View Javadoc
1   /*
2    * Copyright 2014 The Netty Project
3    *
4    * The Netty Project licenses this file to you under the Apache License,
5    * version 2.0 (the "License"); you may not use this file except in compliance
6    * with the License. You may obtain a copy of the License at:
7    *
8    *   https://www.apache.org/licenses/LICENSE-2.0
9    *
10   * Unless required by applicable law or agreed to in writing, software
11   * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12   * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13   * License for the specific language governing permissions and limitations
14   * under the License.
15   */
16  package io.netty.handler.ssl;
17  
18  import io.netty.buffer.ByteBufAllocator;
19  
20  import java.security.cert.Certificate;
21  import java.util.Map;
22  
23  import javax.net.ssl.SSLEngine;
24  import javax.net.ssl.SSLException;
25  
26  /**
27   * This class will use a finalizer to ensure native resources are automatically cleaned up. To avoid finalizers
28   * and manually release the native memory see {@link ReferenceCountedOpenSslContext}.
29   */
30  public abstract class OpenSslContext extends ReferenceCountedOpenSslContext {
31      OpenSslContext(Iterable<String> ciphers, CipherSuiteFilter cipherFilter, ApplicationProtocolConfig apnCfg,
32                     int mode, Certificate[] keyCertChain,
33                     ClientAuth clientAuth, String[] protocols, boolean startTls, String endpointIdentificationAlgorithm,
34                     boolean enableOcsp, ResumptionController resumptionController,
35                     Map.Entry<SslContextOption<?>, Object>... options)
36              throws SSLException {
37          super(ciphers, cipherFilter, toNegotiator(apnCfg), mode, keyCertChain,
38                  clientAuth, protocols, startTls, endpointIdentificationAlgorithm, enableOcsp, false,
39                  resumptionController, options);
40      }
41  
42      OpenSslContext(Iterable<String> ciphers, CipherSuiteFilter cipherFilter, OpenSslApplicationProtocolNegotiator apn,
43                     int mode, Certificate[] keyCertChain,
44                     ClientAuth clientAuth, String[] protocols, boolean startTls, boolean enableOcsp,
45                     ResumptionController resumptionController,
46                     Map.Entry<SslContextOption<?>, Object>... options)
47              throws SSLException {
48          super(ciphers, cipherFilter, apn, mode, keyCertChain,
49                  clientAuth, protocols, startTls, null, enableOcsp, false, resumptionController, options);
50      }
51  
52      @Override
53      final SSLEngine newEngine0(ByteBufAllocator alloc, String peerHost, int peerPort, boolean jdkCompatibilityMode) {
54          return new OpenSslEngine(this, alloc, peerHost, peerPort, jdkCompatibilityMode,
55                  endpointIdentificationAlgorithm);
56      }
57  
58      @Override
59      @SuppressWarnings("FinalizeDeclaration")
60      protected final void finalize() throws Throwable {
61          super.finalize();
62          OpenSsl.releaseIfNeeded(this);
63      }
64  }