public abstract class JdkSslContext extends SslContext
SslContext which uses JDK's SSL/TLS implementation.| Modifier and Type | Method and Description |
|---|---|
JdkApplicationProtocolNegotiator |
applicationProtocolNegotiator()
Returns the object responsible for negotiating application layer protocols for the TLS NPN/ALPN extensions.
|
protected static KeyManagerFactory |
buildKeyManagerFactory(File certChainFile,
File keyFile,
String keyPassword,
KeyManagerFactory kmf)
Build a
KeyManagerFactory based upon a key file, key file password, and a certificate chain. |
protected static KeyManagerFactory |
buildKeyManagerFactory(File certChainFile,
String keyAlgorithm,
File keyFile,
String keyPassword,
KeyManagerFactory kmf)
Build a
KeyManagerFactory based upon a key algorithm, key file, key file password,
and a certificate chain. |
protected static TrustManagerFactory |
buildTrustManagerFactory(File certChainFile,
TrustManagerFactory trustManagerFactory)
Build a
TrustManagerFactory from a certificate chain file. |
List<String> |
cipherSuites()
Returns the list of enabled cipher suites, in the order of preference.
|
abstract SSLContext |
context()
Returns the JDK
SSLContext object held by this context. |
SSLEngine |
newEngine(ByteBufAllocator alloc)
Creates a new
SSLEngine. |
SSLEngine |
newEngine(ByteBufAllocator alloc,
String peerHost,
int peerPort)
Creates a new
SSLEngine using advisory peer information. |
long |
sessionCacheSize()
Returns the size of the cache used for storing SSL session objects.
|
SSLSessionContext |
sessionContext()
Returns the JDK
SSLSessionContext object held by this context. |
long |
sessionTimeout()
Returns the timeout for the cached SSL session objects, in seconds.
|
defaultClientProvider, defaultServerProvider, generateKeySpec, isClient, isServer, newClientContext, newClientContext, newClientContext, newClientContext, newClientContext, newClientContext, newClientContext, newClientContext, newClientContext, newClientContext, newClientContext, newHandler, newHandler, newServerContext, newServerContext, newServerContext, newServerContext, newServerContext, newServerContext, newServerContextpublic abstract SSLContext context()
SSLContext object held by this context.public final SSLSessionContext sessionContext()
SSLSessionContext object held by this context.sessionContext in class SslContextpublic final List<String> cipherSuites()
SslContextcipherSuites in class SslContextpublic final long sessionCacheSize()
SslContextsessionCacheSize in class SslContextpublic final long sessionTimeout()
SslContextsessionTimeout in class SslContextpublic final SSLEngine newEngine(ByteBufAllocator alloc)
SslContextSSLEngine.newEngine in class SslContextSSLEnginepublic final SSLEngine newEngine(ByteBufAllocator alloc, String peerHost, int peerPort)
SslContextSSLEngine using advisory peer information.newEngine in class SslContextpeerHost - the non-authoritative name of the hostpeerPort - the non-authoritative portSSLEnginepublic JdkApplicationProtocolNegotiator applicationProtocolNegotiator()
SslContextapplicationProtocolNegotiator in class SslContextprotected static KeyManagerFactory buildKeyManagerFactory(File certChainFile, File keyFile, String keyPassword, KeyManagerFactory kmf) throws UnrecoverableKeyException, KeyStoreException, NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeySpecException, InvalidAlgorithmParameterException, CertificateException, KeyException, IOException
KeyManagerFactory based upon a key file, key file password, and a certificate chain.certChainFile - a X.509 certificate chain file in PEM formatkeyFile - a PKCS#8 private key file in PEM formatkeyPassword - the password of the keyFile.
null if it's not password-protected.kmf - The existing KeyManagerFactory that will be used if not nullKeyManagerFactory based upon a key file, key file password, and a certificate chain.UnrecoverableKeyExceptionKeyStoreExceptionNoSuchAlgorithmExceptionNoSuchPaddingExceptionInvalidKeySpecExceptionInvalidAlgorithmParameterExceptionCertificateExceptionKeyExceptionIOExceptionprotected static KeyManagerFactory buildKeyManagerFactory(File certChainFile, String keyAlgorithm, File keyFile, String keyPassword, KeyManagerFactory kmf) throws KeyStoreException, NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeySpecException, InvalidAlgorithmParameterException, IOException, CertificateException, KeyException, UnrecoverableKeyException
KeyManagerFactory based upon a key algorithm, key file, key file password,
and a certificate chain.certChainFile - a X.509 certificate chain file in PEM formatkeyAlgorithm - the standard name of the requested algorithm. See the Java Secure Socket Extension
Reference Guide for information about standard algorithm names.keyFile - a PKCS#8 private key file in PEM formatkeyPassword - the password of the keyFile.
null if it's not password-protected.kmf - The existing KeyManagerFactory that will be used if not nullKeyManagerFactory based upon a key algorithm, key file, key file password,
and a certificate chain.KeyStoreExceptionNoSuchAlgorithmExceptionNoSuchPaddingExceptionInvalidKeySpecExceptionInvalidAlgorithmParameterExceptionIOExceptionCertificateExceptionKeyExceptionUnrecoverableKeyExceptionprotected static TrustManagerFactory buildTrustManagerFactory(File certChainFile, TrustManagerFactory trustManagerFactory) throws NoSuchAlgorithmException, CertificateException, KeyStoreException, IOException
TrustManagerFactory from a certificate chain file.certChainFile - The certificate file to build from.trustManagerFactory - The existing TrustManagerFactory that will be used if not null.TrustManagerFactory which contains the certificates in certChainFileNoSuchAlgorithmExceptionCertificateExceptionKeyStoreExceptionIOExceptionCopyright © 2008–2015 The Netty Project. All rights reserved.