Package org.apache.tomcat.util.net
Class SSLUtilBase
java.lang.Object
org.apache.tomcat.util.net.SSLUtilBase
- All Implemented Interfaces:
- SSLUtil
- Direct Known Subclasses:
- JSSEUtil,- OpenSSLUtil
Common base class for 
SSLUtil implementations.- 
Nested Class SummaryNested classes/interfaces inherited from interface org.apache.tomcat.util.net.SSLUtilSSLUtil.ProtocolInfo
- 
Field SummaryFieldsModifier and TypeFieldDescriptionprotected final SSLHostConfigCertificatestatic final Stringprotected final SSLHostConfig
- 
Constructor SummaryConstructorsModifierConstructorDescriptionprotectedSSLUtilBase(SSLHostConfigCertificate certificate) protectedSSLUtilBase(SSLHostConfigCertificate certificate, boolean warnTls13) 
- 
Method SummaryModifier and TypeMethodDescriptionvoidconfigureSessionContext(SSLSessionContext sslSessionContext) final SSLContextcreateSSLContext(List<String> negotiableProtocols) protected abstract SSLContextcreateSSLContextInternal(List<String> negotiableProtocols) protected Collection<? extends CRL>Load the collection of CRLs.String[]The set of enabled ciphers is the intersection of the implemented ciphers and the configured ciphers.String[]The set of enabled protocols is the intersection of the implemented protocols and the configured protocols.protected abstract LoggetLog()protected CertPathParametersgetParameters(String crlf, KeyStore trustStore, boolean revocationEnabled) Return the initialization parameters for the TrustManager.protected abstract boolean
- 
Field Details- 
DEFAULT_KEY_ALIAS- See Also:
 
- 
sslHostConfig
- 
certificate
 
- 
- 
Constructor Details- 
SSLUtilBase
- 
SSLUtilBase
 
- 
- 
Method Details- 
createSSLContext- Specified by:
- createSSLContextin interface- SSLUtil
- Throws:
- Exception
 
- 
configureSessionContext- Specified by:
- configureSessionContextin interface- SSLUtil
 
- 
getKeyManagers- Specified by:
- getKeyManagersin interface- SSLUtil
- Throws:
- Exception
 
- 
getEnabledProtocolsDescription copied from interface:SSLUtilThe set of enabled protocols is the intersection of the implemented protocols and the configured protocols. If no protocols are explicitly configured, then all of the implemented protocols will be included in the returned array.- Specified by:
- getEnabledProtocolsin interface- SSLUtil
- Returns:
- The protocols currently enabled and available for clients to select from for the associated connection
 
- 
getEnabledCiphersDescription copied from interface:SSLUtilThe set of enabled ciphers is the intersection of the implemented ciphers and the configured ciphers. If no ciphers are explicitly configured, then the default ciphers will be included in the returned array.The ciphers used during the TLS handshake may be further restricted by the SSLUtil.getEnabledProtocols()and the certificates.- Specified by:
- getEnabledCiphersin interface- SSLUtil
- Returns:
- The ciphers currently enabled and available for clients to select from for the associated connection
 
- 
getTrustManagers- Specified by:
- getTrustManagersin interface- SSLUtil
- Throws:
- Exception
 
- 
getParametersprotected CertPathParameters getParameters(String crlf, KeyStore trustStore, boolean revocationEnabled) throws Exception Return the initialization parameters for the TrustManager. Currently, only the defaultPKIXis supported.- Parameters:
- crlf- The path to the CRL file.
- trustStore- The configured TrustStore.
- revocationEnabled- Should the JSSE provider perform revocation checks? Ignored if- crlfis non-null. Configuration of revocation checks are expected to be via proprietary JSSE provider methods.
- Returns:
- The parameters including the CRLs and TrustStore.
- Throws:
- Exception- An error occurred
 
- 
getCRLsprotected Collection<? extends CRL> getCRLs(String crlf) throws IOException, CRLException, CertificateException Load the collection of CRLs.- Parameters:
- crlf- The path to the CRL file.
- Returns:
- the CRLs collection
- Throws:
- IOException- Error reading CRL file
- CRLException- CRL error
- CertificateException- Error processing certificate
 
- 
getImplementedProtocols
- 
getImplementedCiphers
- 
getLog
- 
isTls13RenegAuthAvailableprotected abstract boolean isTls13RenegAuthAvailable()
- 
createSSLContextInternalprotected abstract SSLContext createSSLContextInternal(List<String> negotiableProtocols) throws Exception - Throws:
- Exception
 
 
-