public SSLParameters getSSLParameters() { return delegate.getSSLParameters(); }
private SSLServerSocket configureSSLServerSocket(SSLServerSocket socket) { SSLParameters sslParameters = socket.getSSLParameters(); configureSslParameters(sslParameters, false); socket.setSSLParameters(sslParameters); socket.setUseClientMode(false); return socket; }
public void configure(final SSLContext context, final SSLServerSocket sslServerSocket) { sslServerSocket.setUseClientMode(clientMode); final SSLParameters sslParameters = sslServerSocket.getSSLParameters(); configure(sslParameters, sslServerSocket.getSupportedProtocols(), sslServerSocket.getSupportedCipherSuites()); sslServerSocket.setSSLParameters(sslParameters); }
private TServerTransport getSSLServerTransport() { try { TServerTransport transport; TSSLTransportFactory.TSSLTransportParameters params = new TSSLTransportFactory.TSSLTransportParameters(); params.setKeyStore(getKeystore(), getKeystorePassword(), KeyManagerFactory.getDefaultAlgorithm(), getKeystoreType()); transport = TSSLTransportFactory.getServerSocket( port, 120000, InetAddress.getByName(bindAddress), params); ServerSocket serverSock = ((TServerSocket) transport).getServerSocket(); if (serverSock instanceof SSLServerSocket) { SSLServerSocket sslServerSock = (SSLServerSocket) serverSock; SSLParameters sslParameters = sslServerSock.getSSLParameters(); sslServerSock.setEnabledCipherSuites(getFilteredCipherSuites(sslParameters)); sslServerSock.setEnabledProtocols(getFilteredProtocols(sslParameters)); } return transport; } catch (Throwable throwable) { throw new FlumeException("Cannot start Thrift source.", throwable); } }
public SSLServerSocket newSslServerSocket(String host, int port, int backlog) throws IOException { checkIsStarted(); SSLContext context = getSslContext(); SSLServerSocketFactory factory = context.getServerSocketFactory(); SSLServerSocket socket = (SSLServerSocket)(host == null ? factory.createServerSocket(port, backlog) : factory.createServerSocket(port, backlog, InetAddress.getByName(host))); socket.setSSLParameters(customize(socket.getSSLParameters())); return socket; }
public SSLParameters getSSLParameters() { return ss.getSSLParameters(); }
public SSLParameters getSSLParameters() { return delegate.getSSLParameters(); }
public SSLParameters getSSLParameters() { return delegate.getSSLParameters(); }
public SSLParameters getSSLParameters() { return delegate.getSSLParameters(); }
public SSLServerSocket newSslServerSocket(String host, int port, int backlog) throws IOException { checkIsStarted(); SSLContext context = getSslContext(); SSLServerSocketFactory factory = context.getServerSocketFactory(); SSLServerSocket socket = (SSLServerSocket)(host == null ? factory.createServerSocket(port, backlog) : factory.createServerSocket(port, backlog, InetAddress.getByName(host))); socket.setSSLParameters(customize(socket.getSSLParameters())); return socket; }
public static void configureSocket(final SSLServerSocket ssocket) { if (!disableClientAuth) { ssocket.setNeedClientAuth(true); } final AtomicReference<SecureCipherSuitesAndProtocols> socketConfiguration = serverSocketConfiguration; synchronized (socketConfiguration) { if (socketConfiguration.get() == null) { socketConfiguration.set(new SecureCipherSuitesAndProtocols(ssocket.getSupportedCipherSuites(), ssocket.getSupportedProtocols())); log.debug("Server: " + Arrays.toString(socketConfiguration.get().getSecureCipherSuites())); } } ssocket.setEnabledCipherSuites(socketConfiguration.get().getSecureCipherSuites()); ssocket.setEnabledProtocols(socketConfiguration.get().getSecureProtocols()); ssocket.getSSLParameters().setUseCipherSuitesOrder(true); //when changing more SSL parameters here, make sure they get propagated in SSLSocketDecorator#configureSsl }
public void configure(final SSLContext context, final SSLServerSocket sslServerSocket) { sslServerSocket.setUseClientMode(clientMode); final SSLParameters sslParameters = sslServerSocket.getSSLParameters(); configure(sslParameters, sslServerSocket.getSupportedProtocols(), sslServerSocket.getSupportedCipherSuites()); sslServerSocket.setSSLParameters(sslParameters); }
public void configure(final SSLContext context, final SSLServerSocket sslServerSocket) { sslServerSocket.setUseClientMode(clientMode); final SSLParameters sslParameters = sslServerSocket.getSSLParameters(); configure(sslParameters, sslServerSocket.getSupportedProtocols(), sslServerSocket.getSupportedCipherSuites()); sslServerSocket.setSSLParameters(sslParameters); }
public void configure(final SSLContext context, final SSLServerSocket sslServerSocket) { sslServerSocket.setUseClientMode(clientMode); final SSLParameters sslParameters = sslServerSocket.getSSLParameters(); configure(sslParameters, sslServerSocket.getSupportedProtocols(), sslServerSocket.getSupportedCipherSuites()); sslServerSocket.setSSLParameters(sslParameters); }
/** Sets relevant socket options specified in encryption settings */ private static void prepareSocket(SSLServerSocket serverSocket, EncryptionOptions options) { String[] suites = filterCipherSuites(serverSocket.getSupportedCipherSuites(), options.cipher_suites); if(options.require_endpoint_verification) { SSLParameters sslParameters = serverSocket.getSSLParameters(); sslParameters.setEndpointIdentificationAlgorithm("HTTPS"); serverSocket.setSSLParameters(sslParameters); } serverSocket.setEnabledCipherSuites(suites); serverSocket.setNeedClientAuth(options.require_client_auth); }
/** Sets relevant socket options specified in encryption settings */ private static void prepareSocket(SSLServerSocket serverSocket, EncryptionOptions options) { String[] suites = filterCipherSuites(serverSocket.getSupportedCipherSuites(), options.cipher_suites); if(options.require_endpoint_verification) { SSLParameters sslParameters = serverSocket.getSSLParameters(); sslParameters.setEndpointIdentificationAlgorithm("HTTPS"); serverSocket.setSSLParameters(sslParameters); } serverSocket.setEnabledCipherSuites(suites); serverSocket.setNeedClientAuth(options.require_client_auth); }
/** Sets relevant socket options specified in encryption settings */ private static void prepareSocket(SSLServerSocket serverSocket, EncryptionOptions options) { String[] suites = filterCipherSuites(serverSocket.getSupportedCipherSuites(), options.cipher_suites); if(options.require_endpoint_verification) { SSLParameters sslParameters = serverSocket.getSSLParameters(); sslParameters.setEndpointIdentificationAlgorithm("HTTPS"); serverSocket.setSSLParameters(sslParameters); } serverSocket.setEnabledCipherSuites(suites); serverSocket.setNeedClientAuth(options.require_client_auth); }
private TServerTransport getSSLServerTransport() { try { TServerTransport transport; TSSLTransportFactory.TSSLTransportParameters params = new TSSLTransportFactory.TSSLTransportParameters(); params.setKeyStore(getKeystore(), getKeystorePassword(), KeyManagerFactory.getDefaultAlgorithm(), getKeystoreType()); transport = TSSLTransportFactory.getServerSocket( port, 120000, InetAddress.getByName(bindAddress), params); ServerSocket serverSock = ((TServerSocket) transport).getServerSocket(); if (serverSock instanceof SSLServerSocket) { SSLServerSocket sslServerSock = (SSLServerSocket) serverSock; SSLParameters sslParameters = sslServerSock.getSSLParameters(); sslServerSock.setEnabledCipherSuites(getFilteredCipherSuites(sslParameters)); sslServerSock.setEnabledProtocols(getFilteredProtocols(sslParameters)); } return transport; } catch (Throwable throwable) { throw new FlumeException("Cannot start Thrift source.", throwable); } }