CertificateUtil.java

package com.jsql.util;

import org.apache.logging.log4j.LogManager;
import org.apache.logging.log4j.Logger;

import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
import java.security.cert.X509Certificate;

/**
 * SSL certificates are used by https connection. This utility class
 * gets rid of malformed certification chains from bad configured websites
 * in order to ignore connection exception in that specific case.
 */
public class CertificateUtil {
    
    /**
     * Log4j logger sent to view.
     */
    private static final Logger LOGGER = LogManager.getRootLogger();
    
    private SSLContext sslContext = null;

    public CertificateUtil() {
        
        System.setProperty("jdk.internal.httpclient.disableHostnameVerification", "true");
        
        // Create a trust manager that does not validate certificate chains
        // and ignore exception PKIX path building failed: unable to find valid certification path to requested target
        var trustAllCerts = new TrustManager[] {
                
            new X509TrustManager() {
                
                @Override
                public X509Certificate[] getAcceptedIssuers() {
                    return new X509Certificate[0];
                }

                @SuppressWarnings("java:S4830")
                @Override
                public void checkClientTrusted(X509Certificate[] certs, String authType) {
                    // nothing
                }

                @SuppressWarnings("java:S4830")
                @Override
                public void checkServerTrusted(X509Certificate[] certs, String authType) {
                    // nothing
                }
            }
        };
        
        try {
            this.sslContext = SSLContext.getInstance("TLSv1.2");
            this.sslContext.init(null, trustAllCerts, new SecureRandom());
            
        } catch (NoSuchAlgorithmException | KeyManagementException e) {
            LOGGER.log(
                LogLevelUtil.CONSOLE_ERROR,
                "Error ignoring untrusted SSL",
                e
            );
        }
    }
    
    public SSLContext getSslContext() {
        return this.sslContext;
    }
}





Active mutators

CONDITIONALS_BOUNDARY
EMPTY_RETURNS
FALSE_RETURNS
INCREMENTS
INVERT_NEGS
MATH
NEGATE_CONDITIONALS
NULL_RETURNS
PRIMITIVE_RETURNS
TRUE_RETURNS
VOID_METHOD_CALLS

Tests examined

ParameterUtilSpock.[engine:spock]/[spec:ParameterUtilSpock]/[feature:$spock_feature_0_2] (44 ms)
ParameterUtilSpock.[engine:spock]/[spec:ParameterUtilSpock]/[feature:$spock_feature_0_1] (66 ms)
ParameterUtilSpock.[engine:spock]/[spec:ParameterUtilSpock]/[feature:$spock_feature_0_0] (541 ms)

Report generated by PIT 1.16.1

1		package com.jsql.util;
2
3		import org.apache.logging.log4j.LogManager;
4		import org.apache.logging.log4j.Logger;
5
6		import javax.net.ssl.SSLContext;
7		import javax.net.ssl.TrustManager;
8		import javax.net.ssl.X509TrustManager;
9		import java.security.KeyManagementException;
10		import java.security.NoSuchAlgorithmException;
11		import java.security.SecureRandom;
12		import java.security.cert.X509Certificate;
13
14		/**
15		* SSL certificates are used by https connection. This utility class
16		* gets rid of malformed certification chains from bad configured websites
17		* in order to ignore connection exception in that specific case.
18		*/
19		public class CertificateUtil {
20
21		/**
22		* Log4j logger sent to view.
23		*/
24		private static final Logger LOGGER = LogManager.getRootLogger();
25
26		private SSLContext sslContext = null;
27
28		public CertificateUtil() {
29
30		System.setProperty("jdk.internal.httpclient.disableHostnameVerification", "true");
31
32		// Create a trust manager that does not validate certificate chains
33		// and ignore exception PKIX path building failed: unable to find valid certification path to requested target
34		var trustAllCerts = new TrustManager[] {
35
36		new X509TrustManager() {
37
38		@Override
39		public X509Certificate[] getAcceptedIssuers() {
40	1 1. getAcceptedIssuers : replaced return value with null for com/jsql/util/CertificateUtil$1::getAcceptedIssuers → NO_COVERAGE	return new X509Certificate[0];
41		}
42
43		@SuppressWarnings("java:S4830")
44		@Override
45		public void checkClientTrusted(X509Certificate[] certs, String authType) {
46		// nothing
47		}
48
49		@SuppressWarnings("java:S4830")
50		@Override
51		public void checkServerTrusted(X509Certificate[] certs, String authType) {
52		// nothing
53		}
54		}
55		};
56
57		try {
58		this.sslContext = SSLContext.getInstance("TLSv1.2");
59	1 1. <init> : removed call to javax/net/ssl/SSLContext::init → SURVIVED	this.sslContext.init(null, trustAllCerts, new SecureRandom());
60
61		} catch (NoSuchAlgorithmException \| KeyManagementException e) {
62		LOGGER.log(
63		LogLevelUtil.CONSOLE_ERROR,
64		"Error ignoring untrusted SSL",
65		e
66		);
67		}
68		}
69
70		public SSLContext getSslContext() {
71	1 1. getSslContext : replaced return value with null for com/jsql/util/CertificateUtil::getSslContext → NO_COVERAGE	return this.sslContext;
72		}
73		}
		Mutations
40		1.1 Location : getAcceptedIssuers Killed by : none replaced return value with null for com/jsql/util/CertificateUtil$1::getAcceptedIssuers → NO_COVERAGE
59		1.1 Location : <init> Killed by : none removed call to javax/net/ssl/SSLContext::init → SURVIVED
71		1.1 Location : getSslContext Killed by : none replaced return value with null for com/jsql/util/CertificateUtil::getSslContext → NO_COVERAGE

CertificateUtil.java

Mutations

Active mutators

Tests examined