[Date Prev][Date Next] [Chronological] [Thread] [Top]

startTLS code added to jldap

To: <openldap-devel@OpenLDAP.org>
Subject: startTLS code added to jldap
From: "Steve Sonntag" <vtag@novell.com>
Date: Thu, 21 Feb 2002 15:02:30 -0700
Content-disposition: inline

I have checked in code that implements startTLS/stopTLS in the jldap
project.

I have also changed the factory interfaces to conform to the IETF draft
17.
i.e. makeSocket->createSocket.

It should be noted that the current implementations of JSSE that we
have
tried (Sun and IBM) do not allow stopTLS to work.  For Sun's
implementation
the original socket is unusable after closing the TLS socket (even
though
autoclose is false).  IBM's JSSE hangs when you close the TLS Socket.

A new socket factory LDAPTLSSocketFactory has been introduced which
must be implemented and provided to LDAPConnection if using startTLS.
A JSSE implementation of this factory is provided.

The get/set Input/Output stream methods have been removed from
LDAPConnection.  I can find no practical use for these and at any rate
can find no way to safely implement them.

Questions and comments are welcome.

-Steve

------------------------
Steven Sonntag
Novell, Inc., a leading provider of Net business solutions
http://www.novell.com

Prev by Date: Re: normalised UTF-8, should it be "decomposed", or "composed"?
Next by Date: slapd.conf questions
Index(es):
- Chronological
- Thread