Package com.amazonaws.http.conn.ssl
Class MasterSecretValidators
- java.lang.Object
-
- com.amazonaws.http.conn.ssl.MasterSecretValidators
-
public class MasterSecretValidators extends Object
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description static interface
MasterSecretValidators.MasterSecretValidator
Interface to validate the master secret of a SSL sessionstatic class
MasterSecretValidators.NoOpMasterSecretValidator
Dummy implementation ofMasterSecretValidators.MasterSecretValidator
that always returns true.
-
Constructor Summary
Constructors Constructor Description MasterSecretValidators()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static MasterSecretValidators.MasterSecretValidator
getMasterSecretValidator()
The implementation ofMasterSecretValidators.MasterSecretValidator
depends on the JVM version.static MasterSecretValidators.MasterSecretValidator
getMasterSecretValidator(JavaVersionParser.JavaVersion javaVersion)
-
-
-
Method Detail
-
getMasterSecretValidator
public static MasterSecretValidators.MasterSecretValidator getMasterSecretValidator()
The implementation ofMasterSecretValidators.MasterSecretValidator
depends on the JVM version. Certain JVMs are affected by a serious bug that could allow a malicious MITM to negotiate a null master secret. Non-affected JVMs return a dummy implementation that always returns true- Returns:
- The correct implementation of
MasterSecretValidators.MasterSecretValidator
-
getMasterSecretValidator
public static MasterSecretValidators.MasterSecretValidator getMasterSecretValidator(JavaVersionParser.JavaVersion javaVersion)
- Parameters:
javaVersion
- Current Java version- Returns:
- An appropriate
MasterSecretValidators.MasterSecretValidator
per the Java version in use
-
-