com.atakmap.comms.app

Class TLSUtils

java.lang.Object

com.atakmap.comms.app.TLSUtils

public class TLSUtils
extends java.lang.Object

TLS helper methods

Constructor Summary

Constructors

Constructor and Description
TLSUtils()

Method Summary

Modifier and Type	Method and Description
static javax.net.ssl.SSLContext	createSSLContext(byte[] truststore, java.lang.String password) Create an SSL context from the truststore and specified password Use PKS12 and TLS
static javax.net.ssl.SSLContext	createSSLContext(java.lang.String truststoreType, java.lang.String credentialType) Pull truststore and credentials from internal storage Create an SSL Context for the truststore
static javax.net.ssl.SSLContext	createSSLContext(TrustStore truststore) Create an SSL context from the Truststore
static org.apache.http.conn.ssl.SSLSocketFactory	createSSLSocketFactory(byte[] truststore, java.lang.String password) Create an SSL context from the truststore and specified password
static org.apache.http.conn.ssl.SSLSocketFactory	createSSLSocketFactory(java.lang.String truststoreType, java.lang.String credentialType) Pull truststore and credentials from internal storage Create an SSL Socket Factory for the truststore
static org.apache.http.conn.ssl.SSLSocketFactory	createSSLSocketFactory(TrustStore truststore) Create an SSL context from the Truststore
static AtakAuthenticationCredentials	getCredentials(java.lang.String server, boolean bUseDefault) Get TAK Server credentials (TYPE_COT_SERVICE) for specified server host Optionally, use default credentials
static AtakAuthenticationCredentials	getDefaultCredentials(boolean bFirstAvailable) Get default TAK Server credentials (TYPE_COT_SERVICE) Optionally, get first available (if default not set)
static TrustStore	getDefaultTruststore(boolean bFirstAvailable) Get default TAK Server truststore Optionally, get first available (if default not set)
static java.util.List<CotPortListActivity.CotPort>	getServersWithCredentials(boolean bRequireUseAuth) Get list of TAK Server connections which have User Authentication credentials available.
static TrustStore	getTruststore(java.lang.String server, boolean bUseDefault) Get TAK Server truststore for specified server host Optionally, use default truststore
static TrustStore	getTruststoreForType(java.lang.String truststoreType, java.lang.String credentialType) Helper method to get Truststore and credentials
static void	promptCertificateError(android.content.Context context, java.lang.String host, java.lang.String message, boolean interactive)
static AtakCertificateDatabase.CertificateValidity	validateCert(java.lang.String hostname) Validate client cert stored for specified connection
static AtakCertificateDatabase.CertificateValidity	validateCert(java.lang.String hostname, int port) Validate client cert stored for specified connection

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

TLSUtils

public TLSUtils()

Method Detail

getTruststore

public static TrustStore getTruststore(java.lang.String server,
                                       boolean bUseDefault)

Get TAK Server truststore for specified server host Optionally, use default truststore

Parameters:

server - if empty, then use default truststore

bUseDefault - if true, then use default if truststore not found for specified server

Returns:

the trust store for the server based on the input.

getTruststoreForType

public static TrustStore getTruststoreForType(java.lang.String truststoreType,
                                              java.lang.String credentialType)

Helper method to get Truststore and credentials

Parameters:

truststoreType - the truststore type

credentialType - the credential type

Returns:

the truststore for the specified trustore and credential types

getDefaultTruststore

public static TrustStore getDefaultTruststore(boolean bFirstAvailable)

Get default TAK Server truststore Optionally, get first available (if default not set)

Returns:

the default truststore

getDefaultCredentials

public static AtakAuthenticationCredentials getDefaultCredentials(boolean bFirstAvailable)

Get default TAK Server credentials (TYPE_COT_SERVICE) Optionally, get first available (if default not set)

Returns:

the default credentials

getCredentials

public static AtakAuthenticationCredentials getCredentials(java.lang.String server,
                                                           boolean bUseDefault)

Get TAK Server credentials (TYPE_COT_SERVICE) for specified server host Optionally, use default credentials

Parameters:

server - if empty, then use default credentials

bUseDefault - if true, then use default if credentials not found for specified server

Returns:

the authentication credentials.

getServersWithCredentials

public static java.util.List<CotPortListActivity.CotPort> getServersWithCredentials(boolean bRequireUseAuth)

Get list of TAK Server connections which have User Authentication credentials available. Optionally require 'useAuth' be actively enabled

Returns:

list of server connections

createSSLContext

public static javax.net.ssl.SSLContext createSSLContext(java.lang.String truststoreType,
                                                        java.lang.String credentialType)
                                                 throws java.security.KeyStoreException,
                                                        java.security.NoSuchAlgorithmException,
                                                        java.security.KeyManagementException,
                                                        java.io.IOException,
                                                        java.security.cert.CertificateException

Pull truststore and credentials from internal storage Create an SSL Context for the truststore

Parameters:

truststoreType - the truststore type

credentialType - the credential type

Returns:

Throws:

java.security.KeyStoreException

java.security.NoSuchAlgorithmException

java.security.KeyManagementException

java.io.IOException

java.security.cert.CertificateException

createSSLContext

public static javax.net.ssl.SSLContext createSSLContext(TrustStore truststore)
                                                 throws java.security.KeyStoreException,
                                                        java.security.NoSuchAlgorithmException,
                                                        java.security.KeyManagementException,
                                                        java.io.IOException,
                                                        java.security.cert.CertificateException

Create an SSL context from the Truststore

Parameters:

truststore -

Returns:

Throws:

java.security.KeyStoreException

java.security.NoSuchAlgorithmException

java.security.KeyManagementException

java.io.IOException

java.security.cert.CertificateException

createSSLContext

public static javax.net.ssl.SSLContext createSSLContext(byte[] truststore,
                                                        java.lang.String password)
                                                 throws java.security.KeyStoreException,
                                                        java.security.NoSuchAlgorithmException,
                                                        java.security.KeyManagementException,
                                                        java.io.IOException,
                                                        java.security.cert.CertificateException

Create an SSL context from the truststore and specified password Use PKS12 and TLS

Parameters:

truststore -

password -

Returns:

Throws:

java.security.KeyStoreException

java.security.NoSuchAlgorithmException

java.security.KeyManagementException

java.io.IOException

java.security.cert.CertificateException

createSSLSocketFactory

public static org.apache.http.conn.ssl.SSLSocketFactory createSSLSocketFactory(java.lang.String truststoreType,
                                                                               java.lang.String credentialType)
                                                                        throws java.security.KeyStoreException,
                                                                               java.security.NoSuchAlgorithmException,
                                                                               java.security.KeyManagementException,
                                                                               java.io.IOException,
                                                                               java.security.cert.CertificateException,
                                                                               java.security.UnrecoverableKeyException

Pull truststore and credentials from internal storage Create an SSL Socket Factory for the truststore

Parameters:

truststoreType -

credentialType -

Returns:

Throws:

java.security.KeyStoreException

java.security.NoSuchAlgorithmException

java.security.KeyManagementException

java.io.IOException

java.security.cert.CertificateException

java.security.UnrecoverableKeyException

createSSLSocketFactory

public static org.apache.http.conn.ssl.SSLSocketFactory createSSLSocketFactory(TrustStore truststore)
                                                                        throws java.security.KeyStoreException,
                                                                               java.security.NoSuchAlgorithmException,
                                                                               java.security.KeyManagementException,
                                                                               java.io.IOException,
                                                                               java.security.cert.CertificateException,
                                                                               java.security.UnrecoverableKeyException

Create an SSL context from the Truststore

Parameters:

truststore -

Returns:

Throws:

java.security.KeyStoreException

java.security.NoSuchAlgorithmException

java.security.KeyManagementException

java.io.IOException

java.security.cert.CertificateException

java.security.UnrecoverableKeyException

createSSLSocketFactory

public static org.apache.http.conn.ssl.SSLSocketFactory createSSLSocketFactory(byte[] truststore,
                                                                               java.lang.String password)
                                                                        throws java.security.KeyStoreException,
                                                                               java.security.NoSuchAlgorithmException,
                                                                               java.security.KeyManagementException,
                                                                               java.io.IOException,
                                                                               java.security.cert.CertificateException,
                                                                               java.security.UnrecoverableKeyException

Create an SSL context from the truststore and specified password

Parameters:

truststore -

password -

Returns:

Throws:

java.security.KeyStoreException

java.security.NoSuchAlgorithmException

java.security.KeyManagementException

java.io.IOException

java.security.cert.CertificateException

java.security.UnrecoverableKeyException

validateCert

public static AtakCertificateDatabase.CertificateValidity validateCert(java.lang.String hostname)

Validate client cert stored for specified connection

Parameters:

hostname -

Returns:

validateCert

public static AtakCertificateDatabase.CertificateValidity validateCert(java.lang.String hostname,
                                                                       int port)

Validate client cert stored for specified connection

Parameters:

hostname -

port -

Returns:

promptCertificateError

public static void promptCertificateError(android.content.Context context,
                                          java.lang.String host,
                                          java.lang.String message,
                                          boolean interactive)