/**
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.activemq.broker;
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.SecureRandom;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.List;
import javax.net.ssl.KeyManager;
import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
/**
* A holder of SSL configuration.
*/
public class SslContext {
protected String protocol = "TLS";
protected String provider = null;
protected List<KeyManager> keyManagers = new ArrayList<KeyManager>();
protected List<TrustManager> trustManagers = new ArrayList<TrustManager>();
protected SecureRandom secureRandom;
private SSLContext sslContext;
private static final ThreadLocal<SslContext> current = new ThreadLocal<SslContext>();
public SslContext() {
}
public SslContext(KeyManager[] km, TrustManager[] tm, SecureRandom random) {
if( km!=null ) {
setKeyManagers(Arrays.asList(km));
}
if( tm!=null ) {
setTrustManagers(Arrays.asList(tm));
}
setSecureRandom(random);
}
static public void setCurrentSslContext(SslContext bs) {
current.set(bs);
}
static public SslContext getCurrentSslContext() {
return current.get();
}
public KeyManager[] getKeyManagersAsArray() {
KeyManager rc[] = new KeyManager[keyManagers.size()];
return keyManagers.toArray(rc);
}
public TrustManager[] getTrustManagersAsArray() {
TrustManager rc[] = new TrustManager[trustManagers.size()];
return trustManagers.toArray(rc);
}
public void addKeyManager(KeyManager km) {
keyManagers.add(km);
}
public boolean removeKeyManager(KeyManager km) {
return keyManagers.remove(km);
}
public void addTrustManager(TrustManager tm) {
trustManagers.add(tm);
}
public boolean removeTrustManager(TrustManager tm) {
return trustManagers.remove(tm);
}
public List<KeyManager> getKeyManagers() {
return keyManagers;
}
public void setKeyManagers(List<KeyManager> keyManagers) {
this.keyManagers = keyManagers;
}
public List<TrustManager> getTrustManagers() {
return trustManagers;
}
public void setTrustManagers(List<TrustManager> trustManagers) {
this.trustManagers = trustManagers;
}
public SecureRandom getSecureRandom() {
return secureRandom;
}
public void setSecureRandom(SecureRandom secureRandom) {
this.secureRandom = secureRandom;
}
public String getProtocol() {
return protocol;
}
public void setProtocol(String protocol) {
this.protocol = protocol;
}
public String getProvider() {
return provider;
}
public void setProvider(String provider) {
this.provider = provider;
}
public SSLContext getSSLContext() throws NoSuchProviderException, NoSuchAlgorithmException, KeyManagementException {
if( sslContext == null ) {
if( provider == null ) {
sslContext = SSLContext.getInstance(protocol);
} else {
sslContext = SSLContext.getInstance(protocol, provider);
}
sslContext.init(getKeyManagersAsArray(), getTrustManagersAsArray(), getSecureRandom());
}
return sslContext;
}
public void setSSLContext(SSLContext sslContext) {
this.sslContext = sslContext;
}
}