public class oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory extends java.lang.Object implements oadd.org.apache.hadoop.security.ssl.KeyStoresFactory
{
private static final org.slf4j.Logger LOG;
public static final java.lang.String SSL_KEYSTORE_LOCATION_TPL_KEY;
public static final java.lang.String SSL_KEYSTORE_PASSWORD_TPL_KEY;
public static final java.lang.String SSL_KEYSTORE_KEYPASSWORD_TPL_KEY;
public static final java.lang.String SSL_KEYSTORE_TYPE_TPL_KEY;
public static final java.lang.String SSL_TRUSTSTORE_RELOAD_INTERVAL_TPL_KEY;
public static final java.lang.String SSL_TRUSTSTORE_LOCATION_TPL_KEY;
public static final java.lang.String SSL_TRUSTSTORE_PASSWORD_TPL_KEY;
public static final java.lang.String SSL_TRUSTSTORE_TYPE_TPL_KEY;
public static final java.lang.String SSL_EXCLUDE_CIPHER_LIST;
public static final java.lang.String DEFAULT_KEYSTORE_TYPE;
public static final int DEFAULT_SSL_TRUSTSTORE_RELOAD_INTERVAL;
private oadd.org.apache.hadoop.conf.Configuration conf;
private javax.net.ssl.KeyManager[] keyManagers;
private javax.net.ssl.TrustManager[] trustManagers;
private oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager trustManager;
public void <init>()
{
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
specialinvoke v.<java.lang.Object: void <init>()>();
return;
}
public static java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode, java.lang.String)
{
java.lang.Object[] v;
oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode v;
java.lang.String v, v, v, v;
v := @parameter: oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode;
v := @parameter: java.lang.String;
v = newarray (java.lang.Object)[1];
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode: java.lang.String toString()>();
v = staticinvoke <oadd.org.apache.hadoop.util.StringUtils: java.lang.String toLowerCase(java.lang.String)>(v);
v[0] = v;
v = staticinvoke <java.text.MessageFormat: java.lang.String format(java.lang.String,java.lang.Object[])>(v, v);
return v;
}
public void setConf(oadd.org.apache.hadoop.conf.Configuration)
{
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
oadd.org.apache.hadoop.conf.Configuration v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
v := @parameter: oadd.org.apache.hadoop.conf.Configuration;
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf> = v;
return;
}
public oadd.org.apache.hadoop.conf.Configuration getConf()
{
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
oadd.org.apache.hadoop.conf.Configuration v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
return v;
}
public void init(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode) throws java.io.IOException, java.security.GeneralSecurityException
{
java.security.GeneralSecurityException v, v;
oadd.org.apache.hadoop.conf.Configuration v, v, v, v, v, v, v, v, v;
java.lang.Throwable v;
long v;
java.lang.String v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v;
char[] v, v;
oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode v, v;
oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager v, v, v;
boolean v, v, v, v, v, v, v, v, v, v;
java.security.KeyStore v;
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
org.slf4j.Logger v, v, v, v, v, v, v, v, v, v;
javax.net.ssl.KeyManagerFactory v;
java.io.FileInputStream v;
javax.net.ssl.TrustManager[] v;
javax.net.ssl.KeyManager[] v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
v := @parameter: oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = virtualinvoke v.<oadd.org.apache.hadoop.conf.Configuration: boolean getBoolean(java.lang.String,boolean)>("hadoop.ssl.require.client.cert", 0);
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.keystore.type");
v = virtualinvoke v.<oadd.org.apache.hadoop.conf.Configuration: java.lang.String get(java.lang.String,java.lang.String)>(v, "jks");
v = staticinvoke <java.security.KeyStore: java.security.KeyStore getInstance(java.lang.String)>(v);
v = null;
if v != 0 goto label;
v = <oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode: oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode SERVER>;
if v != v goto label;
label:
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.keystore.location");
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = virtualinvoke v.<oadd.org.apache.hadoop.conf.Configuration: java.lang.String get(java.lang.String,java.lang.String)>(v, "");
v = virtualinvoke v.<java.lang.String: boolean isEmpty()>();
if v == 0 goto label;
v = new java.security.GeneralSecurityException;
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String)>(v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("The property \'\u0001\' has not been set in the ssl configuration file.");
specialinvoke v.<java.security.GeneralSecurityException: void <init>(java.lang.String)>(v);
throw v;
label:
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.keystore.password");
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String getPassword(oadd.org.apache.hadoop.conf.Configuration,java.lang.String,java.lang.String)>(v, v, "");
v = virtualinvoke v.<java.lang.String: boolean isEmpty()>();
if v == 0 goto label;
v = new java.security.GeneralSecurityException;
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String)>(v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("The property \'\u0001\' has not been set in the ssl configuration file.");
specialinvoke v.<java.security.GeneralSecurityException: void <init>(java.lang.String)>(v);
throw v;
label:
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.keystore.keypassword");
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String getPassword(oadd.org.apache.hadoop.conf.Configuration,java.lang.String,java.lang.String)>(v, v, v);
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = interfaceinvoke v.<org.slf4j.Logger: boolean isDebugEnabled()>();
if v == 0 goto label;
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode: java.lang.String toString()>();
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String,java.lang.String)>(v, v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("\u KeyStore: \u0001");
interfaceinvoke v.<org.slf4j.Logger: void debug(java.lang.String)>(v);
label:
v = new java.io.FileInputStream;
specialinvoke v.<java.io.FileInputStream: void <init>(java.lang.String)>(v);
label:
v = virtualinvoke v.<java.lang.String: char[] toCharArray()>();
virtualinvoke v.<java.security.KeyStore: void load(java.io.InputStream,char[])>(v, v);
label:
virtualinvoke v.<java.io.InputStream: void close()>();
goto label;
label:
v := @caughtexception;
virtualinvoke v.<java.io.InputStream: void close()>();
throw v;
label:
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = interfaceinvoke v.<org.slf4j.Logger: boolean isDebugEnabled()>();
if v == 0 goto label;
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode: java.lang.String toString()>();
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String,java.lang.String)>(v, v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("\u Loaded KeyStore: \u0001");
interfaceinvoke v.<org.slf4j.Logger: void debug(java.lang.String)>(v);
goto label;
label:
virtualinvoke v.<java.security.KeyStore: void load(java.io.InputStream,char[])>(null, null);
label:
v = <oadd.org.apache.hadoop.security.ssl.SSLFactory: java.lang.String SSLCERTIFICATE>;
v = staticinvoke <javax.net.ssl.KeyManagerFactory: javax.net.ssl.KeyManagerFactory getInstance(java.lang.String)>(v);
if v == null goto label;
v = virtualinvoke v.<java.lang.String: char[] toCharArray()>();
goto label;
label:
v = null;
label:
virtualinvoke v.<javax.net.ssl.KeyManagerFactory: void init(java.security.KeyStore,char[])>(v, v);
v = virtualinvoke v.<javax.net.ssl.KeyManagerFactory: javax.net.ssl.KeyManager[] getKeyManagers()>();
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: javax.net.ssl.KeyManager[] keyManagers> = v;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.truststore.type");
v = virtualinvoke v.<oadd.org.apache.hadoop.conf.Configuration: java.lang.String get(java.lang.String,java.lang.String)>(v, "jks");
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.truststore.location");
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = virtualinvoke v.<oadd.org.apache.hadoop.conf.Configuration: java.lang.String get(java.lang.String,java.lang.String)>(v, "");
v = virtualinvoke v.<java.lang.String: boolean isEmpty()>();
if v != 0 goto label;
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.truststore.password");
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String getPassword(oadd.org.apache.hadoop.conf.Configuration,java.lang.String,java.lang.String)>(v, v, "");
v = virtualinvoke v.<java.lang.String: boolean isEmpty()>();
if v == 0 goto label;
v = null;
label:
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.conf.Configuration conf>;
v = staticinvoke <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: java.lang.String resolvePropertyName(oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode,java.lang.String)>(v, "ssl.{0}.truststore.reload.interval");
v = virtualinvoke v.<oadd.org.apache.hadoop.conf.Configuration: long getLong(java.lang.String,long)>(v, 10000L);
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = interfaceinvoke v.<org.slf4j.Logger: boolean isDebugEnabled()>();
if v == 0 goto label;
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode: java.lang.String toString()>();
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String,java.lang.String)>(v, v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("\u TrustStore: \u0001");
interfaceinvoke v.<org.slf4j.Logger: void debug(java.lang.String)>(v);
label:
v = new oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager;
specialinvoke v.<oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager: void <init>(java.lang.String,java.lang.String,java.lang.String,long)>(v, v, v, v);
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager trustManager> = v;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager trustManager>;
virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager: void init()>();
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = interfaceinvoke v.<org.slf4j.Logger: boolean isDebugEnabled()>();
if v == 0 goto label;
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.SSLFactory$Mode: java.lang.String toString()>();
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String,java.lang.String)>(v, v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("\u Loaded TrustStore: \u0001");
interfaceinvoke v.<org.slf4j.Logger: void debug(java.lang.String)>(v);
label:
v = newarray (javax.net.ssl.TrustManager)[1];
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager trustManager>;
v[0] = v;
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: javax.net.ssl.TrustManager[] trustManagers> = v;
goto label;
label:
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = interfaceinvoke v.<org.slf4j.Logger: boolean isDebugEnabled()>();
if v == 0 goto label;
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String)>(v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("The property \'\u0001\' has not been set, no TrustStore will be loaded");
interfaceinvoke v.<org.slf4j.Logger: void debug(java.lang.String)>(v);
label:
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: javax.net.ssl.TrustManager[] trustManagers> = null;
label:
return;
catch java.lang.Throwable from label to label with label;
}
java.lang.String getPassword(oadd.org.apache.hadoop.conf.Configuration, java.lang.String, java.lang.String)
{
org.slf4j.Logger v;
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
java.io.IOException v;
char[] v;
oadd.org.apache.hadoop.conf.Configuration v;
java.lang.String v, v, v, v, v, v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
v := @parameter: oadd.org.apache.hadoop.conf.Configuration;
v := @parameter: java.lang.String;
v := @parameter: java.lang.String;
v = v;
label:
v = virtualinvoke v.<oadd.org.apache.hadoop.conf.Configuration: char[] getPassword(java.lang.String)>(v);
if v == null goto label;
v = new java.lang.String;
specialinvoke v.<java.lang.String: void <init>(char[])>(v);
v = v;
label:
goto label;
label:
v := @caughtexception;
v = <oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG>;
v = virtualinvoke v.<java.io.IOException: java.lang.String getMessage()>();
v = dynamicinvoke "makeConcatWithConstants" <java.lang.String (java.lang.String,java.lang.String)>(v, v) <java.lang.invoke.StringConcatFactory: java.lang.invoke.CallSite makeConcatWithConstants(java.lang.invoke.MethodHandles$Lookup,java.lang.String,java.lang.invoke.MethodType,java.lang.String,java.lang.Object[])>("Exception while trying to get password for alias \u0001: \u0001");
interfaceinvoke v.<org.slf4j.Logger: void warn(java.lang.String)>(v);
label:
return v;
catch java.io.IOException from label to label with label;
}
public synchronized void destroy()
{
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager v, v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager trustManager>;
if v == null goto label;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager trustManager>;
virtualinvoke v.<oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager: void destroy()>();
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: oadd.org.apache.hadoop.security.ssl.ReloadingX509TrustManager trustManager> = null;
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: javax.net.ssl.KeyManager[] keyManagers> = null;
v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: javax.net.ssl.TrustManager[] trustManagers> = null;
label:
return;
}
public javax.net.ssl.KeyManager[] getKeyManagers()
{
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
javax.net.ssl.KeyManager[] v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: javax.net.ssl.KeyManager[] keyManagers>;
return v;
}
public javax.net.ssl.TrustManager[] getTrustManagers()
{
oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory v;
javax.net.ssl.TrustManager[] v;
v := @this: oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory;
v = v.<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: javax.net.ssl.TrustManager[] trustManagers>;
return v;
}
static void <clinit>()
{
org.slf4j.Logger v;
v = staticinvoke <org.slf4j.LoggerFactory: org.slf4j.Logger getLogger(java.lang.Class)>(class "Loadd/org/apache/hadoop/security/ssl/FileBasedKeyStoresFactory;");
<oadd.org.apache.hadoop.security.ssl.FileBasedKeyStoresFactory: org.slf4j.Logger LOG> = v;
return;
}
}