• Home
• com.browserup
• browserup-proxy-mitm
• 2.0.0
• source code
• InsecureTrustManagerFactory.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.browserup.bup.mitm.trustmanager.InsecureTrustManagerFactory Maven / Gradle / Ivy

/*
 * Copyright 2014 The Netty Project,
 *
 * The Netty Project licenses this file to you under the Apache License,
 * version 2.0 (the "License"); you may not use this file except in compliance
 * with the License. You may obtain a copy of the License at:
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 * License for the specific language governing permissions and limitations
 * under the License.
 */

 /*
 * Modifications Copyright (c) 2019 BrowserUp, Inc.
 */

package com.browserup.bup.mitm.trustmanager;

import io.netty.handler.ssl.util.SimpleTrustManagerFactory;

import javax.net.ssl.ManagerFactoryParameters;
import javax.net.ssl.TrustManager;
import javax.net.ssl.TrustManagerFactory;
import javax.net.ssl.X509ExtendedTrustManager;
import java.security.KeyStore;

/**
 * Note: This is a modified version of {@link io.netty.handler.ssl.util.InsecureTrustManagerFactory} from Netty
 * 4.0.36. Unlike the netty version, this class returns an {@link X509ExtendedTrustManager} instead of an
 * {@link javax.net.ssl.X509TrustManager} instance, which allows us to bypass additional certificate validations.
 * 

 * An insecure {@link TrustManagerFactory} that trusts all X.509 certificates without any verification.
 * 

 * NOTE:
 * Never use this {@link TrustManagerFactory} in production.
 * It is purely for testing purposes, and thus it is very insecure.
 * 
 */
public class InsecureTrustManagerFactory extends SimpleTrustManagerFactory {

    public static final TrustManagerFactory INSTANCE = new InsecureTrustManagerFactory();

    public static final X509ExtendedTrustManager tm = new InsecureExtendedTrustManager();

    @Override
    protected void engineInit(KeyStore keyStore) {
    }

    @Override
    protected void engineInit(ManagerFactoryParameters managerFactoryParameters) {
    }

    @Override
    protected TrustManager[] engineGetTrustManagers() {
        return new TrustManager[]{tm};
    }
}