com.hazelcast.nio.ssl

Class OpenSSLEngineFactory

java.lang.Object

com.hazelcast.nio.ssl.SSLEngineFactorySupport

com.hazelcast.nio.ssl.OpenSSLEngineFactory

All Implemented Interfaces:

SSLEngineFactory

public class OpenSSLEngineFactory
extends SSLEngineFactorySupport
implements SSLEngineFactory

SSLEngineFactory for OpenSSL.

Field Summary

Fields

Modifier and Type	Field and Description
static String	FIPS_MODE Property name which allows to set OpenSSL engine into FIPS 140-2 mode.
static String	KEY_CERT_CHAIN_FILE Property name which holds path to an X.509 certificate chain file in PEM format.
static String	KEY_FILE Property name which holds path to a key file (PKCS#8 in PEM format).
static String	KEY_PASSWORD Property name which holds password (if any) of the key file.
static String	TRUST_CERT_COLLECTION_FILE Property name which holds path to an X.509 certificate collection file in PEM format.

Fields inherited from class com.hazelcast.nio.ssl.SSLEngineFactorySupport

JAVA_NET_SSL_PREFIX, kmf, protocol, tmf

Constructor Summary

Constructors

Constructor and Description
OpenSSLEngineFactory()

Method Summary

Modifier and Type	Method and Description
SSLEngine	create(boolean clientMode) Creates a SSLEngine.
protected io.netty.handler.ssl.SslContext	createSslContext(boolean clientMode)
void	init(Properties properties, boolean forClient) Initializes this class with config from SSLConfig

Methods inherited from class com.hazelcast.nio.ssl.SSLEngineFactorySupport

getProperty, getProperty, load, loadKeyManagerFactory, loadKeyManagerFactory, loadKeyStore, loadTrustManagerFactory, loadTrustManagerFactory

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

KEY_FILE

public static final String KEY_FILE

Property name which holds path to a key file (PKCS#8 in PEM format).

See Also:

Constant Field Values

KEY_PASSWORD

public static final String KEY_PASSWORD

Property name which holds password (if any) of the key file.

See Also:

Constant Field Values

KEY_CERT_CHAIN_FILE

public static final String KEY_CERT_CHAIN_FILE

Property name which holds path to an X.509 certificate chain file in PEM format.

See Also:

Constant Field Values

TRUST_CERT_COLLECTION_FILE

public static final String TRUST_CERT_COLLECTION_FILE

Property name which holds path to an X.509 certificate collection file in PEM format.

See Also:

Constant Field Values

FIPS_MODE

public static final String FIPS_MODE

Property name which allows to set OpenSSL engine into FIPS 140-2 mode.

See Also:

Constant Field Values

Constructor Detail

OpenSSLEngineFactory

public OpenSSLEngineFactory()

Method Detail

init

public void init(Properties properties,
                 boolean forClient)
          throws Exception

Description copied from interface: SSLEngineFactory

Initializes this class with config from SSLConfig

Specified by:

init in interface SSLEngineFactory

Parameters:

properties - properties form config

forClient - if the SslEngineFactory is created for a client or for a member. This can be used to validate the configuration.

Throws:

Exception - if something goes wrong while initializing.

create

public SSLEngine create(boolean clientMode)

Description copied from interface: SSLEngineFactory

Creates a SSLEngine.

Specified by:

create in interface SSLEngineFactory

Parameters:

clientMode - if the SSLEngine should be in client mode, or server-mode. See SSLEngine.getUseClientMode(). If this SSLEngineFactory is used by a java-client, then clientMode will always be true. But if it is created for a member, then the side of the socket that initiated the connection will be in 'clientMode' while the other one will be in 'serverMode'.

Returns:

the created SSLEngine.

createSslContext

protected io.netty.handler.ssl.SslContext createSslContext(boolean clientMode)
                                                    throws SSLException

Throws:

SSLException