Package net.dona.doip.util.tls
Class TlsProtocolAndCipherSuiteConfigurationUtil
java.lang.Object
net.dona.doip.util.tls.TlsProtocolAndCipherSuiteConfigurationUtil
Utilities for restricting TLS connections to use appropriate protocol versions and cipher suites.
-
Nested Class Summary
Nested ClassesModifier and TypeClassDescriptionstatic class
A wrapper for anSSLServerSocketFactory
which ensures that all created server sockets will use appropriate protocols and cipher suites.static class
A wrapper for anSSLSocketFactory
which ensures that all created sockets will use appropriate protocols and cipher suites. -
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionstatic ServerSocket
Configures anSSLServerSocket
to use the appropriate protocols and cipher suites.static Socket
Configures anSSLSocket
to use the appropriate protocols and cipher suites.static SSLContext
Returns anSSLContext
which trusts all server certificates.
-
Field Details
-
ENABLED_PROTOCOLS
A list of TLS protocols both provided by the JVM and considered sufficiently strong. -
ENABLED_CIPHER_SUITES
A list of TLS cipher suites both provided by the JVM and considered sufficiently strong.
-
-
Constructor Details
-
TlsProtocolAndCipherSuiteConfigurationUtil
public TlsProtocolAndCipherSuiteConfigurationUtil()
-
-
Method Details
-
configureEnabledProtocolsAndCipherSuites
Configures anSSLSocket
to use the appropriate protocols and cipher suites. If the input is not anSSLSocket
no action is taken.- Parameters:
s
- aSocket
- Returns:
- the input
Socket
-
configureEnabledProtocolsAndCipherSuites
Configures anSSLServerSocket
to use the appropriate protocols and cipher suites. If the input is not anSSLServerSocket
no action is taken.- Parameters:
s
- aServerSocket
- Returns:
- the input
ServerSocket
-
getAllTrustingClientSSLContext
Returns anSSLContext
which trusts all server certificates.- Returns:
- an
SSLContext
which trusts all server certificates
-