Package org.apache.tomcat.util.net

Class SSLHostConfig

  • All Implemented Interfaces:
    java.io.Serializable
    public class SSLHostConfig
extends java.lang.Object
implements java.io.Serializable
    Represents the TLS configuration for a virtual host.
    See Also:
    Serialized Form

    • Field Detail

      • DEFAULT_SSL_HOST_NAME

        protected static final java.lang.String DEFAULT_SSL_HOST_NAME
        See Also:
        Constant Field Values

      • SSL_PROTO_ALL_SET

        protected static final java.util.Set<java.lang.String> SSL_PROTO_ALL_SET

      • DEFAULT_TLS_CIPHERS

        public static final java.lang.String DEFAULT_TLS_CIPHERS
        See Also:
        Constant Field Values

    • Constructor Detail

      • SSLHostConfig

        public SSLHostConfig()

    • Method Detail

      • isTls13RenegotiationAvailable

        public boolean isTls13RenegotiationAvailable()

      • setTls13RenegotiationAvailable

        public void setTls13RenegotiationAvailable​(boolean tls13RenegotiationAvailable)

      • getOpenSslConfContext

        public java.lang.Long getOpenSslConfContext()

      • setOpenSslConfContext

        public void setOpenSslConfContext​(java.lang.Long openSslConfContext)

      • getOpenSslContext

        public java.lang.Long getOpenSslContext()

      • setOpenSslContext

        public void setOpenSslContext​(java.lang.Long openSslContext)

      • getConfigType

        public java.lang.String getConfigType()

      • getEnabledProtocols

        public java.lang.String[] getEnabledProtocols()
        Returns:
        The protocols enabled for this TLS virtual host
        See Also:
        SSLUtil.getEnabledProtocols()

      • setEnabledProtocols

        public void setEnabledProtocols​(java.lang.String[] enabledProtocols)

      • getEnabledCiphers

        public java.lang.String[] getEnabledCiphers()
        Returns:
        The ciphers enabled for this TLS virtual host
        See Also:
        SSLUtil.getEnabledCiphers()

      • setEnabledCiphers

        public void setEnabledCiphers​(java.lang.String[] enabledCiphers)

      • getObjectName

        public javax.management.ObjectName getObjectName()

      • setObjectName

        public void setObjectName​(javax.management.ObjectName oname)

      • setOpenSslConf

        public void setOpenSslConf​(OpenSSLConf conf)

      • setCertificateRevocationListFile

        public void setCertificateRevocationListFile​(java.lang.String certificateRevocationListFile)

      • getCertificateRevocationListFile

        public java.lang.String getCertificateRevocationListFile()

      • setCertificateVerification

        public void setCertificateVerification​(java.lang.String certificateVerification)

      • setCertificateVerificationAsString

        public void setCertificateVerificationAsString​(java.lang.String certificateVerification)

      • getCertificateVerificationAsString

        public java.lang.String getCertificateVerificationAsString()

      • setCertificateVerificationDepth

        public void setCertificateVerificationDepth​(int certificateVerificationDepth)

      • getCertificateVerificationDepth

        public int getCertificateVerificationDepth()

      • isCertificateVerificationDepthConfigured

        public boolean isCertificateVerificationDepthConfigured()

      • setCiphers

        public void setCiphers​(java.lang.String ciphersList)
        Set the new cipher configuration. Note: Regardless of the format used to set the configuration, it is always stored in OpenSSL format.
        Parameters:
        ciphersList - The new cipher configuration in OpenSSL or JSSE format

      • getCiphers

        public java.lang.String getCiphers()
        Returns:
        An OpenSSL cipher string for the current configuration.

      • getCipherList

        public java.util.LinkedHashSet<Cipher> getCipherList()

      • getJsseCipherNames

        public java.util.List<java.lang.String> getJsseCipherNames()
        Obtain the list of JSSE cipher names for the current configuration. Ciphers included in the configuration but not supported by JSSE will be excluded from this list.
        Returns:
        A list of the JSSE cipher names

      • setHonorCipherOrder

        public void setHonorCipherOrder​(boolean honorCipherOrder)

      • getHonorCipherOrder

        public boolean getHonorCipherOrder()

      • setHostName

        public void setHostName​(java.lang.String hostName)

      • getHostName

        public java.lang.String getHostName()
        Returns:
        The host name associated with this SSL configuration - always in lower case.

      • setProtocols

        public void setProtocols​(java.lang.String input)

      • getProtocols

        public java.util.Set<java.lang.String> getProtocols()

      • setSessionCacheSize

        public void setSessionCacheSize​(int sessionCacheSize)

      • getSessionCacheSize

        public int getSessionCacheSize()

      • setSessionTimeout

        public void setSessionTimeout​(int sessionTimeout)

      • getSessionTimeout

        public int getSessionTimeout()

      • setKeyManagerAlgorithm

        public void setKeyManagerAlgorithm​(java.lang.String keyManagerAlgorithm)

      • getKeyManagerAlgorithm

        public java.lang.String getKeyManagerAlgorithm()

      • setRevocationEnabled

        public void setRevocationEnabled​(boolean revocationEnabled)

      • getRevocationEnabled

        public boolean getRevocationEnabled()

      • setSslProtocol

        public void setSslProtocol​(java.lang.String sslProtocol)

      • getSslProtocol

        public java.lang.String getSslProtocol()

      • setTrustManagerClassName

        public void setTrustManagerClassName​(java.lang.String trustManagerClassName)

      • getTrustManagerClassName

        public java.lang.String getTrustManagerClassName()

      • setTruststoreAlgorithm

        public void setTruststoreAlgorithm​(java.lang.String truststoreAlgorithm)

      • getTruststoreAlgorithm

        public java.lang.String getTruststoreAlgorithm()

      • setTruststoreFile

        public void setTruststoreFile​(java.lang.String truststoreFile)

      • getTruststoreFile

        public java.lang.String getTruststoreFile()

      • setTruststorePassword

        public void setTruststorePassword​(java.lang.String truststorePassword)

      • getTruststorePassword

        public java.lang.String getTruststorePassword()

      • setTruststoreProvider

        public void setTruststoreProvider​(java.lang.String truststoreProvider)

      • getTruststoreProvider

        public java.lang.String getTruststoreProvider()

      • setTruststoreType

        public void setTruststoreType​(java.lang.String truststoreType)

      • getTruststoreType

        public java.lang.String getTruststoreType()

      • setTrustStore

        public void setTrustStore​(java.security.KeyStore truststore)

      • getTruststore

        public java.security.KeyStore getTruststore()
                                     throws java.io.IOException
        Throws:
        java.io.IOException

      • setCertificateRevocationListPath

        public void setCertificateRevocationListPath​(java.lang.String certificateRevocationListPath)

      • getCertificateRevocationListPath

        public java.lang.String getCertificateRevocationListPath()

      • setCaCertificateFile

        public void setCaCertificateFile​(java.lang.String caCertificateFile)

      • getCaCertificateFile

        public java.lang.String getCaCertificateFile()

      • setCaCertificatePath

        public void setCaCertificatePath​(java.lang.String caCertificatePath)

      • getCaCertificatePath

        public java.lang.String getCaCertificatePath()

      • setDisableCompression

        public void setDisableCompression​(boolean disableCompression)

      • getDisableCompression

        public boolean getDisableCompression()

      • setDisableSessionTickets

        public void setDisableSessionTickets​(boolean disableSessionTickets)

      • getDisableSessionTickets

        public boolean getDisableSessionTickets()

      • setInsecureRenegotiation

        public void setInsecureRenegotiation​(boolean insecureRenegotiation)

      • getInsecureRenegotiation

        public boolean getInsecureRenegotiation()

      • adjustRelativePath

        public static java.lang.String adjustRelativePath​(java.lang.String path)
                                           throws java.io.FileNotFoundException
        Throws:
        java.io.FileNotFoundException