net.jradius.tls

类 TlsProtocolHandler

java.lang.Object

net.jradius.tls.TlsProtocolHandler

public class TlsProtocolHandler
extends Object

An implementation of all high level protocols in TLS 1.0.

字段概要

字段

限定符和类型	字段和说明
protected static short	AL_fatal
protected static short	AL_warning
protected static short	AP_access_denied
protected static short	AP_bad_certificate
protected static short	AP_bad_record_mac
protected static short	AP_certificate_expired
protected static short	AP_certificate_revoked
protected static short	AP_certificate_unknown
protected static short	AP_close_notify
protected static short	AP_decode_error
protected static short	AP_decompression_failure
protected static short	AP_decrypt_error
protected static short	AP_decryption_failed
protected static short	AP_export_restriction
protected static short	AP_handshake_failure
protected static short	AP_illegal_parameter
protected static short	AP_insufficient_security
protected static short	AP_internal_error
protected static short	AP_no_renegotiation
protected static short	AP_protocol_version
protected static short	AP_record_overflow
protected static short	AP_unexpected_message
protected static short	AP_unknown_ca
protected static short	AP_unknown_psk_identity
protected static short	AP_unsupported_certificate
protected static short	AP_user_canceled
static short	CS_DONE

构造器概要

构造器

构造器和说明
TlsProtocolHandler()
TlsProtocolHandler(InputStream is, OutputStream os)
TlsProtocolHandler(InputStream is, OutputStream os, SecureRandom sr)

方法概要

方法

限定符和类型	方法和说明
protected void	assertEmpty(ByteArrayInputStream is) Make sure the InputStream is now empty.
void	close() Closes this connection.
void	connect(ByteArrayInputStream is, ByteArrayOutputStream out, CertificateVerifyer verifyer) Connects to the remote system.
void	connect(ByteArrayInputStream is, ByteArrayOutputStream out, net.jradius.tls.TlsClient tlsClient) Connects to the remote system using client authentication
protected void	failWithError(short alertLevel, short alertDescription) Terminate this connection with an alert.
protected void	flush()
InputStream	getInputStream()
OutputStream	getOutputStream()
protected void	processData(short protocol, byte[] buf, int offset, int len)
protected byte[]	readApplicationData()
protected int	readApplicationData(byte[] buf, int offset, int len) Read data from the network.
byte[]	readApplicationData(ByteArrayInputStream is, ByteArrayOutputStream os)
void	setKeyManagers(KeyManager[] keyManagers)
void	setSendCertificate(boolean b)
void	setTrustManagers(TrustManager[] trustManagers)
short	updateConnectState(ByteArrayInputStream is, ByteArrayOutputStream os)
void	writeApplicationData(ByteArrayInputStream is, ByteArrayOutputStream os, byte[] b)
protected void	writeData(byte[] buf, int offset, int len) Send some application data to the remote system.

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

字段详细资料

CS_DONE

public static final short CS_DONE

另请参阅:

常量字段值

AL_warning

protected static final short AL_warning

另请参阅:

常量字段值

AL_fatal

protected static final short AL_fatal

另请参阅:

常量字段值

AP_close_notify

protected static final short AP_close_notify

另请参阅:

常量字段值

AP_unexpected_message

protected static final short AP_unexpected_message

另请参阅:

常量字段值

AP_bad_record_mac

protected static final short AP_bad_record_mac

另请参阅:

常量字段值

AP_decryption_failed

protected static final short AP_decryption_failed

另请参阅:

常量字段值

AP_record_overflow

protected static final short AP_record_overflow

另请参阅:

常量字段值

AP_decompression_failure

protected static final short AP_decompression_failure

另请参阅:

常量字段值

AP_handshake_failure

protected static final short AP_handshake_failure

另请参阅:

常量字段值

AP_bad_certificate

protected static final short AP_bad_certificate

另请参阅:

常量字段值

AP_unsupported_certificate

protected static final short AP_unsupported_certificate

另请参阅:

常量字段值

AP_certificate_revoked

protected static final short AP_certificate_revoked

另请参阅:

常量字段值

AP_certificate_expired

protected static final short AP_certificate_expired

另请参阅:

常量字段值

AP_certificate_unknown

protected static final short AP_certificate_unknown

另请参阅:

常量字段值

AP_illegal_parameter

protected static final short AP_illegal_parameter

另请参阅:

常量字段值

AP_unknown_ca

protected static final short AP_unknown_ca

另请参阅:

常量字段值

AP_access_denied

protected static final short AP_access_denied

另请参阅:

常量字段值

AP_decode_error

protected static final short AP_decode_error

另请参阅:

常量字段值

AP_decrypt_error

protected static final short AP_decrypt_error

另请参阅:

常量字段值

AP_export_restriction

protected static final short AP_export_restriction

另请参阅:

常量字段值

AP_protocol_version

protected static final short AP_protocol_version

另请参阅:

常量字段值

AP_insufficient_security

protected static final short AP_insufficient_security

另请参阅:

常量字段值

AP_internal_error

protected static final short AP_internal_error

另请参阅:

常量字段值

AP_user_canceled

protected static final short AP_user_canceled

另请参阅:

常量字段值

AP_no_renegotiation

protected static final short AP_no_renegotiation

另请参阅:

常量字段值

AP_unknown_psk_identity

protected static final short AP_unknown_psk_identity

另请参阅:

常量字段值

构造器详细资料

TlsProtocolHandler

public TlsProtocolHandler(InputStream is,
                  OutputStream os)

TlsProtocolHandler

public TlsProtocolHandler(InputStream is,
                  OutputStream os,
                  SecureRandom sr)

TlsProtocolHandler

public TlsProtocolHandler()

方法详细资料

setSendCertificate

public void setSendCertificate(boolean b)

processData

protected void processData(short protocol,
               byte[] buf,
               int offset,
               int len)
                    throws IOException

抛出:

IOException

connect

public void connect(ByteArrayInputStream is,
           ByteArrayOutputStream out,
           CertificateVerifyer verifyer)
             throws IOException

Connects to the remote system.

参数:

is -

out -

verifyer - Will be used when a certificate is received to verify that this certificate is accepted by the client.

抛出:

IOException - If handshake was not successful.

connect

public void connect(ByteArrayInputStream is,
           ByteArrayOutputStream out,
           net.jradius.tls.TlsClient tlsClient)
             throws IOException

Connects to the remote system using client authentication

参数:

verifyer - Will be used when a certificate is received to verify that this certificate is accepted by the client.

clientCertificate - The client's certificate to be provided to the remote system

clientPrivateKey - The client's private key for the certificate to authenticate to the remote system (RSA or DSA)

抛出:

IOException - If handshake was not successful.

writeApplicationData

public void writeApplicationData(ByteArrayInputStream is,
                        ByteArrayOutputStream os,
                        byte[] b)
                          throws IOException

抛出:

IOException

readApplicationData

public byte[] readApplicationData(ByteArrayInputStream is,
                         ByteArrayOutputStream os)
                           throws IOException

抛出:

IOException

readApplicationData

protected byte[] readApplicationData()
                              throws IOException

抛出:

IOException

updateConnectState

public short updateConnectState(ByteArrayInputStream is,
                       ByteArrayOutputStream os)
                         throws IOException

抛出:

IOException

readApplicationData

protected int readApplicationData(byte[] buf,
                      int offset,
                      int len)
                           throws IOException

Read data from the network. The method will return immediately, if there is still some data left in the buffer, or block until some application data has been read from the network.

参数:

buf - The buffer where the data will be copied to.

offset - The position where the data will be placed in the buffer.

len - The maximum number of bytes to read.

返回:

The number of bytes read.

抛出:

IOException - If something goes wrong during reading data.

writeData

protected void writeData(byte[] buf,
             int offset,
             int len)
                  throws IOException

Send some application data to the remote system.

The method will handle fragmentation internally.

参数:

buf - The buffer with the data.

offset - The position in the buffer where the data is placed.

len - The length of the data.

抛出:

IOException - If something goes wrong during sending.

getOutputStream

public OutputStream getOutputStream()

返回:

An OutputStream which can be used to send data.

getInputStream

public InputStream getInputStream()

返回:

An InputStream which can be used to read data.

failWithError

protected void failWithError(short alertLevel,
                 short alertDescription)
                      throws IOException

Terminate this connection with an alert.

Can be used for normal closure too.

参数:

alertLevel - The level of the alert, an be AL_fatal or AL_warning.

alertDescription - The exact alert message.

抛出:

IOException - If alert was fatal.

close

public void close()
           throws IOException

Closes this connection.

抛出:

IOException - If something goes wrong during closing.

assertEmpty

protected void assertEmpty(ByteArrayInputStream is)
                    throws IOException

Make sure the InputStream is now empty. Fail otherwise.

参数:

is - The InputStream to check.

抛出:

IOException - If is is not empty.

flush

protected void flush()
              throws IOException

抛出:

IOException

setKeyManagers

public void setKeyManagers(KeyManager[] keyManagers)

setTrustManagers

public void setTrustManagers(TrustManager[] trustManagers)