com.mapd.common.SockTransportProperties Class Reference

Collaboration diagram for com.mapd.common.SockTransportProperties:

Classes
enum	TransportType

Public Member Functions
	SockTransportProperties (boolean load_trust) throws Exception
	SockTransportProperties (String truststore_name, String truststore_passwd) throws Exception
TTransport	openHttpsClientTransport (String server_host, int port) throws Exception
TTransport	openHttpClientTransport (String server_host, int port) throws org.apache.thrift.TException
TServerTransport	openServerTransport (int port) throws org.apache.thrift.TException
TServerTransport	openServerTransportEncrypted (int port) throws org.apache.thrift.TException
TTransport	openClientTransport (String server_host, int port) throws org.apache.thrift.TException
TTransport	openClientTransportEncrypted (String server_host, int port) throws org.apache.thrift.TException

Static Public Member Functions
static SockTransportProperties	getUnencryptedClient () throws Exception
static SockTransportProperties	getEncryptedClientPermisive () throws Exception
static SockTransportProperties	getEncryptedClientDefaultTrustStore () throws Exception
static SockTransportProperties	getEncryptedClientSpecifiedTrustStore (String trustStoreName, String trustStorePassword) throws Exception
static SockTransportProperties	getEncryptedServer (String keyStoreName, String keyStorePassword) throws Exception
static SockTransportProperties	getUnecryptedServer () throws Exception

Static Package Attributes
static final org.slf4j.Logger	MAPDLOGGER

Private Member Functions
	SockTransportProperties (TransportType tT, String name, String passwd) throws Exception
	SockTransportProperties (TransportType transportType) throws Exception
void	initializeAcceptedIssuers (KeyStore kS) throws Exception

Static Private Member Functions
static X509TrustManager	createInsecureTrustManager ()

Private Attributes
TrustManager[]	trustManagers
TransportType	transportType = null
String	trust_store_name = null
char[]	trust_store_password = null
String	key_store_name = null
char[]	key_store_password = null

Detailed Description

Definition at line 23 of file SockTransportProperties.java.

Constructor & Destructor Documentation

com.mapd.common.SockTransportProperties.SockTransportProperties ( boolean  load_trust ) throws Exception

inline

Definition at line 73 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedClientDefaultTrustStore, and com.mapd.common.SockTransportProperties.TransportType.encryptedClientPermissive.

Referenced by com.mapd.common.SockTransportProperties.getEncryptedClientDefaultTrustStore(), com.mapd.common.SockTransportProperties.getEncryptedClientPermisive(), com.mapd.common.SockTransportProperties.getEncryptedClientSpecifiedTrustStore(), com.mapd.common.SockTransportProperties.getEncryptedServer(), com.mapd.common.SockTransportProperties.getUnecryptedServer(), and com.mapd.common.SockTransportProperties.getUnencryptedClient().

                                                                      {
    this((load_trust == true) ? TransportType.encryptedClientDefaultTrustStore
                              : TransportType.encryptedClientPermissive);
  }

Here is the caller graph for this function:

com.mapd.common.SockTransportProperties.SockTransportProperties ( String  truststore_name, String  truststore_passwd  ) throws Exception

inline

Definition at line 78 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedClientSpecifiedTrustStore.

                           {
    this(TransportType.encryptedClientSpecifiedTrustStore,
            truststore_name,
            truststore_passwd);
  }

com.mapd.common.SockTransportProperties.SockTransportProperties ( TransportType  tT, String  name, String  passwd  ) throws Exception

inlineprivate

Definition at line 85 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedServer, com.mapd.common.SockTransportProperties.initializeAcceptedIssuers(), com.mapd.common.SockTransportProperties.key_store_name, com.mapd.common.SockTransportProperties.key_store_password, Experimental.String, com.mapd.common.SockTransportProperties.transportType, com.mapd.common.SockTransportProperties.trust_store_name, and com.mapd.common.SockTransportProperties.trust_store_password.

                           {
    transportType = tT;
    // Load the supplied file into a java keystore object to ensure it is okay. If
    // the keystore
    // contain client trust information it is used to initialize the TrustManager
    // factory, otherwise it is discarded.
    // The file name is stored in a member variable. When the required
    // open method is called the stored file name is passed to the appropriate
    // TSSLTransportParameters
    // method.
    KeyStore kS = KeyStore.getInstance(KeyStore.getDefaultType());
    char[] store_password = null;
    String store_name = null;
    if (passwd != null && !passwd.isEmpty()) {
      store_password = passwd.toCharArray();
    }
    if (name != null && !name.isEmpty()) {
      store_name = name;
    }
    try {
      java.io.FileInputStream fis = new java.io.FileInputStream(name);
      kS.load(fis, store_password);
    } catch (Exception eX) {
      String err_str = new String("Error loading key/trut store [" + name + "]");
      MAPDLOGGER.error(err_str, eX);
      throw(eX);
    }

    if (transportType == TransportType.encryptedServer) {
      // key_store_set = true;
      key_store_password = store_password;
      key_store_name = store_name;
    } else {
      initializeAcceptedIssuers(kS);
      trust_store_password = store_password;
      trust_store_name = store_name;
      // trust_store_set = true;
    }
  }

Here is the call graph for this function:

com.mapd.common.SockTransportProperties.SockTransportProperties ( TransportType  transportType ) throws Exception

inlineprivate

Definition at line 126 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.initializeAcceptedIssuers(), Experimental.String, and com.mapd.common.SockTransportProperties.transportType.

                                                                                {
    // This constructor will either not bother loading trust data (and then trust
    // all server certs) or load from the java default trust stores.
    this.transportType = transportType;
    switch (transportType) {
      case encryptedClientDefaultTrustStore:
        initializeAcceptedIssuers((KeyStore) null);
        break;
      case encryptedClientPermissive:
        // trust_all_certs = true;
      case unencryptedClient:
        // do nothing
      case unencryptedServer:
        // do nothing
        break;
      default:
        String errStr = new String(
                "Invalid transportType [" + transportType + "] used in constructor");
        RuntimeException rE = new RuntimeException(errStr);
        MAPDLOGGER.error(errStr, rE);
        throw(rE);
    }
  }

Here is the call graph for this function:

Member Function Documentation

static X509TrustManager com.mapd.common.SockTransportProperties.createInsecureTrustManager ( )

inlinestaticprivate

Definition at line 161 of file SockTransportProperties.java.

References Experimental.String.

Referenced by com.mapd.common.SockTransportProperties.openHttpsClientTransport().

                                                               {
    return new X509TrustManager() {
      public X509Certificate[] getAcceptedIssuers() {
        return null;
      }

      public void checkClientTrusted(X509Certificate[] certs, String authType) {}

      public void checkServerTrusted(X509Certificate[] certs, String authType) {}
    };
  }

Here is the caller graph for this function:

static SockTransportProperties com.mapd.common.SockTransportProperties.getEncryptedClientDefaultTrustStore ( ) throws Exception

inlinestatic

Definition at line 41 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedClientDefaultTrustStore, and com.mapd.common.SockTransportProperties.SockTransportProperties().

                           {
    return new SockTransportProperties(TransportType.encryptedClientDefaultTrustStore);
  }

Here is the call graph for this function:

static SockTransportProperties com.mapd.common.SockTransportProperties.getEncryptedClientPermisive ( ) throws Exception

inlinestatic

Definition at line 37 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedClientPermissive, and com.mapd.common.SockTransportProperties.SockTransportProperties().

                                                                                       {
    return new SockTransportProperties(TransportType.encryptedClientPermissive);
  }

Here is the call graph for this function:

static SockTransportProperties com.mapd.common.SockTransportProperties.getEncryptedClientSpecifiedTrustStore ( String  trustStoreName, String  trustStorePassword  ) throws Exception

inlinestatic

Definition at line 46 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedClientSpecifiedTrustStore, and com.mapd.common.SockTransportProperties.SockTransportProperties().

                                                                             {
    return new SockTransportProperties(TransportType.encryptedClientSpecifiedTrustStore,
            trustStoreName,
            trustStorePassword);
  }

Here is the call graph for this function:

static SockTransportProperties com.mapd.common.SockTransportProperties.getEncryptedServer ( String  keyStoreName, String  keyStorePassword  ) throws Exception

inlinestatic

Definition at line 53 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedServer, and com.mapd.common.SockTransportProperties.SockTransportProperties().

                                                                         {
    return new SockTransportProperties(
            TransportType.encryptedServer, keyStoreName, keyStorePassword);
  }

Here is the call graph for this function:

static SockTransportProperties com.mapd.common.SockTransportProperties.getUnecryptedServer ( ) throws Exception

inlinestatic

Definition at line 59 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.SockTransportProperties(), and com.mapd.common.SockTransportProperties.TransportType.unencryptedServer.

                                                                               {
    return new SockTransportProperties(TransportType.unencryptedServer);
  }

Here is the call graph for this function:

static SockTransportProperties com.mapd.common.SockTransportProperties.getUnencryptedClient ( ) throws Exception

inlinestatic

Definition at line 33 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.SockTransportProperties(), and com.mapd.common.SockTransportProperties.TransportType.unencryptedClient.

                                                                                {
    return new SockTransportProperties(TransportType.unencryptedClient);
  }

Here is the call graph for this function:

void com.mapd.common.SockTransportProperties.initializeAcceptedIssuers ( KeyStore  kS ) throws Exception

inlineprivate

Definition at line 150 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.trustManagers.

Referenced by com.mapd.common.SockTransportProperties.SockTransportProperties().

                                                                       {
    TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance("PKIX");
    trustManagerFactory.init(kS);
    trustManagers = trustManagerFactory.getTrustManagers();
    X509TrustManager x509TrustManager = (X509TrustManager) trustManagers[0];
  }

Here is the caller graph for this function:

TTransport com.mapd.common.SockTransportProperties.openClientTransport ( String  server_host, int  port  ) throws org.apache.thrift.TException

inline

Definition at line 252 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedClientSpecifiedTrustStore, com.mapd.common.SockTransportProperties.openClientTransportEncrypted(), and com.mapd.common.SockTransportProperties.transportType.

                                              {
    if (transportType == TransportType.encryptedClientSpecifiedTrustStore) {
      return openClientTransportEncrypted(server_host, port);
    } else {
      return (new TSocket(server_host, port));
    }
  }

Here is the call graph for this function:

TTransport com.mapd.common.SockTransportProperties.openClientTransportEncrypted ( String  server_host, int  port  ) throws org.apache.thrift.TException

inline

Definition at line 261 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedClientPermissive, Experimental.String, com.mapd.common.SockTransportProperties.transportType, com.mapd.common.SockTransportProperties.trust_store_name, and com.mapd.common.SockTransportProperties.trust_store_password.

Referenced by com.mapd.common.SockTransportProperties.openClientTransport().

                                              {
    // Used to set Socket.setSoTimeout ms. 0 == inifinite.
    int socket_so_timeout_ms = 0;
    if (transportType == TransportType.encryptedClientPermissive) {
      return TSSLTransportFactory.getClientSocket(
              server_host, port, socket_so_timeout_ms);
    }
    TSSLTransportFactory.TSSLTransportParameters params =
            new TSSLTransportFactory.TSSLTransportParameters();
    params.setTrustStore(trust_store_name,
            (trust_store_password != null) ? new String(trust_store_password) : null);
    params.requireClientAuth(false);

    return TSSLTransportFactory.getClientSocket(
            server_host, port, socket_so_timeout_ms, params);
  }

Here is the caller graph for this function:

TTransport com.mapd.common.SockTransportProperties.openHttpClientTransport ( String  server_host, int  port  ) throws org.apache.thrift.TException

inline

Definition at line 214 of file SockTransportProperties.java.

References Experimental.String.

                                              {
    String url = "http://" + server_host + ":" + port;
    return (new THttpClient(url));
  }

TTransport com.mapd.common.SockTransportProperties.openHttpsClientTransport ( String  server_host, int  port  ) throws Exception

inline

Definition at line 173 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.createInsecureTrustManager(), com.mapd.common.SockTransportProperties.TransportType.encryptedClientPermissive, Experimental.String, com.mapd.common.SockTransportProperties.transportType, and com.mapd.common.SockTransportProperties.trustManagers.

                           {
    // Simple TrustManager to trust all certs
    TrustManager[] trustAllCerts = {createInsecureTrustManager()};

    TTransport transport = null;
    try {
      // Build a regular apache ClosableHttpClient based on a SSL connection
      // that can be passed to the apache thrift THttpClient constructor.

      SSLContext sc = null;
      sc = SSLContexts.custom().useProtocol("SSL").build();
      SSLConnectionSocketFactory sslConnectionSocketFactory = null;
      if (transportType == TransportType.encryptedClientPermissive) {
        sc.init(null, trustManagers, new java.security.SecureRandom());
        sslConnectionSocketFactory = new SSLConnectionSocketFactory(
                sc, SSLConnectionSocketFactory.BROWSER_COMPATIBLE_HOSTNAME_VERIFIER);
      } else {
        sc.init(null, trustAllCerts, new java.security.SecureRandom());
        sslConnectionSocketFactory = new SSLConnectionSocketFactory(
                sc, SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
      }
      CloseableHttpClient closeableHttpClient =
              HttpClients.custom()
                      .setSSLSocketFactory(sslConnectionSocketFactory)
                      .build();
      transport =
              new THttpClient("https://" + server_host + ":" + port, closeableHttpClient);
    } catch (Exception ex) {
      String err_str = new String("Exception:" + ex.getClass().getCanonicalName()
              + " thown. Unable to create Secure socket for the HTTPS connection");
      MAPDLOGGER.error(err_str, ex);
      throw ex;
    }

    return transport;
  }

Here is the call graph for this function:

TServerTransport com.mapd.common.SockTransportProperties.openServerTransport ( int  port ) throws org.apache.thrift.TException

inline

Definition at line 223 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.TransportType.encryptedServer, com.mapd.common.SockTransportProperties.openServerTransportEncrypted(), and com.mapd.common.SockTransportProperties.transportType.

                                              {
    if (transportType == TransportType.encryptedServer) {
      return openServerTransportEncrypted(port);
    } else {
      return (new TServerSocket(port));
    }
  }

Here is the call graph for this function:

TServerTransport com.mapd.common.SockTransportProperties.openServerTransportEncrypted ( int  port ) throws org.apache.thrift.TException

inline

Definition at line 232 of file SockTransportProperties.java.

References com.mapd.common.SockTransportProperties.key_store_name, com.mapd.common.SockTransportProperties.key_store_password, and Experimental.String.

Referenced by com.mapd.common.SockTransportProperties.openServerTransport().

                                              {
    // Used to set Socket.setSoTimeout ms. 0 == inifinite.
    int socket_so_timeout_ms = 0;
    TSSLTransportFactory.TSSLTransportParameters params =
            new TSSLTransportFactory.TSSLTransportParameters();
    params.setKeyStore(key_store_name,
            (key_store_password != null) ? new String(key_store_password) : null);
    params.requireClientAuth(false);

    // return TSSLTransportFactory.getClientSocket(server_host, port,
    // socket_so_timeout_ms, params);
    TServerTransport t = TSSLTransportFactory.getServerSocket(
            port, socket_so_timeout_ms, null, params);
    return t;
  }

Here is the caller graph for this function:

Member Data Documentation

String com.mapd.common.SockTransportProperties.key_store_name = null

private

Definition at line 295 of file SockTransportProperties.java.

Referenced by com.mapd.common.SockTransportProperties.openServerTransportEncrypted(), and com.mapd.common.SockTransportProperties.SockTransportProperties().

char [] com.mapd.common.SockTransportProperties.key_store_password = null

private

Definition at line 296 of file SockTransportProperties.java.

Referenced by com.mapd.common.SockTransportProperties.openServerTransportEncrypted(), and com.mapd.common.SockTransportProperties.SockTransportProperties().

final org.slf4j.Logger com.mapd.common.SockTransportProperties.MAPDLOGGER

staticpackage

Initial value:

=
          LoggerFactory.getLogger(SockTransportProperties.class)

Definition at line 24 of file SockTransportProperties.java.

TransportType com.mapd.common.SockTransportProperties.transportType = null

private

Definition at line 292 of file SockTransportProperties.java.

Referenced by com.mapd.common.SockTransportProperties.openClientTransport(), com.mapd.common.SockTransportProperties.openClientTransportEncrypted(), com.mapd.common.SockTransportProperties.openHttpsClientTransport(), com.mapd.common.SockTransportProperties.openServerTransport(), and com.mapd.common.SockTransportProperties.SockTransportProperties().

String com.mapd.common.SockTransportProperties.trust_store_name = null

private

Definition at line 293 of file SockTransportProperties.java.

Referenced by com.mapd.common.SockTransportProperties.openClientTransportEncrypted(), and com.mapd.common.SockTransportProperties.SockTransportProperties().

char [] com.mapd.common.SockTransportProperties.trust_store_password = null

private

Definition at line 294 of file SockTransportProperties.java.

Referenced by com.mapd.common.SockTransportProperties.openClientTransportEncrypted(), and com.mapd.common.SockTransportProperties.SockTransportProperties().

TrustManager [] com.mapd.common.SockTransportProperties.trustManagers

private

Definition at line 279 of file SockTransportProperties.java.

Referenced by com.mapd.common.SockTransportProperties.initializeAcceptedIssuers(), and com.mapd.common.SockTransportProperties.openHttpsClientTransport().

---

The documentation for this class was generated from the following file:

• /home/jenkins-slave/workspace/core-os-doxygen/java/mapdcommon/src/main/java/com/mapd/common/SockTransportProperties.java