new StringBuilder();boolean first = true;// reconstitute the query, ready for appendsurl.append(in.getProtocol()).append("://").append(in.getAuthority()) // includes host, port.append(in.getPath()).append("?");if (in.getQuery() != null) {url.append(in.getQuery());first = false;}for (Connection.KeyVal keyVal : req.data()) {Validate.isFalse(keyVal.hasInputStream(), "InputStream data not supported in URL query string.");if (!first)url.append('&');elsefirst = false;url.append(URLEncoder.encode(keyVal.key(), DataUtil.defaultCharset)).append('=').append(URLEncoder.encode(keyVal.value(), DataUtil.defaultCharset));}req.url(new URL(url.toString()));req.data().clear(); // moved into url as get params}}private static boolean needsMultipart(Connection.Request req) {// multipart mode, for files. add the header if we see something with an inputstream, and return a non-null boundaryboolean needsMulti = false;for (Connection.KeyVal keyVal : req.data()) {if (keyVal.hasInputStream()) {needsMulti = true;break;}}return needsMulti;}public static class KeyVal implements Connection.KeyVal {private String key;private String value;private InputStream stream;public static KeyVal create(String key, String value) {return new KeyVal().key(key).value(value);}public static KeyVal create(String key, String filename, InputStream stream) {return new KeyVal().key(key).value(filename).inputStream(stream);}private KeyVal() {}public KeyVal key(String key) {Validate.notEmpty(key, "Data key must not be empty");this.key = key;return this;}public String key() {return key;}public KeyVal value(String value) {Validate.notNull(value, "Data value must not be null");this.value = value;return this;}public String value() {return value;}public KeyVal inputStream(InputStream inputStream) {Validate.notNull(value, "Data input stream must not be null");this.stream = inputStream;return this;}public InputStream inputStream() {return stream;}public boolean hasInputStream() {return stream != null;}@Overridepublic String toString() {return key + "=" + value;}}}

附SSLSocketFactoryWrapper.java

package org.jsoup.helper;import javax.net.ssl.SSLParameters;
import javax.net.ssl.SSLSocket;
import javax.net.ssl.SSLSocketFactory;
import java.io.IOException;
import java.net.InetAddress;
import java.net.Socket;
import java.net.UnknownHostException;public class SSLSocketFactoryWrapper extends SSLSocketFactory {private final SSLSocketFactory wrappedFactory;private final SSLParameters sslParameters;public SSLSocketFactoryWrapper(SSLSocketFactory factory, SSLParameters sslParameters) {this.wrappedFactory = factory;this.sslParameters = sslParameters;}@Overridepublic Socket createSocket(String host, int port) throws IOException, UnknownHostException {SSLSocket socket = (SSLSocket) wrappedFactory.createSocket(host, port);setParameters(socket);return socket;}@Overridepublic Socket createSocket(String host, int port, InetAddress localHost, int localPort)throws IOException, UnknownHostException {SSLSocket socket = (SSLSocket) wrappedFactory.createSocket(host, port, localHost, localPort);setParameters(socket);return socket;}@Overridepublic Socket createSocket(InetAddress host, int port) throws IOException {SSLSocket socket = (SSLSocket) wrappedFactory.createSocket(host, port);setParameters(socket);return socket;}@Overridepublic Socket createSocket(InetAddress address, int port, InetAddress localAddress, int localPort) throws IOException {SSLSocket socket = (SSLSocket) wrappedFactory.createSocket(address, port, localAddress, localPort);setParameters(socket);return socket;}@Overridepublic Socket createSocket() throws IOException {SSLSocket socket = (SSLSocket) wrappedFactory.createSocket();setParameters(socket);return socket;}@Overridepublic String[] getDefaultCipherSuites() {return wrappedFactory.getDefaultCipherSuites();}@Overridepublic String[] getSupportedCipherSuites() {return wrappedFactory.getSupportedCipherSuites();}@Overridepublic Socket createSocket(Socket s, String host, int port, boolean autoClose) throws IOException {SSLSocket socket = (SSLSocket) wrappedFactory.createSocket(s, host, port, autoClose);setParameters(socket);return socket;}private void setParameters(SSLSocket socket) {socket.setSSLParameters(sslParameters);}}