org.bouncycastle.est.jcajce.LimitedSSLSocketSource Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of bcpkix-jdk15to18 Show documentation
Show all versions of bcpkix-jdk15to18 Show documentation
The Bouncy Castle Java APIs for CMS, PKCS, EAC, TSP, CMP, CRMF, OCSP, and certificate generation. This jar contains APIs for JDK 1.5 to JDK 1.8. The APIs can be used in conjunction with a JCE/JCA provider such as the one provided with the Bouncy Castle Cryptography APIs.
package org.bouncycastle.est.jcajce;
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
import javax.net.ssl.SSLSession;
import javax.net.ssl.SSLSocket;
import org.bouncycastle.est.LimitedSource;
import org.bouncycastle.est.Source;
import org.bouncycastle.est.TLSUniqueProvider;
class LimitedSSLSocketSource
implements Source, TLSUniqueProvider, LimitedSource
{
protected final SSLSocket socket;
private final ChannelBindingProvider bindingProvider;
private final Long absoluteReadLimit;
public LimitedSSLSocketSource(SSLSocket sock, ChannelBindingProvider bindingProvider, Long absoluteReadLimit)
{
this.socket = sock;
this.bindingProvider = bindingProvider;
this.absoluteReadLimit = absoluteReadLimit;
}
public InputStream getInputStream()
throws IOException
{
return socket.getInputStream();
}
public OutputStream getOutputStream()
throws IOException
{
return socket.getOutputStream();
}
public SSLSession getSession()
{
return socket.getSession();
}
public byte[] getTLSUnique()
{
if (isTLSUniqueAvailable())
{
return bindingProvider.getChannelBinding(socket, "tls-unique");
}
throw new IllegalStateException("No binding provider.");
}
public boolean isTLSUniqueAvailable()
{
return bindingProvider.canAccessChannelBinding(socket);
}
public void close()
throws IOException
{
socket.close();
}
public Long getAbsoluteReadLimit()
{
return absoluteReadLimit;
}
}