• Home
• com.starrocks
• starrocks-bdb-je
• 18.3.20
• source code
• SSLDNHostVerifier.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.sleepycat.je.rep.utilint.net.SSLDNHostVerifier Maven / Gradle / Ivy

/*-
 * Copyright (C) 2002, 2018, Oracle and/or its affiliates. All rights reserved.
 *
 * This file was distributed by Oracle as part of a version of Oracle Berkeley
 * DB Java Edition made available at:
 *
 * http://www.oracle.com/technetwork/database/database-technologies/berkeleydb/downloads/index.html
 *
 * Please see the LICENSE file included in the top-level directory of the
 * appropriate version of Oracle Berkeley DB Java Edition for a copy of the
 * license and additional information.
 */

package com.sleepycat.je.rep.utilint.net;

import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.SSLSession;

import com.sleepycat.je.rep.net.InstanceParams;

/**
 * This is an implementation of HostnameVerifier, which is intended to verify
 * that the host to which we are connected is valid.  This implementation is
 * designed for the case where it is expected that the server's certificate
 * does not match the host name, but instead, contains a well-known
 * distinguished name (DN).  This check verifies that the DN matches
 * expectations.
 * 

 * Matching is done using Java regular expressions against the RFC1779
 * normalized DN.  The regular expression is applied against the entire DN
 * string, but the regular expression could be constructed to treat only a
 * portion of it as relevant.
 */

public class SSLDNHostVerifier
    extends SSLDNMatcher
    implements HostnameVerifier {

    /**
     * Construct an SSLDNHostVerifier
     *
     * @param params The parameter for authentication creation.  This class
     *        requires a Java regular expression to be applied to the subject
     *        common name.
     */
    public SSLDNHostVerifier(InstanceParams params) {
        super(params);
    }

    /**
     * Checks whether an SSL connection has been made to the intended target.
     * This should be called only after the SSL handshake has completed.
     *
     * @param targetHost the intended target of a network connection
     *   This parameter is not used by this implementation.
     * @param sslSession the SSLSession that has been set up for the connection
     * @return true if sslSession indicates that the connection has been made
     * to the correct host
     */
    @Override
    public boolean verify(String targetHost, SSLSession sslSession) {
        return peerMatches(sslSession);
    }

    /**
     * Verify that the string is a valid pattern.
     * @throws IllegalArgumentException if not a valid pattern.
     */
    public static void validate(String regex)
        throws IllegalArgumentException {

        validateRegex(regex);
    }
}