(3rd Round) Proposed API Changes for JEP 114: TLS Server Name Indication (SNI) Extension
Sean Mullan
sean.mullan at oracle.com
Tue Aug 14 14:01:14 UTC 2012
SSLSocketFactory
- The new createSocket throws an IAE if the socket is an SSLSocket, but the
existing createSocket method doesn't. That seems a bit odd, what do we currently do?
--Sean
On 8/12/12 8:50 AM, Xuelei Fan wrote:
> Hi,
>
> Please review the spec of JEP 114, TLS Server Name Indication (SNI)
> Extension.
>
> http://cr.openjdk.java.net./~xuelei/7068321/webrev_spec.04/
>
> Please read the README to help you understanding the the specification:
>
> http://cr.openjdk.java.net./~xuelei/7068321/README_04.txt
>
> The major differences comparing with previous webrev are:
> 1. client mode and server mode will use separated API set.
> For client, the related APIs are:
> setServerName(String type, String value)
> clearServerName(String type)
> disableServerName(String type)
> enableServerName(String type)
> isDisabledServerName(String type)
> getServerNames()
>
> For server side, the related APIs are:
> setServerNamePattern(String type, Pattern pattern)
> clearServerNamePattern(String type)
> getServerNamePatterns()
>
> 2. close the door to use the generated socket in client mode.
>
> SSLSocketFactory.createSocket(Socket s,
> InputStream consumed, boolean autoClose)
>
> The returned socket was set in server mode.
>
> Regards,
> Xuelei
>
More information about the security-dev
mailing list