org.bouncycastle.jsse.provider.ProvSSLSession Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of bctls-fips Show documentation
Show all versions of bctls-fips Show documentation
The Bouncy Castle Java APIs for the TLS, including a JSSE provider. The APIs are designed primarily to be used in conjunction with the BC FIPS provider. The APIs may also be used with other providers although if being used in a FIPS context it is the responsibility of the user to ensure that any other providers used are FIPS certified and used appropriately.
package org.bouncycastle.jsse.provider;
import java.util.List;
import org.bouncycastle.jsse.BCSNIServerName;
import org.bouncycastle.tls.CipherSuite;
import org.bouncycastle.tls.ProtocolVersion;
import org.bouncycastle.tls.SessionParameters;
import org.bouncycastle.tls.TlsSession;
class ProvSSLSession
extends ProvSSLSessionBase
{
// TODO[jsse] Ensure this behaves according to the javadoc for SSLSocket.getSession and SSLEngine.getSession
// TODO[jsse] This would make more sense as a ProvSSLSessionHandshake
static final ProvSSLSession NULL_SESSION = new ProvSSLSession(null, null, -1, null,
new JsseSessionParameters(null, null));
protected final TlsSession tlsSession;
protected final SessionParameters sessionParameters;
protected final JsseSessionParameters jsseSessionParameters;
ProvSSLSession(ProvSSLSessionContext sslSessionContext, String peerHost, int peerPort, TlsSession tlsSession,
JsseSessionParameters jsseSessionParameters)
{
super(sslSessionContext, peerHost, peerPort);
this.tlsSession = tlsSession;
this.sessionParameters = tlsSession == null ? null : tlsSession.exportSessionParameters();
this.jsseSessionParameters = jsseSessionParameters;
}
@Override
protected int getCipherSuiteTLS()
{
return null == sessionParameters ? CipherSuite.TLS_NULL_WITH_NULL_NULL : sessionParameters.getCipherSuite();
}
@Override
protected byte[] getIDArray()
{
return null == tlsSession ? null : tlsSession.getSessionID();
}
@Override
protected JsseSecurityParameters getJsseSecurityParameters()
{
return null;
}
@Override
protected JsseSessionParameters getJsseSessionParameters()
{
return jsseSessionParameters;
}
@Override
protected org.bouncycastle.tls.Certificate getLocalCertificateTLS()
{
return null == sessionParameters ? null : sessionParameters.getLocalCertificate();
}
@Override
public String[] getLocalSupportedSignatureAlgorithms()
{
// TODO Should we store these in SessionParameters?
return null;
}
@Override
protected org.bouncycastle.tls.Certificate getPeerCertificateTLS()
{
return null == sessionParameters ? null : sessionParameters.getPeerCertificate();
}
@Override
public String[] getPeerSupportedSignatureAlgorithms()
{
// TODO Should we store these in SessionParameters?
return null;
}
@Override
protected ProtocolVersion getProtocolTLS()
{
return null == sessionParameters ? null : sessionParameters.getNegotiatedVersion();
}
@Override
public List getRequestedServerNames()
{
throw new UnsupportedOperationException();
}
TlsSession getTlsSession()
{
return tlsSession;
}
@Override
protected void invalidateTLS()
{
if (null != tlsSession)
{
tlsSession.invalidate();
}
}
public boolean isValid()
{
return super.isValid() && null != tlsSession && tlsSession.isResumable();
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy