ac1ed908de
2006-08-14 Mark Wielaard <mark@klomp.org> Imported GNU Classpath 0.92 * HACKING: Add more importing hints. Update automake version requirement. * configure.ac (gconf-peer): New enable AC argument. Add --disable-gconf-peer and --enable-default-preferences-peer to classpath configure when gconf is disabled. * scripts/makemake.tcl: Set gnu/java/util/prefs/gconf and gnu/java/awt/dnd/peer/gtk to bc. Classify gnu/java/security/Configuration.java as generated source file. * gnu/java/lang/management/VMGarbageCollectorMXBeanImpl.java, gnu/java/lang/management/VMMemoryPoolMXBeanImpl.java, gnu/java/lang/management/VMClassLoadingMXBeanImpl.java, gnu/java/lang/management/VMRuntimeMXBeanImpl.java, gnu/java/lang/management/VMMemoryManagerMXBeanImpl.java, gnu/java/lang/management/VMThreadMXBeanImpl.java, gnu/java/lang/management/VMMemoryMXBeanImpl.java, gnu/java/lang/management/VMCompilationMXBeanImpl.java: New VM stub classes. * java/lang/management/VMManagementFactory.java: Likewise. * java/net/VMURLConnection.java: Likewise. * gnu/java/nio/VMChannel.java: Likewise. * java/lang/Thread.java (getState): Add stub implementation. * java/lang/Class.java (isEnum): Likewise. * java/lang/Class.h (isEnum): Likewise. * gnu/awt/xlib/XToolkit.java (getClasspathTextLayoutPeer): Removed. * javax/naming/spi/NamingManager.java: New override for StackWalker functionality. * configure, sources.am, Makefile.in, gcj/Makefile.in, include/Makefile.in, testsuite/Makefile.in: Regenerated. From-SVN: r116139
213 lines
6.4 KiB
Java
213 lines
6.4 KiB
Java
/* SslRMIServerSocketFactory.java --
|
|
Copyright (C) 2006 Free Software Foundation
|
|
|
|
This file is part of GNU Classpath.
|
|
|
|
GNU Classpath is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2, or (at your option)
|
|
any later version.
|
|
|
|
GNU Classpath is distributed in the hope that it will be useful, but
|
|
WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with GNU Classpath; see the file COPYING. If not, write to the
|
|
Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
|
|
02110-1301 USA.
|
|
|
|
Linking this library statically or dynamically with other modules is
|
|
making a combined work based on this library. Thus, the terms and
|
|
conditions of the GNU General Public License cover the whole
|
|
combination.
|
|
|
|
As a special exception, the copyright holders of this library give you
|
|
permission to link this library with independent modules to produce an
|
|
executable, regardless of the license terms of these independent
|
|
modules, and to copy and distribute the resulting executable under
|
|
terms of your choice, provided that you also meet, for each linked
|
|
independent module, the terms and conditions of the license of that
|
|
module. An independent module is a module which is not derived from
|
|
or based on this library. If you modify this library, you may extend
|
|
this exception to your version of the library, but you are not
|
|
obligated to do so. If you do not wish to do so, delete this
|
|
exception statement from your version. */
|
|
|
|
package javax.rmi.ssl;
|
|
|
|
import java.io.IOException;
|
|
import javax.net.ssl.SSLServerSocketFactory;
|
|
import javax.net.ssl.SSLServerSocket;
|
|
import java.net.ServerSocket;
|
|
import java.rmi.server.RMIServerSocketFactory;
|
|
|
|
/**
|
|
* SslRMIServerSocketFactory
|
|
*
|
|
* This class implements an RMIServerSocketFactory for SSL sockets.
|
|
* it uses the defeult SSLServerSocketFactory.
|
|
*
|
|
* @author Sven de Marothy
|
|
* @since 1.5
|
|
*/
|
|
public class SslRMIServerSocketFactory implements RMIServerSocketFactory
|
|
{
|
|
private String[] enabledCipherSuites, enabledProtocols;
|
|
private boolean needClientAuth;
|
|
|
|
/**
|
|
* The SSL ServerSocket factory.
|
|
*/
|
|
private static SSLServerSocketFactory socketFactory =
|
|
(SSLServerSocketFactory)SSLServerSocketFactory.getDefault();
|
|
|
|
/**
|
|
* Creates a new SslRMIServerSocketFactory with the default socket
|
|
* cipher suites and protocols, and without requiring client authorisation.
|
|
*/
|
|
public SslRMIServerSocketFactory()
|
|
{
|
|
enabledCipherSuites = enabledProtocols = null;
|
|
needClientAuth = false;
|
|
}
|
|
|
|
/**
|
|
* Creates a new SslRMIServerSocketFactory with a given set of socket
|
|
* cipher suites and protocols. needClientAuth specifies if client
|
|
* authorization is required.
|
|
*
|
|
* @param enabledCipherSuites - the cypher suites to enable
|
|
* or <code>null</code> for the defauls.
|
|
* @param enabledCipherSuites - the protocols to enable,
|
|
* or <code>null</code> for the defauls.
|
|
* @param needClientAuth - specify client authorization requirement.
|
|
* @throws IllegalArgumentException if any of the ciphers or protocols
|
|
* specified are not available.
|
|
*/
|
|
public SslRMIServerSocketFactory(String[] enabledCipherSuites,
|
|
String[] enabledProtocols,
|
|
boolean needClientAuth)
|
|
{
|
|
this.enabledCipherSuites = enabledCipherSuites;
|
|
this.enabledProtocols = enabledProtocols;
|
|
this.needClientAuth = needClientAuth;
|
|
try
|
|
{
|
|
if( enabledProtocols != null || enabledCipherSuites != null )
|
|
createServerSocket( 0 ); // stupid way to test the parameters
|
|
}
|
|
catch(IOException e)
|
|
{
|
|
// Can this happen? FIXME.
|
|
throw new IllegalArgumentException();
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Creates an SSLServerSocket on a given port
|
|
*
|
|
* @throws IOException if an error occurs on socket creation.
|
|
*/
|
|
public ServerSocket createServerSocket(int port) throws IOException
|
|
{
|
|
SSLServerSocket socket = (SSLServerSocket)socketFactory.
|
|
createServerSocket( port );
|
|
if( enabledCipherSuites != null )
|
|
socket.setEnabledCipherSuites( enabledCipherSuites );
|
|
if( enabledProtocols != null )
|
|
socket.setEnabledProtocols( enabledProtocols );
|
|
socket.setNeedClientAuth( needClientAuth );
|
|
return socket;
|
|
}
|
|
|
|
/**
|
|
* Compare two SslRMIServerSocketFactor instances
|
|
*/
|
|
public boolean equals(Object obj)
|
|
{
|
|
if( !(obj instanceof SslRMIServerSocketFactory) )
|
|
return false;
|
|
SslRMIServerSocketFactory s = (SslRMIServerSocketFactory)obj;
|
|
if( needClientAuth != s.needClientAuth )
|
|
return false;
|
|
|
|
if(!cmpStrArray(enabledCipherSuites, s.enabledCipherSuites))
|
|
return false;
|
|
|
|
if(!cmpStrArray(enabledProtocols, s.enabledProtocols))
|
|
return false;
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Compare two string arrays.
|
|
*/
|
|
static boolean cmpStrArray(String[] a, String[] b)
|
|
{
|
|
if( ( a == null || b == null ) && a != b )
|
|
return false;
|
|
|
|
if( a != null )
|
|
{
|
|
if( a.length != b.length )
|
|
return false;
|
|
for( int i = 0; i < a.length; i++ )
|
|
if(!a[i].equals(b[i]))
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Returns the enabled cipher suites, or <code>null</code>
|
|
* if the defaults are to be used.
|
|
* @returns a string array of cipher suite names
|
|
*/
|
|
public String[] getEnabledCipherSuites()
|
|
{
|
|
if( enabledCipherSuites == null )
|
|
return null;
|
|
return (String[])enabledCipherSuites.clone();
|
|
}
|
|
|
|
/**
|
|
* Returns the enabled protocols, or <code>null</code> if the defaults are
|
|
* to be used.
|
|
*
|
|
* @returns a string array of protocol names
|
|
*/
|
|
public String[] getEnabledProtocols()
|
|
{
|
|
if( enabledProtocols == null )
|
|
return null;
|
|
return (String[])enabledProtocols.clone();
|
|
}
|
|
|
|
/**
|
|
* Returns whether client authorization is needed.
|
|
*/
|
|
public boolean getNeedClientAuth()
|
|
{
|
|
return needClientAuth;
|
|
}
|
|
|
|
/**
|
|
* Returns the hash code of this object.
|
|
*/
|
|
public int hashCode()
|
|
{
|
|
int hash = 0;
|
|
if( enabledCipherSuites != null )
|
|
for(int i = 0; i < enabledCipherSuites.length; i++ )
|
|
hash = hash ^ enabledCipherSuites[i].hashCode();
|
|
if( enabledProtocols != null )
|
|
for(int i = 0; i < enabledProtocols.length; i++ )
|
|
hash = hash ^ enabledProtocols[i].hashCode();
|
|
hash = ( needClientAuth ) ? (hash^0xFFFF) : hash;
|
|
return hash;
|
|
}
|
|
} |