public abstract class SSLSocketFactory extends SocketFactory
SSLSocketFactory
s create SSLSocket
s.SSLSocket
Constructor and Description |
---|
SSLSocketFactory()
Constructor is used only by subclasses.
|
Modifier and Type | Method and Description |
---|---|
Socket |
createSocket(Socket s,
InputStream consumed,
boolean autoClose)
Creates a server mode
Socket layered over an
existing connected socket, and is able to read data which has
already been consumed/removed from the Socket 's
underlying InputStream . |
abstract Socket |
createSocket(Socket s,
String host,
int port,
boolean autoClose)
Returns a socket layered over an existing socket connected to the named
host, at the given port.
|
static SocketFactory |
getDefault()
Returns the default SSL socket factory.
|
abstract String[] |
getDefaultCipherSuites()
Returns the list of cipher suites which are enabled by default.
|
abstract String[] |
getSupportedCipherSuites()
Returns the names of the cipher suites which could be enabled for use
on an SSL connection.
|
createSocket, createSocket, createSocket, createSocket, createSocket
public SSLSocketFactory()
public static SocketFactory getDefault()
The first time this method is called, the security property "ssl.SocketFactory.provider" is examined. If it is non-null, a class by that name is loaded and instantiated. If that is successful and the object is an instance of SSLSocketFactory, it is made the default SSL socket factory.
Otherwise, this method returns
SSLContext.getDefault().getSocketFactory()
. If that
call fails, an inoperative factory is returned.
SocketFactory
SSLContext.getDefault()
public abstract String[] getDefaultCipherSuites()
getSupportedCipherSuites()
public abstract String[] getSupportedCipherSuites()
getDefaultCipherSuites()
public abstract Socket createSocket(Socket s, String host, int port, boolean autoClose) throws IOException
s
- the existing sockethost
- the server hostport
- the server portautoClose
- close the underlying socket when this socket is closedIOException
- if an I/O error occurs when creating the socketNullPointerException
- if the parameter s is nullpublic Socket createSocket(Socket s, InputStream consumed, boolean autoClose) throws IOException
Socket
layered over an
existing connected socket, and is able to read data which has
already been consumed/removed from the Socket
's
underlying InputStream
.
This method can be used by a server application that needs to
observe the inbound data but still create valid SSL/TLS
connections: for example, inspection of Server Name Indication
(SNI) extensions (See section 3 of TLS Extensions
(RFC6066)). Data that has been already removed from the
underlying InputStream
should be loaded into the
consumed
stream before this method is called, perhaps
using a ByteArrayInputStream
. When this
Socket
begins handshaking, it will read all of the data in
consumed
until it reaches EOF
, then all further
data is read from the underlying InputStream
as
usual.
The returned socket is configured using the socket options
established for this factory, and is set to use server mode when
handshaking (see SSLSocket.setUseClientMode(boolean)
).
s
- the existing socketconsumed
- the consumed inbound network data that has already been
removed from the existing Socket
InputStream
. This parameter may be
null
if no data has been removed.autoClose
- close the underlying socket when this socket is closed.Socket
compliant with the socket options
established for this factoryIOException
- if an I/O error occurs when creating the socketUnsupportedOperationException
- if the underlying provider
does not implement the operationNullPointerException
- if s
is null
Submit a bug or feature
For further API reference and developer documentation, see Java SE Documentation. That documentation contains more detailed, developer-targeted descriptions, with conceptual overviews, definitions of terms, workarounds, and working code examples.
Copyright © 1993, 2022, Oracle and/or its affiliates. All rights reserved. Use is subject to license terms. Also see the documentation redistribution policy.