ExportControlled

java.lang.Object
- com.mysql.cj.protocol.ExportControlled

```
public class ExportControlled
extends java.lang.Object
```
Holds functionality that falls under export-control regulations.

Nested Class Summary

Nested Classes
Modifier and Type	Class and Description
`private static class`	`ExportControlled.KeyStoreConf`
`static class`	`ExportControlled.X509TrustManagerWrapper` Implementation of X509TrustManager wrapping JVM X509TrustManagers to add expiration and identity check

Field Summary

Fields
Modifier and Type	Field and Description
`private static java.util.List<java.lang.String>`	`ALLOWED_CIPHERS`
`private static java.lang.String[]`	`KNOWN_TLS_PROTOCOLS`
`private static java.util.List<java.lang.String>`	`RESTRICTED_CIPHER_SUBSTR`
`private static java.lang.String`	`TLS_SETTINGS_RESOURCE`
`private static java.lang.String`	`TLSv1`
`private static java.lang.String`	`TLSv1_1`
`private static java.lang.String`	`TLSv1_2`
`private static java.lang.String`	`TLSv1_3`
`private static java.lang.String[]`	`VALID_TLS_PROTOCOLS`

Constructor Summary

Constructors
Modifier Constructor and Description

private ExportControlled()

Constructors
Modifier	Constructor and Description
`private`	`ExportControlled()`

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method and Description
`static void`	`checkValidProtocols(java.util.List<java.lang.String> protocols)`
`static java.security.interfaces.RSAPrivateKey`	`decodeRSAPrivateKey(java.lang.String key)`
`static java.security.interfaces.RSAPublicKey`	`decodeRSAPublicKey(java.lang.String key)`
`static boolean`	`enabled()`
`static byte[]`	`encryptWithRSAPublicKey(byte[] source, java.security.interfaces.RSAPublicKey key)`
`static byte[]`	`encryptWithRSAPublicKey(byte[] source, java.security.interfaces.RSAPublicKey key, java.lang.String transformation)`
`private static java.lang.String[]`	`getAllowedCiphers(PropertySet pset, java.util.List<java.lang.String> socketCipherSuites)`
`private static java.lang.String[]`	`getAllowedProtocols(PropertySet pset, ServerVersion serverVersion, java.lang.String[] socketProtocols)`
`private static ExportControlled.KeyStoreConf`	`getKeyStoreConf(PropertySet propertySet)`
`static javax.net.ssl.SSLContext`	`getSSLContext(ExportControlled.KeyStoreConf clientCertificateKeyStore, ExportControlled.KeyStoreConf trustCertificateKeyStore, boolean fallbackToDefaultTrustStore, boolean verifyServerCert, java.lang.String hostName, ExceptionInterceptor exceptionInterceptor)` Configure the `SSLContext` based on the supplier property set.
`private static ExportControlled.KeyStoreConf`	`getTrustStoreConf(PropertySet propertySet, boolean required)`
`private static java.util.List<java.lang.String>`	`getValidProtocols(java.lang.String[] protocols)`
`static boolean`	`isSSLEstablished(java.net.Socket socket)`
`static java.net.Socket`	`performTlsHandshake(java.net.Socket rawSocket, SocketConnection socketConnection, ServerVersion serverVersion, Log log)` Converts the socket being used in the given SocketConnection to an SSLSocket by performing the SSL/TLS handshake.
`static byte[]`	`sign(byte[] source, java.security.interfaces.RSAPrivateKey privateKey)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

TLSv1

private static final java.lang.String TLSv1

See Also:: Constant Field Values

TLSv1_1

private static final java.lang.String TLSv1_1

See Also:: Constant Field Values

TLSv1_2

private static final java.lang.String TLSv1_2

See Also:: Constant Field Values

TLSv1_3

private static final java.lang.String TLSv1_3

See Also:: Constant Field Values

KNOWN_TLS_PROTOCOLS

private static final java.lang.String[] KNOWN_TLS_PROTOCOLS

VALID_TLS_PROTOCOLS

private static final java.lang.String[] VALID_TLS_PROTOCOLS

TLS_SETTINGS_RESOURCE

private static final java.lang.String TLS_SETTINGS_RESOURCE

See Also:: Constant Field Values

ALLOWED_CIPHERS

private static final java.util.List<java.lang.String> ALLOWED_CIPHERS

RESTRICTED_CIPHER_SUBSTR

private static final java.util.List<java.lang.String> RESTRICTED_CIPHER_SUBSTR

Constructor Detail
- ExportControlled
```
private ExportControlled()
```

Method Detail

enabled
```
public static boolean enabled()
```

getAllowedCiphers

private static java.lang.String[] getAllowedCiphers(PropertySet pset,
                                                    java.util.List<java.lang.String> socketCipherSuites)

getAllowedProtocols

private static java.lang.String[] getAllowedProtocols(PropertySet pset,
                                                      ServerVersion serverVersion,
                                                      java.lang.String[] socketProtocols)

getValidProtocols

private static java.util.List<java.lang.String> getValidProtocols(java.lang.String[] protocols)

checkValidProtocols

public static void checkValidProtocols(java.util.List<java.lang.String> protocols)

getTrustStoreConf

private static ExportControlled.KeyStoreConf getTrustStoreConf(PropertySet propertySet,
                                                               boolean required)

getKeyStoreConf

private static ExportControlled.KeyStoreConf getKeyStoreConf(PropertySet propertySet)

performTlsHandshake

public static java.net.Socket performTlsHandshake(java.net.Socket rawSocket,
                                                  SocketConnection socketConnection,
                                                  ServerVersion serverVersion,
                                                  Log log)
                                           throws java.io.IOException,
                                                  SSLParamsException,
                                                  FeatureNotAvailableException

Converts the socket being used in the given SocketConnection to an SSLSocket by performing the SSL/TLS handshake.

Parameters:: rawSocket - original non-SSL socket; socketConnection - the Protocol instance containing the socket to convert to an SSLSocket.; serverVersion - ServerVersion object; log - Logger
Returns:: SSL socket
Throws:: java.io.IOException - if i/o exception occurs; SSLParamsException - if the handshake fails, or if this distribution of Connector/J doesn't contain the SSL crypto hooks needed to perform the handshake.; FeatureNotAvailableException - if TLS is not supported

getSSLContext

public static javax.net.ssl.SSLContext getSSLContext(ExportControlled.KeyStoreConf clientCertificateKeyStore,
                                                     ExportControlled.KeyStoreConf trustCertificateKeyStore,
                                                     boolean fallbackToDefaultTrustStore,
                                                     boolean verifyServerCert,
                                                     java.lang.String hostName,
                                                     ExceptionInterceptor exceptionInterceptor)
                                              throws SSLParamsException

Configure the SSLContext based on the supplier property set.

Parameters:: clientCertificateKeyStore - clientCertificateKeyStore; trustCertificateKeyStore - trustCertificateKeyStore; fallbackToDefaultTrustStore - fallbackToDefaultTrustStore; verifyServerCert - verifyServerCert; hostName - host name; exceptionInterceptor - exception interceptor
Returns:: SSLContext
Throws:: SSLParamsException - if an error occurs

isSSLEstablished

public static boolean isSSLEstablished(java.net.Socket socket)

decodeRSAPublicKey

public static java.security.interfaces.RSAPublicKey decodeRSAPublicKey(java.lang.String key)
                                                                throws RSAException

Throws:: RSAException

encryptWithRSAPublicKey

public static byte[] encryptWithRSAPublicKey(byte[] source,
                                             java.security.interfaces.RSAPublicKey key,
                                             java.lang.String transformation)
                                      throws RSAException

Throws:: RSAException

encryptWithRSAPublicKey

public static byte[] encryptWithRSAPublicKey(byte[] source,
                                             java.security.interfaces.RSAPublicKey key)
                                      throws RSAException

Throws:: RSAException

decodeRSAPrivateKey

public static java.security.interfaces.RSAPrivateKey decodeRSAPrivateKey(java.lang.String key)
                                                                  throws RSAException

Throws:: RSAException

sign

public static byte[] sign(byte[] source,
                          java.security.interfaces.RSAPrivateKey privateKey)
                   throws RSAException

Throws:: RSAException

Class ExportControlled

Nested Class Summary

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

TLSv1

TLSv1_1

TLSv1_2

TLSv1_3

KNOWN_TLS_PROTOCOLS

VALID_TLS_PROTOCOLS

TLS_SETTINGS_RESOURCE

ALLOWED_CIPHERS

RESTRICTED_CIPHER_SUBSTR

Constructor Detail

ExportControlled

Method Detail

enabled

getAllowedCiphers

getAllowedProtocols

getValidProtocols

checkValidProtocols

getTrustStoreConf

getKeyStoreConf

performTlsHandshake

getSSLContext

isSSLEstablished

decodeRSAPublicKey

encryptWithRSAPublicKey

encryptWithRSAPublicKey

decodeRSAPrivateKey

sign