| Package | Description |
|---|---|
| org.eclipse.californium.scandium.dtls | |
| org.eclipse.californium.scandium.dtls.x509 |
| Modifier and Type | Method and Description |
|---|---|
HandshakeException |
CertificateVerificationResult.getException()
Get exception.
|
| Modifier and Type | Method and Description |
|---|---|
void |
Record.applySession(DTLSSession session)
Apply session for incoming records and decrypt fragment.
|
protected void |
ClientHandshaker.createCertificateMessage(DTLSFlight flight) |
protected void |
ServerHandshaker.doProcessMessage(HandshakeMessage message) |
protected void |
ResumingServerHandshaker.doProcessMessage(HandshakeMessage message) |
protected void |
ResumingClientHandshaker.doProcessMessage(HandshakeMessage message) |
protected abstract void |
Handshaker.doProcessMessage(HandshakeMessage message)
Does the specific processing of a message received from a peer in
the course of an ongoing handshake.
|
protected void |
ClientHandshaker.doProcessMessage(HandshakeMessage message) |
protected void |
Handshaker.expectMessage(DTLSMessage message)
Check, if message is expected.
|
static HandshakeMessage |
HandshakeMessage.fromByteArray(byte[] byteArray,
InetSocketAddress peerAddress)
Read handshake message from (received) byte array.
|
static DTLSMessage |
ChangeCipherSpecMessage.fromByteArray(byte[] byteArray,
InetSocketAddress peerAddress) |
static AlertMessage |
AlertMessage.fromByteArray(byte[] byteArray,
InetSocketAddress peerAddress) |
static ServerNameExtension |
ServerNameExtension.fromExtensionDataReader(org.eclipse.californium.elements.util.DatagramReader extensionDataReader,
InetSocketAddress peerAddress)
Creates a new instance from its byte representation.
|
static RecordSizeLimitExtension |
RecordSizeLimitExtension.fromExtensionDataReader(org.eclipse.californium.elements.util.DatagramReader extensionDataReader,
InetSocketAddress peerAddress)
Create record size limit extension from extensions data bytes.
|
static ConnectionIdExtension |
ConnectionIdExtension.fromExtensionDataReader(org.eclipse.californium.elements.util.DatagramReader extensionDataReader,
InetSocketAddress peerAddress)
Create connection id extension from extensions data bytes.
|
static HelloExtension |
HelloExtension.fromExtensionDataReader(int typeCode,
org.eclipse.californium.elements.util.DatagramReader extensionDataReader,
InetSocketAddress peerAddress)
De-serializes a Client or Server Hello handshake message extension from its binary
representation.
|
static HandshakeMessage |
HandshakeMessage.fromGenericHandshakeMessage(GenericHandshakeMessage message,
HandshakeParameter parameter)
Create specific handshake from generic handshake message using the now
available handshake parameter.
|
static CertificateMessage |
CertificateMessage.fromReader(org.eclipse.californium.elements.util.DatagramReader reader,
CertificateType certificateType,
InetSocketAddress peerAddress)
Creates a certificate message from its binary encoding.
|
static HandshakeMessage |
ServerHello.fromReader(org.eclipse.californium.elements.util.DatagramReader reader,
InetSocketAddress peerAddress)
Creates a Server Hello object from its binary encoding as used on
the wire.
|
static HelloExtensions |
HelloExtensions.fromReader(org.eclipse.californium.elements.util.DatagramReader reader,
InetSocketAddress peerAddress) |
static HandshakeMessage |
EcdhPskServerKeyExchange.fromReader(org.eclipse.californium.elements.util.DatagramReader reader,
InetSocketAddress peerAddress)
Creates a new server key exchange instance from its byte representation.
|
static HandshakeMessage |
EcdhEcdsaServerKeyExchange.fromReader(org.eclipse.californium.elements.util.DatagramReader reader,
InetSocketAddress peerAddress) |
static ClientHello |
ClientHello.fromReader(org.eclipse.californium.elements.util.DatagramReader reader,
InetSocketAddress peerAddress)
Creates a new ClientHello instance from its byte representation.
|
List<DatagramPacket> |
DTLSFlight.getDatagrams(int maxDatagramSize,
int maxFragmentSize,
Boolean useMultiHandshakeMessageRecords,
Boolean useMultiRecordMessages,
boolean backOff)
List of datagrams to be sent for this flight.
|
protected PskPublicInformation |
ClientHandshaker.getPskClientIdentity()
Get PSK client identity.
|
List<Record> |
DTLSFlight.getRecords(int maxDatagramSize,
int maxFragmentSize,
boolean useMultiHandshakeMessageRecords)
Get wrapped records for flight.
|
protected void |
Handshaker.handshakeStarted()
Forward handshake start to registered listeners.
|
void |
SessionListener.handshakeStarted(Handshaker handshaker)
Indicates that a handshake for establishing a session with a peer has been started.
|
void |
SessionAdapter.handshakeStarted(Handshaker handshaker) |
protected void |
ServerHandshaker.negotiateCipherSuite(ClientHello clientHello,
HelloExtensions serverHelloExtensions)
Selects one of the client's proposed cipher suites.
|
void |
Handshaker.processAsyncHandshakeResult(HandshakeResult handshakeResult)
Process asynchronous handshake result.
|
void |
Handshaker.processAsyncPskSecretResult(PskSecretResult pskSecretResult)
Deprecated.
|
protected void |
Handshaker.processCertificateVerificationResult(CertificateVerificationResult certificateVerificationResult)
Process certificate verification result.
|
protected abstract void |
Handshaker.processCertificateVerified()
Do the handshaker specific processing of successful verified certificates
|
protected void |
ClientHandshaker.processCertificateVerified()
Do the handshaker specific processing of successful verified certificates
|
protected abstract void |
Handshaker.processMasterSecret(SecretKey masterSecret)
Do the handshaker specific master secret processing
|
protected void |
ClientHandshaker.processMasterSecret(SecretKey masterSecret)
Do the handshaker specific master secret processing
|
void |
Handshaker.processMessage(Record record)
Processes a handshake record received from a peer based on the
handshake's current state.
|
protected void |
Handshaker.processPskSecretResult(PskSecretResult pskSecretResult)
Process PSK secret result.
|
protected static ECDHServerKeyExchange.EcdhData |
ECDHServerKeyExchange.readNamedCurve(org.eclipse.californium.elements.util.DatagramReader reader,
InetSocketAddress peerAddress) |
protected GenericHandshakeMessage |
Handshaker.reassembleFragment(FragmentedHandshakeMessage fragment)
Process a received fragmented handshake message.
|
protected void |
ClientHandshaker.receivedHelloVerifyRequest(HelloVerifyRequest message)
A
HelloVerifyRequest is sent by the server upon the arrival of
the client's ClientHello. |
protected void |
ResumingClientHandshaker.receivedServerHello(ServerHello message)
Stores the negotiated security parameters.
|
protected void |
ClientHandshaker.receivedServerHello(ServerHello message)
Stores the negotiated security parameters.
|
protected void |
Handshaker.sessionEstablished()
Forward session established to registered listeners.
|
void |
SessionListener.sessionEstablished(Handshaker handshaker,
DTLSSession establishedSession)
Indicates that a session has successfully been established.
|
void |
SessionAdapter.sessionEstablished(Handshaker handshaker,
DTLSSession establishedSession) |
void |
ServerHandshaker.startHandshake() |
void |
ResumingClientHandshaker.startHandshake() |
abstract void |
Handshaker.startHandshake()
Starts the handshake by sending the first flight to the peer.
|
void |
ClientHandshaker.startHandshake() |
void |
Handshaker.verifyCertificate(CertificateMessage message)
Start validating the X.509 certificate chain provided by the the peer as
part of this message, or the raw public key of the message.
|
void |
Finished.verifyData(Mac hmac,
SecretKey masterSecret,
boolean isClient,
byte[] handshakeHash)
See RFC
5246: All of the data from all messages in this handshake (not
including any HelloRequest messages) up to, but not including, this
message.
|
protected void |
ClientHandshaker.verifyServerHelloExtensions(ServerHello message) |
void |
CertificateVerify.verifySignature(PublicKey clientPublicKey,
List<HandshakeMessage> handshakeMessages)
Tries to verify the client's signature contained in the CertificateVerify
message.
|
void |
EcdhEcdsaServerKeyExchange.verifySignature(PublicKey serverPublicKey,
Random clientRandom,
Random serverRandom)
Called by the client after receiving the server's
ServerKeyExchange message. |
protected void |
DTLSFlight.wrapMessage(org.eclipse.californium.scandium.dtls.DTLSFlight.EpochMessage epochMessage)
Wraps a DTLS message into (potentially multiple) DTLS records and add
them to the flight.
|
protected void |
Handshaker.wrapMessage(DTLSFlight flight,
DTLSMessage fragment)
Wraps a DTLS message fragment into (potentially multiple) DTLS records
and add them to the flight.
|
| Constructor and Description |
|---|
CertificateVerificationResult(ConnectionId cid,
HandshakeException exception,
Object customArgument)
Create result.
|
| Modifier and Type | Method and Description |
|---|---|
CertPath |
StaticCertificateVerifier.verifyCertificate(Boolean clientUsage,
boolean truncateCertificatePath,
CertificateMessage message,
DTLSSession session)
Deprecated.
|
CertPath |
AdvancedCertificateVerifier.verifyCertificate(Boolean clientUsage,
boolean truncateCertificatePath,
CertificateMessage message,
DTLSSession session)
Deprecated.
Validates the X.509 certificate chain provided by the the peer as part of
this message.
|
void |
StaticCertificateVerifier.verifyCertificate(CertificateMessage message,
DTLSSession session)
Deprecated.
Validates the X.509 certificate chain provided by the the peer as part of
this message.
|
void |
CertificateVerifier.verifyCertificate(CertificateMessage message,
DTLSSession session)
Deprecated.
Validates the X.509 certificate chain provided by the the peer as part of
this message.
|
Copyright © 2023 Eclipse Foundation. All rights reserved.