/** * A SSLParameters constructor that allows the values for the * initial cipher suites array to be provided. Other values * default as specified in {@link #SSLParameters()}. * * @param cipherSuites An array of cipherSuites that is cloned for * use within the SSLParameters, or null. */ public SSLParameters(String[] cipherSuites) { setCipherSuites(cipherSuites); }
public void setCipherSuites(final String[] cipherSuites) { delegate.setCipherSuites(cipherSuites); }
/** * A SSLParameters constructor that allows the values for initial * cipher suites and protocols arrays to be provided. Other values * default as specified in {@link #SSLParameters()}. * * @param cipherSuites An array of cipher names that is cloned for * use within the SSLParameters, or null. * @param protocols An array of protocol names that is cloned for * use within the SSLParameters, or null. */ public SSLParameters(String[] cipherSuites, String[] protocols) { setCipherSuites(cipherSuites); setProtocols(protocols); }
Arrays.toString(cipherSuites)); sslParameters.setCipherSuites(cipherSuites);
/** {@inheritDoc} */ @Override public SSLContext createSslContext() throws SSLException { checkParameters(); try { KeyManagerFactory keyMgrFactory = KeyManagerFactory.getInstance(keyAlgorithm); KeyStore keyStore = loadKeyStore(keyStoreType, keyStoreFilePath, keyStorePwd); keyMgrFactory.init(keyStore, keyStorePwd); TrustManager[] mgrs = trustMgrs; if (mgrs == null) { TrustManagerFactory trustMgrFactory = TrustManagerFactory.getInstance(keyAlgorithm); KeyStore trustStore = loadKeyStore(trustStoreType, trustStoreFilePath, trustStorePwd); trustMgrFactory.init(trustStore); mgrs = trustMgrFactory.getTrustManagers(); } SSLContext ctx = SSLContext.getInstance(proto); if (cipherSuites != null || protocols != null) { SSLParameters sslParameters = new SSLParameters(); if (cipherSuites != null) sslParameters.setCipherSuites(cipherSuites); if (protocols != null) sslParameters.setProtocols(protocols); ctx = new SSLContextWrapper(ctx, sslParameters); } ctx.init(keyMgrFactory.getKeyManagers(), mgrs, null); return ctx; } catch (GeneralSecurityException e) { throw new SSLException("Failed to initialize SSL context " + parameters(), e); } }
sslParameters.setCipherSuites(cipherSuites);
void configure(SSLParameters params, String[] supportedProtocols, String[] supportedCipherSuites) { Assert.checkNotNullParam("supportedProtocols", supportedProtocols); Assert.checkNotNullParam("supportedCipherSuites", supportedCipherSuites); params.setProtocols(protocolSelector.evaluate(supportedProtocols)); params.setCipherSuites(cipherSuiteSelector.evaluate(supportedCipherSuites)); params.setUseCipherSuitesOrder(useCipherSuitesOrder); params.setWantClientAuth(wantClientAuth); // unsets need if (needClientAuth) params.setNeedClientAuth(needClientAuth); // unsets want }
/** * Returns a new SSLParameters based on this SSLSocket's current * cipher suites, protocols, and client authentication settings. * * @since 1.6 */ public SSLParameters getSSLParameters() { SSLParameters p = new SSLParameters(); p.setCipherSuites(getEnabledCipherSuites()); p.setProtocols(getEnabledProtocols()); p.setNeedClientAuth(getNeedClientAuth()); p.setWantClientAuth(getWantClientAuth()); return p; }
/** * Returns a new SSLParameters based on this SSLSocket's current * cipher suites, protocols, and client authentication settings. * * @since 1.6 */ public SSLParameters getSSLParameters() { SSLParameters p = new SSLParameters(); p.setCipherSuites(getEnabledCipherSuites()); p.setProtocols(getEnabledProtocols()); p.setNeedClientAuth(getNeedClientAuth()); p.setWantClientAuth(getWantClientAuth()); return p; }
private javax.net.ssl.SSLParameters createSSLParameters(boolean supported) { try { SSLSocket s = (SSLSocket) engineGetSocketFactory().createSocket(); javax.net.ssl.SSLParameters p = new javax.net.ssl.SSLParameters(); String[] cipherSuites; String[] protocols; if (supported) { cipherSuites = s.getSupportedCipherSuites(); protocols = s.getSupportedProtocols(); } else { cipherSuites = s.getEnabledCipherSuites(); protocols = s.getEnabledProtocols(); } p.setCipherSuites(cipherSuites); p.setProtocols(protocols); p.setNeedClientAuth(s.getNeedClientAuth()); p.setWantClientAuth(s.getWantClientAuth()); return p; } catch (IOException e) { /* * SSLContext.getDefaultSSLParameters specifies to throw * UnsupportedOperationException if there is a problem getting the * parameters */ throw new UnsupportedOperationException("Could not access supported SSL parameters"); } } }
/** * Customize an SslParameters instance with the configuration of this factory. * * @param sslParams The parameters to customize * @return The passed instance of sslParams (returned as a convenience) */ public SSLParameters customize(SSLParameters sslParams) { sslParams.setEndpointIdentificationAlgorithm(getEndpointIdentificationAlgorithm()); sslParams.setUseCipherSuitesOrder(isUseCipherSuitesOrder()); if (!_certHosts.isEmpty() || !_certWilds.isEmpty()) sslParams.setSNIMatchers(Collections.singletonList(new AliasSNIMatcher())); if (_selectedCipherSuites != null) sslParams.setCipherSuites(_selectedCipherSuites); if (_selectedProtocols != null) sslParams.setProtocols(_selectedProtocols); if (getWantClientAuth()) sslParams.setWantClientAuth(true); if (getNeedClientAuth()) sslParams.setNeedClientAuth(true); return sslParams; }
/** * A SSLParameters constructor that allows the values for the * initial cipher suites array to be provided. Other values * default as specified in {@link #SSLParameters()}. * * @param cipherSuites An array of cipherSuites that is cloned for * use within the SSLParameters, or null. */ public SSLParameters(String[] cipherSuites) { setCipherSuites(cipherSuites); }
/** * A SSLParameters constructor that allows the values for the * initial cipher suites array to be provided. Other values * default as specified in {@link #SSLParameters()}. * * @param cipherSuites An array of cipherSuites that is cloned for * use within the SSLParameters, or null. */ public SSLParameters(String[] cipherSuites) { setCipherSuites(cipherSuites); }
/** * A SSLParameters constructor that allows the values for the * initial cipher suites array to be provided. Other values * default as specified in {@link #SSLParameters()}. * * @param cipherSuites An array of cipherSuites that is cloned for * use within the SSLParameters, or null. */ public SSLParameters(String[] cipherSuites) { setCipherSuites(cipherSuites); }
/** * A SSLParameters constructor that allows the values for the * initial cipher suites array to be provided. Other values * default as specified in {@link #SSLParameters()}. * * @param cipherSuites An array of cipherSuites that is cloned for * use within the SSLParameters, or null. */ public SSLParameters(String[] cipherSuites) { setCipherSuites(cipherSuites); }
/** * A SSLParameters constructor that allows the values for the * initial cipher suites array to be provided. Other values * default as specified in {@link #SSLParameters()}. * * @param cipherSuites An array of cipherSuites that is cloned for * use within the SSLParameters, or null. */ public SSLParameters(String[] cipherSuites) { setCipherSuites(cipherSuites); }
/** {@inheritDoc} */ public void configure(HttpsParameters params) { // initialise the SSL context SSLEngine engine = context.createSSLEngine(); // get the default parameters SSLParameters defaultSSLParameters = context.getDefaultSSLParameters(); // Cert authentication is delayed later to the ClientCertAuthenticator params.setWantClientAuth(serverConfig.useSslClientAuthentication()); defaultSSLParameters.setWantClientAuth(serverConfig.useSslClientAuthentication()); // Cipher Suites params.setCipherSuites(serverConfig.getSSLCipherSuites()); defaultSSLParameters.setCipherSuites(serverConfig.getSSLCipherSuites()); // Protocols params.setProtocols(serverConfig.getSSLProtocols()); defaultSSLParameters.setProtocols(serverConfig.getSSLProtocols()); params.setSSLParameters(defaultSSLParameters); } }
@Override protected SSLParameters engineGetDefaultSSLParameters() { // TODO[jsse] Review initial values SSLParameters r = new SSLParameters(); r.setCipherSuites(getDefaultCipherSuites()); r.setProtocols(getDefaultProtocols()); return r; }
void configure(SSLParameters params, String[] supportedProtocols, String[] supportedCipherSuites) { Assert.checkNotNullParam("supportedProtocols", supportedProtocols); Assert.checkNotNullParam("supportedCipherSuites", supportedCipherSuites); params.setProtocols(protocolSelector.evaluate(supportedProtocols)); params.setCipherSuites(cipherSuiteSelector.evaluate(supportedCipherSuites)); params.setUseCipherSuitesOrder(useCipherSuitesOrder); params.setWantClientAuth(wantClientAuth); // unsets need if (needClientAuth) params.setNeedClientAuth(needClientAuth); // unsets want }
@Override public void initialize(final NamedEndpoint endpoint, final SSLEngine sslEngine) { final SSLParameters sslParameters = sslEngine.getSSLParameters(); sslParameters.setProtocols(excludeBlacklistedProtocols(sslParameters.getProtocols())); sslParameters.setCipherSuites(excludeBlacklistedCiphers(sslParameters.getCipherSuites())); setEnableRetransmissions(sslParameters, false); setApplicationProtocols(sslParameters, selectApplicationProtocols(attachment)); sslEngine.setSSLParameters(sslParameters); if (initializer != null) { initializer.initialize(endpoint, sslEngine); } }