equal
deleted
inserted
replaced
58 * @author David Brownell |
58 * @author David Brownell |
59 */ |
59 */ |
60 final class ClientHandshaker extends Handshaker { |
60 final class ClientHandshaker extends Handshaker { |
61 |
61 |
62 // constants for subject alt names of type DNS and IP |
62 // constants for subject alt names of type DNS and IP |
63 private final static int ALTNAME_DNS = 2; |
63 private static final int ALTNAME_DNS = 2; |
64 private final static int ALTNAME_IP = 7; |
64 private static final int ALTNAME_IP = 7; |
65 |
65 |
66 // the server's public key from its certificate. |
66 // the server's public key from its certificate. |
67 private PublicKey serverKey; |
67 private PublicKey serverKey; |
68 |
68 |
69 // the server's ephemeral public key from the server key exchange message |
69 // the server's ephemeral public key from the server key exchange message |
96 * of the session we're trying to resume. |
96 * of the session we're trying to resume. |
97 */ |
97 */ |
98 private ProtocolVersion maxProtocolVersion; |
98 private ProtocolVersion maxProtocolVersion; |
99 |
99 |
100 // To switch off the SNI extension. |
100 // To switch off the SNI extension. |
101 private final static boolean enableSNIExtension = |
101 private static final boolean enableSNIExtension = |
102 Debug.getBooleanProperty("jsse.enableSNIExtension", true); |
102 Debug.getBooleanProperty("jsse.enableSNIExtension", true); |
103 |
103 |
104 /* |
104 /* |
105 * Allow unsafe server certificate change? |
105 * Allow unsafe server certificate change? |
106 * |
106 * |
142 * handshake is restricted (See isIdentityEquivalent()). |
142 * handshake is restricted (See isIdentityEquivalent()). |
143 * |
143 * |
144 * If the system property is set to "true" explicitly, the restriction on |
144 * If the system property is set to "true" explicitly, the restriction on |
145 * server certificate change in renegotiation is disabled. |
145 * server certificate change in renegotiation is disabled. |
146 */ |
146 */ |
147 private final static boolean allowUnsafeServerCertChange = |
147 private static final boolean allowUnsafeServerCertChange = |
148 Debug.getBooleanProperty("jdk.tls.allowUnsafeServerCertChange", false); |
148 Debug.getBooleanProperty("jdk.tls.allowUnsafeServerCertChange", false); |
149 |
149 |
150 // To switch off the max_fragment_length extension. |
150 // To switch off the max_fragment_length extension. |
151 private final static boolean enableMFLExtension = |
151 private static final boolean enableMFLExtension = |
152 Debug.getBooleanProperty("jsse.enableMFLExtension", false); |
152 Debug.getBooleanProperty("jsse.enableMFLExtension", false); |
153 |
153 |
154 private List<SNIServerName> requestedServerNames = |
154 private List<SNIServerName> requestedServerNames = |
155 Collections.<SNIServerName>emptyList(); |
155 Collections.<SNIServerName>emptyList(); |
156 |
156 |