blob: a33e00d1c0e4dca64410355bfd1064335cef6569 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
|
// **********************************************************************
//
// Copyright (c) 2003-2007 ZeroC, Inc. All rights reserved.
//
// This copy of Ice is licensed to you under the terms described in the
// ICE_LICENSE file included in this distribution.
//
// **********************************************************************
package IceSSL;
public final class Util
{
public static ConnectionInfo
getConnectionInfo(Ice.Connection connection)
{
Ice.ConnectionI con = (Ice.ConnectionI)connection;
assert(con != null);
//
// Lock the connection directly. This is done because the only
// thing that prevents the transceiver from being closed during
// the duration of the invocation is the connection.
//
synchronized(con)
{
IceInternal.Transceiver transceiver = con.getTransceiver();
if(transceiver == null)
{
ConnectionInvalidException ex = new ConnectionInvalidException();
ex.reason = "connection closed";
throw ex;
}
try
{
TransceiverI sslTransceiver = (TransceiverI)transceiver;
return sslTransceiver.getConnectionInfo();
}
catch(ClassCastException ex)
{
ConnectionInvalidException e = new ConnectionInvalidException();
e.reason = "not ssl connection";
throw e;
}
}
}
//
// Create a certificate from a PEM-encoded string.
//
public static java.security.cert.X509Certificate
createCertificate(String certPEM)
throws java.security.cert.CertificateException
{
final String header = "-----BEGIN CERTIFICATE-----";
final String footer = "-----END CERTIFICATE-----";
//
// The generateCertificate method requires that its input begin
// with the PEM header.
//
int pos = certPEM.indexOf(header);
if(pos == -1)
{
certPEM = header + "\n" + certPEM;
}
else if(pos > 0)
{
certPEM = certPEM.substring(pos);
}
//
// Add the footer if necessary.
//
if(certPEM.indexOf(footer) == -1)
{
certPEM = certPEM + footer;
}
byte[] bytes = null;
try
{
bytes = certPEM.getBytes("UTF8");
}
catch(java.io.UnsupportedEncodingException ex)
{
assert(false);
return null;
}
java.io.ByteArrayInputStream in = new java.io.ByteArrayInputStream(bytes);
java.security.cert.CertificateFactory cf = java.security.cert.CertificateFactory.getInstance("X.509");
return (java.security.cert.X509Certificate)cf.generateCertificate(in);
}
static ConnectionInfo
populateConnectionInfo(javax.net.ssl.SSLSocket fd, String adapterName, boolean incoming)
{
ConnectionInfo info = new ConnectionInfo();
javax.net.ssl.SSLSession session = fd.getSession();
try
{
info.certs = session.getPeerCertificates();
}
catch(javax.net.ssl.SSLPeerUnverifiedException ex)
{
// No peer certificates.
}
info.cipher = session.getCipherSuite();
info.localAddr = (java.net.InetSocketAddress)fd.getLocalSocketAddress();
info.remoteAddr = (java.net.InetSocketAddress)fd.getRemoteSocketAddress();
info.adapterName = adapterName;
info.incoming = incoming;
return info;
}
public final static String jdkTarget = "1.4";
}
|
