Class ClientX509Util
java.lang.Object
org.apache.zookeeper.common.X509Util
org.apache.zookeeper.common.ClientX509Util
- All Implemented Interfaces:
Closeable, AutoCloseable
X509 utilities specific for client-server communication framework.
-
Nested Class Summary
Nested classes/interfaces inherited from class X509Util
X509Util.ClientAuth -
Field Summary
Fields inherited from class X509Util
DEFAULT_HANDSHAKE_DETECTION_TIMEOUT_MILLIS, DEFAULT_PROTOCOL, FIPS_MODE_PROPERTY, TLS_1_1, TLS_1_2, TLS_1_3 -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionio.netty.handler.ssl.SslContextio.netty.handler.ssl.SslContextio.netty.handler.ssl.SslContextcreateNettySslContextForServer(ZKConfig config, KeyManager keyManager, TrustManager trustManager) protected Stringio.netty.handler.ssl.SslProvidergetSslProvider(ZKConfig config) protected booleanprotected booleanMethods inherited from class X509Util
allowReverseDnsLookup, close, createKeyManager, createSSLContext, createSSLContextAndOptions, createSSLContextAndOptionsFromConfig, createSSLServerSocket, createSSLServerSocket, createSSLSocket, createSSLSocket, createTrustManager, enableCertFileReloading, getCipherSuitesProperty, getDefaultSSLContext, getDefaultSSLContextAndOptions, getFipsMode, getFipsModeProperty, getPasswordFromConfigPropertyOrFile, getSslAllowReverseDnsLookupProperty, getSslCipherSuitesProperty, getSslClientAuthProperty, getSslClientHostnameVerificationEnabledProperty, getSslContextSupplierClassProperty, getSslCrlEnabledProperty, getSslEnabledProtocolsProperty, getSslHandshakeDetectionTimeoutMillisProperty, getSslHandshakeTimeoutMillis, getSslHostnameVerificationEnabledProperty, getSslKeystoreLocationProperty, getSslKeystorePasswdPathProperty, getSslKeystorePasswdProperty, getSslKeystoreTypeProperty, getSslOcspEnabledProperty, getSslProtocolProperty, getSslTruststoreLocationProperty, getSslTruststorePasswdPathProperty, getSslTruststorePasswdProperty, getSslTruststoreTypeProperty, isClientHostnameVerificationEnabled, isServerHostnameVerificationEnabled, loadKeyStore, loadTrustStore
-
Constructor Details
-
ClientX509Util
public ClientX509Util()
-
-
Method Details
-
getConfigPrefix
- Specified by:
getConfigPrefixin classX509Util
-
shouldVerifyClientHostname
protected boolean shouldVerifyClientHostname()- Specified by:
shouldVerifyClientHostnamein classX509Util
-
shouldAllowReverseDnsLookup
protected boolean shouldAllowReverseDnsLookup()- Specified by:
shouldAllowReverseDnsLookupin classX509Util
-
getSslAuthProviderProperty
-
getSslProviderProperty
-
createNettySslContextForClient
public io.netty.handler.ssl.SslContext createNettySslContextForClient(ZKConfig config) throws X509Exception.KeyManagerException, X509Exception.TrustManagerException, SSLException -
createNettySslContextForServer
public io.netty.handler.ssl.SslContext createNettySslContextForServer(ZKConfig config) throws X509Exception.SSLContextException, X509Exception.KeyManagerException, X509Exception.TrustManagerException, SSLException -
createNettySslContextForServer
public io.netty.handler.ssl.SslContext createNettySslContextForServer(ZKConfig config, KeyManager keyManager, TrustManager trustManager) throws SSLException - Throws:
SSLException
-
getSslProvider
-