Package ghidra.net

Class ApplicationTrustManagerFactory


  • public class ApplicationTrustManagerFactory
    extends java.lang.Object
    ApplicationTrustManagerFactory provides the ability to establish acceptable certificate authorities to be used with SSL connections and PKI authentication.

    The default behavior is for no trust authority to be established, in which case SSL peers will not be authenticated. If CA certificates have been set, all SSL connections which leverage this factory will perform peer authentication. If an error occurs while reading the CA certs file, all peer authentication will fail based upon the inability to choose a suitable client/server certificate.

    The application X.509 CA certificates file may be in the standard form (*.pem, *.crt, *.cer, *.der) or may be in a Java JKS form (*.jks). The path to this file may be established in one of two ways using the absolute file path:

    1. setting the system property ghidra.cacerts (takes precedence)
    2. setting the user preference ghidra.cacerts

    The application may choose to set the file path automatically based upon the presence of a cacerts file at a predetermined location.

    • Field Summary

      Fields 
      Modifier and Type Field Description
      static java.lang.String GHIDRA_CACERTS_PATH_PROPERTY
      The X509 cacerts file to be used when authenticating remote certificates is identified by either a system property or user preference ghidra.cacerts.
    • Method Summary

      All Methods Static Methods Concrete Methods 
      Modifier and Type Method Description
      static boolean hasCertificateAuthorities()
      Determine if certificate authorities are in place.
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Field Detail

      • GHIDRA_CACERTS_PATH_PROPERTY

        public static final java.lang.String GHIDRA_CACERTS_PATH_PROPERTY
        The X509 cacerts file to be used when authenticating remote certificates is identified by either a system property or user preference ghidra.cacerts. The system property takes precedence.
        See Also:
        Constant Field Values
    • Method Detail

      • hasCertificateAuthorities

        public static boolean hasCertificateAuthorities()
        Determine if certificate authorities are in place. If no certificate authorities have been specified via the "ghidra.cacerts" property, all certificates will be trusted.
        Returns:
        true if certificate authorities are in place, else false.