public interface CertificateCallback
SSL_CTX_set_cert_cb
.
IMPORTANT: Implementations of this interface should be static as it is stored as a global reference via JNI. This
means if you use an inner / anonymous class to implement this and also depend on the finalizer of the
class to free up the SSLContext the finalizer will never run as the object is never GC, due the hard
reference to the enclosing class. This will most likely result in a memory leak.Modifier and Type | Field and Description |
---|---|
static byte |
TLS_CT_DSS_FIXED_DH |
static byte |
TLS_CT_DSS_SIGN |
static byte |
TLS_CT_ECDSA_FIXED_ECDH |
static byte |
TLS_CT_ECDSA_SIGN |
static byte |
TLS_CT_RSA_FIXED_DH |
static byte |
TLS_CT_RSA_FIXED_ECDH |
static byte |
TLS_CT_RSA_SIGN
The types contained in the
keyTypeBytes array. |
Modifier and Type | Method and Description |
---|---|
void |
handle(long ssl,
byte[] keyTypeBytes,
byte[][] asn1DerEncodedPrincipals)
Called during cert selection.
|
static final byte TLS_CT_RSA_SIGN
keyTypeBytes
array.static final byte TLS_CT_DSS_SIGN
static final byte TLS_CT_RSA_FIXED_DH
static final byte TLS_CT_DSS_FIXED_DH
static final byte TLS_CT_ECDSA_SIGN
static final byte TLS_CT_RSA_FIXED_ECDH
static final byte TLS_CT_ECDSA_FIXED_ECDH
void handle(long ssl, byte[] keyTypeBytes, byte[][] asn1DerEncodedPrincipals) throws Exception
SSL.setKeyMaterial(long, long, long)
must be called from this callback after
all preparations / validations were completed.ssl
- the SSL instancekeyTypeBytes
- an array of the key types on client-mode or null
on server-mode.asn1DerEncodedPrincipals
- the principals or null
.Exception
Copyright © 2008–2021 The Netty Project. All rights reserved.