• Home
• org.asynchttpclient
• async-http-client
• 2.0.0-RC19
• source code
• DefaultSslEngineFactory.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.asynchttpclient.netty.ssl.DefaultSslEngineFactory Maven / Gradle / Ivy

/*
 * Copyright (c) 2015 AsyncHttpClient Project. All rights reserved.
 *
 * This program is licensed to you under the Apache License Version 2.0,
 * and you may not use this file except in compliance with the Apache License Version 2.0.
 * You may obtain a copy of the Apache License Version 2.0 at
 *     http://www.apache.org/licenses/LICENSE-2.0.
 *
 * Unless required by applicable law or agreed to in writing,
 * software distributed under the Apache License Version 2.0 is distributed on an
 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the Apache License Version 2.0 for the specific language governing permissions and limitations there under.
 */
package org.asynchttpclient.netty.ssl;

import io.netty.buffer.ByteBufAllocator;
import io.netty.handler.ssl.SslContext;
import io.netty.handler.ssl.SslContextBuilder;
import io.netty.handler.ssl.SslProvider;
import io.netty.handler.ssl.util.InsecureTrustManagerFactory;

import javax.net.ssl.SSLEngine;
import javax.net.ssl.SSLException;

import org.asynchttpclient.AsyncHttpClientConfig;

public class DefaultSslEngineFactory extends SslEngineFactoryBase {

    private final SslContext sslContext;

    public DefaultSslEngineFactory(AsyncHttpClientConfig config) throws SSLException {
        this.sslContext = getSslContext(config);
    }

    private SslContext getSslContext(AsyncHttpClientConfig config) throws SSLException {
        if (config.getSslContext() != null)
            return config.getSslContext();

        SslContextBuilder sslContextBuilder = SslContextBuilder.forClient()//
                .sslProvider(config.isUseOpenSsl() ? SslProvider.OPENSSL : SslProvider.JDK)//
                .sessionCacheSize(config.getSslSessionCacheSize())//
                .sessionTimeout(config.getSslSessionTimeout());

        if (config.isAcceptAnyCertificate())
            sslContextBuilder.trustManager(InsecureTrustManagerFactory.INSTANCE);

        return sslContextBuilder.build();
    }

    @Override
    public SSLEngine newSslEngine(AsyncHttpClientConfig config, String peerHost, int peerPort) {
        // FIXME should be using ctx allocator
        SSLEngine sslEngine = sslContext.newEngine(ByteBufAllocator.DEFAULT, peerHost, peerPort);
        configureSslEngine(sslEngine, config);
        return sslEngine;
    }
}