2 * Copyright (c) 2024 PANTHEON.tech, s.r.o. and others. All rights reserved.
4 * This program and the accompanying materials are made available under the
5 * terms of the Eclipse Public License v1.0 which accompanies this distribution,
6 * and is available at http://www.eclipse.org/legal/epl-v10.html
8 package org.opendaylight.netconf.client.mdsal.impl;
10 import static java.util.Objects.requireNonNull;
12 import io.netty.handler.ssl.DelegatingSslContext;
13 import io.netty.handler.ssl.SslContext;
14 import java.util.Arrays;
16 import javax.net.ssl.SSLEngine;
18 final class FilteredSslContext extends DelegatingSslContext {
19 private final Set<String> excludedVersions;
21 FilteredSslContext(final SslContext ctx, final Set<String> excludedVersions) {
23 this.excludedVersions = requireNonNull(excludedVersions);
27 protected void initEngine(final SSLEngine engine) {
28 engine.setEnabledProtocols(Arrays.stream(engine.getSupportedProtocols())
29 .filter(protocol -> !excludedVersions.contains(protocol))
30 .toArray(String[]::new));
31 engine.setEnabledCipherSuites(engine.getSupportedCipherSuites());
32 engine.setEnableSessionCreation(true);