SSLUtil.ProtocolInfo
Modifier and Type | Field and Description |
---|---|
protected SSLHostConfigCertificate |
certificate |
protected SSLHostConfig |
sslHostConfig |
Modifier | Constructor and Description |
---|---|
protected |
SSLUtilBase(SSLHostConfigCertificate certificate) |
protected |
SSLUtilBase(SSLHostConfigCertificate certificate,
boolean warnTls13) |
Modifier and Type | Method and Description |
---|---|
void |
configureSessionContext(SSLSessionContext sslSessionContext) |
SSLContext |
createSSLContext(List<String> negotiableProtocols) |
protected abstract SSLContext |
createSSLContextInternal(List<String> negotiableProtocols) |
protected Collection<? extends CRL> |
getCRLs(String crlf)
Load the collection of CRLs.
|
String[] |
getEnabledCiphers()
The set of enabled ciphers is the intersection of the implemented ciphers
and the configured ciphers.
|
String[] |
getEnabledProtocols()
The set of enabled protocols is the intersection of the implemented
protocols and the configured protocols.
|
protected abstract Set<String> |
getImplementedCiphers() |
protected abstract Set<String> |
getImplementedProtocols() |
KeyManager[] |
getKeyManagers() |
protected abstract Log |
getLog() |
protected CertPathParameters |
getParameters(String crlf,
KeyStore trustStore,
boolean revocationEnabled)
Return the initialization parameters for the TrustManager.
|
TrustManager[] |
getTrustManagers() |
protected abstract boolean |
isTls13RenegAuthAvailable() |
protected final SSLHostConfig sslHostConfig
protected final SSLHostConfigCertificate certificate
protected SSLUtilBase(SSLHostConfigCertificate certificate)
protected SSLUtilBase(SSLHostConfigCertificate certificate, boolean warnTls13)
public final SSLContext createSSLContext(List<String> negotiableProtocols) throws Exception
createSSLContext
in interface SSLUtil
Exception
public void configureSessionContext(SSLSessionContext sslSessionContext)
configureSessionContext
in interface SSLUtil
public KeyManager[] getKeyManagers() throws Exception
getKeyManagers
in interface SSLUtil
Exception
public String[] getEnabledProtocols()
SSLUtil
getEnabledProtocols
in interface SSLUtil
public String[] getEnabledCiphers()
SSLUtil
The ciphers used during the TLS handshake may be further restricted by
the SSLUtil.getEnabledProtocols()
and the certificates.
getEnabledCiphers
in interface SSLUtil
public TrustManager[] getTrustManagers() throws Exception
getTrustManagers
in interface SSLUtil
Exception
protected CertPathParameters getParameters(String crlf, KeyStore trustStore, boolean revocationEnabled) throws Exception
PKIX
is supported.crlf
- The path to the CRL file.trustStore
- The configured TrustStore.revocationEnabled
- Should the JSSE provider perform revocation
checks? Ignored if crlf
is non-null.
Configuration of revocation checks are expected
to be via proprietary JSSE provider methods.Exception
- An error occurredprotected Collection<? extends CRL> getCRLs(String crlf) throws IOException, CRLException, CertificateException
crlf
- The path to the CRL file.IOException
- Error reading CRL fileCRLException
- CRL errorCertificateException
- Error processing certificateprotected abstract Log getLog()
protected abstract boolean isTls13RenegAuthAvailable()
protected abstract SSLContext createSSLContextInternal(List<String> negotiableProtocols) throws Exception
Exception
Copyright © 2000-2020 Apache Software Foundation. All Rights Reserved.