Example 56 with ChannelHandler
use of io.netty.channel.ChannelHandler in project grpc-java by grpc.
the class ProtocolNegotiatorsTest method clientTlsHandler_firesNegotiation.
@Test
public void clientTlsHandler_firesNegotiation() throws Exception {
SelfSignedCertificate cert = new SelfSignedCertificate("authority");
SslContext clientSslContext = GrpcSslContexts.configure(SslContextBuilder.forClient().trustManager(cert.cert())).build();
SslContext serverSslContext = GrpcSslContexts.configure(SslContextBuilder.forServer(cert.key(), cert.cert())).build();
FakeGrpcHttp2ConnectionHandler gh = FakeGrpcHttp2ConnectionHandler.newHandler();
ClientTlsProtocolNegotiator pn = new ClientTlsProtocolNegotiator(clientSslContext, null);
WriteBufferingAndExceptionHandler clientWbaeh = new WriteBufferingAndExceptionHandler(pn.newHandler(gh));
SocketAddress addr = new LocalAddress("addr");
ChannelHandler sh = ProtocolNegotiators.serverTls(serverSslContext).newHandler(FakeGrpcHttp2ConnectionHandler.noopHandler());
WriteBufferingAndExceptionHandler serverWbaeh = new WriteBufferingAndExceptionHandler(sh);
Channel s = new ServerBootstrap().childHandler(serverWbaeh).group(group).channel(LocalServerChannel.class).bind(addr).sync().channel();
Channel c = new Bootstrap().handler(clientWbaeh).channel(LocalChannel.class).group(group).register().sync().channel();
ChannelFuture write = c.writeAndFlush(NettyClientHandler.NOOP_MESSAGE);
c.connect(addr).sync();
write.sync();
boolean completed = gh.negotiated.await(TIMEOUT_SECONDS, TimeUnit.SECONDS);
if (!completed) {
assertTrue("failed to negotiated", write.await(TIMEOUT_SECONDS, TimeUnit.SECONDS));
// sync should fail if we are in this block.
write.sync();
throw new AssertionError("neither wrote nor negotiated");
}
c.close();
s.close();
pn.close();
assertThat(gh.securityInfo).isNotNull();
assertThat(gh.securityInfo.tls).isNotNull();
assertThat(gh.attrs.get(GrpcAttributes.ATTR_SECURITY_LEVEL)).isEqualTo(SecurityLevel.PRIVACY_AND_INTEGRITY);
assertThat(gh.attrs.get(Grpc.TRANSPORT_ATTR_SSL_SESSION)).isInstanceOf(SSLSession.class);
// This is not part of the ClientTls negotiation, but shows that the negotiation event happens
// in the right order.
assertThat(gh.attrs.get(Grpc.TRANSPORT_ATTR_REMOTE_ADDR)).isEqualTo(addr);
}
Also used :
ChannelFuture(io.netty.channel.ChannelFuture)
ClientTlsProtocolNegotiator(io.grpc.netty.ProtocolNegotiators.ClientTlsProtocolNegotiator)
SelfSignedCertificate(io.netty.handler.ssl.util.SelfSignedCertificate)
LocalAddress(io.netty.channel.local.LocalAddress)
LocalServerChannel(io.netty.channel.local.LocalServerChannel)
Channel(io.netty.channel.Channel)
LocalChannel(io.netty.channel.local.LocalChannel)
EmbeddedChannel(io.netty.channel.embedded.EmbeddedChannel)
ChannelHandler(io.netty.channel.ChannelHandler)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
LocalServerChannel(io.netty.channel.local.LocalServerChannel)
Bootstrap(io.netty.bootstrap.Bootstrap)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
SocketAddress(java.net.SocketAddress)
InetSocketAddress(java.net.InetSocketAddress)
SslContext(io.netty.handler.ssl.SslContext)
Test(org.junit.Test)
Example 57 with ChannelHandler
use of io.netty.channel.ChannelHandler in project grpc-java by grpc.
the class ProtocolNegotiatorsTest method tlsHandler_handlerAddedAddsSslHandler.
@Test
public void tlsHandler_handlerAddedAddsSslHandler() throws Exception {
ChannelHandler handler = new ServerTlsHandler(grpcHandler, sslContext, null);
pipeline.addLast(handler);
assertTrue(pipeline.first() instanceof SslHandler);
}
Also used :
ServerTlsHandler(io.grpc.netty.ProtocolNegotiators.ServerTlsHandler)
ChannelHandler(io.netty.channel.ChannelHandler)
SslHandler(io.netty.handler.ssl.SslHandler)
Test(org.junit.Test)
Example 58 with ChannelHandler
use of io.netty.channel.ChannelHandler in project grpc-java by grpc.
the class ProtocolNegotiatorsTest method clientTlsHandler_userEventTriggeredSslEvent_unsupportedProtocol.
@Test
public void clientTlsHandler_userEventTriggeredSslEvent_unsupportedProtocol() throws Exception {
SslHandler goodSslHandler = new SslHandler(engine, false) {
@Override
public String applicationProtocol() {
return "badproto";
}
};
DefaultEventLoopGroup elg = new DefaultEventLoopGroup(1);
ClientTlsHandler handler = new ClientTlsHandler(grpcHandler, sslContext, "authority", elg, noopLogger);
pipeline.addLast(handler);
final AtomicReference<Throwable> error = new AtomicReference<>();
ChannelHandler errorCapture = new ChannelInboundHandlerAdapter() {
@Override
public void exceptionCaught(ChannelHandlerContext ctx, Throwable cause) {
error.set(cause);
}
};
pipeline.addLast(errorCapture);
pipeline.replace(SslHandler.class, null, goodSslHandler);
pipeline.fireUserEventTriggered(ProtocolNegotiationEvent.DEFAULT);
channelHandlerCtx = pipeline.context(handler);
Object sslEvent = SslHandshakeCompletionEvent.SUCCESS;
pipeline.fireUserEventTriggered(sslEvent);
// Bad protocol was specified, so there should be an error, (normally handled by WBAEH)
assertThat(error.get()).hasMessageThat().contains("Unable to find compatible protocol");
ChannelHandlerContext grpcHandlerCtx = pipeline.context(grpcHandler);
assertNull(grpcHandlerCtx);
}
Also used :
ClientTlsHandler(io.grpc.netty.ProtocolNegotiators.ClientTlsHandler)
AtomicReference(java.util.concurrent.atomic.AtomicReference)
ChannelHandlerContext(io.netty.channel.ChannelHandlerContext)
ChannelHandler(io.netty.channel.ChannelHandler)
DefaultEventLoopGroup(io.netty.channel.DefaultEventLoopGroup)
SslHandler(io.netty.handler.ssl.SslHandler)
ChannelInboundHandlerAdapter(io.netty.channel.ChannelInboundHandlerAdapter)
Test(org.junit.Test)
Example 59 with ChannelHandler
use of io.netty.channel.ChannelHandler in project grpc-java by grpc.
the class ProtocolNegotiatorsTest method engineLog.
@Test
public void engineLog() {
ChannelHandler handler = new ServerTlsHandler(grpcHandler, sslContext, null);
pipeline.addLast(handler);
channelHandlerCtx = pipeline.context(handler);
Logger logger = Logger.getLogger(ProtocolNegotiators.class.getName());
Filter oldFilter = logger.getFilter();
try {
logger.setFilter(new Filter() {
@Override
public boolean isLoggable(LogRecord record) {
// We still want to the log method to be exercised, just not printed to stderr.
return false;
}
});
ProtocolNegotiators.logSslEngineDetails(Level.INFO, channelHandlerCtx, "message", new Exception("bad"));
} finally {
logger.setFilter(oldFilter);
}
}
Also used :
Filter(java.util.logging.Filter)
SupportedCipherSuiteFilter(io.netty.handler.ssl.SupportedCipherSuiteFilter)
LogRecord(java.util.logging.LogRecord)
ServerTlsHandler(io.grpc.netty.ProtocolNegotiators.ServerTlsHandler)
ChannelHandler(io.netty.channel.ChannelHandler)
ChannelLogger(io.grpc.ChannelLogger)
NoopChannelLogger(io.grpc.internal.TestUtils.NoopChannelLogger)
Logger(java.util.logging.Logger)
SSLHandshakeException(javax.net.ssl.SSLHandshakeException)
SSLException(javax.net.ssl.SSLException)
StatusRuntimeException(io.grpc.StatusRuntimeException)
StatusException(io.grpc.StatusException)
ExpectedException(org.junit.rules.ExpectedException)
ProxyConnectException(io.netty.handler.proxy.ProxyConnectException)
Test(org.junit.Test)
Example 60 with ChannelHandler
use of io.netty.channel.ChannelHandler in project grpc-java by grpc.
the class ProtocolNegotiatorsTest method waitUntilActiveHandler_firesNegotiation.
@Test
public void waitUntilActiveHandler_firesNegotiation() throws Exception {
EventLoopGroup elg = new DefaultEventLoopGroup(1);
SocketAddress addr = new LocalAddress("addr");
final AtomicReference<Object> event = new AtomicReference<>();
ChannelHandler next = new ChannelInboundHandlerAdapter() {
@Override
public void userEventTriggered(ChannelHandlerContext ctx, Object evt) {
event.set(evt);
ctx.close();
}
};
Channel s = new ServerBootstrap().childHandler(new ChannelInboundHandlerAdapter()).group(elg).channel(LocalServerChannel.class).bind(addr).sync().channel();
Channel c = new Bootstrap().handler(new WaitUntilActiveHandler(next, noopLogger)).channel(LocalChannel.class).group(group).connect(addr).sync().channel();
c.pipeline().fireUserEventTriggered(ProtocolNegotiationEvent.DEFAULT);
SocketAddress localAddr = c.localAddress();
ProtocolNegotiationEvent expectedEvent = ProtocolNegotiationEvent.DEFAULT.withAttributes(Attributes.newBuilder().set(Grpc.TRANSPORT_ATTR_LOCAL_ADDR, localAddr).set(Grpc.TRANSPORT_ATTR_REMOTE_ADDR, addr).set(GrpcAttributes.ATTR_SECURITY_LEVEL, SecurityLevel.NONE).build());
c.closeFuture().sync();
assertThat(event.get()).isInstanceOf(ProtocolNegotiationEvent.class);
ProtocolNegotiationEvent actual = (ProtocolNegotiationEvent) event.get();
assertThat(actual).isEqualTo(expectedEvent);
s.close();
elg.shutdownGracefully();
}
Also used :
LocalAddress(io.netty.channel.local.LocalAddress)
LocalServerChannel(io.netty.channel.local.LocalServerChannel)
Channel(io.netty.channel.Channel)
LocalChannel(io.netty.channel.local.LocalChannel)
EmbeddedChannel(io.netty.channel.embedded.EmbeddedChannel)
AtomicReference(java.util.concurrent.atomic.AtomicReference)
ChannelHandlerContext(io.netty.channel.ChannelHandlerContext)
ChannelHandler(io.netty.channel.ChannelHandler)
WaitUntilActiveHandler(io.grpc.netty.ProtocolNegotiators.WaitUntilActiveHandler)
DefaultEventLoopGroup(io.netty.channel.DefaultEventLoopGroup)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
DefaultEventLoopGroup(io.netty.channel.DefaultEventLoopGroup)
EventLoopGroup(io.netty.channel.EventLoopGroup)
LocalServerChannel(io.netty.channel.local.LocalServerChannel)
Bootstrap(io.netty.bootstrap.Bootstrap)
ServerBootstrap(io.netty.bootstrap.ServerBootstrap)
SocketAddress(java.net.SocketAddress)
InetSocketAddress(java.net.InetSocketAddress)
ChannelInboundHandlerAdapter(io.netty.channel.ChannelInboundHandlerAdapter)
Test(org.junit.Test)
Aggregations
ChannelHandler (io.netty.channel.ChannelHandler)186
Test (org.junit.Test)88
ChannelHandlerContext (io.netty.channel.ChannelHandlerContext)44
Channel (io.netty.channel.Channel)26
ChannelPipeline (io.netty.channel.ChannelPipeline)25
SslHandler (io.netty.handler.ssl.SslHandler)25
EmbeddedChannel (io.netty.channel.embedded.EmbeddedChannel)22
FilterChainMatchingHandler (io.grpc.xds.FilterChainMatchingProtocolNegotiators.FilterChainMatchingHandler)20
ChannelFuture (io.netty.channel.ChannelFuture)20
ChannelInboundHandlerAdapter (io.netty.channel.ChannelInboundHandlerAdapter)20
FilterChainSelector (io.grpc.xds.FilterChainMatchingProtocolNegotiators.FilterChainMatchingHandler.FilterChainSelector)19
ChannelHandlerAdapter (io.netty.channel.ChannelHandlerAdapter)18
DownstreamTlsContext (io.grpc.xds.EnvoyServerProtoData.DownstreamTlsContext)17
FilterChain (io.grpc.xds.EnvoyServerProtoData.FilterChain)17
InetSocketAddress (java.net.InetSocketAddress)16
Test (org.junit.jupiter.api.Test)16
LineBasedFrameDecoder (io.netty.handler.codec.LineBasedFrameDecoder)12
AtomicReference (java.util.concurrent.atomic.AtomicReference)12
Bootstrap (io.netty.bootstrap.Bootstrap)11
ArrayList (java.util.ArrayList)11
