jdk-sandbox: jdk/src/share/classes/javax/net/ssl/SSLParameters.java@90e9e05727dc (annotated)

2 90ce3da70b43 Initial load duke parents: diff changeset	1	/*
11838 90e9e05727dc 7144781: incorrect URLs in JSSE java doc xuelei parents: 7043 diff changeset	2	* Copyright (c) 2005, 2012, Oracle and/or its affiliates. All rights reserved.
2 90ce3da70b43 Initial load duke parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
90ce3da70b43 Initial load duke parents: diff changeset	4	*
90ce3da70b43 Initial load duke parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
90ce3da70b43 Initial load duke parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	7	* published by the Free Software Foundation. Oracle designates this
2 90ce3da70b43 Initial load duke parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
2 90ce3da70b43 Initial load duke parents: diff changeset	10	*
90ce3da70b43 Initial load duke parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
90ce3da70b43 Initial load duke parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
90ce3da70b43 Initial load duke parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
90ce3da70b43 Initial load duke parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
90ce3da70b43 Initial load duke parents: diff changeset	15	* accompanied this code).
90ce3da70b43 Initial load duke parents: diff changeset	16	*
90ce3da70b43 Initial load duke parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
90ce3da70b43 Initial load duke parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
90ce3da70b43 Initial load duke parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
90ce3da70b43 Initial load duke parents: diff changeset	20	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	22	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 2 diff changeset	23	* questions.
2 90ce3da70b43 Initial load duke parents: diff changeset	24	*/
90ce3da70b43 Initial load duke parents: diff changeset	25
90ce3da70b43 Initial load duke parents: diff changeset	26	package javax.net.ssl;
90ce3da70b43 Initial load duke parents: diff changeset	27
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	28	import java.security.AlgorithmConstraints;
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	29
2 90ce3da70b43 Initial load duke parents: diff changeset	30	/**
90ce3da70b43 Initial load duke parents: diff changeset	31	* Encapsulates parameters for an SSL/TLS connection. The parameters
90ce3da70b43 Initial load duke parents: diff changeset	32	* are the list of ciphersuites to be accepted in an SSL/TLS handshake,
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	33	* the list of protocols to be allowed, the endpoint identification
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	34	* algorithm during SSL/TLS handshaking, the algorithm constraints and
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	35	* whether SSL/TLS servers should request or require client authentication.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	36	* <p>
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	37	* SSLParameters can be created via the constructors in this class.
2 90ce3da70b43 Initial load duke parents: diff changeset	38	* Objects can also be obtained using the <code>getSSLParameters()</code>
90ce3da70b43 Initial load duke parents: diff changeset	39	* methods in
90ce3da70b43 Initial load duke parents: diff changeset	40	* {@link SSLSocket#getSSLParameters SSLSocket} and
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	41	* {@link SSLServerSocket#getSSLParameters SSLServerSocket} and
2 90ce3da70b43 Initial load duke parents: diff changeset	42	* {@link SSLEngine#getSSLParameters SSLEngine} or the
90ce3da70b43 Initial load duke parents: diff changeset	43	* {@link SSLContext#getDefaultSSLParameters getDefaultSSLParameters()} and
90ce3da70b43 Initial load duke parents: diff changeset	44	* {@link SSLContext#getSupportedSSLParameters getSupportedSSLParameters()}
90ce3da70b43 Initial load duke parents: diff changeset	45	* methods in <code>SSLContext</code>.
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	46	* <p>
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	47	* SSLParameters can be applied to a connection via the methods
2 90ce3da70b43 Initial load duke parents: diff changeset	48	* {@link SSLSocket#setSSLParameters SSLSocket.setSSLParameters()} and
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	49	* {@link SSLServerSocket#setSSLParameters SSLServerSocket.setSSLParameters()}
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	50	* and {@link SSLEngine#setSSLParameters SSLEngine.getSSLParameters()}.
2 90ce3da70b43 Initial load duke parents: diff changeset	51	*
90ce3da70b43 Initial load duke parents: diff changeset	52	* @see SSLSocket
90ce3da70b43 Initial load duke parents: diff changeset	53	* @see SSLEngine
90ce3da70b43 Initial load duke parents: diff changeset	54	* @see SSLContext
90ce3da70b43 Initial load duke parents: diff changeset	55	*
90ce3da70b43 Initial load duke parents: diff changeset	56	* @since 1.6
90ce3da70b43 Initial load duke parents: diff changeset	57	*/
90ce3da70b43 Initial load duke parents: diff changeset	58	public class SSLParameters {
90ce3da70b43 Initial load duke parents: diff changeset	59
90ce3da70b43 Initial load duke parents: diff changeset	60	private String[] cipherSuites;
90ce3da70b43 Initial load duke parents: diff changeset	61	private String[] protocols;
90ce3da70b43 Initial load duke parents: diff changeset	62	private boolean wantClientAuth;
90ce3da70b43 Initial load duke parents: diff changeset	63	private boolean needClientAuth;
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	64	private String identificationAlgorithm;
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	65	private AlgorithmConstraints algorithmConstraints;
2 90ce3da70b43 Initial load duke parents: diff changeset	66
90ce3da70b43 Initial load duke parents: diff changeset	67	/**
90ce3da70b43 Initial load duke parents: diff changeset	68	* Constructs SSLParameters.
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	69	* <p>
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	70	* The cipherSuites and protocols values are set to <code>null</code>,
2 90ce3da70b43 Initial load duke parents: diff changeset	71	* wantClientAuth and needClientAuth are set to <code>false</code>.
90ce3da70b43 Initial load duke parents: diff changeset	72	*/
90ce3da70b43 Initial load duke parents: diff changeset	73	public SSLParameters() {
90ce3da70b43 Initial load duke parents: diff changeset	74	// empty
90ce3da70b43 Initial load duke parents: diff changeset	75	}
90ce3da70b43 Initial load duke parents: diff changeset	76
90ce3da70b43 Initial load duke parents: diff changeset	77	/**
90ce3da70b43 Initial load duke parents: diff changeset	78	* Constructs SSLParameters from the specified array of ciphersuites.
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	79	* <p>
2 90ce3da70b43 Initial load duke parents: diff changeset	80	* Calling this constructor is equivalent to calling the no-args
90ce3da70b43 Initial load duke parents: diff changeset	81	* constructor followed by
90ce3da70b43 Initial load duke parents: diff changeset	82	* <code>setCipherSuites(cipherSuites);</code>.
90ce3da70b43 Initial load duke parents: diff changeset	83	*
90ce3da70b43 Initial load duke parents: diff changeset	84	* @param cipherSuites the array of ciphersuites (or null)
90ce3da70b43 Initial load duke parents: diff changeset	85	*/
90ce3da70b43 Initial load duke parents: diff changeset	86	public SSLParameters(String[] cipherSuites) {
90ce3da70b43 Initial load duke parents: diff changeset	87	setCipherSuites(cipherSuites);
90ce3da70b43 Initial load duke parents: diff changeset	88	}
90ce3da70b43 Initial load duke parents: diff changeset	89
90ce3da70b43 Initial load duke parents: diff changeset	90	/**
90ce3da70b43 Initial load duke parents: diff changeset	91	* Constructs SSLParameters from the specified array of ciphersuites
90ce3da70b43 Initial load duke parents: diff changeset	92	* and protocols.
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	93	* <p>
2 90ce3da70b43 Initial load duke parents: diff changeset	94	* Calling this constructor is equivalent to calling the no-args
90ce3da70b43 Initial load duke parents: diff changeset	95	* constructor followed by
90ce3da70b43 Initial load duke parents: diff changeset	96	* <code>setCipherSuites(cipherSuites); setProtocols(protocols);</code>.
90ce3da70b43 Initial load duke parents: diff changeset	97	*
90ce3da70b43 Initial load duke parents: diff changeset	98	* @param cipherSuites the array of ciphersuites (or null)
90ce3da70b43 Initial load duke parents: diff changeset	99	* @param protocols the array of protocols (or null)
90ce3da70b43 Initial load duke parents: diff changeset	100	*/
90ce3da70b43 Initial load duke parents: diff changeset	101	public SSLParameters(String[] cipherSuites, String[] protocols) {
90ce3da70b43 Initial load duke parents: diff changeset	102	setCipherSuites(cipherSuites);
90ce3da70b43 Initial load duke parents: diff changeset	103	setProtocols(protocols);
90ce3da70b43 Initial load duke parents: diff changeset	104	}
90ce3da70b43 Initial load duke parents: diff changeset	105
90ce3da70b43 Initial load duke parents: diff changeset	106	private static String[] clone(String[] s) {
90ce3da70b43 Initial load duke parents: diff changeset	107	return (s == null) ? null : s.clone();
90ce3da70b43 Initial load duke parents: diff changeset	108	}
90ce3da70b43 Initial load duke parents: diff changeset	109
90ce3da70b43 Initial load duke parents: diff changeset	110	/**
90ce3da70b43 Initial load duke parents: diff changeset	111	* Returns a copy of the array of ciphersuites or null if none
90ce3da70b43 Initial load duke parents: diff changeset	112	* have been set.
90ce3da70b43 Initial load duke parents: diff changeset	113	*
90ce3da70b43 Initial load duke parents: diff changeset	114	* @return a copy of the array of ciphersuites or null if none
90ce3da70b43 Initial load duke parents: diff changeset	115	* have been set.
90ce3da70b43 Initial load duke parents: diff changeset	116	*/
90ce3da70b43 Initial load duke parents: diff changeset	117	public String[] getCipherSuites() {
90ce3da70b43 Initial load duke parents: diff changeset	118	return clone(cipherSuites);
90ce3da70b43 Initial load duke parents: diff changeset	119	}
90ce3da70b43 Initial load duke parents: diff changeset	120
90ce3da70b43 Initial load duke parents: diff changeset	121	/**
90ce3da70b43 Initial load duke parents: diff changeset	122	* Sets the array of ciphersuites.
90ce3da70b43 Initial load duke parents: diff changeset	123	*
90ce3da70b43 Initial load duke parents: diff changeset	124	* @param cipherSuites the array of ciphersuites (or null)
90ce3da70b43 Initial load duke parents: diff changeset	125	*/
90ce3da70b43 Initial load duke parents: diff changeset	126	public void setCipherSuites(String[] cipherSuites) {
90ce3da70b43 Initial load duke parents: diff changeset	127	this.cipherSuites = clone(cipherSuites);
90ce3da70b43 Initial load duke parents: diff changeset	128	}
90ce3da70b43 Initial load duke parents: diff changeset	129
90ce3da70b43 Initial load duke parents: diff changeset	130	/**
90ce3da70b43 Initial load duke parents: diff changeset	131	* Returns a copy of the array of protocols or null if none
90ce3da70b43 Initial load duke parents: diff changeset	132	* have been set.
90ce3da70b43 Initial load duke parents: diff changeset	133	*
90ce3da70b43 Initial load duke parents: diff changeset	134	* @return a copy of the array of protocols or null if none
90ce3da70b43 Initial load duke parents: diff changeset	135	* have been set.
90ce3da70b43 Initial load duke parents: diff changeset	136	*/
90ce3da70b43 Initial load duke parents: diff changeset	137	public String[] getProtocols() {
90ce3da70b43 Initial load duke parents: diff changeset	138	return clone(protocols);
90ce3da70b43 Initial load duke parents: diff changeset	139	}
90ce3da70b43 Initial load duke parents: diff changeset	140
90ce3da70b43 Initial load duke parents: diff changeset	141	/**
90ce3da70b43 Initial load duke parents: diff changeset	142	* Sets the array of protocols.
90ce3da70b43 Initial load duke parents: diff changeset	143	*
90ce3da70b43 Initial load duke parents: diff changeset	144	* @param protocols the array of protocols (or null)
90ce3da70b43 Initial load duke parents: diff changeset	145	*/
90ce3da70b43 Initial load duke parents: diff changeset	146	public void setProtocols(String[] protocols) {
90ce3da70b43 Initial load duke parents: diff changeset	147	this.protocols = clone(protocols);
90ce3da70b43 Initial load duke parents: diff changeset	148	}
90ce3da70b43 Initial load duke parents: diff changeset	149
90ce3da70b43 Initial load duke parents: diff changeset	150	/**
90ce3da70b43 Initial load duke parents: diff changeset	151	* Returns whether client authentication should be requested.
90ce3da70b43 Initial load duke parents: diff changeset	152	*
90ce3da70b43 Initial load duke parents: diff changeset	153	* @return whether client authentication should be requested.
90ce3da70b43 Initial load duke parents: diff changeset	154	*/
90ce3da70b43 Initial load duke parents: diff changeset	155	public boolean getWantClientAuth() {
90ce3da70b43 Initial load duke parents: diff changeset	156	return wantClientAuth;
90ce3da70b43 Initial load duke parents: diff changeset	157	}
90ce3da70b43 Initial load duke parents: diff changeset	158
90ce3da70b43 Initial load duke parents: diff changeset	159	/**
90ce3da70b43 Initial load duke parents: diff changeset	160	* Sets whether client authentication should be requested. Calling
90ce3da70b43 Initial load duke parents: diff changeset	161	* this method clears the <code>needClientAuth</code> flag.
90ce3da70b43 Initial load duke parents: diff changeset	162	*
90ce3da70b43 Initial load duke parents: diff changeset	163	* @param wantClientAuth whether client authentication should be requested
90ce3da70b43 Initial load duke parents: diff changeset	164	*/
90ce3da70b43 Initial load duke parents: diff changeset	165	public void setWantClientAuth(boolean wantClientAuth) {
90ce3da70b43 Initial load duke parents: diff changeset	166	this.wantClientAuth = wantClientAuth;
90ce3da70b43 Initial load duke parents: diff changeset	167	this.needClientAuth = false;
90ce3da70b43 Initial load duke parents: diff changeset	168	}
90ce3da70b43 Initial load duke parents: diff changeset	169
90ce3da70b43 Initial load duke parents: diff changeset	170	/**
90ce3da70b43 Initial load duke parents: diff changeset	171	* Returns whether client authentication should be required.
90ce3da70b43 Initial load duke parents: diff changeset	172	*
90ce3da70b43 Initial load duke parents: diff changeset	173	* @return whether client authentication should be required.
90ce3da70b43 Initial load duke parents: diff changeset	174	*/
90ce3da70b43 Initial load duke parents: diff changeset	175	public boolean getNeedClientAuth() {
90ce3da70b43 Initial load duke parents: diff changeset	176	return needClientAuth;
90ce3da70b43 Initial load duke parents: diff changeset	177	}
90ce3da70b43 Initial load duke parents: diff changeset	178
90ce3da70b43 Initial load duke parents: diff changeset	179	/**
90ce3da70b43 Initial load duke parents: diff changeset	180	* Sets whether client authentication should be required. Calling
90ce3da70b43 Initial load duke parents: diff changeset	181	* this method clears the <code>wantClientAuth</code> flag.
90ce3da70b43 Initial load duke parents: diff changeset	182	*
90ce3da70b43 Initial load duke parents: diff changeset	183	* @param needClientAuth whether client authentication should be required
90ce3da70b43 Initial load duke parents: diff changeset	184	*/
90ce3da70b43 Initial load duke parents: diff changeset	185	public void setNeedClientAuth(boolean needClientAuth) {
90ce3da70b43 Initial load duke parents: diff changeset	186	this.wantClientAuth = false;
90ce3da70b43 Initial load duke parents: diff changeset	187	this.needClientAuth = needClientAuth;
90ce3da70b43 Initial load duke parents: diff changeset	188	}
90ce3da70b43 Initial load duke parents: diff changeset	189
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	190	/**
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	191	* Returns the cryptographic algorithm constraints.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	192	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	193	* @return the cryptographic algorithm constraints, or null if the
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	194	* constraints have not been set
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	195	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	196	* @see #setAlgorithmConstraints(AlgorithmConstraints)
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	197	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	198	* @since 1.7
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	199	*/
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	200	public AlgorithmConstraints getAlgorithmConstraints() {
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	201	return algorithmConstraints;
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	202	}
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	203
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	204	/**
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	205	* Sets the cryptographic algorithm constraints, which will be used
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	206	* in addition to any configured by the runtime environment.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	207	* <p>
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	208	* If the <code>constraints</code> parameter is non-null, every
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	209	* cryptographic algorithm, key and algorithm parameters used in the
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	210	* SSL/TLS handshake must be permitted by the constraints.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	211	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	212	* @param constraints the algorithm constraints (or null)
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	213	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	214	* @since 1.7
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	215	*/
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	216	public void setAlgorithmConstraints(AlgorithmConstraints constraints) {
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	217	// the constraints object is immutable
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	218	this.algorithmConstraints = constraints;
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	219	}
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	220
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	221	/**
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	222	* Gets the endpoint identification algorithm.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	223	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	224	* @return the endpoint identification algorithm, or null if none
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	225	* has been set.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	226	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	227	* @see X509ExtendedTrustManager
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	228	* @see #setEndpointIdentificationAlgorithm(String)
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	229	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	230	* @since 1.7
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	231	*/
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	232	public String getEndpointIdentificationAlgorithm() {
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	233	return identificationAlgorithm;
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	234	}
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	235
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	236	/**
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	237	* Sets the endpoint identification algorithm.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	238	* <p>
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	239	* If the <code>algorithm</code> parameter is non-null or non-empty, the
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	240	* endpoint identification/verification procedures must be handled during
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	241	* SSL/TLS handshaking. This is to prevent man-in-the-middle attacks.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	242	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	243	* @param algorithm The standard string name of the endpoint
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	244	* identification algorithm (or null). See Appendix A in the <a href=
11838 90e9e05727dc 7144781: incorrect URLs in JSSE java doc xuelei parents: 7043 diff changeset	245	* "{@docRoot}/../technotes/guides/security/crypto/CryptoSpec.html#AppA">
7043 5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	246	* Java Cryptography Architecture API Specification & Reference </a>
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	247	* for information about standard algorithm names.
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	248	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	249	* @see X509ExtendedTrustManager
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	250	*
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	251	* @since 1.7
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	252	*/
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	253	public void setEndpointIdentificationAlgorithm(String algorithm) {
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	254	this.identificationAlgorithm = algorithm;
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	255	}
5e2d1edeb2c7 6916074: Add support for TLS 1.2 xuelei parents: 5506 diff changeset	256
2 90ce3da70b43 Initial load duke parents: diff changeset	257	}

author	xuelei
	Fri, 10 Feb 2012 22:17:44 -0800
changeset 11838	90e9e05727dc
parent 7043	5e2d1edeb2c7
child 14194	971f46db533d
permissions	-rw-r--r--