java source code of OpenSslContext

Project: netty4.0.27Learn (GitHub Link)

netty4.0.27Learn-master
- NOTICE.txt
- run-example.sh
- .fbprefs
- transport-sctp
  - src
    - main
      - java
        io
        netty
        channel
        sctp
        DefaultSctpServerChannelConfig.java
        SctpMessage.java
        SctpNotificationHandler.java
        SctpServerChannelConfig.java
        SctpChannelOption.java
        package-info.java
        oio
        OioSctpChannel.java
        package-info.java
        OioSctpServerChannel.java
        SctpChannelConfig.java
        SctpChannel.java
        DefaultSctpChannelConfig.java
        SctpServerChannel.java
        nio
        NioSctpChannel.java
        package-info.java
        NioSctpServerChannel.java
        handler
        codec
        sctp
        SctpInboundByteStreamHandler.java
        SctpOutboundByteStreamHandler.java
        SctpMessageToMessageDecoder.java
        package-info.java
        SctpMessageCompletionHandler.java
        com
        sun
        nio
        sctp
        HandlerResult.java
        AssociationChangeNotification.java
        PeerAddressChangeNotification.java
        SctpSocketOption.java
        UnsupportedOperatingSystemException.java
        SendFailedNotification.java
        Notification.java
        ShutdownNotification.java
        MessageInfo.java
        NotificationHandler.java
        SctpStandardSocketOptions.java
        package-info.java
        AbstractNotificationHandler.java
        Association.java
        SctpChannel.java
        SctpServerChannel.java
  - pom.xml
- codec
  - src
    - main
      - java
        io
        netty
        handler
        codec
        ReplayingDecoder.java
        MessageToMessageDecoder.java
        MessageToByteEncoder.java
        MessageToMessageEncoder.java
        CorruptedFrameException.java
        bytes
        ByteArrayDecoder.java
        ByteArrayEncoder.java
        package-info.java
        DelimiterBasedFrameDecoder.java
        CodecException.java
        ByteToMessageDecoder.java
        serialization
        CompatibleObjectEncoder.java
        ObjectDecoderInputStream.java
        ReferenceMap.java
        CompactObjectInputStream.java
        ObjectEncoderOutputStream.java
        WeakReferenceMap.java
        ClassResolvers.java
        ClassResolver.java
        ClassLoaderClassResolver.java
        package-info.java
        SoftReferenceMap.java
        ObjectEncoder.java
        CompactObjectOutputStream.java
        CachingClassResolver.java
        ObjectDecoder.java
        protobuf
        ProtobufDecoder.java
        ProtobufVarint32LengthFieldPrepender.java
        package-info.java
        ProtobufEncoder.java
        ProtobufVarint32FrameDecoder.java
        DecoderResult.java
        ReplayingDecoderBuffer.java
        PrematureChannelClosureException.java
        MessageToMessageCodec.java
        ByteToMessageCodec.java
        UnsupportedMessageTypeException.java
        base64
        Base64Dialect.java
        Base64.java
        Base64Encoder.java
        package-info.java
        Base64Decoder.java
        package-info.java
        TooLongFrameException.java
        LengthFieldBasedFrameDecoder.java
        FixedLengthFrameDecoder.java
        LengthFieldPrepender.java
        compression
        ZlibCodecFactory.java
        SnappyFramedEncoder.java
        CompressionException.java
        SnappyFramedDecoder.java
        JZlibDecoder.java
        ZlibDecoder.java
        JdkZlibDecoder.java
        Snappy.java
        DecompressionException.java
        Crc32c.java
        ZlibEncoder.java
        ZlibUtil.java
        package-info.java
        JdkZlibEncoder.java
        ZlibWrapper.java
        JZlibEncoder.java
        EncoderException.java
        LineBasedFrameDecoder.java
        Delimiters.java
        marshalling
        MarshallingEncoder.java
        CompatibleMarshallingDecoder.java
        CompatibleMarshallingEncoder.java
        ThreadLocalUnmarshallerProvider.java
        ChannelBufferByteInput.java
        MarshallerProvider.java
        ContextBoundUnmarshallerProvider.java
        DefaultUnmarshallerProvider.java
        package-info.java
        LimitingByteInput.java
        ChannelBufferByteOutput.java
        UnmarshallerProvider.java
        MarshallingDecoder.java
        DefaultMarshallerProvider.java
        ThreadLocalMarshallerProvider.java
        DecoderException.java
        string
        package-info.java
        StringEncoder.java
        StringDecoder.java
        CodecUtil.java
    - test
      - java
        io
        netty
        handler
        codec
        ReplayingDecoderBufferTest.java
        bytes
        ByteArrayDecoderTest.java
        ByteArrayEncoderTest.java
        ByteToMessageDecoderTest.java
        frame
        DelimiterBasedFrameDecoderTest.java
        LengthFieldPrependerTest.java
        LengthFieldBasedFrameDecoderTest.java
        package-info.java
        serialization
        CompactObjectSerializationTest.java
        protobuf
        ProtobufVarint32LengthFieldPrependerTest.java
        ProtobufVarint32FrameDecoderTest.java
        ReplayingDecoderTest.java
        DelimiterBasedFrameDecoderTest.java
        LengthFieldBasedFrameDecoderTest.java
        compression
        JZlibTest.java
        ZlibCrossTest1.java
        SnappyFramedDecoderTest.java
        ZlibCrossTest2.java
        SnappyFramedEncoderTest.java
        SnappyIntegrationTest.java
        SnappyTest.java
        JdkZlibTest.java
        ZlibTest.java
        ByteToMessageCodecTest.java
        LineBasedFrameDecoderTest.java
        marshalling
        RiverMarshallingDecoderTest.java
        SerialThreadLocalMarshallingEncoderTest.java
        RiverThreadLocalCompatibleMarshallingDecoderTest.java
        SerialCompatibleMarshallingEncoderTest.java
        RiverThreadLocalCompatibleMarshallingEncoderTest.java
        SerialThreadLocalMarshallingDecoderTest.java
        SerialThreadLocalCompatibleMarshallingEncoderTest.java
        SerialMarshallingEncoderTest.java
        RiverThreadLocalMarshallingDecoderTest.java
        SerialCompatibleMarshallingDecoderTest.java
        AbstractCompatibleMarshallingDecoderTest.java
        RiverCompatibleMarshallingEncoderTest.java
        RiverContextBoundCompatibleMarshallingDecoderTest.java
        RiverThreadLocalMarshallingEncoderTest.java
        RiverMarshallingEncoderTest.java
        SerialContextBoundCompatibleMarshallingDecoderTest.java
        SerialMarshallingDecoderTest.java
        RiverCompatibleMarshallingDecoderTest.java
        AbstractCompatibleMarshallingEncoderTest.java
        SerialThreadLocalCompatibleMarshallingDecoderTest.java
        RiverContextBoundMarshallingDecoderTest.java
        SerialContextBoundMarshallingDecoderTest.java
        string
        StringEncoderTest.java
        MessageToMessageEncoderTest.java
  - pom.xml
- pom.xml
- tarball
  - pom.xml
  - assembly.xml
- all
  - pom.xml
- common
  - src
    - main
      - java
        io
        netty
        util
        UniqueName.java
        Timeout.java
        TimerTask.java
        ThreadDeathWatcher.java
        Signal.java
        Mapping.java
        AbstractReferenceCounted.java
        NetUtil.java
        AttributeKey.java
        DomainNameMapping.java
        Recycler.java
        Attribute.java
        ReferenceCountUtil.java
        HashedWheelTimer.java
        collection
        package-info.java
        IntObjectMap.java
        IntObjectHashMap.java
        IllegalReferenceCountException.java
        package-info.java
        internal
        RecyclableMpscLinkedQueueNode.java
        UnsafeAtomicReferenceFieldUpdater.java
        MpscLinkedQueuePad1.java
        StringUtil.java
        chmv8
        CountedCompleter.java
        ForkJoinTask.java
        ForkJoinWorkerThread.java
        ForkJoinPool.java
        UnsafeAtomicLongFieldUpdater.java
        NativeLibraryLoader.java
        ObjectUtil.java
        PendingWrite.java
        TypeParameterMatcher.java
        EmptyArrays.java
        UnsafeAtomicIntegerFieldUpdater.java
        MpscLinkedQueue.java
        ConcurrentSet.java
        MpscLinkedQueueHeadRef.java
        MpscLinkedQueueNode.java
        AppendableCharSequence.java
        package-info.java
        Cleaner0.java
        JavassistTypeParameterMatcherGenerator.java
        PlatformDependent.java
        OneTimeTask.java
        SystemPropertyUtil.java
        MpscLinkedQueuePad0.java
        IntegerHolder.java
        ReadOnlyIterator.java
        InternalThreadLocalMap.java
        ThreadLocalRandom.java
        MpscLinkedQueueTailRef.java
        UnpaddedInternalThreadLocalMap.java
        RecyclableArrayList.java
        logging
        MessageFormatter.java
        CommonsLoggerFactory.java
        Slf4JLoggerFactory.java
        JdkLogger.java
        FormattingTuple.java
        Log4JLoggerFactory.java
        InternalLoggerFactory.java
        AbstractInternalLogger.java
        package-info.java
        Slf4JLogger.java
        InternalLogLevel.java
        InternalLogger.java
        CommonsLogger.java
        Log4JLogger.java
        JdkLoggerFactory.java
        PlatformDependent0.java
        NoOpTypeParameterMatcher.java
        Timer.java
        ResourceLeakException.java
        Version.java
        DefaultAttributeMap.java
        concurrent
        FastThreadLocalThread.java
        FailedFuture.java
        MultithreadEventExecutorGroup.java
        PromiseTask.java
        GenericProgressiveFutureListener.java
        ImmediateExecutor.java
        SingleThreadEventExecutor.java
        DefaultEventExecutorGroup.java
        FutureListener.java
        EventExecutorGroup.java
        AbstractFuture.java
        ScheduledFuture.java
        CompleteFuture.java
        ProgressivePromise.java
        package-info.java
        DefaultFutureListeners.java
        DefaultPromise.java
        GenericFutureListener.java
        AbstractScheduledEventExecutor.java
        DefaultProgressivePromise.java
        SucceededFuture.java
        PromiseNotifier.java
        DefaultThreadFactory.java
        Future.java
        AbstractEventExecutorGroup.java
        PromiseAggregator.java
        DefaultEventExecutor.java
        BlockingOperationException.java
        ProgressiveFuture.java
        GlobalEventExecutor.java
        ScheduledFutureTask.java
        AbstractEventExecutor.java
        EventExecutor.java
        ImmediateEventExecutor.java
        FastThreadLocal.java
        Promise.java
        CharsetUtil.java
        ResourceLeak.java
        ReferenceCounted.java
        AttributeMap.java
        ResourceLeakDetector.java
    - test
      - java
        io
        netty
        util
        NetUtilTest.java
        ThreadDeathWatcherTest.java
        DefaultAttributeMapTest.java
        UniqueNameTest.java
        AttributeKeyTest.java
        RecyclerTest.java
        collection
        IntObjectHashMapTest.java
        internal
        StringUtilTest.java
        AppendableCharSequenceTest.java
        ThreadLocalRandomTest.java
        logging
        JdkLoggerFactoryTest.java
        Log4JLoggerFactoryTest.java
        CommonsLoggerFactoryTest.java
        Slf4JLoggerFactoryTest.java
        CommonsLoggerTest.java
        Slf4JLoggerTest.java
        InternalLoggerFactoryTest.java
        TypeParameterMatcherTest.java
        HashedWheelTimerTest.java
        concurrent
        PromiseAggregatorTest.java
        PromiseNotifierTest.java
        FastThreadLocalTest.java
        DefaultPromiseTest.java
        GlobalEventExecutorTest.java
  - pom.xml
- testsuite
  - src
    - main
      - java
        io
        netty
        testsuite
        websockets
        autobahn
        AutobahnServerHandler.java
        AutobahnServer.java
        package-info.java
        AutobahnServerInitializer.java
        util
        TestUtils.java
        package-info.java
        transport
        AbstractComboTestsuiteTest.java
        udt
        UDTClientServerConnectionTest.java
        package-info.java
        AbstractTestsuiteTest.java
        package-info.java
        TestsuitePermutation.java
        socket
        SocketStringEchoTest.java
        SocketSslGreetingTest.java
        DatagramUnicastTest.java
        SocketConnectionAttemptTest.java
        SocketSpdyEchoTest.java
        ServerSocketSuspendTest.java
        SocketObjectEchoTest.java
        WriteBeforeRegisteredTest.java
        SocketBufReleaseTest.java
        AbstractSocketTest.java
        SocketCancelWriteTest.java
        SocketFixedLengthEchoTest.java
        SocketStartTlsTest.java
        SocketAutoReadTest.java
        AbstractDatagramTest.java
        SocketSslEchoTest.java
        DatagramMulticastTest.java
        package-info.java
        AbstractClientSocketTest.java
        SocketShutdownOutputBySelfTest.java
        SocketGatheringWriteTest.java
        SocketFileRegionTest.java
        SocketShutdownOutputByPeerTest.java
        TrafficShapingHandlerTest.java
        SocketEchoTest.java
        AbstractServerSocketTest.java
        SocketTestPermutation.java
        sctp
        SctpTestPermutation.java
        SctpEchoTest.java
        package-info.java
        AbstractSctpTest.java
  - pom.xml
  - .gitignore
- CONTRIBUTING.md
- license
  - LICENSE.protobuf.txt
  - LICENSE.abstractnodequeue.txt
  - LICENSE.jzlib.txt
  - LICENSE.caliper.txt
  - LICENSE.jboss-marshalling.txt
  - LICENSE.jsr166y.txt
  - LICENSE.snappy.txt
  - LICENSE.commons-logging.txt
  - LICENSE.base64.txt
  - LICENSE.log4j.txt
  - LICENSE.webbit.txt
  - LICENSE.bouncycastle.txt
  - LICENSE.slf4j.txt
- codec-http
  - src
    - main
      - java
        io
        netty
        handler
        codec
        http
        HttpMessage.java
        Cookie.java
        HttpClientCodec.java
        cors
        CorsConfig.java
        CorsHandler.java
        package-info.java
        HttpObject.java
        HttpHeaderDateFormat.java
        DefaultFullHttpResponse.java
        ComposedLastHttpContent.java
        DefaultHttpContent.java
        DefaultLastHttpContent.java
        HttpResponse.java
        HttpObjectDecoder.java
        LastHttpContent.java
        CookieEncoderUtil.java
        HttpRequestEncoder.java
        HttpContent.java
        HttpRequest.java
        HttpObjectEncoder.java
        multipart
        MixedAttribute.java
        AbstractMemoryHttpData.java
        HttpPostRequestDecoder.java
        AbstractDiskHttpData.java
        FileUpload.java
        HttpData.java
        HttpPostRequestEncoder.java
        MixedFileUpload.java
        Attribute.java
        AbstractHttpData.java
        HttpPostStandardRequestDecoder.java
        MemoryFileUpload.java
        InterfaceHttpData.java
        DefaultHttpDataFactory.java
        DiskFileUpload.java
        HttpPostMultipartRequestDecoder.java
        package-info.java
        HttpPostBodyUtil.java
        HttpDataFactory.java
        DiskAttribute.java
        MemoryAttribute.java
        InternalAttribute.java
        InterfaceHttpPostRequestDecoder.java
        CaseIgnoringComparator.java
        HttpObjectAggregator.java
        HttpContentDecompressor.java
        HttpResponseEncoder.java
        HttpContentDecoder.java
        HttpRequestDecoder.java
        FullHttpResponse.java
        HttpChunkedInput.java
        HttpHeaderEntity.java
        package-info.java
        HttpResponseDecoder.java
        HttpContentCompressor.java
        DefaultCookie.java
        websocketx
        PongWebSocketFrame.java
        WebSocketFrameEncoder.java
        WebSocketClientHandshaker08.java
        WebSocket08FrameEncoder.java
        WebSocketUtil.java
        WebSocketFrameAggregator.java
        WebSocketFrame.java
        WebSocketServerHandshakerFactory.java
        ContinuationWebSocketFrame.java
        TextWebSocketFrame.java
        WebSocketClientProtocolHandler.java
        WebSocketClientHandshakerFactory.java
        Utf8Validator.java
        WebSocketServerHandshaker00.java
        WebSocket00FrameDecoder.java
        WebSocket07FrameDecoder.java
        WebSocketFrameDecoder.java
        WebSocketServerHandshaker.java
        WebSocketServerProtocolHandshakeHandler.java
        WebSocketServerHandshaker07.java
        WebSocketProtocolHandler.java
        BinaryWebSocketFrame.java
        WebSocket13FrameDecoder.java
        WebSocketClientHandshaker13.java
        package-info.java
        WebSocketClientHandshaker07.java
        WebSocketVersion.java
        WebSocket08FrameDecoder.java
        WebSocketServerProtocolHandler.java
        WebSocketHandshakeException.java
        WebSocketClientHandshaker00.java
        WebSocket07FrameEncoder.java
        WebSocket00FrameEncoder.java
        WebSocketClientHandshaker.java
        WebSocketServerHandshaker08.java
        PingWebSocketFrame.java
        WebSocketClientProtocolHandshakeHandler.java
        CloseWebSocketFrame.java
        WebSocketServerHandshaker13.java
        WebSocket13FrameEncoder.java
        HttpMessageUtil.java
        QueryStringDecoder.java
        HttpConstants.java
        HttpVersion.java
        HttpContentEncoder.java
        DefaultFullHttpRequest.java
        HttpHeaders.java
        FullHttpRequest.java
        DefaultHttpRequest.java
        ServerCookieEncoder.java
        CookieDecoder.java
        DefaultHttpHeaders.java
        FullHttpMessage.java
        HttpMethod.java
        DefaultHttpObject.java
        QueryStringEncoder.java
        CookieHeaderNames.java
        HttpResponseStatus.java
        DefaultHttpResponse.java
        ClientCookieEncoder.java
        HttpServerCodec.java
        DefaultHttpMessage.java
        spdy
        SpdyHeadersFrame.java
        SpdyProtocolException.java
        SpdySession.java
        SpdyFrameEncoder.java
        DefaultSpdySynReplyFrame.java
        SpdyCodecUtil.java
        SpdySessionHandler.java
        SpdyHttpHeaders.java
        DefaultSpdySettingsFrame.java
        SpdyHeaderBlockEncoder.java
        DefaultSpdyPingFrame.java
        SpdyHeaderBlockZlibEncoder.java
        SpdySynStreamFrame.java
        DefaultSpdyStreamFrame.java
        DefaultSpdyWindowUpdateFrame.java
        SpdySessionStatus.java
        SpdyHeaderBlockZlibDecoder.java
        SpdyFrameDecoder.java
        SpdyStreamFrame.java
        SpdyStreamStatus.java
        SpdyOrHttpChooser.java
        SpdyHttpDecoder.java
        SpdyGoAwayFrame.java
        SpdyHeaderBlockDecoder.java
        DefaultSpdyHeadersFrame.java
        SpdyHttpCodec.java
        package-info.java
        SpdySynReplyFrame.java
        SpdyDataFrame.java
        SpdyVersion.java
        SpdyRstStreamFrame.java
        DefaultSpdySynStreamFrame.java
        SpdySettingsFrame.java
        DefaultSpdyRstStreamFrame.java
        SpdyHttpEncoder.java
        SpdyWindowUpdateFrame.java
        SpdyPingFrame.java
        DefaultSpdyDataFrame.java
        SpdyHeaderBlockRawDecoder.java
        SpdyHeaders.java
        SpdyFrameDecoderDelegate.java
        SpdyHttpResponseStreamIdHandler.java
        SpdyFrame.java
        SpdyHeaderBlockRawEncoder.java
        SpdyFrameCodec.java
        DefaultSpdyGoAwayFrame.java
        SpdyHeaderBlockJZlibEncoder.java
        DefaultSpdyHeaders.java
        rtsp
        RtspResponseStatuses.java
        RtspObjectEncoder.java
        RtspResponseDecoder.java
        RtspRequestDecoder.java
        RtspObjectDecoder.java
        RtspMethods.java
        package-info.java
        RtspRequestEncoder.java
        RtspResponseEncoder.java
        RtspVersions.java
        RtspHeaders.java
    - test
      - resources
        file-02.txt
        file-01.txt
      - java
        io
        netty
        handler
        codec
        http
        HttpObjectAggregatorTest.java
        cors
        CorsConfigTest.java
        CorsHandlerTest.java
        HttpResponseDecoderTest.java
        HttpContentDecoderTest.java
        HttpHeaderDateFormatTest.java
        QueryStringDecoderTest.java
        HttpClientCodecTest.java
        DefaultHttpRequestTest.java
        CookieDecoderTest.java
        HttpInvalidMessageTest.java
        multipart
        AbstractMemoryHttpDataTest.java
        HttpPostRequestEncoderTest.java
        HttpPostRequestDecoderTest.java
        HttpServerCodecTest.java
        HttpChunkedInputTest.java
        QueryStringEncoderTest.java
        HttpResponseEncoderTest.java
        HttpRequestDecoderTest.java
        websocketx
        WebSocketServerHandshaker00Test.java
        WebSocket08EncoderDecoderTest.java
        WebSocketRequestBuilder.java
        WebSocket00FrameEncoderTest.java
        WebSocketServerHandshaker13Test.java
        WebSocketFrameAggregatorTest.java
        WebSocketServerProtocolHandlerTest.java
        WebSocketServerHandshaker08Test.java
        WebSocketHandshakeHandOverTest.java
        HttpHeadersTest.java
        HttpRequestEncoderTest.java
        CookieEncoderTest.java
        HttpContentCompressorTest.java
        HttpContentEncoderTest.java
        spdy
        SpdyHeaderBlockRawDecoderTest.java
        SpdyHeaderBlockZlibDecoderTest.java
        SpdySessionHandlerTest.java
        SpdyFrameDecoderTest.java
  - pom.xml
  - Frame.mgc
  - Frame13.mgc
- transport
  - src
    - main
      - java
        io
        netty
        bootstrap
        AbstractBootstrap.java
        ServerBootstrap.java
        package-info.java
        Bootstrap.java
        ChannelFactory.java
        channel
        DefaultChannelConfig.java
        group
        CombinedIterator.java
        ChannelMatcher.java
        ChannelGroupFuture.java
        ChannelGroupException.java
        DefaultChannelGroupFuture.java
        package-info.java
        DefaultChannelGroup.java
        ChannelGroup.java
        ChannelGroupFutureListener.java
        ChannelMatchers.java
        SingleThreadEventLoop.java
        MessageSizeEstimator.java
        SucceededChannelFuture.java
        EventLoopException.java
        ChannelFutureListener.java
        DefaultFileRegion.java
        ChannelHandlerAdapter.java
        RecvByteBufAllocator.java
        ChannelPipeline.java
        AbstractChannelHandlerContext.java
        ChannelMetadata.java
        Channel.java
        ServerChannel.java
        VoidChannelPromise.java
        ChannelFlushPromiseNotifier.java
        SimpleChannelInboundHandler.java
        ChannelOutboundBuffer.java
        CombinedChannelDuplexHandler.java
        ChannelOutboundHandlerAdapter.java
        DefaultChannelPromise.java
        EventLoop.java
        ChannelPipelineException.java
        FixedRecvByteBufAllocator.java
        FileRegion.java
        ChannelConfig.java
        EventLoopGroup.java
        ChannelFuture.java
        ChannelInboundHandler.java
        ChannelProgressiveFuture.java
        ChannelPromise.java
        ChannelInboundHandlerAdapter.java
        PendingWriteQueue.java
        ChannelInitializer.java
        ChannelHandlerContext.java
        ChannelException.java
        ChannelHandler.java
        DefaultAddressedEnvelope.java
        ChannelDuplexHandler.java
        package-info.java
        oio
        package-info.java
        AbstractOioMessageChannel.java
        OioByteStreamChannel.java
        AbstractOioChannel.java
        OioEventLoopGroup.java
        AbstractOioByteChannel.java
        CompleteChannelFuture.java
        ThreadPerChannelEventLoop.java
        DefaultChannelPipeline.java
        ChannelProgressiveFutureListener.java
        ConnectTimeoutException.java
        AbstractServerChannel.java
        AdaptiveRecvByteBufAllocator.java
        ChannelOption.java
        socket
        InternetProtocolFamily.java
        SocketChannel.java
        DatagramPacket.java
        ServerSocketChannel.java
        DefaultServerSocketChannelConfig.java
        DefaultDatagramChannelConfig.java
        ServerSocketChannelConfig.java
        ChannelInputShutdownEvent.java
        package-info.java
        oio
        OioServerSocketChannel.java
        OioSocketChannel.java
        DefaultOioSocketChannelConfig.java
        OioServerSocketChannelConfig.java
        DefaultOioServerSocketChannelConfig.java
        package-info.java
        OioSocketChannelConfig.java
        OioDatagramChannel.java
        SocketChannelConfig.java
        DatagramChannelConfig.java
        DatagramChannel.java
        DefaultSocketChannelConfig.java
        nio
        ProtocolFamilyConverter.java
        NioSocketChannel.java
        NioServerSocketChannel.java
        package-info.java
        NioDatagramChannel.java
        NioDatagramChannelConfig.java
        ThreadPerChannelEventLoopGroup.java
        DefaultChannelHandlerContext.java
        ChannelPromiseNotifier.java
        FailedChannelFuture.java
        local
        LocalChannelRegistry.java
        LocalServerChannel.java
        LocalChannel.java
        LocalAddress.java
        package-info.java
        LocalEventLoop.java
        LocalEventLoopGroup.java
        AddressedEnvelope.java
        DefaultMessageSizeEstimator.java
        MultithreadEventLoopGroup.java
        ChannelOutboundHandler.java
        nio
        NioEventLoopGroup.java
        AbstractNioMessageChannel.java
        AbstractNioChannel.java
        NioTask.java
        AbstractNioByteChannel.java
        package-info.java
        SelectedSelectionKeySet.java
        NioEventLoop.java
        DefaultChannelProgressivePromise.java
        ChannelPromiseAggregator.java
        embedded
        EmbeddedEventLoop.java
        EmbeddedSocketAddress.java
        package-info.java
        EmbeddedChannel.java
        ChannelProgressivePromise.java
        AbstractChannel.java
    - test
      - java
        io
        netty
        bootstrap
        BootstrapTest.java
        channel
        group
        DefaultChannnelGroupTest.java
        ThreadPerChannelEventLoopGroupTest.java
        DefaultChannelPipelineTest.java
        BaseChannelTest.java
        ChannelOptionTest.java
        SingleThreadEventLoopTest.java
        ReentrantChannelTest.java
        ChannelOutboundBufferTest.java
        AbstractEventLoopTest.java
        FailedChannelFutureTest.java
        oio
        OioEventLoopTest.java
        AbstractChannelTest.java
        SucceededChannelFutureTest.java
        local
        LocalTransportThreadModelTest3.java
        LocalTransportThreadModelTest2.java
        LocalChannelTest.java
        LocalTransportThreadModelTest.java
        CompleteChannelFutureTest.java
        nio
        NioDatagramChannelTest.java
        NioSocketChannelTest.java
        NioEventLoopTest.java
        LoggingHandler.java
        embedded
        EmbeddedChannelTest.java
        PendingWriteQueueTest.java
  - pom.xml
- codec-socks
  - src
    - main
      - java
        io
        netty
        handler
        codec
        socks
        SocksAuthStatus.java
        SocksCmdRequest.java
        UnknownSocksRequest.java
        SocksInitResponseDecoder.java
        SocksAuthRequest.java
        SocksMessage.java
        UnknownSocksResponse.java
        SocksAddressType.java
        SocksAuthScheme.java
        SocksRequest.java
        SocksInitRequest.java
        SocksAuthResponse.java
        SocksCmdResponse.java
        SocksCmdRequestDecoder.java
        SocksResponseType.java
        SocksInitRequestDecoder.java
        package-info.java
        SocksRequestType.java
        SocksResponse.java
        SocksSubnegotiationVersion.java
        SocksCommonUtils.java
        SocksCmdType.java
        SocksCmdStatus.java
        SocksInitResponse.java
        SocksMessageType.java
        SocksProtocolVersion.java
        SocksAuthRequestDecoder.java
        SocksMessageEncoder.java
        SocksAuthResponseDecoder.java
        SocksCmdResponseDecoder.java
    - test
      - java
        io
        netty
        handler
        codec
        socks
        SocksInitRequestTest.java
        SocksCmdResponseTest.java
        SocksAuthRequestTest.java
        SocksCmdResponseDecoderTest.java
        SocksAuthResponseDecoderTest.java
        SocksAuthRequestDecoderTest.java
        SocksInitResponseTest.java
        SocksCmdRequestDecoderTest.java
        SocksAuthResponseTest.java
        SocksCommonTestUtils.java
        SocksCmdRequestTest.java
  - pom.xml
- example
  - src
    - main
      - resources
        cors
        cors.html
        css
        cors.css
        logback.xml
      - java
        io
        netty
        example
        factorial
        BigIntegerDecoder.java
        FactorialServerHandler.java
        FactorialServerInitializer.java
        NumberEncoder.java
        FactorialClientInitializer.java
        FactorialClientHandler.java
        FactorialClient.java
        FactorialServer.java
        echo
        EchoClientHandler.java
        EchoClient.java
        EchoServer.java
        EchoServerHandler.java
        uptime
        UptimeClientHandler.java
        UptimeClient.java
        telnet
        TelnetServer.java
        TelnetClientInitializer.java
        TelnetClient.java
        TelnetServerInitializer.java
        TelnetClientHandler.java
        TelnetServerHandler.java
        proxy
        HexDumpProxy.java
        HexDumpProxyBackendHandler.java
        HexDumpProxyInitializer.java
        HexDumpProxyFrontendHandler.java
        rxtx
        RxtxClient.java
        RxtxClientHandler.java
        udt
        echo
        bytes
        ByteEchoClient.java
        ByteEchoServerHandler.java
        package-info.java
        ByteEchoClientHandler.java
        ByteEchoServer.java
        rendezvous
        MsgEchoPeerTwo.java
        MsgEchoPeerBase.java
        MsgEchoPeerHandler.java
        Config.java
        package-info.java
        MsgEchoPeerOne.java
        message
        MsgEchoClientHandler.java
        package-info.java
        MsgEchoServer.java
        MsgEchoClient.java
        MsgEchoServerHandler.java
        package-info.java
        rendezvousBytes
        ByteEchoPeerOne.java
        package-info.java
        ByteEchoPeerBase.java
        ByteEchoPeerHandler.java
        ByteEchoPeerTwo.java
        package-info.java
        localecho
        LocalEchoClientHandler.java
        LocalEchoServerHandler.java
        LocalEcho.java
        worldclock
        WorldClockServerInitializer.java
        WorldClockProtocol.java
        WorldClockClientHandler.java
        WorldClockClient.java
        WorldClockServerHandler.java
        WorldClockClientInitializer.java
        WorldClockProtocol.proto
        WorldClockServer.java
        file
        FileServer.java
        FileServerHandler.java
        socksproxy
        SocksServerInitializer.java
        SocksServerUtils.java
        RelayHandler.java
        DirectClientHandler.java
        SocksServerHandler.java
        SocksServer.java
        SocksServerConnectHandler.java
        http
        cors
        HttpCorsServerInitializer.java
        OkResponseHandler.java
        HttpCorsServer.java
        snoop
        HttpSnoopServer.java
        HttpSnoopClientHandler.java
        HttpSnoopClientInitializer.java
        HttpSnoopServerHandler.java
        HttpSnoopServerInitializer.java
        HttpSnoopClient.java
        helloworld
        HttpHelloWorldServerInitializer.java
        HttpHelloWorldServerHandler.java
        HttpHelloWorldServer.java
        file
        HttpStaticFileServer.java
        HttpStaticFileServerHandler.java
        HttpStaticFileServerInitializer.java
        websocketx
        client
        WebSocketClientHandler.java
        WebSocketClient.java
        benchmarkserver
        WebSocketServerHandler.java
        WebSocketServer.java
        package-info.java
        WebSocketServerBenchmarkPage.java
        WebSocketServerInitializer.java
        server
        WebSocketServerHandler.java
        WebSocketServerIndexPage.java
        WebSocketServer.java
        package-info.java
        WebSocketServerInitializer.java
        upload
        HttpUploadClientHandler.java
        HttpUploadServer.java
        HttpUploadServerHandler.java
        HttpUploadClient.java
        HttpUploadClientIntializer.java
        HttpUploadServerInitializer.java
        spdy
        client
        SpdyClient.java
        SpdyClientStreamIdHandler.java
        HttpResponseClientHandler.java
        package-info.java
        SpdyFrameLogger.java
        SpdyClientInitializer.java
        server
        SpdyOrHttpHandler.java
        SpdyServerHandler.java
        package-info.java
        SpdyServerInitializer.java
        SpdyServer.java
        discard
        DiscardServerHandler.java
        DiscardServer.java
        DiscardClientHandler.java
        DiscardClient.java
        sctp
        SctpEchoClientHandler.java
        SctpEchoServer.java
        SctpEchoClient.java
        SctpEchoServerHandler.java
        securechat
        SecureChatClientInitializer.java
        SecureChatServerInitializer.java
        SecureChatServer.java
        SecureChatClientHandler.java
        SecureChatClient.java
        SecureChatServerHandler.java
        qotm
        QuoteOfTheMomentServer.java
        QuoteOfTheMomentClient.java
        QuoteOfTheMomentClientHandler.java
        QuoteOfTheMomentServerHandler.java
        portunification
        PortUnificationServer.java
        PortUnificationServerHandler.java
        objectecho
        ObjectEchoServerHandler.java
        ObjectEchoClient.java
        ObjectEchoServer.java
        ObjectEchoClientHandler.java
  - pom.xml
  - .gitignore
- transport-udt
  - src
    - main
      - java
        io
        netty
        channel
        udt
        UdtServerChannelConfig.java
        UdtChannel.java
        DefaultUdtChannelConfig.java
        UdtChannelConfig.java
        UdtChannelOption.java
        DefaultUdtServerChannelConfig.java
        package-info.java
        UdtServerChannel.java
        nio
        NioUdtMessageConnectorChannel.java
        NioUdtByteConnectorChannel.java
        NioUdtMessageRendezvousChannel.java
        package-info.java
        NioUdtProvider.java
        NioUdtByteAcceptorChannel.java
        NioUdtAcceptorChannel.java
        NioUdtMessageAcceptorChannel.java
        NioUdtByteRendezvousChannel.java
        UdtMessage.java
    - test
      - java
        io
        netty
        test
        udt
        util
        CustomReporter.java
        UnitHelp.java
        CaliperMeasure.java
        EchoMessageHandler.java
        CaliperRunner.java
        TrafficControl.java
        package-info.java
        EchoByteHandler.java
        CaliperBench.java
        bench
        BenchXfer.java
        xfer
        TcpNative.java
        UdtNative.java
        UdtNetty.java
        package-info.java
        package-info.java
        nio
        NioUdtProviderTest.java
        NioUdtMessageRendezvousChannelTest.java
        NioUdtMessageAcceptorChannelTest.java
        NioUdtByteRendezvousChannelTest.java
        AbstractUdtTest.java
        package-info.java
        NioUdtMessageConnectorChannelTest.java
        NioUdtByteAcceptorChannelTest.java
        NioUdtByteConnectorChannelTest.java
  - pom.xml
  - .gitignore
- transport-native-epoll
  - src
    - main
      - c
        io_netty_channel_epoll_Native.c
        io_netty_channel_epoll_Native.h
        io_netty_channel_unix_FileDescriptor.h
        io_netty_channel_unix_FileDescriptor.c
      - java
        io
        netty
        channel
        epoll
        EpollServerDomainSocketChannel.java
        EpollDatagramChannel.java
        EpollTcpInfo.java
        EpollEventLoop.java
        EpollSocketChannel.java
        EpollChannelConfig.java
        AbstractEpollStreamChannel.java
        EpollEventArray.java
        EpollMode.java
        EpollServerSocketChannelConfig.java
        EpollSocketChannelConfig.java
        EpollServerSocketChannel.java
        EpollServerChannelConfig.java
        EpollDomainSocketChannel.java
        IovArrayThreadLocal.java
        EpollDomainSocketChannelConfig.java
        Native.java
        Epoll.java
        EpollDatagramChannelConfig.java
        NativeDatagramPacketArray.java
        AbstractEpollServerChannel.java
        package-info.java
        IovArray.java
        AbstractEpollChannel.java
        EpollChannelOption.java
        EpollEventLoopGroup.java
        unix
        DomainSocketReadMode.java
        ServerDomainSocketChannel.java
        UnixChannel.java
        FileDescriptor.java
        DomainSocketAddress.java
        package-info.java
        DomainSocketChannel.java
        DomainSocketChannelConfig.java
    - test
      - java
        io
        netty
        channel
        epoll
        EpollDomainSocketSslGreetingTest.java
        EpollSocketTestPermutation.java
        EpollDomainSocketStartTlsTest.java
        EpollDomainSocketEchoTest.java
        EpollSocketFixedLengthEchoTest.java
        EpollSocketGatheringWriteTest.java
        EpollSocketFileRegionTest.java
        EpollSocketEchoTest.java
        EpollSocketChannelTest.java
        EpollDomainSocketFileRegionTest.java
        EpollDatagramUnicastTest.java
        EpollDomainSocketFixedLengthEchoTest.java
        EpollSocketStartTlsTest.java
        EpollSocketStringEchoTest.java
        EpollSocketSslGreetingTest.java
        EpollSocketObjectEchoTest.java
        EpollDomainSocketGatheringWriteTest.java
        NativeTest.java
        EpollSocketSslEchoTest.java
        EpollDomainSocketObjectEchoTest.java
        EpollDomainSocketFdTest.java
        EpollDomainSocketSslEchoTest.java
        EpollTest.java
        EpollDomainSocketStringEchoTest.java
        EpollReuseAddrTest.java
  - pom.xml
  - README.md
- testsuite-osgi
  - src
    - test
      - java
        io
        netty
        osgitests
        OsgiBundleTest.java
        package-info.java
  - pom.xml
- .travis.yml
- README.md
- microbench
  - src
    - test
      - resources
        logback.xml
      - java
        io
        netty
        microbench
        util
        AbstractMicrobenchmark.java
        internal
        RecyclableArrayListBenchmark.java
        http
        HttpRequestDecoderBenchmark.java
        concurrent
        FastThreadLocalBenchmark.java
        buffer
        ByteBufAllocatorBenchmark.java
        ByteBufUtilBenchmark.java
        SwappedByteBufBenchmark.java
  - pom.xml
  - README.md
- transport-rxtx
  - src
    - main
      - java
        io
        netty
        channel
        rxtx
        DefaultRxtxChannelConfig.java
        package-info.java
        RxtxDeviceAddress.java
        RxtxChannel.java
        RxtxChannelConfig.java
        RxtxChannelOption.java
  - pom.xml
- handler
  - src
    - main
      - java
        io
        netty
        handler
        stream
        ChunkedFile.java
        ChunkedNioStream.java
        ChunkedStream.java
        package-info.java
        ChunkedInput.java
        ChunkedWriteHandler.java
        ChunkedNioFile.java
        traffic
        AbstractTrafficShapingHandler.java
        TrafficCounter.java
        GlobalChannelTrafficCounter.java
        package-info.java
        GlobalTrafficShapingHandler.java
        GlobalChannelTrafficShapingHandler.java
        ChannelTrafficShapingHandler.java
        ssl
        OpenSslDefaultApplicationProtocolNegotiator.java
        IdentityCipherSuiteFilter.java
        JdkAlpnSslEngine.java
        JettyNpnSslSession.java
        SniHandler.java
        JdkSslSession.java
        OpenSslX509Certificate.java
        JdkNpnSslEngine.java
        SslHandshakeCompletionEvent.java
        ApplicationProtocolConfig.java
        OpenSslSessionStats.java
        SslContext.java
        PemReader.java
        JdkDefaultApplicationProtocolNegotiator.java
        OpenSslServerContext.java
        SslHandler.java
        NotSslRecordException.java
        CipherSuiteConverter.java
        OpenSslEngineMap.java
        OpenSslSessionContext.java
        ApplicationProtocolUtil.java
        JdkSslClientContext.java
        util
        BouncyCastleSelfSignedCertGenerator.java
        FingerprintTrustManagerFactory.java
        SimpleTrustManagerFactory.java
        SelfSignedCertificate.java
        OpenJdkSelfSignedCertGenerator.java
        package-info.java
        InsecureTrustManagerFactory.java
        ThreadLocalInsecureRandom.java
        OpenSslContext.java
        SslProvider.java
        OpenSslEngine.java
        CipherSuiteFilter.java
        package-info.java
        JdkNpnApplicationProtocolNegotiator.java
        OpenSsl.java
        OpenSslClientContext.java
        JdkSslContext.java
        JdkSslServerContext.java
        OpenSslApplicationProtocolNegotiator.java
        JdkBaseApplicationProtocolNegotiator.java
        OpenSslNpnApplicationProtocolNegotiator.java
        SupportedCipherSuiteFilter.java
        OpenSslServerSessionContext.java
        JdkSslEngine.java
        ApplicationProtocolNegotiator.java
        JdkApplicationProtocolNegotiator.java
        SslConstants.java
        JdkAlpnApplicationProtocolNegotiator.java
        timeout
        TimeoutException.java
        IdleStateEvent.java
        IdleStateHandler.java
        WriteTimeoutException.java
        WriteTimeoutHandler.java
        package-info.java
        ReadTimeoutException.java
        IdleState.java
        ReadTimeoutHandler.java
        logging
        package-info.java
        LogLevel.java
        LoggingHandler.java
    - test
      - resources
        io
        netty
        handler
        ssl
        test2_unencrypted.pem
        test_unencrypted.pem
        test_encrypted.pem
        test2.crt
        test.crt
        test2_encrypted.pem
      - java
        io
        netty
        handler
        stream
        ChunkedWriteHandlerTest.java
        ssl
        SslHandlerTest.java
        JdkSslEngineTest.java
        JdkSslServerContextTest.java
        SniHandlerTest.java
        CipherSuiteConverterTest.java
  - pom.xml
- .gitignore
- LICENSE.txt
- buffer
  - src
    - main
      - java
        io
        netty
        buffer
        PooledDirectByteBuf.java
        UnpooledByteBufAllocator.java
        PooledByteBufAllocator.java
        PooledByteBuf.java
        ReadOnlyUnsafeDirectByteBuf.java
        PoolArena.java
        ByteBufUtil.java
        PooledUnsafeDirectByteBuf.java
        AbstractByteBufAllocator.java
        DefaultByteBufHolder.java
        SwappedByteBuf.java
        ByteBufInputStream.java
        SlicedByteBuf.java
        AdvancedLeakAwareByteBuf.java
        ByteBufAllocator.java
        PoolSubpage.java
        ByteBufHolder.java
        UnreleasableByteBuf.java
        PoolChunkList.java
        AbstractDerivedByteBuf.java
        DuplicatedByteBuf.java
        package-info.java
        ReadOnlyByteBuf.java
        CompositeByteBuf.java
        ByteBuf.java
        AbstractReferenceCountedByteBuf.java
        Unpooled.java
        AbstractByteBuf.java
        UnpooledUnsafeDirectByteBuf.java
        SimpleLeakAwareByteBuf.java
        PooledHeapByteBuf.java
        UnsafeDirectSwappedByteBuf.java
        ByteBufOutputStream.java
        ReadOnlyByteBufferBuf.java
        PoolChunk.java
        UnpooledHeapByteBuf.java
        UnpooledDirectByteBuf.java
        EmptyByteBuf.java
        PoolThreadCache.java
        WrappedByteBuf.java
        ByteBufProcessor.java
    - test
      - java
        io
        netty
        buffer
        LittleEndianDirectByteBufTest.java
        BigEndianHeapByteBufTest.java
        ByteBufDerivationTest.java
        AbstractByteBufTest.java
        UnpooledTest.java
        LittleEndianCompositeByteBufTest.java
        ReadOnlyByteBufferBufTest.java
        ReadOnlyDirectByteBufferBufTest.java
        ByteBufProcessorTest.java
        PooledBigEndianDirectByteBufTest.java
        DuplicateByteBufTest.java
        BigEndianUnsafeDirectByteBufTest.java
        ConsolidationTest.java
        ByteBufUtilTest.java
        LittleEndianHeapByteBufTest.java
        EmptyByteBufTest.java
        ReadOnlyByteBufTest.java
        PooledLittleEndianHeapByteBufTest.java
        ReadOnlyUnsafeDirectByteBufferBufTest.java
        PoolArenaTest.java
        ByteBufStreamTest.java
        SlicedByteBufTest.java
        PooledLittleEndianDirectByteBufTest.java
        LittleEndianUnsafeDirectByteBufTest.java
        BigEndianDirectByteBufTest.java
        UnreleaseableByteBufTest.java
        AbstractCompositeByteBufTest.java
        PooledBigEndianHeapByteBufTest.java
        BigEndianCompositeByteBufTest.java
  - pom.xml

/*
 * Copyright 2014 The Netty Project
 *
 * The Netty Project licenses this file to you under the Apache License,
 * version 2.0 (the "License"); you may not use this file except in compliance
 * with the License. You may obtain a copy of the License at:
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 * License for the specific language governing permissions and limitations
 * under the License.
 */
package io.netty.handler.ssl;

import io.netty.buffer.ByteBufAllocator;
import io.netty.util.internal.PlatformDependent;
import io.netty.util.internal.logging.InternalLogger;
import io.netty.util.internal.logging.InternalLoggerFactory;
import org.apache.tomcat.jni.CertificateVerifier;
import org.apache.tomcat.jni.Pool;
import org.apache.tomcat.jni.SSL;
import org.apache.tomcat.jni.SSLContext;

import javax.net.ssl.SSLEngine;
import javax.net.ssl.SSLException;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509ExtendedTrustManager;
import javax.net.ssl.X509TrustManager;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.Collections;
import java.util.List;
import java.util.Map;
import java.util.concurrent.atomic.AtomicIntegerFieldUpdater;

import static io.netty.util.internal.ObjectUtil.checkNotNull;

public abstract class OpenSslContext extends SslContext {

    private static final InternalLogger logger = InternalLoggerFactory.getInstance(OpenSslContext.class);
    private static final List<String> DEFAULT_CIPHERS;
    private static final AtomicIntegerFieldUpdater<OpenSslContext> DESTROY_UPDATER;

    // TODO: Maybe make configurable ?
    protected static final int VERIFY_DEPTH = 10;

    private final long aprPool;
    @SuppressWarnings("unused")
    private volatile int aprPoolDestroyed;
    private final List<String> ciphers = new ArrayList<String>();
    private final List<String> unmodifiableCiphers = Collections.unmodifiableList(ciphers);
    private final long sessionCacheSize;
    private final long sessionTimeout;
    private final OpenSslApplicationProtocolNegotiator apn;
    /** The OpenSSL SSL_CTX object */
    protected final long ctx;
    private final int mode;

    static {
        List<String> ciphers = new ArrayList<String>();
        // XXX: Make sure to sync this list with JdkSslEngineFactory.
        Collections.addAll(
                ciphers,
                "ECDHE-RSA-AES128-GCM-SHA256",
                "ECDHE-RSA-AES128-SHA",
                "ECDHE-RSA-AES256-SHA",
                "AES128-GCM-SHA256",
                "AES128-SHA",
                "AES256-SHA",
                "DES-CBC3-SHA",
                "RC4-SHA");
        DEFAULT_CIPHERS = Collections.unmodifiableList(ciphers);

        if (logger.isDebugEnabled()) {
            logger.debug("Default cipher suite (OpenSSL): " + ciphers);
        }

        AtomicIntegerFieldUpdater<OpenSslContext> updater =
                PlatformDependent.newAtomicIntegerFieldUpdater(OpenSslContext.class, "aprPoolDestroyed");
        if (updater == null) {
            updater = AtomicIntegerFieldUpdater.newUpdater(OpenSslContext.class, "aprPoolDestroyed");
        }
        DESTROY_UPDATER = updater;
    }

    OpenSslContext(Iterable<String> ciphers, ApplicationProtocolConfig apnCfg, long sessionCacheSize,
                   long sessionTimeout, int mode) throws SSLException {
        this(ciphers, toNegotiator(apnCfg, mode == SSL.SSL_MODE_SERVER), sessionCacheSize, sessionTimeout, mode);
    }

    OpenSslContext(Iterable<String> ciphers, OpenSslApplicationProtocolNegotiator apn, long sessionCacheSize,
                   long sessionTimeout, int mode) throws SSLException {
        OpenSsl.ensureAvailability();

        if (mode != SSL.SSL_MODE_SERVER && mode != SSL.SSL_MODE_CLIENT) {
            throw new IllegalArgumentException("mode most be either SSL.SSL_MODE_SERVER or SSL.SSL_MODE_CLIENT");
        }
        this.mode = mode;

        if (ciphers == null) {
            ciphers = DEFAULT_CIPHERS;
        }

        for (String c: ciphers) {
            if (c == null) {
                break;
            }

            String converted = CipherSuiteConverter.toOpenSsl(c);
            if (converted != null) {
                c = converted;
            }

            this.ciphers.add(c);
        }

        this.apn = checkNotNull(apn, "apn");

        // Allocate a new APR pool.
        aprPool = Pool.create(0);

        // Create a new SSL_CTX and configure it.
        boolean success = false;
        try {
            synchronized (OpenSslContext.class) {
                try {
                    ctx = SSLContext.make(aprPool, SSL.SSL_PROTOCOL_ALL, mode);
                } catch (Exception e) {
                    throw new SSLException("failed to create an SSL_CTX", e);
                }

                SSLContext.setOptions(ctx, SSL.SSL_OP_ALL);
                SSLContext.setOptions(ctx, SSL.SSL_OP_NO_SSLv2);
                SSLContext.setOptions(ctx, SSL.SSL_OP_NO_SSLv3);
                SSLContext.setOptions(ctx, SSL.SSL_OP_CIPHER_SERVER_PREFERENCE);
                SSLContext.setOptions(ctx, SSL.SSL_OP_SINGLE_ECDH_USE);
                SSLContext.setOptions(ctx, SSL.SSL_OP_SINGLE_DH_USE);
                SSLContext.setOptions(ctx, SSL.SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION);

                /* List the ciphers that are permitted to negotiate. */
                try {
                    SSLContext.setCipherSuite(ctx, CipherSuiteConverter.toOpenSsl(this.ciphers));
                } catch (SSLException e) {
                    throw e;
                } catch (Exception e) {
                    throw new SSLException("failed to set cipher suite: " + this.ciphers, e);
                }

                List<String> nextProtoList = apn.protocols();
                /* Set next protocols for next protocol negotiation extension, if specified */
                if (!nextProtoList.isEmpty()) {
                    // Convert the protocol list into a comma-separated string.
                    StringBuilder nextProtocolBuf = new StringBuilder();
                    for (String p: nextProtoList) {
                        nextProtocolBuf.append(p);
                        nextProtocolBuf.append(',');
                    }
                    nextProtocolBuf.setLength(nextProtocolBuf.length() - 1);

                    SSLContext.setNextProtos(ctx, nextProtocolBuf.toString());
                }

                /* Set session cache size, if specified */
                if (sessionCacheSize > 0) {
                    this.sessionCacheSize = sessionCacheSize;
                    SSLContext.setSessionCacheSize(ctx, sessionCacheSize);
                } else {
                    // Get the default session cache size using SSLContext.setSessionCacheSize()
                    this.sessionCacheSize = sessionCacheSize = SSLContext.setSessionCacheSize(ctx, 20480);
                    // Revert the session cache size to the default value.
                    SSLContext.setSessionCacheSize(ctx, sessionCacheSize);
                }

                /* Set session timeout, if specified */
                if (sessionTimeout > 0) {
                    this.sessionTimeout = sessionTimeout;
                    SSLContext.setSessionCacheTimeout(ctx, sessionTimeout);
                } else {
                    // Get the default session timeout using SSLContext.setSessionCacheTimeout()
                    this.sessionTimeout = sessionTimeout = SSLContext.setSessionCacheTimeout(ctx, 300);
                    // Revert the session timeout to the default value.
                    SSLContext.setSessionCacheTimeout(ctx, sessionTimeout);
                }
            }
            success = true;
        } finally {
            if (!success) {
                destroyPools();
            }
        }
    }

    @Override
    public final List<String> cipherSuites() {
        return unmodifiableCiphers;
    }

    @Override
    public final long sessionCacheSize() {
        return sessionCacheSize;
    }

    @Override
    public final long sessionTimeout() {
        return sessionTimeout;
    }

    @Override
    public ApplicationProtocolNegotiator applicationProtocolNegotiator() {
        return apn;
    }

    @Override
    public final boolean isClient() {
        return mode == SSL.SSL_MODE_CLIENT;
    }

    @Override
    public final SSLEngine newEngine(ByteBufAllocator alloc, String peerHost, int peerPort) {
        throw new UnsupportedOperationException();
    }

    /**
     * Returns a new server-side {@link javax.net.ssl.SSLEngine} with the current configuration.
     */
    @Override
    public final SSLEngine newEngine(ByteBufAllocator alloc) {
        List<String> protos = applicationProtocolNegotiator().protocols();
        OpenSslEngineMap engineMap = engineMap();
        final OpenSslEngine engine;
        if (protos.isEmpty()) {
            engine = new OpenSslEngine(ctx, alloc, null, isClient(), sessionContext(), engineMap);
        } else {
            engine = new OpenSslEngine(ctx, alloc, protos.get(protos.size() - 1), isClient(),
                    sessionContext(), engineMap);
        }
        engineMap.add(engine);
        return engine;
    }

    abstract OpenSslEngineMap engineMap();

    /**
     * Returns the {@code SSL_CTX} object of this context.
     */
    public final long context() {
        return ctx;
    }

    /**
     * Returns the stats of this context.
     * @deprecated use {@link #sessionContext#stats()}
     */
    @Deprecated
    public final OpenSslSessionStats stats() {
        return sessionContext().stats();
    }

    @Override
    @SuppressWarnings("FinalizeDeclaration")
    protected final void finalize() throws Throwable {
        super.finalize();
        synchronized (OpenSslContext.class) {
            if (ctx != 0) {
                SSLContext.free(ctx);
            }
        }

        destroyPools();
    }

    /**
     * Sets the SSL session ticket keys of this context.
     * @deprecated use {@link OpenSslSessionContext#setTicketKeys(byte[])}
     */
    @Deprecated
    public final void setTicketKeys(byte[] keys) {
        sessionContext().setTicketKeys(keys);
    }

    @Override
    public abstract OpenSslSessionContext sessionContext();

    protected final void destroyPools() {
        // Guard against multiple destroyPools() calls triggered by construction exception and finalize() later
        if (aprPool != 0 && DESTROY_UPDATER.compareAndSet(this, 0, 1)) {
            Pool.destroy(aprPool);
        }
    }

    protected static X509Certificate[] certificates(byte[][] chain) {
        X509Certificate[] peerCerts = new X509Certificate[chain.length];
        for (int i = 0; i < peerCerts.length; i++) {
            peerCerts[i] = new OpenSslX509Certificate(chain[i]);
        }
        return peerCerts;
    }

    protected static X509TrustManager chooseTrustManager(TrustManager[] managers) {
        for (TrustManager m : managers) {
            if (m instanceof X509TrustManager) {
                return (X509TrustManager) m;
            }
        }
        throw new IllegalStateException("no X509TrustManager found");
    }

    /**
     * Translate a {@link ApplicationProtocolConfig} object to a
     * {@link OpenSslApplicationProtocolNegotiator} object.
     * @param config The configuration which defines the translation
     * @param isServer {@code true} if a server {@code false} otherwise.
     * @return The results of the translation
     */
    static OpenSslApplicationProtocolNegotiator toNegotiator(ApplicationProtocolConfig config,
                                                             boolean isServer) {
        if (config == null) {
            return OpenSslDefaultApplicationProtocolNegotiator.INSTANCE;
        }

        switch (config.protocol()) {
            case NONE:
                return OpenSslDefaultApplicationProtocolNegotiator.INSTANCE;
            case NPN:
                if (isServer) {
                    switch (config.selectedListenerFailureBehavior()) {
                        case CHOOSE_MY_LAST_PROTOCOL:
                            return new OpenSslNpnApplicationProtocolNegotiator(config.supportedProtocols());
                        default:
                            throw new UnsupportedOperationException(
                                    new StringBuilder("OpenSSL provider does not support ")
                                            .append(config.selectedListenerFailureBehavior())
                                            .append(" behavior").toString());
                    }
                } else {
                    throw new UnsupportedOperationException("OpenSSL provider does not support client mode");
                }
            default:
                throw new UnsupportedOperationException(new StringBuilder("OpenSSL provider does not support ")
                        .append(config.protocol()).append(" protocol").toString());
        }
    }

    static OpenSslEngineMap newEngineMap(X509TrustManager trustManager) {
        if (useExtendedTrustManager(trustManager)) {
            return new DefaultOpenSslEngineMap();
        }
        return OpenSslEngineMap.EMPTY;
    }

    static boolean useExtendedTrustManager(X509TrustManager trustManager) {
         return PlatformDependent.javaVersion() >= 7 && trustManager instanceof X509ExtendedTrustManager;
    }

    abstract static class AbstractCertificateVerifier implements CertificateVerifier {
        @Override
        public final boolean verify(long ssl, byte[][] chain, String auth) {
            X509Certificate[] peerCerts = certificates(chain);
            try {
                verify(ssl, peerCerts, auth);
                return true;
            } catch (Exception e) {
                logger.debug("verification of certificate failed", e);
            }
            return false;
        }

        abstract void verify(long ssl, X509Certificate[] peerCerts, String auth) throws Exception;
    }

    private static final class DefaultOpenSslEngineMap implements OpenSslEngineMap {
        private final Map<Long, OpenSslEngine> engines = PlatformDependent.newConcurrentHashMap();
        @Override
        public OpenSslEngine remove(long ssl) {
            return engines.remove(ssl);
        }

        @Override
        public void add(OpenSslEngine engine) {
            engines.put(engine.ssl(), engine);
        }
    }
}