Package org.apache.tomcat.util.net.jsse
Class JSSESupport
java.lang.Object
org.apache.tomcat.util.net.jsse.JSSESupport
- All Implemented Interfaces:
- SSLSessionManager,- SSLSupport
JSSESupport.
 Concrete implementation class for JSSE Support classes.
- Author:
- EKR, Craig R. McClanahan Parts cribbed from JSSECertCompat Parts cribbed from CertificatesValve
- 
Field SummaryFields inherited from interface org.apache.tomcat.util.net.SSLSupportCERTIFICATE_KEY, CIPHER_SUITE_KEY, KEY_SIZE_KEY, PROTOCOL_VERSION_KEY, REQUESTED_CIPHERS_KEY, REQUESTED_PROTOCOL_VERSIONS_KEY, SESSION_ID_KEY, SESSION_MGR
- 
Constructor SummaryConstructorsConstructorDescriptionJSSESupport(SSLSession session) Deprecated.JSSESupport(SSLSession session, Map<String, List<String>> additionalAttributes) 
- 
Method SummaryModifier and TypeMethodDescriptionThe cipher suite being used on this connection.Get the keysize.The client certificate chain (if any).The current session Id.voidInvalidate the session this support object is associated with.voidsetSession(SSLSession session) 
- 
Constructor Details- 
JSSESupportDeprecated.This will be removed in Tomcat 10.1.x onwards UseJSSESupport(SSLSession, Map)- Parameters:
- session- SSLSession from which information is to be extracted
 
- 
JSSESupport
 
- 
- 
Method Details- 
getCipherSuiteDescription copied from interface:SSLSupportThe cipher suite being used on this connection.- Specified by:
- getCipherSuitein interface- SSLSupport
- Returns:
- The name of the cipher suite as returned by the SSL/TLS implementation
- Throws:
- IOException- If an error occurs trying to obtain the cipher suite
 
- 
getPeerCertificateChainDescription copied from interface:SSLSupportThe client certificate chain (if any).- Specified by:
- getPeerCertificateChainin interface- SSLSupport
- Returns:
- The certificate chain presented by the client with the peer's certificate first, followed by those of any certificate authorities
- Throws:
- IOException- If an error occurs trying to obtain the certificate chain
 
- 
getKeySizeGet the keysize. What we're supposed to put here is ill-defined by the Servlet spec (S 4.7 again). There are at least 4 potential values that might go here: (a) The size of the encryption key (b) The size of the MAC key (c) The size of the key-exchange key (d) The size of the signature key used by the server Unfortunately, all of these values are nonsensical.This returns the effective bits for the current cipher suite. - Specified by:
- getKeySizein interface- SSLSupport
- Returns:
- The effective key size for the current cipher suite
- Throws:
- IOException- If an error occurs trying to obtain the key size
 
- 
getSessionIdDescription copied from interface:SSLSupportThe current session Id.- Specified by:
- getSessionIdin interface- SSLSupport
- Returns:
- The current SSL/TLS session ID
- Throws:
- IOException- If an error occurs trying to obtain the session ID
 
- 
setSession
- 
invalidateSessionpublic void invalidateSession()Invalidate the session this support object is associated with.- Specified by:
- invalidateSessionin interface- SSLSessionManager
 
- 
getProtocol- Specified by:
- getProtocolin interface- SSLSupport
- Returns:
- the protocol String indicating how the SSL socket was created e.g. TLSv1 or TLSv1.2 etc.
- Throws:
- IOException- If an error occurs trying to obtain the protocol information from the socket
 
- 
getRequestedProtocols- Specified by:
- getRequestedProtocolsin interface- SSLSupport
- Returns:
- the list of SSL/TLS protocol versions requested by the client
- Throws:
- IOException- If an error occurs trying to obtain the client requested protocol information from the socket
 
- 
getRequestedCiphers- Specified by:
- getRequestedCiphersin interface- SSLSupport
- Returns:
- the list of SSL/TLS ciphers requested by the client
- Throws:
- IOException- If an error occurs trying to obtain the client request cipher information from the socket
 
 
- 
JSSESupport(SSLSession, Map)