public class PrivilegedMasterSecretValidator extends java.lang.Object implements MasterSecretValidators.MasterSecretValidator
MasterSecretValidators.MasterSecretValidator
that verifies the master secret is non null
through use of Sun internal APIs. This validation is done only for JVMs affected by the SKIP-TLS
bug. It is best effort and any exception encountered while trying to validate the master secret
(including SecurityException
) will be ignoredModifier and Type | Field and Description |
---|---|
private static org.apache.commons.logging.Log |
LOG |
Constructor and Description |
---|
PrivilegedMasterSecretValidator() |
Modifier and Type | Method and Description |
---|---|
private void |
failedToVerifyMasterSecret(java.lang.Throwable t) |
private java.lang.Object |
getMasterSecret(javax.net.ssl.SSLSession session,
java.lang.String className) |
private javax.net.ssl.SSLSession |
getSslSession(java.net.Socket socket) |
boolean |
isMasterSecretValid(java.net.Socket socket)
Double check the master secret of an SSL session is not null
|
private boolean |
privilegedIsMasterSecretValid(java.net.Socket socket)
Checks the validity of an SSLSession's master secret.
|
public boolean isMasterSecretValid(java.net.Socket socket)
isMasterSecretValid
in interface MasterSecretValidators.MasterSecretValidator
socket
- connected socketprivate boolean privilegedIsMasterSecretValid(java.net.Socket socket)
private javax.net.ssl.SSLSession getSslSession(java.net.Socket socket)
SSLSession
for the Socket or null if there is noneprivate java.lang.Object getMasterSecret(javax.net.ssl.SSLSession session, java.lang.String className) throws java.lang.Exception
java.lang.Exception
private void failedToVerifyMasterSecret(java.lang.Throwable t)