/*
    * $HeadURL: https://svn.apache.org/repos/asf/httpcomponents/oac.hc3x/trunk/src/test/org/apache/commons/httpclient/ssl/SimpleSSLTestProtocolSocketFactory.java $
    * $Revision: 1425331 $
    * $Date: 2012-12-22 18:29:41 +0000 (Sat, 22 Dec 2012) $
    *
    * ====================================================================
    *
    *  Licensed to the Apache Software Foundation (ASF) under one or more
    *  contributor license agreements.  See the NOTICE file distributed with
   *  this work for additional information regarding copyright ownership.
   *  The ASF licenses this file to You under the Apache License, Version 2.0
   *  (the "License"); you may not use this file except in compliance with
   *  the License.  You may obtain a copy of the License at
   *
   *      http://www.apache.org/licenses/LICENSE-2.0
   *
   *  Unless required by applicable law or agreed to in writing, software
   *  distributed under the License is distributed on an "AS IS" BASIS,
   *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   *  See the License for the specific language governing permissions and
   *  limitations under the License.
   * ====================================================================
   *
   * This software consists of voluntary contributions made by many
   * individuals on behalf of the Apache Software Foundation.  For more
   * information on the Apache Software Foundation, please see
   * <http://www.apache.org/>.
   *
   */
  
  package org.apache.commons.httpclient.ssl;
  
  import java.io.IOException;
  import java.io.InputStream;
  import java.net.InetAddress;
  import java.net.Socket;
  import java.net.URL;
  import java.net.UnknownHostException;
  import java.security.KeyStore;
  
  import org.apache.commons.httpclient.ConnectTimeoutException;
  import org.apache.commons.httpclient.params.HttpConnectionParams;
  import org.apache.commons.httpclient.protocol.ControllerThreadSocketFactory;
  import org.apache.commons.httpclient.protocol.SecureProtocolSocketFactory;
  import org.apache.commons.httpclient.server.SimpleSocketFactory;
  import org.apache.commons.logging.Log;
  import org.apache.commons.logging.LogFactory;
  
  import com.sun.net.ssl.SSLContext;
  import com.sun.net.ssl.TrustManager;
  import com.sun.net.ssl.TrustManagerFactory;
  
  public class SimpleSSLTestProtocolSocketFactory implements SecureProtocolSocketFactory {
  
      private static final Log LOG = LogFactory.getLog(SimpleSSLTestProtocolSocketFactory.class);
  
      private static SSLContext SSLCONTEXT = null;
      
      private static SSLContext createSSLContext() {
          try {
              ClassLoader cl = SimpleSocketFactory.class.getClassLoader();
              URL url = cl.getResource("org/apache/commons/httpclient/ssl/simpleserver.keystore");
              KeyStore keystore  = KeyStore.getInstance("jks");
              InputStream is = null;
              try {
              	is = url.openStream();
              	keystore.load(is, "nopassword".toCharArray());
              } finally {
              	if (is != null) is.close();
              }
              TrustManagerFactory tmfactory = TrustManagerFactory.getInstance(
                      TrustManagerFactory.getDefaultAlgorithm());
              tmfactory.init(keystore);
              TrustManager[] trustmanagers = tmfactory.getTrustManagers(); 
              SSLContext sslcontext = SSLContext.getInstance("TLS");
              sslcontext.init(null, trustmanagers, null);
              return sslcontext;
          } catch (Exception ex) {
              // this is not the way a sane exception handling should be done
              // but for our simple HTTP testing framework this will suffice
              LOG.error(ex.getMessage(), ex);
              throw new IllegalStateException(ex.getMessage());
          }
      
      }
      
      private static SSLContext getSSLContext() {
          if (SSLCONTEXT == null) {
              SSLCONTEXT = createSSLContext();
          }
          return SSLCONTEXT;
      }
      
      public SimpleSSLTestProtocolSocketFactory() {
          super();
      }
      
      public Socket createSocket(
          final String host,
         final int port,
         final InetAddress localAddress,
         final int localPort,
         final HttpConnectionParams params
     ) throws IOException, UnknownHostException, ConnectTimeoutException {
         if (params == null) {
             throw new IllegalArgumentException("Parameters may not be null");
         }
         int timeout = params.getConnectionTimeout();
         if (timeout == 0) {
             return createSocket(host, port, localAddress, localPort);
         } else {
             // To be eventually deprecated when migrated to Java 1.4 or above
             return ControllerThreadSocketFactory.createSocket(
                     this, host, port, localAddress, localPort, timeout);
         }
     }
 
     public Socket createSocket(
         String host,
         int port,
         InetAddress clientHost,
         int clientPort)
         throws IOException, UnknownHostException
    {
        return getSSLContext().getSocketFactory().createSocket(
             host,
             port,
             clientHost,
             clientPort
         );
     }
 
     public Socket createSocket(String host, int port)
         throws IOException, UnknownHostException
     {
         return getSSLContext().getSocketFactory().createSocket(
             host,
             port
         );
     }
 
     public Socket createSocket(
         Socket socket,
         String host,
         int port,
         boolean autoClose)
         throws IOException, UnknownHostException
     {
         return getSSLContext().getSocketFactory().createSocket(
             socket,
             host,
             port,
             autoClose
         );
     }
 }