org.eclipse.californium.scandium.dtls.x509

Class AsyncNewAdvancedCertificateVerifier

java.lang.Object

org.eclipse.californium.scandium.dtls.x509.StaticNewAdvancedCertificateVerifier

org.eclipse.californium.scandium.dtls.x509.AsyncNewAdvancedCertificateVerifier

All Implemented Interfaces:

NewAdvancedCertificateVerifier

public class AsyncNewAdvancedCertificateVerifier
extends StaticNewAdvancedCertificateVerifier

Simple asynchronous test implementation of NewAdvancedCertificateVerifier. Use 0 or negative delays for test with synchronous blocking behaviour. And positive delays for test with asynchronous none-blocking behaviour.

Since:

2.5

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static class	AsyncNewAdvancedCertificateVerifier.Builder

Field Summary

Fields inherited from class org.eclipse.californium.scandium.dtls.x509.StaticNewAdvancedCertificateVerifier

LOGGER

Constructor Summary

Constructors

Constructor and Description
AsyncNewAdvancedCertificateVerifier(X509Certificate[] trustedCertificates, org.eclipse.californium.elements.auth.RawPublicKeyIdentity[] trustedRPKs, List<CertificateType> supportedCertificateTypes)

Method Summary

Methods

Modifier and Type	Method and Description
static AsyncNewAdvancedCertificateVerifier.Builder	builder()
int	getDelay() Get delay milliseconds.
AsyncNewAdvancedCertificateVerifier	setDelay(int delayMillis) Set delay.
void	setResultHandler(HandshakeResultHandler resultHandler) Set the handler for asynchronous handshake results.
void	shutdown() Shutdown.
CertificateVerificationResult	verifyCertificate(ConnectionId cid, ServerNames serverName, Boolean clientUsage, boolean truncateCertificatePath, CertificateMessage message, DTLSSession session) Validates the X.509 certificate chain provided by the the peer as part of the certificate message.

Methods inherited from class org.eclipse.californium.scandium.dtls.x509.StaticNewAdvancedCertificateVerifier

getAcceptedIssuers, getSupportedCertificateType

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AsyncNewAdvancedCertificateVerifier

public AsyncNewAdvancedCertificateVerifier(X509Certificate[] trustedCertificates,
                                   org.eclipse.californium.elements.auth.RawPublicKeyIdentity[] trustedRPKs,
                                   List<CertificateType> supportedCertificateTypes)

Method Detail

setDelay

public AsyncNewAdvancedCertificateVerifier setDelay(int delayMillis)

Set delay.

Parameters:

delayMillis - delay in milliseconds to report result. 0 or negative delays using synchronous blocking behaviour. Positive delays using asynchronous none-blocking behaviour.

Returns:

this certificate verifier for command chaining

getDelay

public int getDelay()

Get delay milliseconds.

Returns:

delay milliseconds. 0 or negative delays using synchronous blocking behaviour. Positive delays using asynchronous none-blocking behaviour.

shutdown

public void shutdown()

Shutdown. Cleanup resources.

verifyCertificate

public CertificateVerificationResult verifyCertificate(ConnectionId cid,
                                              ServerNames serverName,
                                              Boolean clientUsage,
                                              boolean truncateCertificatePath,
                                              CertificateMessage message,
                                              DTLSSession session)

Description copied from interface: NewAdvancedCertificateVerifier

Validates the X.509 certificate chain provided by the the peer as part of the certificate message.

Specified by:

verifyCertificate in interface NewAdvancedCertificateVerifier

Overrides:

verifyCertificate in class StaticNewAdvancedCertificateVerifier

Parameters:

cid - connection ID

serverName - indicated server names.

clientUsage - indicator to check certificate usage. null don't check key usage, true, check key usage for client, false for server.

truncateCertificatePath - true truncate certificate path at a trusted certificate before validation.

message - certificate message to be validated

session - dtls session to be used for validation

Returns:

certificate verification result, or null, if result is provided asynchronous.

setResultHandler

public void setResultHandler(HandshakeResultHandler resultHandler)

Description copied from interface: NewAdvancedCertificateVerifier

Set the handler for asynchronous handshake results. Called during initialization of the DTLSConnector. Synchronous implementations may just ignore this using an empty implementation.

Specified by:

setResultHandler in interface NewAdvancedCertificateVerifier

Overrides:

setResultHandler in class StaticNewAdvancedCertificateVerifier

Parameters:

resultHandler - handler for asynchronous master secret results. This handler MUST NOT be called from the thread calling NewAdvancedCertificateVerifier.verifyCertificate(ConnectionId, ServerNames, Boolean, boolean, CertificateMessage, DTLSSession), instead just return the result there.

builder

public static AsyncNewAdvancedCertificateVerifier.Builder builder()