Example 11 with SelfSignedCertificate
use of io.netty.handler.ssl.util.SelfSignedCertificate in project netty by netty.
the class FileServer method main.
public static void main(String[] args) throws Exception {
// Configure SSL.
final SslContext sslCtx;
if (SSL) {
SelfSignedCertificate ssc = new SelfSignedCertificate();
sslCtx = SslContextBuilder.forServer(ssc.certificate(), ssc.privateKey()).build();
} else {
sslCtx = null;
}
// Configure the server.
EventLoopGroup bossGroup = new NioEventLoopGroup(1);
EventLoopGroup workerGroup = new NioEventLoopGroup();
try {
ServerBootstrap b = new ServerBootstrap();
b.group(bossGroup, workerGroup).channel(NioServerSocketChannel.class).option(ChannelOption.SO_BACKLOG, 100).handler(new LoggingHandler(LogLevel.INFO)).childHandler(new ChannelInitializer<SocketChannel>() {
@Override
public void initChannel(SocketChannel ch) throws Exception {
ChannelPipeline p = ch.pipeline();
if (sslCtx != null) {
p.addLast(sslCtx.newHandler(ch.alloc()));
}
p.addLast(new StringEncoder(CharsetUtil.UTF_8), new LineBasedFrameDecoder(8192), new StringDecoder(CharsetUtil.UTF_8), new ChunkedWriteHandler(), new FileServerHandler());
}
});
// Start the server.
ChannelFuture f = b.bind(PORT).sync();
// Wait until the server socket is closed.
f.channel().closeFuture().sync();
} finally {
// Shut down all event loops to terminate all threads.
bossGroup.shutdownGracefully();
workerGroup.shutdownGracefully();
}
}
Also used :
ChannelFuture(io.netty.channel.ChannelFuture)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
SocketChannel(io.netty.channel.socket.SocketChannel)
LoggingHandler(io.netty.handler.logging.LoggingHandler)
SelfSignedCertificate(io.netty.handler.ssl.util.SelfSignedCertificate)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
LineBasedFrameDecoder(io.netty.handler.codec.LineBasedFrameDecoder)
StringDecoder(io.netty.handler.codec.string.StringDecoder)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
ChannelPipeline(io.netty.channel.ChannelPipeline)
StringEncoder(io.netty.handler.codec.string.StringEncoder)
EventLoopGroup(io.netty.channel.EventLoopGroup)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
ChunkedWriteHandler(io.netty.handler.stream.ChunkedWriteHandler)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
SslContext(io.netty.handler.ssl.SslContext)
Example 12 with SelfSignedCertificate
use of io.netty.handler.ssl.util.SelfSignedCertificate in project netty by netty.
the class DiscardServer method main.
public static void main(String[] args) throws Exception {
// Configure SSL.
final SslContext sslCtx;
if (SSL) {
SelfSignedCertificate ssc = new SelfSignedCertificate();
sslCtx = SslContextBuilder.forServer(ssc.certificate(), ssc.privateKey()).build();
} else {
sslCtx = null;
}
EventLoopGroup bossGroup = new NioEventLoopGroup(1);
EventLoopGroup workerGroup = new NioEventLoopGroup();
try {
ServerBootstrap b = new ServerBootstrap();
b.group(bossGroup, workerGroup).channel(NioServerSocketChannel.class).handler(new LoggingHandler(LogLevel.INFO)).childHandler(new ChannelInitializer<SocketChannel>() {
@Override
public void initChannel(SocketChannel ch) {
ChannelPipeline p = ch.pipeline();
if (sslCtx != null) {
p.addLast(sslCtx.newHandler(ch.alloc()));
}
p.addLast(new DiscardServerHandler());
}
});
// Bind and start to accept incoming connections.
ChannelFuture f = b.bind(PORT).sync();
// Wait until the server socket is closed.
// In this example, this does not happen, but you can do that to gracefully
// shut down your server.
f.channel().closeFuture().sync();
} finally {
workerGroup.shutdownGracefully();
bossGroup.shutdownGracefully();
}
}
Also used :
ChannelFuture(io.netty.channel.ChannelFuture)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
SocketChannel(io.netty.channel.socket.SocketChannel)
LoggingHandler(io.netty.handler.logging.LoggingHandler)
SelfSignedCertificate(io.netty.handler.ssl.util.SelfSignedCertificate)
EventLoopGroup(io.netty.channel.EventLoopGroup)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
ChannelPipeline(io.netty.channel.ChannelPipeline)
SslContext(io.netty.handler.ssl.SslContext)
Example 13 with SelfSignedCertificate
use of io.netty.handler.ssl.util.SelfSignedCertificate in project netty by netty.
the class EchoServer method main.
public static void main(String[] args) throws Exception {
// Configure SSL.
final SslContext sslCtx;
if (SSL) {
SelfSignedCertificate ssc = new SelfSignedCertificate();
sslCtx = SslContextBuilder.forServer(ssc.certificate(), ssc.privateKey()).build();
} else {
sslCtx = null;
}
// Configure the server.
EventLoopGroup bossGroup = new NioEventLoopGroup(1);
EventLoopGroup workerGroup = new NioEventLoopGroup();
try {
ServerBootstrap b = new ServerBootstrap();
b.group(bossGroup, workerGroup).channel(NioServerSocketChannel.class).option(ChannelOption.SO_BACKLOG, 100).handler(new LoggingHandler(LogLevel.INFO)).childHandler(new ChannelInitializer<SocketChannel>() {
@Override
public void initChannel(SocketChannel ch) throws Exception {
ChannelPipeline p = ch.pipeline();
if (sslCtx != null) {
p.addLast(sslCtx.newHandler(ch.alloc()));
}
//p.addLast(new LoggingHandler(LogLevel.INFO));
p.addLast(new EchoServerHandler());
}
});
// Start the server.
ChannelFuture f = b.bind(PORT).sync();
// Wait until the server socket is closed.
f.channel().closeFuture().sync();
} finally {
// Shut down all event loops to terminate all threads.
bossGroup.shutdownGracefully();
workerGroup.shutdownGracefully();
}
}
Also used :
ChannelFuture(io.netty.channel.ChannelFuture)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
SocketChannel(io.netty.channel.socket.SocketChannel)
LoggingHandler(io.netty.handler.logging.LoggingHandler)
SelfSignedCertificate(io.netty.handler.ssl.util.SelfSignedCertificate)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
ChannelPipeline(io.netty.channel.ChannelPipeline)
EventLoopGroup(io.netty.channel.EventLoopGroup)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
SslContext(io.netty.handler.ssl.SslContext)
Example 14 with SelfSignedCertificate
use of io.netty.handler.ssl.util.SelfSignedCertificate in project netty by netty.
the class SslHandlerTest method testRemoval.
@Test(timeout = 30000)
public void testRemoval() throws Exception {
NioEventLoopGroup group = new NioEventLoopGroup();
Channel sc = null;
Channel cc = null;
try {
final Promise<Void> clientPromise = group.next().newPromise();
Bootstrap bootstrap = new Bootstrap().group(group).channel(NioSocketChannel.class).handler(newHandler(SslContextBuilder.forClient().trustManager(InsecureTrustManagerFactory.INSTANCE).build(), clientPromise));
SelfSignedCertificate ssc = new SelfSignedCertificate();
final Promise<Void> serverPromise = group.next().newPromise();
ServerBootstrap serverBootstrap = new ServerBootstrap().group(group, group).channel(NioServerSocketChannel.class).childHandler(newHandler(SslContextBuilder.forServer(ssc.certificate(), ssc.privateKey()).build(), serverPromise));
sc = serverBootstrap.bind(new InetSocketAddress(0)).syncUninterruptibly().channel();
cc = bootstrap.connect(sc.localAddress()).syncUninterruptibly().channel();
serverPromise.syncUninterruptibly();
clientPromise.syncUninterruptibly();
} finally {
if (cc != null) {
cc.close().syncUninterruptibly();
}
if (sc != null) {
sc.close().syncUninterruptibly();
}
group.shutdownGracefully();
}
}
Also used :
NioSocketChannel(io.netty.channel.socket.nio.NioSocketChannel)
SelfSignedCertificate(io.netty.handler.ssl.util.SelfSignedCertificate)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
InetSocketAddress(java.net.InetSocketAddress)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
NioSocketChannel(io.netty.channel.socket.nio.NioSocketChannel)
EmbeddedChannel(io.netty.channel.embedded.EmbeddedChannel)
Channel(io.netty.channel.Channel)
Bootstrap(io.netty.bootstrap.Bootstrap)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
Test(org.junit.Test)
Example 15 with SelfSignedCertificate
use of io.netty.handler.ssl.util.SelfSignedCertificate in project netty by netty.
the class SslHandlerTest method testAlertProducedAndSend.
private void testAlertProducedAndSend(SslProvider provider) throws Exception {
SelfSignedCertificate ssc = new SelfSignedCertificate();
final SslContext sslServerCtx = SslContextBuilder.forServer(ssc.certificate(), ssc.privateKey()).sslProvider(provider).trustManager(new SimpleTrustManagerFactory() {
@Override
protected void engineInit(KeyStore keyStore) {
}
@Override
protected void engineInit(ManagerFactoryParameters managerFactoryParameters) {
}
@Override
protected TrustManager[] engineGetTrustManagers() {
return new TrustManager[] { new X509TrustManager() {
@Override
public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {
// Fail verification which should produce an alert that is send back to the client.
throw new CertificateException();
}
@Override
public void checkServerTrusted(X509Certificate[] x509Certificates, String s) {
// NOOP
}
@Override
public X509Certificate[] getAcceptedIssuers() {
return EmptyArrays.EMPTY_X509_CERTIFICATES;
}
} };
}
}).clientAuth(ClientAuth.REQUIRE).build();
final SslContext sslClientCtx = SslContextBuilder.forClient().trustManager(InsecureTrustManagerFactory.INSTANCE).keyManager(new File(getClass().getResource("test.crt").getFile()), new File(getClass().getResource("test_unencrypted.pem").getFile())).sslProvider(provider).build();
NioEventLoopGroup group = new NioEventLoopGroup();
Channel sc = null;
Channel cc = null;
try {
final Promise<Void> promise = group.next().newPromise();
sc = new ServerBootstrap().group(group).channel(NioServerSocketChannel.class).childHandler(new ChannelInitializer<Channel>() {
@Override
protected void initChannel(Channel ch) throws Exception {
ch.pipeline().addLast(sslServerCtx.newHandler(ch.alloc()));
ch.pipeline().addLast(new ChannelInboundHandlerAdapter() {
@Override
public void exceptionCaught(ChannelHandlerContext ctx, Throwable cause) {
// Just trigger a close
ctx.close();
}
});
}
}).bind(new InetSocketAddress(0)).syncUninterruptibly().channel();
cc = new Bootstrap().group(group).channel(NioSocketChannel.class).handler(new ChannelInitializer<Channel>() {
@Override
protected void initChannel(Channel ch) throws Exception {
ch.pipeline().addLast(sslClientCtx.newHandler(ch.alloc()));
ch.pipeline().addLast(new ChannelInboundHandlerAdapter() {
@Override
public void exceptionCaught(ChannelHandlerContext ctx, Throwable cause) {
if (cause.getCause() instanceof SSLException) {
// We received the alert and so produce an SSLException.
promise.setSuccess(null);
}
}
});
}
}).connect(sc.localAddress()).syncUninterruptibly().channel();
promise.syncUninterruptibly();
} finally {
if (cc != null) {
cc.close().syncUninterruptibly();
}
if (sc != null) {
sc.close().syncUninterruptibly();
}
group.shutdownGracefully();
ReferenceCountUtil.release(sslServerCtx);
ReferenceCountUtil.release(sslClientCtx);
}
}
Also used :
SelfSignedCertificate(io.netty.handler.ssl.util.SelfSignedCertificate)
InetSocketAddress(java.net.InetSocketAddress)
CertificateException(java.security.cert.CertificateException)
ChannelHandlerContext(io.netty.channel.ChannelHandlerContext)
SSLException(javax.net.ssl.SSLException)
Bootstrap(io.netty.bootstrap.Bootstrap)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
NioEventLoopGroup(io.netty.channel.nio.NioEventLoopGroup)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
NioServerSocketChannel(io.netty.channel.socket.nio.NioServerSocketChannel)
NioSocketChannel(io.netty.channel.socket.nio.NioSocketChannel)
EmbeddedChannel(io.netty.channel.embedded.EmbeddedChannel)
Channel(io.netty.channel.Channel)
SimpleTrustManagerFactory(io.netty.handler.ssl.util.SimpleTrustManagerFactory)
KeyStore(java.security.KeyStore)
X509Certificate(java.security.cert.X509Certificate)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
IllegalReferenceCountException(io.netty.util.IllegalReferenceCountException)
CodecException(io.netty.handler.codec.CodecException)
SSLProtocolException(javax.net.ssl.SSLProtocolException)
DecoderException(io.netty.handler.codec.DecoderException)
SSLException(javax.net.ssl.SSLException)
ClosedChannelException(java.nio.channels.ClosedChannelException)
CertificateException(java.security.cert.CertificateException)
ExecutionException(java.util.concurrent.ExecutionException)
UnsupportedMessageTypeException(io.netty.handler.codec.UnsupportedMessageTypeException)
NioSocketChannel(io.netty.channel.socket.nio.NioSocketChannel)
X509TrustManager(javax.net.ssl.X509TrustManager)
File(java.io.File)
ManagerFactoryParameters(javax.net.ssl.ManagerFactoryParameters)
ChannelInboundHandlerAdapter(io.netty.channel.ChannelInboundHandlerAdapter)
Aggregations
SelfSignedCertificate (io.netty.handler.ssl.util.SelfSignedCertificate)63
Test (org.junit.Test)32
ServerBootstrap (io.netty.bootstrap.ServerBootstrap)28
NioEventLoopGroup (io.netty.channel.nio.NioEventLoopGroup)26
EventLoopGroup (io.netty.channel.EventLoopGroup)25
SSLEngine (javax.net.ssl.SSLEngine)25
NioServerSocketChannel (io.netty.channel.socket.nio.NioServerSocketChannel)21
LoggingHandler (io.netty.handler.logging.LoggingHandler)19
SslContext (io.netty.handler.ssl.SslContext)19
Channel (io.netty.channel.Channel)17
ByteBuffer (java.nio.ByteBuffer)11
SSLEngineResult (javax.net.ssl.SSLEngineResult)10
Bootstrap (io.netty.bootstrap.Bootstrap)9
ChannelHandlerContext (io.netty.channel.ChannelHandlerContext)7
NioSocketChannel (io.netty.channel.socket.nio.NioSocketChannel)7
ChannelFuture (io.netty.channel.ChannelFuture)6
ChannelInboundHandlerAdapter (io.netty.channel.ChannelInboundHandlerAdapter)6
EmbeddedChannel (io.netty.channel.embedded.EmbeddedChannel)6
SocketChannel (io.netty.channel.socket.SocketChannel)6
File (java.io.File)6
