Re: Help with SSLSocket and friends

From:

=?ISO-8859-1?Q?Arne_Vajh=F8j?= <arne@vajhoej.dk>

Newsgroups:

comp.lang.java.programmer

Date:

Sat, 02 Feb 2008 15:39:20 -0500

Message-ID:

<47a4d4f6$0$90262$14726298@news.sunsite.dk>

Martin Gregorie wrote:

Can anybody point me to a tutorial or example showing how to create a
concrete SSL Socket class and the correct sequence to follow to start
and end a connection?

I've found a fairly brief tutorial on the JavaWorld website, written in
2001, but that was all a web search turned up. Is there anything better
or more recent?

Client:

SSLContext sslctx = SSLContext.getInstance("SSL");
sslctx.init(null, new X509TrustManager[] { new MyTrustManager() }, null);
Socket tmp = new Socket("localhost", port);
SSLSocketFactory sf = sslctx.getSocketFactory();
SSLSocket s = (SSLSocket)sf.createSocket(tmp, host, port, true);

and

class MyTrustManager implements X509TrustManager
{
     public void checkClientTrusted(X509Certificate[] chain, String
authType) {
     }
     public void checkServerTrusted(X509Certificate[] chain, String
authType) {
     }
     public X509Certificate[] getAcceptedIssuers() {
         return new X509Certificate[0];
     }
}

Server:

SSLServerSocketFactory ssf =
(SSLServerSocketFactory)SSLServerSocketFactory.getDefault();
SSLServerSocket ss = (SSLServerSocket)ssf.createServerSocket(port5);
SSLSocket s = (SSLSocket)ss.accept();

and

java -Djavax.net.ssl.keyStore=server.jks
-Djavax.net.ssl.keyStorePassword=xxxx YourClass

works.

Arne