001/*
002 * Copyright 2014-2022 Ping Identity Corporation
003 * All Rights Reserved.
004 */
005/*
006 * Copyright 2014-2022 Ping Identity Corporation
007 *
008 * Licensed under the Apache License, Version 2.0 (the "License");
009 * you may not use this file except in compliance with the License.
010 * You may obtain a copy of the License at
011 *
012 *    http://www.apache.org/licenses/LICENSE-2.0
013 *
014 * Unless required by applicable law or agreed to in writing, software
015 * distributed under the License is distributed on an "AS IS" BASIS,
016 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
017 * See the License for the specific language governing permissions and
018 * limitations under the License.
019 */
020/*
021 * Copyright (C) 2014-2022 Ping Identity Corporation
022 *
023 * This program is free software; you can redistribute it and/or modify
024 * it under the terms of the GNU General Public License (GPLv2 only)
025 * or the terms of the GNU Lesser General Public License (LGPLv2.1 only)
026 * as published by the Free Software Foundation.
027 *
028 * This program is distributed in the hope that it will be useful,
029 * but WITHOUT ANY WARRANTY; without even the implied warranty of
030 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
031 * GNU General Public License for more details.
032 *
033 * You should have received a copy of the GNU General Public License
034 * along with this program; if not, see <http://www.gnu.org/licenses>.
035 */
036package com.unboundid.util.ssl;
037
038
039
040import javax.net.ssl.HostnameVerifier;
041import javax.net.ssl.SSLSession;
042import javax.net.ssl.SSLSocket;
043
044import com.unboundid.ldap.sdk.LDAPException;
045import com.unboundid.util.NotMutable;
046import com.unboundid.util.NotNull;
047import com.unboundid.util.ThreadSafety;
048import com.unboundid.util.ThreadSafetyLevel;
049
050
051
052/**
053 * This class provides an implementation of an {@code SSLSocket} verifier that
054 * will blindly accept any {@code SSLSocket}.
055 */
056@NotMutable()
057@ThreadSafety(level=ThreadSafetyLevel.COMPLETELY_THREADSAFE)
058public final class TrustAllSSLSocketVerifier
059       extends SSLSocketVerifier
060       implements HostnameVerifier
061{
062  /**
063   * A singleton instance of this SSL socket verifier.
064   */
065  @NotNull private static final TrustAllSSLSocketVerifier INSTANCE =
066       new TrustAllSSLSocketVerifier();
067
068
069
070  /**
071   * Creates a new instance of this {@code SSLSocket} verifier.
072   */
073  private TrustAllSSLSocketVerifier()
074  {
075    // No implementation is required.
076  }
077
078
079
080  /**
081   * Retrieves a singleton instance of this SSL socket verifier.
082   *
083   * @return  A singleton instance of this SSL socket verifier.
084   */
085  @NotNull()
086  public static TrustAllSSLSocketVerifier getInstance()
087  {
088    return INSTANCE;
089  }
090
091
092
093  /**
094   * Verifies that the provided {@code SSLSocket} is acceptable and the
095   * connection should be allowed to remain established.
096   *
097   * @param  host       The address to which the client intended the connection
098   *                    to be established.
099   * @param  port       The port to which the client intended the connection to
100   *                    be established.
101   * @param  sslSocket  The {@code SSLSocket} that should be verified.
102   *
103   * @throws LDAPException  If a problem is identified that should prevent the
104   *                         provided {@code SSLSocket} from remaining
105   *                         established.
106   */
107  @Override()
108  public void verifySSLSocket(@NotNull final String host, final int port,
109                              @NotNull final SSLSocket sslSocket)
110       throws LDAPException
111  {
112    // No implementation is required.  The SSLSocket will be considered
113    // acceptable as long as this method does not throw an exception.
114  }
115
116
117
118  /**
119   * Verifies that the provided hostname is acceptable for use with the
120   * negotiated SSL session.
121   *
122   * @param  hostname  The address to which the client intended the connection
123   *                   to be established.
124   * @param  session   The SSL session that was established.
125   */
126  @Override()
127  public boolean verify(@NotNull final String hostname,
128                        @NotNull final SSLSession session)
129  {
130    return true;
131  }
132}