• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• docker-swarm-plugin-master
  • src
    • main
      • resources
        • application.conf
        • index.jelly
        • org
          • jenkinsci
            • plugins
              • docker
                • swarm
                  • DockerSwarmCloud
                    • help-tunnel.html
                    • help-cacheDriverName.html
                    • help-jenkinsUrl.html
                    • config.jelly
                    • help-swarmNetwork.html
                  • DockerSwarmAgent
                    • configure-entries.jelly
                  • DockerSwarmComputer
                    • slave-agent.jnlp.jelly
                  • DockerSwarmAgentTemplate
                    • help-configs.html
                    • help-portBinds.html
                    • help-image.html
                    • help-hostNamedPipes.html
                    • help-secrets.html
                    • help-reservationsNanoCPUs.html
                    • help-reservationsMemoryBytes.html
                    • help-dnsSearchDomains.html
                    • config.jelly
                    • help-hostBinds.html
                    • help-dnsIps.html
                    • help-serverAddress.html
                    • help-label.html
                    • help-placementConstraints.html
                    • help-hosts.html
                    • help-envVars.html
                    • help-user.html
                    • help-command.html
                  • DockerSwarmAgentInfo
                    • index.jelly
                  • dashboard
                    • UIPage
                      • index.jelly
                      • swarm-queue.jelly
                      • swarm-status.jelly
                      • swarm-node.jelly
      • java
        • org
          • jenkinsci
            • plugins
              • docker
                • swarm
                  • DockerServerCredentialsSSLConfig.java
                  • DockerSwarmLabelAssignmentAction.java
                  • DockerSwarmAgentTemplate.java
                  • Bytes.java
                  • DockerSwarmAgentLauncherActor.java
                  • DockerSwarmComputerLauncher.java
                  • DockerSwarmPlugin.java
                  • docker
                    • api
                      • network
                        • Network.java
                        • EndpointSpec.java
                      • ping
                        • PingRequest.java
                      • task
                        • Task.java
                        • TaskTemplate.java
                        • ListTasksRequest.java
                        • Status.java
                      • containers
                        • ContainerSpec.java
                      • error
                        • ErrorMessage.java
                      • response
                        • ApiError.java
                        • ApiSuccess.java
                        • ApiException.java
                        • SerializationException.java
                      • request
                        • ApiRequest.java
                      • service
                        • CreateServiceResponse.java
                        • DeleteServiceRequest.java
                        • ScheduledService.java
                        • ServiceSpec.java
                        • ListServicesRequest.java
                        • ServiceLogRequest.java
                      • configs
                        • ListConfigsRequest.java
                        • ConfigSpec.java
                        • Config.java
                      • nodes
                        • Node.java
                        • ListNodesRequest.java
                      • HttpMethod.java
                      • secrets
                        • Secret.java
                        • SecretSpec.java
                        • ListSecretsRequest.java
                    • marshalling
                      • Jackson.java
                      • ResponseType.java
                  • Util.java
                  • DockerSwarmAgent.java
                  • BuildScheduler.java
                  • ResetStuckBuildsInQueueActor.java
                  • DockerSwarmComputer.java
                  • OneShotProvisionQueueListener.java
                  • DockerSwarmJnlpAgentReceiver.java
                  • DeadAgentServiceReaperActor.java
                  • DockerSwarmAgentRetentionStrategy.java
                  • DockerSwarmCloud.java
                  • DockerSwarmAgentInfo.java
                  • dashboard
                    • Dashboard.java
                    • SwarmQueueItem.java
                    • UIPage.java
                    • SwarmNode.java
      • webapp
        • images
          • 24x24
    • test
      • resources
        • configuration.yml
  • Makefile
  • pom.xml
  • LICENSE
  • README.md
  • .gitignore
  • Jenkinsfile
  • docs
    • images

package org.jenkinsci.plugins.docker.swarm;

import java.io.IOException;
import java.security.KeyManagementException;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.UnrecoverableKeyException;
import java.security.cert.CertificateException;
import java.security.spec.InvalidKeySpecException;

import javax.net.ssl.KeyManagerFactory;
import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManagerFactory;

import com.github.dockerjava.core.SSLConfig;
import com.github.dockerjava.core.util.CertificateUtils;

import org.jenkinsci.plugins.docker.commons.credentials.DockerServerCredentials;

/**
 * + * @author <a href="mailto:[email protected]">Nicolas De Loof</a> +
 */
public class DockerServerCredentialsSSLConfig implements SSLConfig {
    private final DockerServerCredentials credentials;

    public DockerServerCredentialsSSLConfig(DockerServerCredentials credentials) {
        this.credentials = credentials;
    }

    @Override
    public SSLContext getSSLContext()
            throws KeyManagementException, UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException {

        try {
            final KeyStore keyStore = CertificateUtils.createKeyStore(credentials.getClientKey(),
                    credentials.getClientCertificate());
            final KeyManagerFactory keyManagerFactory = KeyManagerFactory
                    .getInstance(KeyManagerFactory.getDefaultAlgorithm());
            keyManagerFactory.init(keyStore, "docker".toCharArray());
            final KeyStore trustStore = CertificateUtils.createTrustStore(credentials.getServerCaCertificate());
            final TrustManagerFactory trustManagerFactory = TrustManagerFactory
                    .getInstance(TrustManagerFactory.getDefaultAlgorithm());
            trustManagerFactory.init(trustStore);

            final SSLContext context = SSLContext.getInstance("TLS");
            context.init(keyManagerFactory.getKeyManagers(), trustManagerFactory.getTrustManagers(), null);
            return context;
        } catch (CertificateException | InvalidKeySpecException | IOException e) {
            throw new KeyStoreException("Can't build keystore from provided client key/certificate", e);
        }
    }
}