001/**
002 * Licensed to the Apache Software Foundation (ASF) under one
003 * or more contributor license agreements.  See the NOTICE file
004 * distributed with this work for additional information
005 * regarding copyright ownership.  The ASF licenses this file
006 * to you under the Apache License, Version 2.0 (the
007 * "License"); you may not use this file except in compliance
008 * with the License.  You may obtain a copy of the License at
009 *
010 *     http://www.apache.org/licenses/LICENSE-2.0
011 *
012 * Unless required by applicable law or agreed to in writing, software
013 * distributed under the License is distributed on an "AS IS" BASIS,
014 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
015 * See the License for the specific language governing permissions and
016 * limitations under the License.
017 */
018package org.apache.hadoop.hbase.security;
019
020import org.apache.hbase.thirdparty.io.netty.buffer.ByteBuf;
021import org.apache.hbase.thirdparty.io.netty.buffer.Unpooled;
022import org.apache.hbase.thirdparty.io.netty.channel.ChannelHandlerContext;
023import org.apache.hbase.thirdparty.io.netty.channel.SimpleChannelInboundHandler;
024
025import javax.security.sasl.SaslClient;
026
027import org.apache.yetus.audience.InterfaceAudience;
028
029/**
030 * Unwrap sasl messages. Should be placed after a
031 * io.netty.handler.codec.LengthFieldBasedFrameDecoder
032 */
033@InterfaceAudience.Private
034public class SaslUnwrapHandler extends SimpleChannelInboundHandler<ByteBuf> {
035
036  private final SaslClient saslClient;
037
038  public SaslUnwrapHandler(SaslClient saslClient) {
039    this.saslClient = saslClient;
040  }
041
042  @Override
043  public void channelInactive(ChannelHandlerContext ctx) throws Exception {
044    SaslUtil.safeDispose(saslClient);
045    ctx.fireChannelInactive();
046  }
047
048  @Override
049  protected void channelRead0(ChannelHandlerContext ctx, ByteBuf msg) throws Exception {
050    byte[] bytes = new byte[msg.readableBytes()];
051    msg.readBytes(bytes);
052    ctx.fireChannelRead(Unpooled.wrappedBuffer(saslClient.unwrap(bytes, 0, bytes.length)));
053  }
054}