mirror of
https://github.com/ysoftdevs/DependencyCheck.git
synced 2026-01-14 07:43:40 +01:00
moved hard-coded configuration to properties file and added some additional debugging
This commit is contained in:
Jeremy Long
@@ -80,6 +80,7 @@ archive.scan.depth=3
|
||||
|
||||
# use HEAD (default) or GET as HTTP request method for query timestamp
|
||||
downloader.quick.query.timestamp=true
|
||||
downloader.tls.protocols=TLSv1,TLSv1.1,TLSv1.2,TLSv1.3
|
||||
|
||||
analyzer.experimental.enabled=false
|
||||
analyzer.jar.enabled=true
|
||||
|
||||
@@ -75,6 +75,7 @@ archive.scan.depth=3
|
||||
|
||||
# use HEAD (default) or GET as HTTP request method for query timestamp
|
||||
downloader.quick.query.timestamp=true
|
||||
downloader.tls.protocols=TLSv1,TLSv1.1,TLSv1.2,TLSv1.3
|
||||
|
||||
analyzer.experimental.enabled=true
|
||||
analyzer.jar.enabled=true
|
||||
|
||||
@@ -151,6 +151,13 @@ public final class Downloader {
|
||||
} finally {
|
||||
conn = null;
|
||||
}
|
||||
if ("Connection reset".equalsIgnoreCase(ex.getMessage())) {
|
||||
final String msg = format("TLS Connection Reset%nThis is a known issue for somme JRE/JDK; please see " +
|
||||
"https://github.com/jeremylong/DependencyCheck/issues/561%nUntil this issue is resolved please " +
|
||||
"consider trying a different JRE/JDK.", url.toString());
|
||||
LOGGER.error(msg);
|
||||
throw new DownloadFailedException(msg, ex);
|
||||
}
|
||||
final String msg = format("Error downloading file %s; unable to connect.", url.toString());
|
||||
throw new DownloadFailedException(msg, ex);
|
||||
}
|
||||
|
||||
@@ -243,17 +243,24 @@ public class SSLSocketFactoryEx extends SSLSocketFactory {
|
||||
* @return the protocol list
|
||||
*/
|
||||
protected String[] getProtocolList() {
|
||||
final String[] preferredProtocols = {"TLSv1", "TLSv1.1", "TLSv1.2", "TLSv1.3"};
|
||||
String[] availableProtocols = null;
|
||||
|
||||
SSLSocket socket = null;
|
||||
|
||||
String[] availableProtocols = null;
|
||||
final String[] preferredProtocols = Settings.getString(
|
||||
Settings.KEYS.DOWNLOADER_TLS_PROTOCOL_LIST,
|
||||
"TLSv1,TLSv1.1,TLSv1.2,TLSv1.3")
|
||||
.split(",");
|
||||
try {
|
||||
final SSLSocketFactory factory = sslCtxt.getSocketFactory();
|
||||
socket = (SSLSocket) factory.createSocket();
|
||||
|
||||
availableProtocols = socket.getSupportedProtocols();
|
||||
Arrays.sort(availableProtocols);
|
||||
if (LOGGER.isDebugEnabled()) {
|
||||
LOGGER.debug("Available Protocols:");
|
||||
for (String p : availableProtocols) {
|
||||
LOGGER.debug(p);
|
||||
}
|
||||
}
|
||||
} catch (Exception ex) {
|
||||
LOGGER.debug("Error getting protocol list, using TLSv1", ex);
|
||||
return new String[]{"TLSv1"};
|
||||
|
||||
@@ -339,6 +339,10 @@ public final class Settings {
|
||||
* The HTTP request method for query last modified date.
|
||||
*/
|
||||
public static final String DOWNLOADER_QUICK_QUERY_TIMESTAMP = "downloader.quick.query.timestamp";
|
||||
/**
|
||||
* The HTTP protocol list to use.
|
||||
*/
|
||||
public static final String DOWNLOADER_TLS_PROTOCOL_LIST = "downloader.tls.protocols";
|
||||
}
|
||||
//</editor-fold>
|
||||
|
||||
|
||||
@@ -198,7 +198,7 @@ public final class URLConnectionFactory {
|
||||
} catch (NoSuchAlgorithmException ex) {
|
||||
LOGGER.debug("Unsupported algorithm in SSLSocketFactoryEx", ex);
|
||||
} catch (KeyManagementException ex) {
|
||||
LOGGER.debug("Key mnagement eception in SSLSocketFactoryEx", ex);
|
||||
LOGGER.debug("Key management exception in SSLSocketFactoryEx", ex);
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
@@ -66,4 +66,5 @@ analyzer.nexus.url=https://repository.sonatype.org/service/local/
|
||||
analyzer.nexus.proxy=true
|
||||
|
||||
# use HEAD (default) or GET as HTTP request method for query timestamp
|
||||
downloader.quick.query.timestamp=true
|
||||
downloader.quick.query.timestamp=true
|
||||
downloader.tls.protocols=TLSv1,TLSv1.1,TLSv1.2,TLSv1.3
|
||||
Reference in New Issue
Block a user