/*

 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.

 *

 * This code is free software; you can redistribute it and/or modify it

 * under the terms of the GNU General Public License version 2 only, as

 * published by the Free Software Foundation.  Oracle designates this

 * particular file as subject to the "Classpath" exception as provided

 * by Oracle in the LICENSE file that accompanied this code.

 *

 * This code is distributed in the hope that it will be useful, but WITHOUT

 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or

 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License

 * version 2 for more details (a copy is included in the LICENSE file that

 * accompanied this code).

 *

 * You should have received a copy of the GNU General Public License version

 * 2 along with this work; if not, write to the Free Software Foundation,

 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

 *

 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA

 * or visit www.oracle.com if you need additional information or have any

 * questions.

 */

package sun.security.ssl;

import java.io.*;

import java.net.*;

import javax.net.ssl.SSLSocketFactory;

import javax.net.ssl.SSLSocket;

/**

 * Implementation of an SSL socket factory.  This provides the public

 * hooks to create SSL sockets, using a "high level" programming

 * interface which encapsulates system security policy defaults rather than

 * offering application flexibility.  In particular, it uses a configurable

 * authentication context (and the keys held there) rather than offering

 * any flexibility about which keys to use; that context defaults to the

 * process-default context, but may be explicitly specified.

 *

 * @author David Brownell

 */

    private static SSLContextImpl defaultContext;

    private SSLContextImpl context;

    /**

     * Constructor used to instantiate the default factory. This method is

     * only called if the old "ssl.SocketFactory.provider" property in the

     * java.security file is set.

     */

    public SSLSocketFactoryImpl() throws Exception {

    }

    /**

     * Constructs an SSL socket factory.

     */

    SSLSocketFactoryImpl(SSLContextImpl context) {

        this.context = context;

    }

    /**

     * Creates an unconnected socket.

     *

     * @return the unconnected socket

     * @see java.net.Socket#connect(java.net.SocketAddress, int)

     */

    public Socket createSocket() {

        return new SSLSocketImpl(context);

    }

    /**

     * Constructs an SSL connection to a named host at a specified port.

     * This acts as the SSL client, and may authenticate itself or rejoin

     * existing SSL sessions allowed by the authentication context which

     * has been configured.

     *

     * @param host name of the host with which to connect

     * @param port number of the server's port

     */

    public Socket createSocket(String host, int port)

    throws IOException, UnknownHostException

    {

        return new SSLSocketImpl(context, host, port);

    }

    /**

     * Returns a socket layered over an existing socket to a

     * ServerSocket on the named host, at the given port.  This

     * constructor can be used when tunneling SSL through a proxy. The

     * host and port refer to the logical destination server.  This

     * socket is configured using the socket options established for

     * this factory.

     *

     * @param s the existing socket

     * @param host the server host

     * @param port the server port

     * @param autoClose close the underlying socket when this socket is closed

     *

     * @exception IOException if the connection can't be established

     * @exception UnknownHostException if the host is not known

     */

    public Socket createSocket(Socket s, String host, int port,

            boolean autoClose) throws IOException {

        return new SSLSocketImpl(context, s, host, port, autoClose);

    }

    /**

     * Constructs an SSL connection to a server at a specified address

     * and TCP port.  This acts as the SSL client, and may authenticate

     * itself or rejoin existing SSL sessions allowed by the authentication

     * context which has been configured.

     *

     * @param address the server's host

     * @param port its port

     */

    public Socket createSocket(InetAddress address, int port)

    throws IOException

    {

        return new SSLSocketImpl(context, address, port);

    }

    /**

     * Constructs an SSL connection to a named host at a specified port.

     * This acts as the SSL client, and may authenticate itself or rejoin

     * existing SSL sessions allowed by the authentication context which

     * has been configured. The socket will also bind() to the local

     * address and port supplied.

     */

    public Socket createSocket(String host, int port,

        InetAddress clientAddress, int clientPort)

    throws IOException

    {

        return new SSLSocketImpl(context, host, port,

                clientAddress, clientPort);

    }

    /**

     * Constructs an SSL connection to a server at a specified address

     * and TCP port.  This acts as the SSL client, and may authenticate

     * itself or rejoin existing SSL sessions allowed by the authentication

     * context which has been configured. The socket will also bind() to

     * the local address and port supplied.

     */

    public Socket createSocket(InetAddress address, int port,

        InetAddress clientAddress, int clientPort)

    throws IOException

    {

        return new SSLSocketImpl(context, address, port,

                clientAddress, clientPort);

    }

    /**

     * Returns the subset of the supported cipher suites which are

     * enabled by default.  These cipher suites all provide a minimum

     * quality of service whereby the server authenticates itself

     * (preventing person-in-the-middle attacks) and where traffic

     * is encrypted to provide confidentiality.

     */

    public String[] getDefaultCipherSuites() {

    }

    /**

     * Returns the names of the cipher suites which could be enabled for use

     * on an SSL connection.  Normally, only a subset of these will actually

     * be enabled by default, since this list may include cipher suites which

     * do not support the mutual authentication of servers and clients, or

     * which do not protect data confidentiality.  Servers may also need

     * certain kinds of certificates to use certain cipher suites.

     */

    public String[] getSupportedCipherSuites() {

    }

}