org.apache.hadoop.hbase.security.TestMutualTlsClientSideNonLocalhost

@Tag("org.apache.hadoop.hbase.testclassification.RPCTests") @Tag("org.apache.hadoop.hbase.testclassification.SmallTests") public class TestMutualTlsClientSideNonLocalhost extends Object

Tests for client-side mTLS focusing on client hostname verification in the case when client and server are on different hosts. We try to simulate this behaviour by querying the hostname with

InetAddress.getLocalHost()

Certificates are generated with the hostname in Subject Alternative Names, server binds non-localhost interface and client connects via remote IP address. Parameter is set to verify both TLS/plaintext and TLS-only cases.

Field Summary

Fields

Modifier and Type

Field

Description

private static File

DIR

private static X509TestContextProvider

PROVIDER

private org.apache.hadoop.hbase.ipc.RpcClient

rpcClient

private org.apache.hadoop.hbase.ipc.RpcServer

rpcServer

private org.apache.hadoop.hbase.shaded.ipc.protobuf.generated.TestRpcServiceProtos.TestProtobufRpcProto.BlockingInterface

stub

private boolean

supportPlaintext

private static HBaseCommonTestingUtil

UTIL

private X509TestContext

x509TestContext
Constructor Summary

Constructors

Constructor

Description

TestMutualTlsClientSideNonLocalhost(boolean supportPlaintext)
Method Summary

Modifier and Type

Method

Description

static void

cleanUp()

private void

initialize(org.apache.hadoop.conf.Configuration serverConf, org.apache.hadoop.conf.Configuration clientConf)

static Stream<org.junit.jupiter.params.provider.Arguments>

parameters()

void

setUp()

static void

setUpBeforeClass()

void

tearDown()

void

testClientAuth()

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details
- UTIL
  
  private static HBaseCommonTestingUtil UTIL
- DIR
  
  private static File DIR
- PROVIDER
  
  private static X509TestContextProvider PROVIDER
- x509TestContext
  
  private X509TestContext x509TestContext
- rpcServer
  
  private org.apache.hadoop.hbase.ipc.RpcServer rpcServer
- rpcClient
  
  private org.apache.hadoop.hbase.ipc.RpcClient rpcClient
- stub
  
  private org.apache.hadoop.hbase.shaded.ipc.protobuf.generated.TestRpcServiceProtos.TestProtobufRpcProto.BlockingInterface stub
- supportPlaintext
  
  private boolean supportPlaintext
Constructor Details
- TestMutualTlsClientSideNonLocalhost
  
  public TestMutualTlsClientSideNonLocalhost(boolean supportPlaintext)
Method Details
- parameters
  
  public static Stream<org.junit.jupiter.params.provider.Arguments> parameters()
- setUpBeforeClass
  
  @BeforeAll public static void setUpBeforeClass() throws IOException
  
  Throws:
  
  IOException
- cleanUp
  
  @AfterAll public static void cleanUp()
- setUp
  
  @BeforeEach public void setUp() throws Exception
  
  Throws:
  
  Exception
- initialize
  
  private void initialize(org.apache.hadoop.conf.Configuration serverConf, org.apache.hadoop.conf.Configuration clientConf) throws GeneralSecurityException, IOException, org.bouncycastle.operator.OperatorCreationException
  
  Throws:
  
  GeneralSecurityException
  
  IOException
  
  org.bouncycastle.operator.OperatorCreationException
- tearDown
  
  @AfterEach public void tearDown() throws IOException
  
  Throws:
  
  IOException
- testClientAuth
  
  @TestTemplate public void testClientAuth() throws Exception
  
  Throws:
  
  Exception

Class TestMutualTlsClientSideNonLocalhost

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Details

UTIL

DIR

PROVIDER

x509TestContext

rpcServer

rpcClient

stub

supportPlaintext

Constructor Details

TestMutualTlsClientSideNonLocalhost

Method Details

parameters

setUpBeforeClass

cleanUp

setUp

initialize

tearDown

testClientAuth