Package org.apache.tomcat.util.net.jsse
Class JSSESupport
- java.lang.Object
-
- org.apache.tomcat.util.net.jsse.JSSESupport
-
- All Implemented Interfaces:
SSLSessionManager
,SSLSupport
public class JSSESupport extends java.lang.Object implements SSLSupport, SSLSessionManager
JSSESupport Concrete implementation class for JSSE Support classes. This will only work with JDK 1.2 and up since it depends on JDK 1.2's certificate support- Author:
- EKR, Craig R. McClanahan Parts cribbed from JSSECertCompat Parts cribbed from CertificatesValve
-
-
Field Summary
-
Fields inherited from interface org.apache.tomcat.util.net.SSLSupport
CERTIFICATE_KEY, CIPHER_SUITE_KEY, KEY_SIZE_KEY, PROTOCOL_VERSION_KEY, SESSION_ID_KEY, SESSION_MGR
-
-
Constructor Summary
Constructors Constructor Description JSSESupport(javax.net.ssl.SSLSession session)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description java.lang.String
getCipherSuite()
The cipher suite being used on this connection.java.lang.Integer
getKeySize()
Get the keysize.java.security.cert.X509Certificate[]
getLocalCertificateChain()
The server certificate chain (if any) that were sent to the peer.java.security.cert.X509Certificate[]
getPeerCertificateChain()
The client certificate chain (if any).java.lang.String
getProtocol()
java.lang.String
getSessionId()
The current session Id.void
invalidateSession()
Invalidate the session this support object is associated with.void
setSession(javax.net.ssl.SSLSession session)
-
-
-
Method Detail
-
getCipherSuite
public java.lang.String getCipherSuite() throws java.io.IOException
Description copied from interface:SSLSupport
The cipher suite being used on this connection.- Specified by:
getCipherSuite
in interfaceSSLSupport
- Returns:
- The name of the cipher suite as returned by the SSL/TLS implementation
- Throws:
java.io.IOException
- If an error occurs trying to obtain the cipher suite
-
getLocalCertificateChain
public java.security.cert.X509Certificate[] getLocalCertificateChain()
Description copied from interface:SSLSupport
The server certificate chain (if any) that were sent to the peer.- Specified by:
getLocalCertificateChain
in interfaceSSLSupport
- Returns:
- The certificate chain sent with the server certificate first, followed by those of any certificate authorities
-
getPeerCertificateChain
public java.security.cert.X509Certificate[] getPeerCertificateChain() throws java.io.IOException
Description copied from interface:SSLSupport
The client certificate chain (if any).- Specified by:
getPeerCertificateChain
in interfaceSSLSupport
- Returns:
- The certificate chain presented by the client with the peer's certificate first, followed by those of any certificate authorities
- Throws:
java.io.IOException
- If an error occurs trying to obtain the certificate chain
-
getKeySize
public java.lang.Integer getKeySize() throws java.io.IOException
Get the keysize. What we're supposed to put here is ill-defined by the Servlet spec (S 4.7 again). There are at least 4 potential values that might go here: (a) The size of the encryption key (b) The size of the MAC key (c) The size of the key-exchange key (d) The size of the signature key used by the server Unfortunately, all of these values are nonsensical.This returns the effective bits for the current cipher suite.
- Specified by:
getKeySize
in interfaceSSLSupport
- Returns:
- The effective key size for the current cipher suite
- Throws:
java.io.IOException
- If an error occurs trying to obtain the key size
-
getSessionId
public java.lang.String getSessionId() throws java.io.IOException
Description copied from interface:SSLSupport
The current session Id.- Specified by:
getSessionId
in interfaceSSLSupport
- Returns:
- The current SSL/TLS session ID
- Throws:
java.io.IOException
- If an error occurs trying to obtain the session ID
-
setSession
public void setSession(javax.net.ssl.SSLSession session)
-
invalidateSession
public void invalidateSession()
Invalidate the session this support object is associated with.- Specified by:
invalidateSession
in interfaceSSLSessionManager
-
getProtocol
public java.lang.String getProtocol() throws java.io.IOException
- Specified by:
getProtocol
in interfaceSSLSupport
- Returns:
- the protocol String indicating how the SSL socket was created e.g. TLSv1 or TLSv1.2 etc.
- Throws:
java.io.IOException
- If an error occurs trying to obtain the protocol information from the socket
-
-