📄 sslhandler.html
字号:
<a name="263" href="#263">263</a> <a name="264" href="#264">264</a> <strong class="jxr_keyword">while</strong> ((e = messageReceivedEventQueue.poll()) != <strong class="jxr_keyword">null</strong>) {<a name="265" href="#265">265</a> e.getNextFilter().messageReceived(session, e.getParameter());<a name="266" href="#266">266</a> }<a name="267" href="#267">267</a> }<a name="268" href="#268">268</a> <a name="269" href="#269">269</a> <em class="jxr_javadoccomment">/**</em><a name="270" href="#270">270</a> <em class="jxr_javadoccomment"> * Call when data read from net. Will perform inial hanshake or decrypt provided</em><a name="271" href="#271">271</a> <em class="jxr_javadoccomment"> * Buffer.</em><a name="272" href="#272">272</a> <em class="jxr_javadoccomment"> * Decrytpted data reurned by getAppBuffer(), if any.</em><a name="273" href="#273">273</a> <em class="jxr_javadoccomment"> *</em><a name="274" href="#274">274</a> <em class="jxr_javadoccomment"> * @param buf buffer to decrypt</em><a name="275" href="#275">275</a> <em class="jxr_javadoccomment"> * @param nextFilter Next filter in chain</em><a name="276" href="#276">276</a> <em class="jxr_javadoccomment"> * @throws SSLException on errors</em><a name="277" href="#277">277</a> <em class="jxr_javadoccomment"> */</em><a name="278" href="#278">278</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> messageReceived(<a href="../../../../../org/apache/mina/common/IoFilter.html">NextFilter</a> nextFilter, ByteBuffer buf) <strong class="jxr_keyword">throws</strong> SSLException {<a name="279" href="#279">279</a> <em class="jxr_comment">// append buf to inNetBuffer</em><a name="280" href="#280">280</a> <strong class="jxr_keyword">if</strong> (inNetBuffer == <strong class="jxr_keyword">null</strong>) {<a name="281" href="#281">281</a> inNetBuffer = IoBuffer.allocate(buf.remaining()).setAutoExpand(<strong class="jxr_keyword">true</strong>);<a name="282" href="#282">282</a> }<a name="283" href="#283">283</a> <a name="284" href="#284">284</a> inNetBuffer.put(buf);<a name="285" href="#285">285</a> <strong class="jxr_keyword">if</strong> (!handshakeComplete) {<a name="286" href="#286">286</a> handshake(nextFilter);<a name="287" href="#287">287</a> } <strong class="jxr_keyword">else</strong> {<a name="288" href="#288">288</a> decrypt(nextFilter);<a name="289" href="#289">289</a> }<a name="290" href="#290">290</a> <a name="291" href="#291">291</a> <strong class="jxr_keyword">if</strong> (isInboundDone()) {<a name="292" href="#292">292</a> <em class="jxr_comment">// Rewind the MINA buffer if not all data is processed and inbound is finished.</em><a name="293" href="#293">293</a> <strong class="jxr_keyword">int</strong> inNetBufferPosition = inNetBuffer == <strong class="jxr_keyword">null</strong>? 0 : inNetBuffer.position();<a name="294" href="#294">294</a> buf.position(buf.position() - inNetBufferPosition);<a name="295" href="#295">295</a> inNetBuffer = <strong class="jxr_keyword">null</strong>;<a name="296" href="#296">296</a> }<a name="297" href="#297">297</a> }<a name="298" href="#298">298</a> <a name="299" href="#299">299</a> <em class="jxr_javadoccomment">/**</em><a name="300" href="#300">300</a> <em class="jxr_javadoccomment"> * Get decrypted application data.</em><a name="301" href="#301">301</a> <em class="jxr_javadoccomment"> *</em><a name="302" href="#302">302</a> <em class="jxr_javadoccomment"> * @return buffer with data</em><a name="303" href="#303">303</a> <em class="jxr_javadoccomment"> */</em><a name="304" href="#304">304</a> <strong class="jxr_keyword">public</strong> <a href="../../../../../org/apache/mina/common/IoBuffer.html">IoBuffer</a> fetchAppBuffer() {<a name="305" href="#305">305</a> <a href="../../../../../org/apache/mina/common/IoBuffer.html">IoBuffer</a> appBuffer = <strong class="jxr_keyword">this</strong>.appBuffer.flip();<a name="306" href="#306">306</a> <strong class="jxr_keyword">this</strong>.appBuffer = <strong class="jxr_keyword">null</strong>;<a name="307" href="#307">307</a> <strong class="jxr_keyword">return</strong> appBuffer;<a name="308" href="#308">308</a> }<a name="309" href="#309">309</a> <a name="310" href="#310">310</a> <em class="jxr_javadoccomment">/**</em><a name="311" href="#311">311</a> <em class="jxr_javadoccomment"> * Get encrypted data to be sent.</em><a name="312" href="#312">312</a> <em class="jxr_javadoccomment"> *</em><a name="313" href="#313">313</a> <em class="jxr_javadoccomment"> * @return buffer with data</em><a name="314" href="#314">314</a> <em class="jxr_javadoccomment"> */</em><a name="315" href="#315">315</a> <strong class="jxr_keyword">public</strong> <a href="../../../../../org/apache/mina/common/IoBuffer.html">IoBuffer</a> fetchOutNetBuffer() {<a name="316" href="#316">316</a> <a href="../../../../../org/apache/mina/common/IoBuffer.html">IoBuffer</a> answer = outNetBuffer;<a name="317" href="#317">317</a> <strong class="jxr_keyword">if</strong> (answer == <strong class="jxr_keyword">null</strong>) {<a name="318" href="#318">318</a> <strong class="jxr_keyword">return</strong> emptyBuffer;<a name="319" href="#319">319</a> }<a name="320" href="#320">320</a> <a name="321" href="#321">321</a> outNetBuffer = <strong class="jxr_keyword">null</strong>;<a name="322" href="#322">322</a> <strong class="jxr_keyword">return</strong> answer.shrink();<a name="323" href="#323">323</a> }<a name="324" href="#324">324</a> <a name="325" href="#325">325</a> <em class="jxr_javadoccomment">/**</em><a name="326" href="#326">326</a> <em class="jxr_javadoccomment"> * Encrypt provided buffer. Encytpted data reurned by getOutNetBuffer().</em><a name="327" href="#327">327</a> <em class="jxr_javadoccomment"> *</em><a name="328" href="#328">328</a> <em class="jxr_javadoccomment"> * @param src data to encrypt</em><a name="329" href="#329">329</a> <em class="jxr_javadoccomment"> * @throws SSLException on errors</em><a name="330" href="#330">330</a> <em class="jxr_javadoccomment"> */</em><a name="331" href="#331">331</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> encrypt(ByteBuffer src) <strong class="jxr_keyword">throws</strong> SSLException {<a name="332" href="#332">332</a> <strong class="jxr_keyword">if</strong> (!handshakeComplete) {<a name="333" href="#333">333</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> IllegalStateException();<a name="334" href="#334">334</a> }<a name="335" href="#335">335</a> <a name="336" href="#336">336</a> <strong class="jxr_keyword">if</strong> (!src.hasRemaining()) {<a name="337" href="#337">337</a> <strong class="jxr_keyword">if</strong> (outNetBuffer == <strong class="jxr_keyword">null</strong>) {<a name="338" href="#338">338</a> outNetBuffer = emptyBuffer;<a name="339" href="#339">339</a> }<a name="340" href="#340">340</a> <strong class="jxr_keyword">return</strong>;<a name="341" href="#341">341</a> }<a name="342" href="#342">342</a> <a name="343" href="#343">343</a> createOutNetBuffer(src.remaining());<a name="344" href="#344">344</a> <a name="345" href="#345">345</a> <em class="jxr_comment">// Loop until there is no more data in src</em><a name="346" href="#346">346</a> <strong class="jxr_keyword">while</strong> (src.hasRemaining()) {<a name="347" href="#347">347</a> <a name="348" href="#348">348</a> SSLEngineResult result = sslEngine.wrap(src, outNetBuffer.buf());<a name="349" href="#349">349</a> <strong class="jxr_keyword">if</strong> (result.getStatus() == SSLEngineResult.Status.OK) {<a name="350" href="#350">350</a> <strong class="jxr_keyword">if</strong> (result.getHandshakeStatus() == SSLEngineResult.HandshakeStatus.NEED_TASK) {<a name="351" href="#351">351</a> doTasks();<a name="352" href="#352">352</a> }<a name="353" href="#353">353</a> } <strong class="jxr_keyword">else</strong> <strong class="jxr_keyword">if</strong> (result.getStatus() == SSLEngineResult.Status.BUFFER_OVERFLOW) {<a name="354" href="#354">354</a> outNetBuffer.capacity(outNetBuffer.capacity() << 1);<a name="355" href="#355">355</a> outNetBuffer.limit(outNetBuffer.capacity());<a name="356" href="#356">356</a> } <strong class="jxr_keyword">else</strong> {<a name="357" href="#357">357</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> SSLException(<span class="jxr_string">"SSLEngine error during encrypt: "</span><a name="358" href="#358">358</a> + result.getStatus() + <span class="jxr_string">" src: "</span> + src<a name="359" href="#359">359</a> + <span class="jxr_string">"outNetBuffer: "</span> + outNetBuffer);<a name="360" href="#360">360</a> }<a name="361" href="#361">361</a> }<a name="362" href="#362">362</a> <a name="363" href="#363">363</a> outNetBuffer.flip();<a name="364" href="#364">364</a> }<a name="365" href="#365">365</a> <a name="366" href="#366">366</a> <em class="jxr_javadoccomment">/**</em><a name="367" href="#367">367</a> <em class="jxr_javadoccomment"> * Start SSL shutdown process.</em><a name="368" href="#368">368</a> <em class="jxr_javadoccomment"> *</em><a name="369" href="#369">369</a> <em class="jxr_javadoccomment"> * @return <tt>true</tt> if shutdown process is started.</em><a name="370" href="#370">370</a> <em class="jxr_javadoccomment"> * <tt>false</tt> if shutdown process is already finished.</em><a name="371" href="#371">371</a> <em class="jxr_javadoccomment"> * @throws SSLException on errors</em><a name="372" href="#372">372</a> <em class="jxr_javadoccomment"> */</em><a name="373" href="#373">373</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> closeOutbound() <strong class="jxr_keyword">throws</strong> SSLException {<a name="374" href="#374">374</a> <strong class="jxr_keyword">if</strong> (sslEngine == <strong class="jxr_keyword">null</strong> || sslEngine.isOutboundDone()) {<a name="375" href="#375">375</a> <strong class="jxr_keyword">return</strong> false;<a name="376" href="#376">376</a> }<a name="377" href="#377">377</a> <a name="378" href="#378">378</a> sslEngine.closeOutbound();<a name="379" href="#379">379</a> <a name="380" href="#380">380</a> createOutNetBuffer(0);<a name="381" href="#381">381</a> SSLEngineResult result;<a name="382" href="#382">382</a> <strong class="jxr_keyword">for</strong> (;;) {<a name="383" href="#383">383</a> result = sslEngine.wrap(emptyBuffer.buf(), outNetBuffer.buf());<a name="384" href="#384">384</a> <strong class="jxr_keyword">if</strong> (result.getStatus() == SSLEngineResult.Status.BUFFER_OVERFLOW) {<a name="385" href="#385">385</a> outNetBuffer.capacity(outNetBuffer.capacity() << 1);<a name="386" href="#386">386</a> outNetBuffer.limit(outNetBuffer.capacity());<a name="387" href="#387">387</a> } <strong class="jxr_keyword">else</strong> {<a name="388" href="#388">388</a> <strong class="jxr_keyword">break</strong>;<a name="389" href="#389">389</a> }<a name="390" href="#390">390</a> }<a name="391" href="#391">391</a> <a name="392" href="#392">392</a> <strong class="jxr_keyword">if</strong> (result.getStatus() != SSLEngineResult.Status.CLOSED) {<a name="393" href="#393">393</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> SSLException(<span class="jxr_string">"Improper close state: "</span> + result);<a name="394" href="#394">394</a> }<a name="395" href="#395">395</a> outNetBuffer.flip();<a name="396" href="#396">396</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">true</strong>;<a name="397" href="#397">397</a> }<a name="398" href="#398">398</a> ⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -