DefaultOpenSslSession Class — netty Architecture

Source Code

handler/src/main/java/io/netty/handler/ssl/ReferenceCountedOpenSslEngine.java lines 2373–2760

    private final class DefaultOpenSslSession implements OpenSslInternalSession {
        private final OpenSslSessionContext sessionContext;

        // These are guarded by synchronized(OpenSslEngine.this) as handshakeFinished() may be triggered by any
        // thread.
        private X509Certificate[] x509PeerCerts;
        private Certificate[] peerCerts;

        private boolean valid = true;
        private String protocol;
        private String cipher;
        private OpenSslSessionId id = OpenSslSessionId.NULL_ID;
        private long creationTime;

        // Updated once a new handshake is started and so the SSLSession reused.
        private long lastAccessed = -1;

        private volatile int applicationBufferSize = MAX_PLAINTEXT_LENGTH;
        private volatile Certificate[] localCertificateChain;
        private volatile Map<String, Object> keyValueStorage = new ConcurrentHashMap<String, Object>();

        DefaultOpenSslSession(OpenSslSessionContext sessionContext) {
            this.sessionContext = sessionContext;
        }

        private SSLSessionBindingEvent newSSLSessionBindingEvent(String name) {
            return new SSLSessionBindingEvent(session, name);
        }

        @Override
        public void prepareHandshake() {
            keyValueStorage.clear();
        }

        @Override
        public void setSessionDetails(
                long creationTime, long lastAccessedTime, OpenSslSessionId sessionId,
                Map<String, Object> keyValueStorage) {
            synchronized (ReferenceCountedOpenSslEngine.this) {
                if (id == OpenSslSessionId.NULL_ID) {
                    id = sessionId;
                    this.creationTime = creationTime;
                    lastAccessed = lastAccessedTime;

                    // Update the key value storage. It's fine to just drop the previous stored values on the floor
                    // as the JDK does the same in the sense that it will use a new SSLSessionImpl instance once the
                    // handshake was done
                    this.keyValueStorage = keyValueStorage;
                }
            }
        }

        @Override
        public Map<String, Object> keyValueStorage() {
            return keyValueStorage;
        }

        @Override
        public OpenSslSessionId sessionId() {
            synchronized (ReferenceCountedOpenSslEngine.this) {
                if (this.id == OpenSslSessionId.NULL_ID && !destroyed) {
                    byte[] sessionId = SSL.getSessionId(ssl);
                    if (sessionId != null) {
                        id = new OpenSslSessionId(sessionId);
                    }
                }

                return id;
            }
        }

        @Override
        public void setLocalCertificate(Certificate[] localCertificate) {
            localCertificateChain = localCertificate;
        }

        @Override
        public byte[] getId() {
            return sessionId().cloneBytes();
        }