equal
deleted
inserted
replaced
71 this.keyType = keyType; |
71 this.keyType = keyType; |
72 this.possessionGenerator = possessionGenerator; |
72 this.possessionGenerator = possessionGenerator; |
73 } |
73 } |
74 |
74 |
75 static X509Authentication valueOf(SignatureScheme signatureScheme) { |
75 static X509Authentication valueOf(SignatureScheme signatureScheme) { |
76 for (X509Authentication au: X509Authentication.values()) { |
76 for (X509Authentication au : X509Authentication.values()) { |
77 if (au.keyType.equals(signatureScheme.keyAlgorithm)) { |
77 if (au.keyType.equals(signatureScheme.keyAlgorithm)) { |
78 return au; |
78 return au; |
79 } |
79 } |
80 } |
80 } |
81 |
81 |
289 // ClientHello extension, check against that too. |
289 // ClientHello extension, check against that too. |
290 ECParameterSpec params = |
290 ECParameterSpec params = |
291 ((ECPublicKey)serverPublicKey).getParams(); |
291 ((ECPublicKey)serverPublicKey).getParams(); |
292 NamedGroup namedGroup = NamedGroup.valueOf(params); |
292 NamedGroup namedGroup = NamedGroup.valueOf(params); |
293 if ((namedGroup == null) || |
293 if ((namedGroup == null) || |
294 (!SupportedGroups.isSupported(namedGroup)) || |
294 (!SupportedGroups.isSupported(namedGroup)) || |
295 ((shc.clientRequestedNamedGroups != null) && |
295 ((shc.clientRequestedNamedGroups != null) && |
296 !shc.clientRequestedNamedGroups.contains(namedGroup))) { |
296 !shc.clientRequestedNamedGroups.contains(namedGroup))) { |
297 |
297 |
298 if (SSLLogger.isOn && SSLLogger.isOn("ssl")) { |
298 if (SSLLogger.isOn && SSLLogger.isOn("ssl")) { |
299 SSLLogger.warning( |
299 SSLLogger.warning( |
300 "Unsupported named group (" + namedGroup + |
300 "Unsupported named group (" + namedGroup + |
301 ") used in the " + serverAlias + " certificate"); |
301 ") used in the " + serverAlias + " certificate"); |