- java.lang.Object
-
- org.snmp4j.transport.tls.TlsTrustManager
-
- All Implemented Interfaces:
javax.net.ssl.TrustManager,javax.net.ssl.X509TrustManager
public class TlsTrustManager extends java.lang.Object implements javax.net.ssl.X509TrustManagerTheTlsTrustManagerverifies the trust for clients and servers connected based on the certificates, and fingerprints provided.- Version:
- 3.3.0
- Author:
- Frank Fock
-
-
Constructor Summary
Constructors Constructor Description TlsTrustManager(javax.net.ssl.X509TrustManager trustManager, boolean useClientMode, TransportStateReference tmStateReference, CounterSupport tlstmCounters, TlsTmSecurityCallback<java.security.cert.X509Certificate> securityCallback)Creates a newTlsTrustManager.
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description voidcheckClientTrusted(java.security.cert.X509Certificate[] x509Certificates, java.lang.String s)voidcheckServerTrusted(java.security.cert.X509Certificate[] x509Certificates, java.lang.String s)java.security.cert.X509Certificate[]getAcceptedIssuers()static java.security.cert.X509Certificate[]getAcceptedIssuers(javax.net.ssl.X509TrustManager trustManager, TlsTmSecurityCallback<java.security.cert.X509Certificate> securityCallback)Gets the acceptedX509Certificates from the givenX509TrustManagerand security callback.protected TlsTmSecurityCallback<java.security.cert.X509Certificate>getSecurityCallback()
-
-
-
Constructor Detail
-
TlsTrustManager
public TlsTrustManager(javax.net.ssl.X509TrustManager trustManager, boolean useClientMode, TransportStateReference tmStateReference, CounterSupport tlstmCounters, TlsTmSecurityCallback<java.security.cert.X509Certificate> securityCallback)Creates a newTlsTrustManager.- Parameters:
trustManager- the X509 trust manager to be used to validate certificates.useClientMode- determines if the trust is established as client (true) or server (false).tmStateReference- theTransportStateReferencethat optionally contains aTlsTmSecurityCallbackwhich will then take precedence over theTlsTmSecurityCallbackprovided as parameter (which could then benull).tlstmCounters- theCounterSupportfor recording events created by this trust manager.securityCallback- theTlsTmSecurityCallbackto be used (iftmStateReferencedoes not provide some) to validate peers.
-
-
Method Detail
-
checkClientTrusted
public void checkClientTrusted(java.security.cert.X509Certificate[] x509Certificates, java.lang.String s) throws java.security.cert.CertificateException- Specified by:
checkClientTrustedin interfacejavax.net.ssl.X509TrustManager- Throws:
java.security.cert.CertificateException
-
checkServerTrusted
public void checkServerTrusted(java.security.cert.X509Certificate[] x509Certificates, java.lang.String s) throws java.security.cert.CertificateException- Specified by:
checkServerTrustedin interfacejavax.net.ssl.X509TrustManager- Throws:
java.security.cert.CertificateException
-
getAcceptedIssuers
public java.security.cert.X509Certificate[] getAcceptedIssuers()
- Specified by:
getAcceptedIssuersin interfacejavax.net.ssl.X509TrustManager
-
getAcceptedIssuers
public static java.security.cert.X509Certificate[] getAcceptedIssuers(javax.net.ssl.X509TrustManager trustManager, TlsTmSecurityCallback<java.security.cert.X509Certificate> securityCallback)Gets the acceptedX509Certificates from the givenX509TrustManagerand security callback.- Parameters:
trustManager- a X509TrustManager providing the accepted issuers.securityCallback- a security callback that is ask to accept any returned issuer.- Returns:
- a probably empty or
nullarray of accepted issuers. - Since:
- 3.1.1
-
getSecurityCallback
protected TlsTmSecurityCallback<java.security.cert.X509Certificate> getSecurityCallback()
-
-