in tso-server/src/main/java/org/apache/omid/tso/TSOChannelHandler.java [124:154]
private void initSSL(ChannelPipeline p, boolean supportPlaintext)
throws X509Exception, IOException {
String keyStoreLocation = config.getKeyStoreLocation();
char[] keyStorePassword = config.getKeyStorePassword().toCharArray();
String keyStoreType = config.getKeyStoreType();
String trustStoreLocation = config.getTrustStoreLocation();
char[] truststorePassword = config.getTrustStorePassword().toCharArray();
String truststoreType = config.getTrustStoreType();
boolean sslCrlEnabled = config.getSslCrlEnabled();
boolean sslOcspEnabled = config.getSslOcspEnabled();
String enabledProtocols = config.getEnabledProtocols();
String cipherSuites = config.getCipherSuites();
String tlsConfigProtocols = config.getTsConfigProtocols();
SslContext nettySslContext = X509Util.createSslContextForServer(keyStoreLocation, keyStorePassword,
keyStoreType, trustStoreLocation, truststorePassword, truststoreType, sslCrlEnabled,
sslOcspEnabled, enabledProtocols, cipherSuites, tlsConfigProtocols);
if (supportPlaintext) {
p.addLast("ssl", new OptionalSslHandler(nettySslContext));
LOG.info("Dual mode SSL handler added for channel: {}", p.channel());
} else {
p.addLast("ssl", nettySslContext.newHandler(p.channel().alloc()));
LOG.info("SSL handler added for channel: {}", p.channel());
}
}