Clarify who is responsible closing the InputStream once SslContext w… (#10983)
Motivation: It was not 100% clear who is responsible calling close() on the InputStream. Modifications: Clarify javadocs. Result: Related to https://github.com/netty/netty/issues/10974 Co-authored-by: Chris Vest <christianvest_hansen@apple.com>
This commit is contained in:
parent
980ea9c351
commit
f25b12077a
@ -65,8 +65,13 @@ public final class SslContextBuilder {
|
||||
/**
|
||||
* Creates a builder for new server-side {@link SslContext}.
|
||||
*
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
*
|
||||
* @see #keyManager(InputStream, InputStream)
|
||||
*/
|
||||
public static SslContextBuilder forServer(InputStream keyCertChainInputStream, InputStream keyInputStream) {
|
||||
@ -112,8 +117,12 @@ public final class SslContextBuilder {
|
||||
/**
|
||||
* Creates a builder for new server-side {@link SslContext}.
|
||||
*
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
* @param keyPassword the password of the {@code keyFile}, or {@code null} if it's not
|
||||
* password-protected
|
||||
* @see #keyManager(InputStream, InputStream, String)
|
||||
@ -238,6 +247,8 @@ public final class SslContextBuilder {
|
||||
/**
|
||||
* Trusted certificates for verifying the remote endpoint's certificate. The input stream should
|
||||
* contain an X.509 certificate collection in PEM format. {@code null} uses the system default.
|
||||
*
|
||||
* The caller is responsible for calling {@link InputStream#close()} after {@link #build()} has been called.
|
||||
*/
|
||||
public SslContextBuilder trustManager(InputStream trustCertCollectionInputStream) {
|
||||
try {
|
||||
@ -300,8 +311,12 @@ public final class SslContextBuilder {
|
||||
* Identifying certificate for this host. {@code keyCertChainInputStream} and {@code keyInputStream} may
|
||||
* be {@code null} for client contexts, which disables mutual authentication.
|
||||
*
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
*/
|
||||
public SslContextBuilder keyManager(InputStream keyCertChainInputStream, InputStream keyInputStream) {
|
||||
return keyManager(keyCertChainInputStream, keyInputStream, null);
|
||||
@ -358,8 +373,12 @@ public final class SslContextBuilder {
|
||||
* Identifying certificate for this host. {@code keyCertChainInputStream} and {@code keyInputStream} may
|
||||
* be {@code null} for client contexts, which disables mutual authentication.
|
||||
*
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format
|
||||
* @param keyCertChainInputStream an input stream for an X.509 certificate chain in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
* @param keyInputStream an input stream for a PKCS#8 private key in PEM format. The caller is
|
||||
* responsible for calling {@link InputStream#close()} after {@link #build()}
|
||||
* has been called.
|
||||
* @param keyPassword the password of the {@code keyInputStream}, or {@code null} if it's not
|
||||
* password-protected
|
||||
*/
|
||||
|
Loading…
Reference in New Issue
Block a user