Java Code Examples for org.apache.rocketmq.remoting.common.TlsMode#PERMISSIVE

@Before
public void setUp() throws InterruptedException {
    tlsMode = TlsMode.ENFORCING;
    tlsTestModeEnable = false;
    tlsServerNeedClientAuth = "require";
    tlsServerKeyPath = getCertsPath("server.key");
    tlsServerCertPath = getCertsPath("server.pem");
    tlsServerAuthClient = true;
    tlsServerTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPath = getCertsPath("client.key");
    tlsClientCertPath = getCertsPath("client.pem");
    tlsClientAuthServer = true;
    tlsClientTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPassword = "1234";
    tlsServerKeyPassword = "";

    NettyClientConfig clientConfig = new NettyClientConfig();
    clientConfig.setUseTLS(true);

    if ("serverRejectsUntrustedClientCert".equals(name.getMethodName())) {
        // Create a client. Its credentials come from a CA that the server does not trust. The client
        // trusts both test CAs to ensure the handshake failure is due to the server rejecting the client's cert.
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
    } else if ("serverAcceptsUntrustedClientCert".equals(name.getMethodName())) {
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
        tlsServerAuthClient = false;
    }
    else if ("noClientAuthFailure".equals(name.getMethodName())) {
        //Clear the client cert config to ensure produce the handshake error
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("clientRejectsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
    } else if ("clientAcceptsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
        tlsClientAuthServer = false;
    } else if ("serverNotNeedClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "none";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverWantClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
    } else if ("serverWantClientAuth_ButClientNoCert".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverAcceptsUnAuthClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.PERMISSIVE;
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
        clientConfig.setUseTLS(false);
    } else if ("serverRejectsSSLClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.DISABLED;
    }

    remotingServer = RemotingServerTest.createRemotingServer();
    remotingClient = RemotingServerTest.createRemotingClient(clientConfig);
}
 

@After
public void tearDown() {
    remotingClient.shutdown();
    remotingServer.shutdown();
    tlsMode = TlsMode.PERMISSIVE;
}
 

@Before
public void setUp() throws InterruptedException {
    tlsMode = TlsMode.ENFORCING;
    tlsTestModeEnable = false;
    tlsServerNeedClientAuth = "require";
    tlsServerKeyPath = getCertsPath("server.key");
    tlsServerCertPath = getCertsPath("server.pem");
    tlsServerAuthClient = true;
    tlsServerTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPath = getCertsPath("client.key");
    tlsClientCertPath = getCertsPath("client.pem");
    tlsClientAuthServer = true;
    tlsClientTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPassword = "1234";
    tlsServerKeyPassword = "";

    NettyClientConfig clientConfig = new NettyClientConfig();
    clientConfig.setUseTLS(true);

    if ("serverRejectsUntrustedClientCert".equals(name.getMethodName())) {
        // Create a client. Its credentials come from a CA that the server does not trust. The client
        // trusts both test CAs to ensure the handshake failure is due to the server rejecting the client's cert.
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
    } else if ("serverAcceptsUntrustedClientCert".equals(name.getMethodName())) {
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
        tlsServerAuthClient = false;
    }
    else if ("noClientAuthFailure".equals(name.getMethodName())) {
        //Clear the client cert config to ensure produce the handshake error
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("clientRejectsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
    } else if ("clientAcceptsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
        tlsClientAuthServer = false;
    } else if ("serverNotNeedClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "none";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverWantClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
    } else if ("serverWantClientAuth_ButClientNoCert".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverAcceptsUnAuthClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.PERMISSIVE;
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
        clientConfig.setUseTLS(false);
    } else if ("serverRejectsSSLClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.DISABLED;
    } else if ("reloadSslContextForServer".equals(name.getMethodName())) {
        tlsClientAuthServer = false;
        tlsServerNeedClientAuth = "none";
    }

    remotingServer = RemotingServerTest.createRemotingServer();
    remotingClient = RemotingServerTest.createRemotingClient(clientConfig);
}
 

@After
public void tearDown() {
    remotingClient.shutdown();
    remotingServer.shutdown();
    tlsMode = TlsMode.PERMISSIVE;
}
 

@Before
public void setUp() throws InterruptedException {
    tlsMode = TlsMode.ENFORCING;
    tlsTestModeEnable = false;
    tlsServerNeedClientAuth = "require";
    tlsServerKeyPath = getCertsPath("server.key");
    tlsServerCertPath = getCertsPath("server.pem");
    tlsServerAuthClient = true;
    tlsServerTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPath = getCertsPath("client.key");
    tlsClientCertPath = getCertsPath("client.pem");
    tlsClientAuthServer = true;
    tlsClientTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPassword = "1234";
    tlsServerKeyPassword = "";

    NettyClientConfig clientConfig = new NettyClientConfig();
    clientConfig.setUseTLS(true);

    if ("serverRejectsUntrustedClientCert".equals(name.getMethodName())) {
        // Create a client. Its credentials come from a CA that the server does not trust. The client
        // trusts both test CAs to ensure the handshake failure is due to the server rejecting the client's cert.
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
    } else if ("serverAcceptsUntrustedClientCert".equals(name.getMethodName())) {
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
        tlsServerAuthClient = false;
    }
    else if ("noClientAuthFailure".equals(name.getMethodName())) {
        //Clear the client cert config to ensure produce the handshake error
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("clientRejectsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
    } else if ("clientAcceptsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
        tlsClientAuthServer = false;
    } else if ("serverNotNeedClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "none";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverWantClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
    } else if ("serverWantClientAuth_ButClientNoCert".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverAcceptsUnAuthClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.PERMISSIVE;
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
        clientConfig.setUseTLS(false);
    } else if ("serverRejectsSSLClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.DISABLED;
    } else if ("reloadSslContextForServer".equals(name.getMethodName())) {
        tlsClientAuthServer = false;
        tlsServerNeedClientAuth = "none";
    }

    remotingServer = RemotingServerTest.createRemotingServer();
    remotingClient = RemotingServerTest.createRemotingClient(clientConfig);
}
 

@After
public void tearDown() {
    remotingClient.shutdown();
    remotingServer.shutdown();
    tlsMode = TlsMode.PERMISSIVE;
}
 

@Before
public void setUp() throws InterruptedException {
    tlsMode = TlsMode.ENFORCING;
    tlsTestModeEnable = false;
    tlsServerNeedClientAuth = "require";
    tlsServerKeyPath = getCertsPath("server.key");
    tlsServerCertPath = getCertsPath("server.pem");
    tlsServerAuthClient = true;
    tlsServerTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPath = getCertsPath("client.key");
    tlsClientCertPath = getCertsPath("client.pem");
    tlsClientAuthServer = true;
    tlsClientTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPassword = "1234";
    tlsServerKeyPassword = "";

    NettyClientConfig clientConfig = new NettyClientConfig();
    clientConfig.setUseTLS(true);

    if ("serverRejectsUntrustedClientCert".equals(name.getMethodName())) {
        // Create a client. Its credentials come from a CA that the server does not trust. The client
        // trusts both test CAs to ensure the handshake failure is due to the server rejecting the client's cert.
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
    } else if ("serverAcceptsUntrustedClientCert".equals(name.getMethodName())) {
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
        tlsServerAuthClient = false;
    }
    else if ("noClientAuthFailure".equals(name.getMethodName())) {
        //Clear the client cert config to ensure produce the handshake error
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("clientRejectsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
    } else if ("clientAcceptsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
        tlsClientAuthServer = false;
    } else if ("serverNotNeedClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "none";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverWantClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
    } else if ("serverWantClientAuth_ButClientNoCert".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverAcceptsUnAuthClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.PERMISSIVE;
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
        clientConfig.setUseTLS(false);
    } else if ("serverRejectsSSLClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.DISABLED;
    }

    remotingServer = RemotingServerTest.createRemotingServer();
    remotingClient = RemotingServerTest.createRemotingClient(clientConfig);
}
 

@After
public void tearDown() {
    remotingClient.shutdown();
    remotingServer.shutdown();
    tlsMode = TlsMode.PERMISSIVE;
}
 

@Before
public void setUp() throws InterruptedException {
    tlsMode = TlsMode.ENFORCING;
    tlsTestModeEnable = false;
    tlsServerNeedClientAuth = "require";
    tlsServerKeyPath = getCertsPath("server.key");
    tlsServerCertPath = getCertsPath("server.pem");
    tlsServerAuthClient = true;
    tlsServerTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPath = getCertsPath("client.key");
    tlsClientCertPath = getCertsPath("client.pem");
    tlsClientAuthServer = true;
    tlsClientTrustCertPath = getCertsPath("ca.pem");
    tlsClientKeyPassword = "1234";
    tlsServerKeyPassword = "";

    NettyClientConfig clientConfig = new NettyClientConfig();
    clientConfig.setUseTLS(true);

    if ("serverRejectsUntrustedClientCert".equals(name.getMethodName())) {
        // Create a client. Its credentials come from a CA that the server does not trust. The client
        // trusts both test CAs to ensure the handshake failure is due to the server rejecting the client's cert.
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
    } else if ("serverAcceptsUntrustedClientCert".equals(name.getMethodName())) {
        tlsClientKeyPath = getCertsPath("badClient.key");
        tlsClientCertPath = getCertsPath("badClient.pem");
        tlsServerAuthClient = false;
    }
    else if ("noClientAuthFailure".equals(name.getMethodName())) {
        //Clear the client cert config to ensure produce the handshake error
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("clientRejectsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
    } else if ("clientAcceptsUntrustedServerCert".equals(name.getMethodName())) {
        tlsServerKeyPath = getCertsPath("badServer.key");
        tlsServerCertPath = getCertsPath("badServer.pem");
        tlsClientAuthServer = false;
    } else if ("serverNotNeedClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "none";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverWantClientAuth".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
    } else if ("serverWantClientAuth_ButClientNoCert".equals(name.getMethodName())) {
        tlsServerNeedClientAuth = "optional";
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
    } else if ("serverAcceptsUnAuthClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.PERMISSIVE;
        tlsClientKeyPath = "";
        tlsClientCertPath = "";
        clientConfig.setUseTLS(false);
    } else if ("serverRejectsSSLClient".equals(name.getMethodName())) {
        tlsMode = TlsMode.DISABLED;
    } else if ("reloadSslContextForServer".equals(name.getMethodName())) {
        tlsClientAuthServer = false;
        tlsServerNeedClientAuth = "none";
    }

    remotingServer = RemotingServerTest.createRemotingServer();
    remotingClient = RemotingServerTest.createRemotingClient(clientConfig);
}
 

@After
public void tearDown() {
    remotingClient.shutdown();
    remotingServer.shutdown();
    tlsMode = TlsMode.PERMISSIVE;
}