Merge pull request #148 from AlphaX-Projects/master

Update trustless manager and AT 1.4.1

lib/org/ciyam/AT/1.4.1/AT-1.4.1.pom

@@ -10,14 +10,13 @@
 	<properties>
 		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
 		<skipTests>false</skipTests>
-
+		<bouncycastle.version>1.69</bouncycastle.version>
-		<maven-compiler-plugin.version>3.8.1</maven-compiler-plugin.version>
+		<junit.version>4.13.2</junit.version>
-		<maven-source-plugin.version>3.2.0</maven-source-plugin.version>
+		<maven-compiler-plugin.version>3.11.0</maven-compiler-plugin.version>
-		<maven-javadoc-plugin.version>3.3.1</maven-javadoc-plugin.version>
+		<maven-jar-plugin.version>3.3.0</maven-jar-plugin.version>
-		<maven-surefire-plugin.version>3.0.0-M4</maven-surefire-plugin.version>
+		<maven-javadoc-plugin.version>3.6.3</maven-javadoc-plugin.version>
-		<maven-jar-plugin.version>3.2.0</maven-jar-plugin.version>
+		<maven-source-plugin.version>3.3.0</maven-source-plugin.version>
-
+		<maven-surefire-plugin.version>3.2.2</maven-surefire-plugin.version>
-		<bouncycastle.version>1.64</bouncycastle.version>
 	</properties>
 
 	<build>
@@ -117,7 +116,7 @@
 		<dependency>
 			<groupId>junit</groupId>
 			<artifactId>junit</artifactId>
-			<version>4.13</version>
+			<version>${junit.version}</version>
 			<scope>test</scope>
 		</dependency>
 	</dependencies>

lib/org/ciyam/AT/maven-metadata-local.xml

@@ -5,14 +5,11 @@
   <versioning>
     <release>1.4.1</release>
     <versions>
-      <version>1.3.4</version>
-      <version>1.3.5</version>
-      <version>1.3.6</version>
       <version>1.3.7</version>
       <version>1.3.8</version>
       <version>1.4.0</version>
       <version>1.4.1</version>
     </versions>
-    <lastUpdated>20230821074325</lastUpdated>
+    <lastUpdated>20231212092227</lastUpdated>
   </versioning>
 </metadata>

src/main/java/org/qortal/crypto/TrustlessSSLSocketFactory.java

@@ -1,33 +1,33 @@
 package org.qortal.crypto;
 
-import javax.net.ssl.SSLContext;
+import javax.net.ssl.*;
-import javax.net.ssl.SSLSocketFactory;
-import javax.net.ssl.TrustManager;
-import javax.net.ssl.X509TrustManager;
 import java.security.cert.X509Certificate;
 
 public abstract class TrustlessSSLSocketFactory {
 
-	// Create a trust manager that does not validate certificate chains
+	/**
+	 * Creates a SSLSocketFactory that ignore certificate chain validation because ElectrumX servers use mostly
+	 * self signed certificates.
+	 */
 	private static final TrustManager[] TRUSTLESS_MANAGER = new TrustManager[] {
 		new X509TrustManager() {
-			public java.security.cert.X509Certificate[] getAcceptedIssuers() {
+			public X509Certificate[] getAcceptedIssuers() {
-				return new X509Certificate[0];
+				return null;
 			}
-
+			public void checkClientTrusted(X509Certificate[] certs, String authType) {
-			public void checkClientTrusted(java.security.cert.X509Certificate[] certs, String authType) {
 			}
-
+			public void checkServerTrusted(X509Certificate[] certs, String authType) {
-			public void checkServerTrusted(java.security.cert.X509Certificate[] certs, String authType) {
 			}
 		}
 	};
 
-	// Install the all-trusting trust manager
+	/**
+	 * Install the all-trusting trust manager.
+	 */
 	private static final SSLContext sc;
 	static {
 		try {
-			sc = SSLContext.getInstance("TLSv1.3");
+			sc = SSLContext.getInstance("SSL");
 			sc.init(null, TRUSTLESS_MANAGER, new java.security.SecureRandom());
 		} catch (Exception e) {
 			throw new RuntimeException(e);
@@ -37,5 +37,4 @@ public abstract class TrustlessSSLSocketFactory {
 	public static SSLSocketFactory getSocketFactory() {
 		return sc.getSocketFactory();
 	}
-
 }