Gitiles
Code Review Sign In
gerrit.omnirom.org / android_external_tigervnc / 4be9da897c6a3ef45bc465583d3e7e6c75909022^! / . / java / src / com / tigervnc / vncviewer / TLSTunnelBase.java
commit4be9da897c6a3ef45bc465583d3e7e6c75909022[log] [tgz]
authorAdam Tkac <atkac@redhat.com>Thu Nov 18 14:00:12 2010 +0000
committerAdam Tkac <atkac@redhat.com>Thu Nov 18 14:00:12 2010 +0000
treeac612d2a7e43795b38a07ff0c7db65e3310acc1f
parent27b2f773be4db49762d78635c2c322a95bd141ce [diff] [blame]
[Development] java: Implement TLS security type. (Martin Koegler)


git-svn-id: svn://svn.code.sf.net/p/tigervnc/code/trunk@4199 3789f03b-4d11-0410-bbf8-ca57d06f2519

diff --git a/java/src/com/tigervnc/vncviewer/TLSTunnelBase.java b/java/src/com/tigervnc/vncviewer/TLSTunnelBase.java
new file mode 100644
index 0000000..922e837
--- /dev/null
+++ b/java/src/com/tigervnc/vncviewer/TLSTunnelBase.java

@@ -0,0 +1,86 @@
+/*
+ * Copyright (C) 2003 Sun Microsystems, Inc.
+ * Copyright (C) 2003-2010 Martin Koegler
+ *
+ * This is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This software is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this software; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307,
+ * USA.
+ */
+
+package com.tigervnc.vncviewer;
+
+import java.util.ArrayList;
+import java.net.*;
+import javax.net.ssl.*;
+
+public abstract class TLSTunnelBase
+{
+
+  public TLSTunnelBase (Socket sock_)
+  {
+    sock = sock_;
+  }
+
+  protected void initContext (SSLContext sc) throws java.security.
+    GeneralSecurityException
+  {
+    sc.init (null, null, null);
+  }
+
+  public void setup (RfbProto cc) throws Exception
+  {
+    if (cc.readU8 () == 0)
+	throw new Exception("Setup on the server failed");
+    try
+    {
+      SSLSocketFactory sslfactory;
+      SSLSocket sslsock;
+      SSLContext sc = SSLContext.getInstance ("TLS");
+      System.out.println("Generating TLS context");
+      initContext (sc);
+      System.out.println("Doing TLS handshake");
+      sslfactory = sc.getSocketFactory ();
+      sslsock = (SSLSocket) sslfactory.createSocket (sock,
+						     sock.getInetAddress ().
+						     getHostName (),
+						     sock.getPort (), true);
+
+      setParam (sslsock);
+
+      /* Not neccessary - just ensures that we know what cipher
+       * suite we are using for the output of toString()
+       */
+      sslsock.startHandshake ();
+
+      System.out.println("TLS done");
+
+      cc.setStreams (sslsock.getInputStream (),
+		     sslsock.getOutputStream ());
+    }
+    catch (java.io.IOException e)
+    {
+      throw new Exception("TLS handshake failed " + e.toString ());
+    }
+    catch (java.security.GeneralSecurityException e)
+    {
+      throw new Exception("TLS handshake failed " + e.toString ());
+    }
+  }
+
+
+  protected abstract void setParam (SSLSocket sock);
+
+  Socket sock;
+
+}