net.spy.memcached

Class TLSConnectionHandler

java.lang.Object

net.spy.memcached.TLSConnectionHandler

public class TLSConnectionHandler
extends java.lang.Object

Field Summary

Fields

Modifier and Type	Field and Description
protected java.nio.ByteBuffer	myAppData The ByteBuffer holds this peer's application data in plaintext.
protected java.nio.ByteBuffer	myNetData The ByteBuffer holds this peer's TLS encrypted data.
protected java.nio.ByteBuffer	peerAppData The ByteBuffer holds the other peer's application data in plaintext.
protected java.nio.ByteBuffer	peerNetData The ByteBuffer holds other peer's TLS encrypted data.

Constructor Summary

Constructors

Constructor and Description
TLSConnectionHandler(java.nio.channels.SocketChannel socketChannel, javax.net.ssl.SSLEngine sslEngine)

Method Summary

Modifier and Type	Method and Description
java.nio.ByteBuffer	decryptNextTLSDataRecord(java.nio.ByteBuffer rbuf) Decrypt the next TLS data record to plain text data.
boolean	doTlsHandshake(long timeoutInMillis) Initial handshake (for establishing cipher suite and key exchange between client and server).
int	encryptNextTLSDataRecord(java.nio.ByteBuffer obuf, java.nio.ByteBuffer wbuf) Convert plain text data record to encrypted data.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

myAppData

protected java.nio.ByteBuffer myAppData

The ByteBuffer holds this peer's application data in plaintext.

myNetData

protected java.nio.ByteBuffer myNetData

The ByteBuffer holds this peer's TLS encrypted data.

peerAppData

protected java.nio.ByteBuffer peerAppData

The ByteBuffer holds the other peer's application data in plaintext.

peerNetData

protected java.nio.ByteBuffer peerNetData

The ByteBuffer holds other peer's TLS encrypted data.

Constructor Detail

TLSConnectionHandler

public TLSConnectionHandler(java.nio.channels.SocketChannel socketChannel,
                            javax.net.ssl.SSLEngine sslEngine)

Method Detail

doTlsHandshake

public boolean doTlsHandshake(long timeoutInMillis)
                       throws java.io.IOException

Initial handshake (for establishing cipher suite and key exchange between client and server).

Parameters:

timeoutInMillis - the amount of time to wait for TLS handshake finish before timeout.

Returns:

true if handshake is successful, false if handshake is unsuccessful.

Throws:

java.io.IOException - if there is an error occurred during read/write to the socket channel.

javax.net.ssl.SSLException - if a problem was encountered while signaling the SSLEngine to begin a new handshake or if a problem was encountered while processing the data that caused the SSLEngine to abort.

java.lang.IllegalStateException - if the client/server mode has not yet been set.

java.lang.IllegalArgumentException - if the handshake status is invalid.

OperationTimeoutException - if global operation timeout is exceeded

encryptNextTLSDataRecord

public int encryptNextTLSDataRecord(java.nio.ByteBuffer obuf,
                                    java.nio.ByteBuffer wbuf)
                             throws java.io.IOException

Convert plain text data record to encrypted data.

Returns:

the number of bytes produced if successfully encrypted plain text data record, -1 if the encryption fails with BUFFER_OVERFLOW error, 0 if not encrypt any data record.

Throws:

java.io.IOException

decryptNextTLSDataRecord

public java.nio.ByteBuffer decryptNextTLSDataRecord(java.nio.ByteBuffer rbuf)
                                             throws java.io.IOException

Decrypt the next TLS data record to plain text data.

Parameters:

rbuf - the buffer that contains TLS data record which will be decrypted.

Returns:

buffer contains plain text data, null if unable to decrypt the data contained in the given buffer

Throws:

java.io.IOException