public String getEndpointIdentificationAlgorithm() { return delegate.getEndpointIdentificationAlgorithm(); }
log.debug("SSL context params - need client auth: {} want client auth: {} endpoint id algorithm: {}", params.getNeedClientAuth(), params.getWantClientAuth(), params.getEndpointIdentificationAlgorithm()); String[] supportedProtocols = params.getProtocols(); for (String protocol : supportedProtocols) {
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }
final String endPointIdentificationAlgorithm = sslParameters.getEndpointIdentificationAlgorithm(); final boolean endPointVerificationEnabled = isEndPointVerificationEnabled(endPointIdentificationAlgorithm);
final String endPointIdentificationAlgorithm = sslParameters.getEndpointIdentificationAlgorithm(); final boolean endPointVerificationEnabled = isEndPointVerificationEnabled(endPointIdentificationAlgorithm);
public String getEndpointIdentificationAlgorithm() { return delegate.getEndpointIdentificationAlgorithm(); }
@SuppressWarnings("unused") static String getEndpointIdentificationAlgorithm(SSLParameters params) { return params.getEndpointIdentificationAlgorithm(); }
@SuppressWarnings("unused") static String getEndpointIdentificationAlgorithm(SSLParameters params) { return params.getEndpointIdentificationAlgorithm(); }
public String getEndpointIdentificationAlgorithm() { return delegate.getEndpointIdentificationAlgorithm(); }
public String getEndpointIdentificationAlgorithm() { return delegate.getEndpointIdentificationAlgorithm(); }
final String endPointIdentificationAlgorithm = sslParameters.getEndpointIdentificationAlgorithm(); final boolean endPointVerificationEnabled = isEndPointVerificationEnabled(endPointIdentificationAlgorithm);
static void setSSLParameters(SSLParameters params, SSLParametersImpl impl) { impl.setEndpointIdentificationAlgorithm(params.getEndpointIdentificationAlgorithm()); }
static void setSSLParameters(SSLParameters params, SSLParametersImpl impl) { impl.setEndpointIdentificationAlgorithm(params.getEndpointIdentificationAlgorithm()); }
String getEndpointIdentificationAlgorithmSE() { SSLParameters paras; if (conn != null) { paras = conn.getSSLParameters(); } else { paras = engine.getSSLParameters(); } return paras.getEndpointIdentificationAlgorithm(); }
private List<X509Certificate> checkTrusted(X509Certificate[] certs, String authType, SSLSession session, SSLParameters parameters, boolean clientAuth) throws CertificateException { byte[] ocspData = null; byte[] tlsSctData = null; String hostname = null; if (session != null) { hostname = session.getPeerHost(); ocspData = getOcspDataFromSession(session); tlsSctData = getTlsSctDataFromSession(session); } if (session != null && parameters != null) { String identificationAlgorithm = parameters.getEndpointIdentificationAlgorithm(); if ("HTTPS".equalsIgnoreCase(identificationAlgorithm)) { HostnameVerifier verifier = HttpsURLConnection.getDefaultHostnameVerifier(); if (!verifier.verify(hostname, session)) { throw new CertificateException("No subjectAltNames on the certificate match"); } } } return checkTrusted(certs, ocspData, tlsSctData, authType, hostname, clientAuth); }
private List<X509Certificate> checkTrusted(X509Certificate[] certs, String authType, SSLSession session, SSLParameters parameters, boolean clientAuth) throws CertificateException { byte[] ocspData = null; byte[] tlsSctData = null; String hostname = null; if (session != null) { hostname = session.getPeerHost(); ocspData = getOcspDataFromSession(session); tlsSctData = getTlsSctDataFromSession(session); } if (session != null && parameters != null) { String identificationAlgorithm = parameters.getEndpointIdentificationAlgorithm(); if ("HTTPS".equalsIgnoreCase(identificationAlgorithm)) { HostnameVerifier verifier = HttpsURLConnection.getDefaultHostnameVerifier(); if (!verifier.verify(hostname, session)) { throw new CertificateException("No subjectAltNames on the certificate match"); } } } return checkTrusted(certs, ocspData, tlsSctData, authType, hostname, clientAuth); }
/** * Applies SSLParameters to this engine. */ synchronized public void setSSLParameters(SSLParameters params) { super.setSSLParameters(params); // the super implementation does not handle the following parameters identificationProtocol = params.getEndpointIdentificationAlgorithm(); algorithmConstraints = params.getAlgorithmConstraints(); if ((handshaker != null) && !handshaker.started()) { handshaker.setIdentificationProtocol(identificationProtocol); handshaker.setAlgorithmConstraints(algorithmConstraints); } }
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }