Package org.snmp4j.transport.tls
package org.snmp4j.transport.tls
-
ClassDescriptionThe
DefaultTlsTmSecurityCallback
resolves thetmSecurityName
for incoming requests through a mapping table based on the peer certificates, resolves the local certificate alias through a mapping table based on the target address and accepts peer certificates based on a list of trusted peer and issuer certificates.ThePropertiesTlsTmSecurityCallback
resolves thetmSecurityName
for incoming requests by using the (system) propertiesorg.snmp4j.arg.securityName
org.snmp4j.arg.tlsLocalID
org.snmp4j.arg.tlsTrustCA
org.snmp4j.arg.tlsPeerID
TheSecurityNameMapping
maps a X509 certificate identified by its fingerprint to a security name based on a mapping defined bySecurityNameMapping.CertMappingType
.TLSTM trust manager that implements the X509ExtendedTrustManager interface.X509ExtendedTrustManager factory for TLSTM.TlsTmSecurityCallback<C extends Certificate>TheTlsTmSecurityCallback
is implemented by the SnmpTlsMib (of SNMP4J-Agent), for example, to resolve (lookup) thetmSecurityName
for incoming requests.TlsTmSecurityCallbackProxy<C extends Certificate>TheTlsTmSecurityCallbackProxy
class implements aTlsTmSecurityCallback
by using an internal reference to anotherTlsTmSecurityCallback
instance.TheTLSTMUtil
class implements common functions forTLSTM
.TlsTransportMappingConfig<C extends Certificate>TheTlsTransportMappingConfig
interface provides means to plug in aTlsTmSecurityCallback
into theTransportMapping
implementation and to control other TLS specific settings.TheTlsTrustManager
verifies the trust for clients and servers connected based on the certificates, and fingerprints provided.TheTlsCertifiedTarget
extends theCertifiedTarget
class by means to provide aTlsTmSecurityCallback
reference directly with the target as needed according to RFC 6353 ยง5.3.1 when establishing a connection based on the SNMP-TARGET-MIB as client.TheTlsTransportMappingConfig
interface provides means to plug in aTlsTmSecurityCallback
into aTransportMapping
that usesX509Certificate
s for TLS.