protected void copyJdk8FinalParameters() { setServerNames(delegate.getServerNames()); setSNIMatchers(delegate.getSNIMatchers()); setUseCipherSuitesOrder(delegate.getUseCipherSuitesOrder()); } }
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }
matchers = sslParameters.getSNIMatchers();
matchers = sslParameters.getSNIMatchers();
@Override public String chooseEngineServerAlias(String keyType, Principal[] issuers, SSLEngine engine) { String alias = engine==null?NO_MATCHERS:chooseServerAlias(keyType,issuers,engine.getSSLParameters().getSNIMatchers(),engine.getHandshakeSession()); if (alias==NO_MATCHERS) alias=_delegate.chooseEngineServerAlias(keyType,issuers,engine); if (LOG.isDebugEnabled()) LOG.debug("Chose alias {}/{} on {}",alias,keyType,engine); return alias; }
@Override public String chooseServerAlias(String keyType, Principal[] issuers, Socket socket) { SSLSocket sslSocket = (SSLSocket)socket; String alias = socket==null?NO_MATCHERS:chooseServerAlias(keyType,issuers,sslSocket.getSSLParameters().getSNIMatchers(),sslSocket.getHandshakeSession()); if (alias==NO_MATCHERS) alias=_delegate.chooseServerAlias(keyType,issuers,socket); if (LOG.isDebugEnabled()) LOG.debug("Chose alias {}/{} on {}",alias,keyType,socket); return alias; }
matchers = sslParameters.getSNIMatchers();
private SniMatcher getSniMatcher(SSLParameters sslParameters) { for (SNIMatcher sniMatcher : sslParameters.getSNIMatchers()) { if (sniMatcher instanceof SniMatcher) { SniMatcher jettySniMatcher = (SniMatcher) sniMatcher; if (jettySniMatcher.getMatchedHostName() != null) { return jettySniMatcher; } } } //TODO implement default key without SNI for API use. return null; } }
protected void copyJdk8FinalParameters() { setServerNames(delegate.getServerNames()); setSNIMatchers(delegate.getSNIMatchers()); setUseCipherSuitesOrder(delegate.getUseCipherSuitesOrder()); } }
protected void copyJdk8FinalParameters() { setServerNames(delegate.getServerNames()); setSNIMatchers(delegate.getSNIMatchers()); setUseCipherSuitesOrder(delegate.getUseCipherSuitesOrder()); } }
protected void copyJdk8FinalParameters() { setServerNames(delegate.getServerNames()); setSNIMatchers(delegate.getSNIMatchers()); setUseCipherSuitesOrder(delegate.getUseCipherSuitesOrder()); } }
@Override public String chooseEngineServerAlias(String keyType, Principal[] issuers, SSLEngine engine) { String alias = engine==null?NO_MATCHERS:chooseServerAlias(keyType,issuers,engine.getSSLParameters().getSNIMatchers(),engine.getHandshakeSession()); if (alias==NO_MATCHERS) alias=_delegate.chooseEngineServerAlias(keyType,issuers,engine); if (LOG.isDebugEnabled()) LOG.debug("Chose alias {}/{} on {}",alias,keyType,engine); return alias; }
@Override public String chooseServerAlias(String keyType, Principal[] issuers, Socket socket) { SSLSocket sslSocket = (SSLSocket)socket; String alias = socket==null?NO_MATCHERS:chooseServerAlias(keyType,issuers,sslSocket.getSSLParameters().getSNIMatchers(),sslSocket.getHandshakeSession()); if (alias==NO_MATCHERS) alias=_delegate.chooseServerAlias(keyType,issuers,socket); if (LOG.isDebugEnabled()) LOG.debug("Chose alias {}/{} on {}",alias,keyType,socket); return alias; }
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }
private SSLParameters redefine(SSLParameters original, String[] supportedCipherSuites, String[] supportedProtocols) { final SSLParameters params = new SSLParameters(); configure(params, protocolSelector.evaluate(supportedProtocols), cipherSuiteSelector.evaluate(supportedCipherSuites)); // copy all other parameters over params.setServerNames(original.getServerNames()); params.setSNIMatchers(original.getSNIMatchers()); params.setAlgorithmConstraints(original.getAlgorithmConstraints()); params.setEndpointIdentificationAlgorithm(original.getEndpointIdentificationAlgorithm()); return params; }
matchers = sslParameters.getSNIMatchers();
matchers = sslParameters.getSNIMatchers();
matchers = sslParameters.getSNIMatchers();
/** * Applies SSLParameters to this engine. */ @Override synchronized public void setSSLParameters(SSLParameters params) { super.setSSLParameters(params); // the super implementation does not handle the following parameters identificationProtocol = params.getEndpointIdentificationAlgorithm(); algorithmConstraints = params.getAlgorithmConstraints(); preferLocalCipherSuites = params.getUseCipherSuitesOrder(); List<SNIServerName> sniNames = params.getServerNames(); if (sniNames != null) { serverNames = sniNames; } Collection<SNIMatcher> matchers = params.getSNIMatchers(); if (matchers != null) { sniMatchers = matchers; } if ((handshaker != null) && !handshaker.started()) { handshaker.setIdentificationProtocol(identificationProtocol); handshaker.setAlgorithmConstraints(algorithmConstraints); if (roleIsServer) { handshaker.setSNIMatchers(sniMatchers); handshaker.setUseCipherSuitesOrder(preferLocalCipherSuites); } else { handshaker.setSNIServerNames(serverNames); } } }