public abstract class SSLContextSpi extends Object
SSLContext
class. All the abstract methods in this class must be implemented by each cryptographic service provider who wishes to supply the implementation of a particular SSL context.
Constructor | Description |
---|---|
SSLContextSpi() |
Constructor for subclasses to call. |
Modifier and Type | Method | Description |
---|---|---|
protected abstract SSLEngine |
engineCreateSSLEngine() |
Creates a new SSLEngine using this context. |
protected abstract SSLEngine |
engineCreateSSLEngine |
Creates a SSLEngine using this context. |
protected abstract SSLSessionContext |
engineGetClientSessionContext() |
Returns a client SSLSessionContext object for this context. |
protected SSLParameters |
engineGetDefaultSSLParameters() |
Returns a copy of the SSLParameters indicating the default settings for this SSL context. |
protected abstract SSLSessionContext |
engineGetServerSessionContext() |
Returns a server SSLSessionContext object for this context. |
protected abstract SSLServerSocketFactory |
engineGetServerSocketFactory() |
Returns a ServerSocketFactory object for this context. |
protected abstract SSLSocketFactory |
engineGetSocketFactory() |
Returns a SocketFactory object for this context. |
protected SSLParameters |
engineGetSupportedSSLParameters() |
Returns a copy of the SSLParameters indicating the maximum supported settings for this SSL context. |
protected abstract void |
engineInit |
Initializes this context. |
public SSLContextSpi()
protected abstract void engineInit(KeyManager[] km, TrustManager[] tm, SecureRandom sr) throws KeyManagementException
km
- the sources of authentication keystm
- the sources of peer authentication trust decisionssr
- the source of randomnessKeyManagementException
- if this operation failsprotected abstract SSLSocketFactory engineGetSocketFactory()
SocketFactory
object for this context.SocketFactory
objectUnsupportedOperationException
- if the underlying provider does not implement the operation.IllegalStateException
- if the SSLContextImpl requires initialization and the engineInit()
has not been calledprotected abstract SSLServerSocketFactory engineGetServerSocketFactory()
ServerSocketFactory
object for this context.ServerSocketFactory
objectUnsupportedOperationException
- if the underlying provider does not implement the operation.IllegalStateException
- if the SSLContextImpl requires initialization and the engineInit()
has not been calledprotected abstract SSLEngine engineCreateSSLEngine()
SSLEngine
using this context. Applications using this factory method are providing no hints for an internal session reuse strategy. If hints are desired, engineCreateSSLEngine(String, int)
should be used instead.
Some cipher suites (such as Kerberos) require remote hostname information, in which case this factory method should not be used.
SSLEngine.setUseClientMode()
before invoking other methods of the SSLEngine.SSLEngine
ObjectIllegalStateException
- if the SSLContextImpl requires initialization and the engineInit()
has not been calledprotected abstract SSLEngine engineCreateSSLEngine(String host, int port)
SSLEngine
using this context. Applications using this factory method are providing hints for an internal session reuse strategy.
Some cipher suites (such as Kerberos) require remote hostname information, in which case peerHost needs to be specified.
SSLEngine.setUseClientMode()
before invoking other methods of the SSLEngine.host
- the non-authoritative name of the hostport
- the non-authoritative portSSLEngine
ObjectIllegalStateException
- if the SSLContextImpl requires initialization and the engineInit()
has not been calledprotected abstract SSLSessionContext engineGetServerSessionContext()
SSLSessionContext
object for this context.SSLSessionContext
objectprotected abstract SSLSessionContext engineGetClientSessionContext()
SSLSessionContext
object for this context.SSLSessionContext
objectprotected SSLParameters engineGetDefaultSSLParameters()
The parameters will always have the ciphersuite and protocols arrays set to non-null values.
The default implementation obtains the parameters from an SSLSocket created by calling the SocketFactory.createSocket() method of this context's SocketFactory.
UnsupportedOperationException
- if the default SSL parameters could not be obtained.protected SSLParameters engineGetSupportedSSLParameters()
The parameters will always have the ciphersuite and protocols arrays set to non-null values.
The default implementation obtains the parameters from an SSLSocket created by calling the SocketFactory.createSocket() method of this context's SocketFactory.
UnsupportedOperationException
- if the supported SSL parameters could not be obtained.
© 1993, 2023, Oracle and/or its affiliates. All rights reserved.
Documentation extracted from Debian's OpenJDK Development Kit package.
Licensed under the GNU General Public License, version 2, with the Classpath Exception.
Various third party code in OpenJDK is licensed under different licenses (see Debian package).
Java and OpenJDK are trademarks or registered trademarks of Oracle and/or its affiliates.
https://docs.oracle.com/en/java/javase/21/docs/api/java.base/javax/net/ssl/SSLContextSpi.html