From 8260dac38b55007bedd4890cbc64a042e04d5f7f Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 13:42:51 +0800
Subject: [PATCH 1/8] support http2 for java client

---
 client/pom.xml                                |  18 +-
 .../thrift/transport/OkHttp3Util.java         |  54 ++++++
 .../thrift/transport/THttp2Client.java        | 160 ++++++++++++++++++
 .../nebula/client/graph/NebulaPoolConfig.java |  13 +-
 .../nebula/client/graph/SessionPool.java      |   9 +-
 .../client/graph/SessionPoolConfig.java       |  37 ++++
 .../client/graph/net/ConnObjectPool.java      |   5 +-
 .../nebula/client/graph/net/Connection.java   |   7 +
 .../nebula/client/graph/net/NebulaPool.java   |   6 +-
 .../graph/net/RoundRobinLoadBalancer.java     |  21 ++-
 .../client/graph/net/SyncConnection.java      |  98 +++++++++--
 .../java/com/vesoft/nebula/util/SslUtil.java  |  13 +-
 12 files changed, 416 insertions(+), 25 deletions(-)
 create mode 100644 client/src/main/fbthrift/com/facebook/thrift/transport/OkHttp3Util.java
 create mode 100644 client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java

diff --git a/client/pom.xml b/client/pom.xml
index 28cd14ae9..08ba5119d 100644
--- a/client/pom.xml
+++ b/client/pom.xml
@@ -42,6 +42,7 @@
             <plugin>
                 <groupId>org.sonatype.plugins</groupId>
                 <artifactId>nexus-staging-maven-plugin</artifactId>
+                <version>1.6.8</version>
                 <extensions>true</extensions>
                 <configuration>
                     <serverId>ossrh</serverId>
@@ -90,8 +91,8 @@
                 <artifactId>maven-compiler-plugin</artifactId>
                 <version>3.8.1</version>
                 <configuration>
-                    <source>1.8</source>
-                    <target>1.8</target>
+                    <source>8</source>
+                    <target>8</target>
                     <generatedSourcesDirectory>src/main/generated</generatedSourcesDirectory>
                 </configuration>
             </plugin>
@@ -262,5 +263,18 @@
             <artifactId>jts-core</artifactId>
             <version>1.16.1</version>
         </dependency>
+        <dependency>
+            <groupId>com.squareup.okhttp3</groupId>
+            <artifactId>okhttp</artifactId>
+            <version>3.14.0</version>
+        </dependency>
+
+        <!-- https://mvnrepository.com/artifact/org.mortbay.jetty.alpn/alpn-boot -->
+        <dependency>
+            <groupId>org.mortbay.jetty.alpn</groupId>
+            <artifactId>alpn-boot</artifactId>
+            <version>8.1.13.v20181017</version>
+        </dependency>
+
     </dependencies>
 </project>
diff --git a/client/src/main/fbthrift/com/facebook/thrift/transport/OkHttp3Util.java b/client/src/main/fbthrift/com/facebook/thrift/transport/OkHttp3Util.java
new file mode 100644
index 000000000..7e29057b5
--- /dev/null
+++ b/client/src/main/fbthrift/com/facebook/thrift/transport/OkHttp3Util.java
@@ -0,0 +1,54 @@
+/* Copyright (c) 2023 vesoft inc. All rights reserved.
+ *
+ * This source code is licensed under Apache 2.0 License.
+ */
+
+package com.facebook.thrift.transport;
+
+import java.util.Arrays;
+import java.util.concurrent.TimeUnit;
+import javax.net.ssl.SSLSocketFactory;
+import javax.net.ssl.TrustManager;
+import javax.net.ssl.X509TrustManager;
+import okhttp3.OkHttpClient;
+import okhttp3.Protocol;
+
+public class OkHttp3Util {
+    private static OkHttpClient client;
+
+    private OkHttp3Util() {
+    }
+
+    public static OkHttpClient getClient(int connectTimeout, int readTimeout,
+                                         SSLSocketFactory sslFactory,
+                                         TrustManager trustManager) {
+        if (client == null) {
+            synchronized (OkHttp3Util.class) {
+                if (client == null) {
+                    // Create OkHttpClient builder
+                    OkHttpClient.Builder clientBuilder = new OkHttpClient.Builder()
+                            .connectTimeout(connectTimeout, TimeUnit.MILLISECONDS)
+                            .writeTimeout(readTimeout, TimeUnit.MILLISECONDS)
+                            .readTimeout(readTimeout, TimeUnit.MILLISECONDS);
+                    if (sslFactory != null) {
+                        clientBuilder.sslSocketFactory(sslFactory, (X509TrustManager) trustManager);
+                        clientBuilder.protocols(Arrays.asList(Protocol.HTTP_2, Protocol.HTTP_1_1));
+                    } else {
+                        // config the http2 prior knowledge
+                        clientBuilder.protocols(Arrays.asList(Protocol.H2_PRIOR_KNOWLEDGE));
+                    }
+                    client = clientBuilder.build();
+                }
+            }
+        }
+        return client;
+    }
+
+    public static void close(){
+        if (client != null) {
+            client.connectionPool().evictAll();
+            client.dispatcher().executorService().shutdown();
+            client = null;
+        }
+    }
+}
diff --git a/client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java b/client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java
new file mode 100644
index 000000000..80557b7b0
--- /dev/null
+++ b/client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java
@@ -0,0 +1,160 @@
+/* Copyright (c) 2023 vesoft inc. All rights reserved.
+ *
+ * This source code is licensed under Apache 2.0 License.
+ */
+
+package com.facebook.thrift.transport;
+
+import static java.time.LocalTime.now;
+import java.io.ByteArrayOutputStream;
+import java.util.Arrays;
+import java.util.concurrent.TimeUnit;
+import java.util.concurrent.atomic.AtomicBoolean;
+import javax.net.ssl.SSLSocketFactory;
+import javax.net.ssl.TrustManager;
+import javax.net.ssl.X509TrustManager;
+import okhttp3.MediaType;
+import okhttp3.OkHttpClient;
+import okhttp3.Protocol;
+import okhttp3.Request;
+import okhttp3.RequestBody;
+import okhttp3.Response;
+import okhttp3.ResponseBody;
+import java.io.IOException;
+import java.util.HashMap;
+import java.util.Map;
+import org.checkerframework.checker.units.qual.A;
+
+public class THttp2Client extends TTransport {
+
+    private final ByteArrayOutputStream requestBuffer = new ByteArrayOutputStream();
+    private ResponseBody responseBody = null;
+    private Map<String, String> customHeaders = null;
+    private static final Map<String, String> defaultHeaders = getDefaultHeaders();
+
+    private OkHttpClient client;
+    private final SSLSocketFactory sslFactory;
+
+    private final TrustManager trustManager;
+    private final String url;
+    private int connectTimeout = 0;
+    private int readTimeout = 0;
+
+
+    public THttp2Client(String url) throws TTransportException {
+        this(url, null, null);
+    }
+
+    public THttp2Client(String url, SSLSocketFactory sslFactory, TrustManager trustManager) throws TTransportException {
+        this.url = url;
+        this.sslFactory = sslFactory;
+        this.trustManager = trustManager;
+    }
+
+    public THttp2Client setConnectTimeout(int timeout) {
+        connectTimeout = timeout;
+        return this;
+    }
+
+    public THttp2Client setReadTimeout(int timeout) {
+        readTimeout = timeout;
+        return this;
+    }
+
+    public THttp2Client setCustomHeaders(Map<String, String> headers) {
+        customHeaders = headers;
+        return this;
+    }
+
+    public THttp2Client setCustomHeader(String key, String value) {
+        if (customHeaders == null) {
+            customHeaders = new HashMap<>();
+        }
+        customHeaders.put(key, value);
+        return this;
+    }
+
+    public void open() {
+        client = OkHttp3Util.getClient(connectTimeout, readTimeout, sslFactory, trustManager);
+    }
+
+    public void close() {
+        try {
+            if (responseBody != null) {
+                responseBody.close();
+                responseBody = null;
+            }
+
+            requestBuffer.close();
+        } catch (IOException e) {
+            // ignore
+        }
+        OkHttp3Util.close();
+    }
+
+    public boolean isOpen() {
+        return true;
+    }
+
+    public int read(byte[] buf, int off, int len) throws TTransportException {
+        if (responseBody == null) {
+            throw new TTransportException("Response buffer is empty, no request.");
+        }
+        try {
+            int ret = responseBody.byteStream().read(buf, off, len);
+            if (ret == -1) {
+                throw new TTransportException("No more data available.");
+            }
+            return ret;
+        } catch (IOException iox) {
+            throw new TTransportException(iox);
+        }
+    }
+
+    public void write(byte[] buf, int off, int len) {
+        requestBuffer.write(buf, off, len);
+    }
+
+    public void flush() throws TTransportException {
+        if (null == client) {
+            throw new TTransportException("Null HttpClient, aborting.");
+        }
+
+        // Extract request and reset buffer
+        byte[] data = requestBuffer.toByteArray();
+        requestBuffer.reset();
+        try {
+
+            // Create request object
+            Request.Builder requestBuilder = new Request.Builder()
+                    .url(url)
+                    .post(RequestBody.create(MediaType.parse("application/x-thrift"), data));
+
+            defaultHeaders.forEach(requestBuilder::header);
+            if (customHeaders != null) {
+                customHeaders.forEach(requestBuilder::header);
+            }
+
+            Request request = requestBuilder.build();
+
+            // Make the request
+            Response response = client.newCall(request).execute();
+            if (!response.isSuccessful()) {
+                throw new TTransportException("HTTP Response code: " + response.code());
+            }
+
+            // Read the response
+            responseBody = response.body();
+        } catch (IOException iox) {
+            throw new TTransportException(iox);
+        }
+    }
+
+    private static Map<String, String> getDefaultHeaders() {
+        Map<String, String> headers = new HashMap<>();
+        headers.put("Content-Type", "application/x-thrift");
+        headers.put("Accept", "application/x-thrift");
+        headers.put("User-Agent", "Java/THttpClient");
+        return headers;
+    }
+}
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/NebulaPoolConfig.java b/client/src/main/java/com/vesoft/nebula/client/graph/NebulaPoolConfig.java
index 3682063fa..0189366a5 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/NebulaPoolConfig.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/NebulaPoolConfig.java
@@ -6,7 +6,6 @@
 package com.vesoft.nebula.client.graph;
 
 import com.vesoft.nebula.client.graph.data.SSLParam;
-import com.vesoft.nebula.client.graph.net.NebulaPool;
 import java.io.Serializable;
 
 public class NebulaPoolConfig implements Serializable {
@@ -43,6 +42,9 @@ public class NebulaPoolConfig implements Serializable {
     // SSL param is required if ssl is turned on
     private SSLParam sslParam = null;
 
+    // Set if use http2 protocol
+    private boolean useHttp2 = false;
+
     public boolean isEnableSsl() {
         return enableSsl;
     }
@@ -121,4 +123,13 @@ public NebulaPoolConfig setMinClusterHealthRate(double minClusterHealthRate) {
         this.minClusterHealthRate = minClusterHealthRate;
         return this;
     }
+
+    public boolean isUseHttp2() {
+        return useHttp2;
+    }
+
+    public NebulaPoolConfig setUseHttp2(boolean useHttp2) {
+        this.useHttp2 = useHttp2;
+        return this;
+    }
 }
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/SessionPool.java b/client/src/main/java/com/vesoft/nebula/client/graph/SessionPool.java
index d6b54e0af..f1130150e 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/SessionPool.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/SessionPool.java
@@ -349,7 +349,14 @@ private NebulaSession createSessionObject(SessionState state)
         // reconnect with all available address
         while (tryConnect-- > 0) {
             try {
-                connection.open(getAddress(), sessionPoolConfig.getTimeout());
+                if (sessionPoolConfig.isEnableSsl()) {
+                    connection.open(getAddress(), sessionPoolConfig.getTimeout(),
+                            sessionPoolConfig.getSslParam(),
+                            sessionPoolConfig.isUseHttp2());
+                } else {
+                    connection.open(getAddress(), sessionPoolConfig.getTimeout(),
+                            sessionPoolConfig.isUseHttp2());
+                }
                 break;
             } catch (Exception e) {
                 if (tryConnect == 0 || !reconnect) {
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java b/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java
index 898739c31..5dfcb4158 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java
@@ -6,6 +6,7 @@
 package com.vesoft.nebula.client.graph;
 
 import com.vesoft.nebula.client.graph.data.HostAddress;
+import com.vesoft.nebula.client.graph.data.SSLParam;
 import java.io.Serializable;
 import java.util.List;
 
@@ -50,6 +51,14 @@ public class SessionPoolConfig implements Serializable {
     // whether reconnect when create session using a broken graphd server
     private boolean reconnect = false;
 
+    // Set to true to turn on ssl encrypted traffic
+    private boolean enableSsl = false;
+
+    // SSL param is required if ssl is turned on
+    private SSLParam sslParam = null;
+
+    private boolean useHttp2 = false;
+
 
     public SessionPoolConfig(List<HostAddress> addresses,
                              String spaceName,
@@ -207,6 +216,33 @@ public SessionPoolConfig setReconnect(boolean reconnect) {
         return this;
     }
 
+    public boolean isEnableSsl() {
+        return enableSsl;
+    }
+
+    public SessionPoolConfig setEnableSsl(boolean enableSsl) {
+        this.enableSsl = enableSsl;
+        return this;
+    }
+
+    public SSLParam getSslParam() {
+        return sslParam;
+    }
+
+    public SessionPoolConfig setSslParam(SSLParam sslParam) {
+        this.sslParam = sslParam;
+        return this;
+    }
+
+    public boolean isUseHttp2() {
+        return useHttp2;
+    }
+
+    public SessionPoolConfig setUseHttp2(boolean useHttp2) {
+        this.useHttp2 = useHttp2;
+        return this;
+    }
+
     @Override
     public String toString() {
         return "SessionPoolConfig{"
@@ -222,6 +258,7 @@ public String toString() {
                 + ", retryTimes=" + retryTimes
                 + ", intervalTIme=" + intervalTime
                 + ", reconnect=" + reconnect
+                + ", useHttp2=" + useHttp2
                 + '}';
     }
 }
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/ConnObjectPool.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/ConnObjectPool.java
index bb5eb383e..dba3a02b9 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/ConnObjectPool.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/ConnObjectPool.java
@@ -39,9 +39,10 @@ public SyncConnection create() throws IOErrorException, ClientServerIncompatible
                         throw new IllegalArgumentException("SSL Param is required when enableSsl "
                                 + "is set to true");
                     }
-                    conn.open(address, config.getTimeout(), config.getSslParam());
+                    conn.open(address, config.getTimeout(),
+                            config.getSslParam(), config.isUseHttp2());
                 } else {
-                    conn.open(address, config.getTimeout());
+                    conn.open(address, config.getTimeout(), config.isUseHttp2());
                 }
                 return conn;
             } catch (IOErrorException e) {
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/Connection.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/Connection.java
index 7fc9ba131..47abf3524 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/Connection.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/Connection.java
@@ -19,10 +19,17 @@ public HostAddress getServerAddress() {
     public abstract void open(HostAddress address, int timeout, SSLParam sslParam)
             throws IOErrorException, ClientServerIncompatibleException;
 
+    public abstract void open(HostAddress address, int timeout,
+                              SSLParam sslParam, boolean isUseHttp2)
+            throws IOErrorException, ClientServerIncompatibleException;
+
 
     public abstract void open(HostAddress address, int timeout) throws IOErrorException,
             ClientServerIncompatibleException;
 
+    public abstract void open(HostAddress address, int timeout, boolean isUseHttp2)
+            throws IOErrorException, ClientServerIncompatibleException;
+
     public abstract void reopen() throws IOErrorException, ClientServerIncompatibleException;
 
     public abstract void close();
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/NebulaPool.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/NebulaPool.java
index 67362cbc6..6090da72b 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/NebulaPool.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/NebulaPool.java
@@ -86,9 +86,9 @@ public boolean init(List<HostAddress> addresses, NebulaPoolConfig config)
         this.waitTime = config.getWaitTime();
         this.loadBalancer = config.isEnableSsl()
                 ? new RoundRobinLoadBalancer(addresses, config.getTimeout(), config.getSslParam(),
-                config.getMinClusterHealthRate())
+                config.getMinClusterHealthRate(), config.isUseHttp2())
                 : new RoundRobinLoadBalancer(addresses, config.getTimeout(),
-                config.getMinClusterHealthRate());
+                config.getMinClusterHealthRate(),config.isUseHttp2());
         ConnObjectPool objectPool = new ConnObjectPool(this.loadBalancer, config);
         this.objectPool = new GenericObjectPool<>(objectPool);
         GenericObjectPoolConfig objConfig = new GenericObjectPoolConfig();
@@ -188,7 +188,7 @@ public int getWaitersNum() {
     protected void updateServerStatus() {
         checkNoInitAndClosed();
         if (objectPool.getFactory() instanceof ConnObjectPool) {
-            ((ConnObjectPool)objectPool.getFactory()).updateServerStatus();
+            ((ConnObjectPool) objectPool.getFactory()).updateServerStatus();
         }
     }
 
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
index e245141cf..c4da59766 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
@@ -27,22 +27,35 @@ public class RoundRobinLoadBalancer implements LoadBalancer {
     private final int delayTime = 60;  // Unit seconds
     private final ScheduledExecutorService schedule = Executors.newScheduledThreadPool(1);
     private SSLParam sslParam;
-    private boolean enabledSsl;
+    private boolean enabledSsl = false;
+
+    private boolean useHttp2 = false;
 
     public RoundRobinLoadBalancer(List<HostAddress> addresses, int timeout,
                                   double minClusterHealthRate) {
+        this(addresses, timeout, minClusterHealthRate, false);
+    }
+
+    public RoundRobinLoadBalancer(List<HostAddress> addresses, int timeout,
+                                  double minClusterHealthRate, boolean useHttp2) {
         this.timeout = timeout;
         for (HostAddress addr : addresses) {
             this.addresses.add(addr);
             this.serversStatus.put(addr, S_BAD);
         }
         this.minClusterHealthRate = minClusterHealthRate;
+        this.useHttp2 = useHttp2;
         schedule.scheduleAtFixedRate(this::scheduleTask, 0, delayTime, TimeUnit.SECONDS);
     }
 
     public RoundRobinLoadBalancer(List<HostAddress> addresses, int timeout, SSLParam sslParam,
                                   double minClusterHealthRate) {
-        this(addresses, timeout, minClusterHealthRate);
+        this(addresses, timeout, sslParam, minClusterHealthRate, false);
+    }
+
+    public RoundRobinLoadBalancer(List<HostAddress> addresses, int timeout, SSLParam sslParam,
+                                  double minClusterHealthRate, boolean useHttp2) {
+        this(addresses, timeout, minClusterHealthRate, useHttp2);
         this.sslParam = sslParam;
         this.enabledSsl = true;
     }
@@ -82,9 +95,9 @@ public boolean ping(HostAddress addr) {
         try {
             Connection connection = new SyncConnection();
             if (enabledSsl) {
-                connection.open(addr, this.timeout, sslParam);
+                connection.open(addr, this.timeout, sslParam, useHttp2);
             } else {
-                connection.open(addr, this.timeout);
+                connection.open(addr, this.timeout, useHttp2);
             }
             boolean pong = connection.ping();
             connection.close();
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java
index b7c853feb..cb5d30225 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java
@@ -6,10 +6,12 @@
 package com.vesoft.nebula.client.graph.net;
 
 import com.facebook.thrift.TException;
+import com.facebook.thrift.protocol.TBinaryProtocol;
 import com.facebook.thrift.protocol.TCompactProtocol;
 import com.facebook.thrift.protocol.THeaderProtocol;
 import com.facebook.thrift.protocol.TProtocol;
 import com.facebook.thrift.transport.THeaderTransport;
+import com.facebook.thrift.transport.THttp2Client;
 import com.facebook.thrift.transport.TSocket;
 import com.facebook.thrift.transport.TTransport;
 import com.facebook.thrift.transport.TTransportException;
@@ -33,6 +35,7 @@
 import java.util.Collections;
 import java.util.Map;
 import javax.net.ssl.SSLSocketFactory;
+import javax.net.ssl.TrustManager;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
@@ -41,23 +44,30 @@ public class SyncConnection extends Connection {
 
     private static final Logger LOGGER = LoggerFactory.getLogger(SyncConnection.class);
 
-    protected THeaderTransport transport = null;
-    protected THeaderProtocol protocol = null;
+    protected TTransport transport = null;
+    protected TProtocol protocol = null;
     private GraphService.Client client = null;
     private int timeout = 0;
     private SSLParam sslParam = null;
     private boolean enabledSsl = false;
     private SSLSocketFactory sslSocketFactory = null;
+    private boolean useHttp2 = false;
 
     @Override
     public void open(HostAddress address, int timeout, SSLParam sslParam)
             throws IOErrorException, ClientServerIncompatibleException {
-        try {
+        this.open(address, timeout, sslParam, false);
+    }
 
+    @Override
+    public void open(HostAddress address, int timeout, SSLParam sslParam, boolean isUseHttp2)
+            throws IOErrorException, ClientServerIncompatibleException {
+        try {
             this.serverAddr = address;
             this.timeout = timeout <= 0 ? Integer.MAX_VALUE : timeout;
             this.enabledSsl = true;
             this.sslParam = sslParam;
+            this.useHttp2 = isUseHttp2;
             if (sslSocketFactory == null) {
                 if (sslParam.getSignMode() == SSLParam.SignMode.CA_SIGNED) {
                     sslSocketFactory =
@@ -67,10 +77,12 @@ public void open(HostAddress address, int timeout, SSLParam sslParam)
                             SslUtil.getSSLSocketFactoryWithoutCA((SelfSignedSSLParam) sslParam);
                 }
             }
-            this.transport = new THeaderTransport(new TSocket(
-                    sslSocketFactory.createSocket(address.getHost(),
-                            address.getPort()), this.timeout, this.timeout));
-            this.protocol = new THeaderProtocol(transport);
+            if (isUseHttp2) {
+                getProtocolWithTlsHttp2();
+            } else {
+                getProtocolForTls();
+            }
+
             client = new GraphService.Client(protocol);
 
             // check if client version matches server version
@@ -88,15 +100,26 @@ public void open(HostAddress address, int timeout, SSLParam sslParam)
     }
 
     @Override
-    public void open(HostAddress address, int timeout)
+    public void open(HostAddress address, int timeout) throws IOErrorException,
+            ClientServerIncompatibleException {
+        this.open(address, timeout, false);
+    }
+
+    @Override
+    public void open(HostAddress address, int timeout, boolean isUseHttp2)
             throws IOErrorException, ClientServerIncompatibleException {
         try {
             this.serverAddr = address;
             this.timeout = timeout <= 0 ? Integer.MAX_VALUE : timeout;
+            if (isUseHttp2) {
+                getProtocolForHttp2();
+            } else {
+                getProtocol();
+            }
             this.transport = new THeaderTransport(new TSocket(
                     address.getHost(), address.getPort(), this.timeout, this.timeout));
             this.transport.open();
-            this.protocol = new THeaderProtocol(transport);
+            this.protocol = new THeaderProtocol((THeaderTransport) transport);
             client = new GraphService.Client(protocol);
 
             // check if client version matches server version
@@ -112,6 +135,58 @@ public void open(HostAddress address, int timeout)
         }
     }
 
+    /**
+     * create protocol for http2 with tls
+     */
+    private void getProtocolWithTlsHttp2() {
+        String url = "https://" + serverAddr.getHost() + ":" + serverAddr.getPort();
+        TrustManager trustManager;
+        if (SslUtil.getTrustManagers() == null || SslUtil.getTrustManagers().length == 0) {
+            trustManager = null;
+        } else {
+            trustManager = SslUtil.getTrustManagers()[0];
+        }
+        this.transport = new THttp2Client(url, sslSocketFactory, trustManager)
+                .setConnectTimeout(timeout)
+                .setReadTimeout(timeout);
+        transport.open();
+        this.protocol = new TBinaryProtocol(transport);
+    }
+
+    /**
+     * create protocol for http2 without tls
+     */
+    private void getProtocolForTls() throws IOException {
+        this.transport = new THeaderTransport(new TSocket(
+                sslSocketFactory.createSocket(serverAddr.getHost(),
+                        serverAddr.getPort()), this.timeout, this.timeout));
+        transport.open();
+        this.protocol = new THeaderProtocol((THeaderTransport) transport);
+    }
+
+    /**
+     * create protocol for http2
+     */
+    private void getProtocolForHttp2() {
+        String url = "http://" + serverAddr.getHost() + ":" + serverAddr.getPort();
+        this.transport = new THttp2Client(url)
+                .setConnectTimeout(timeout)
+                .setReadTimeout(timeout);
+        transport.open();
+        this.protocol = new TBinaryProtocol(transport);
+    }
+
+    /**
+     * create protocol for tcp
+     */
+    private void getProtocol() {
+        this.transport = new THeaderTransport(new TSocket(
+                serverAddr.getHost(), serverAddr.getPort(), this.timeout, this.timeout));
+        transport.open();
+        this.protocol = new THeaderProtocol((THeaderTransport) transport);
+    }
+
+
     /*
      * Because the code generated by Fbthrift does not handle the seqID,
      * the message will be dislocation when the timeout occurs,
@@ -126,9 +201,9 @@ public void open(HostAddress address, int timeout)
     public void reopen() throws IOErrorException, ClientServerIncompatibleException {
         close();
         if (enabledSsl) {
-            open(serverAddr, timeout, sslParam);
+            open(serverAddr, timeout, sslParam, useHttp2);
         } else {
-            open(serverAddr, timeout);
+            open(serverAddr, timeout, useHttp2);
         }
     }
 
@@ -257,6 +332,7 @@ public boolean ping(long sessionID) {
     public void close() {
         if (transport != null && transport.isOpen()) {
             transport.close();
+            transport = null;
         }
     }
 
diff --git a/client/src/main/java/com/vesoft/nebula/util/SslUtil.java b/client/src/main/java/com/vesoft/nebula/util/SslUtil.java
index 82133e95e..c31672bda 100644
--- a/client/src/main/java/com/vesoft/nebula/util/SslUtil.java
+++ b/client/src/main/java/com/vesoft/nebula/util/SslUtil.java
@@ -16,6 +16,7 @@
 import javax.net.ssl.KeyManagerFactory;
 import javax.net.ssl.SSLContext;
 import javax.net.ssl.SSLSocketFactory;
+import javax.net.ssl.TrustManager;
 import javax.net.ssl.TrustManagerFactory;
 import org.bouncycastle.cert.X509CertificateHolder;
 import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
@@ -32,6 +33,8 @@
 public class SslUtil {
     private static final Logger LOGGER = LoggerFactory.getLogger(SslUtil.class);
 
+    private static TrustManager[] trustManagers;
+
     public static SSLSocketFactory getSSLSocketFactoryWithCA(CASignedSSLParam param) {
         final String caCrtFile = param.getCaCrtFilePath();
         final String crtFile = param.getCrtFilePath();
@@ -117,6 +120,8 @@ public static SSLSocketFactory getSSLSocketFactoryWithCA(CASignedSSLParam param)
             context.init(keyManagerFactory.getKeyManagers(),
                     trustManagerFactory.getTrustManagers(), null);
 
+
+            trustManagers = trustManagerFactory.getTrustManagers();
             // Return the newly created socket factory object
             return context.getSocketFactory();
 
@@ -176,8 +181,10 @@ public static SSLSocketFactory getSSLSocketFactoryWithoutCA(SelfSignedSSLParam p
             }
 
             X509Certificate cert = certificateConverter.getCertificate(certHolder);
+
             // certificate is used to authenticate server
             KeyStore keyStore = KeyStore.getInstance(KeyStore.getDefaultType());
+            System.out.println(keyStore);
             keyStore.load(null, null);
             keyStore.setCertificateEntry("certificate", cert);
 
@@ -201,12 +208,16 @@ public static SSLSocketFactory getSSLSocketFactoryWithoutCA(SelfSignedSSLParam p
             context.init(keyManagerFactory.getKeyManagers(),
                     trustManagerFactory.getTrustManagers(), null);
 
+            trustManagers = trustManagerFactory.getTrustManagers();
             // Return the newly created socket factory object
             return context.getSocketFactory();
         } catch (Exception e) {
             LOGGER.error(e.getMessage());
+            throw new RuntimeException(e);
         }
+    }
 
-        return null;
+    public static TrustManager[] getTrustManagers() {
+        return trustManagers;
     }
 }

From 9f3c34233458ad559f42a0c8cb6f6b05f84e9360 Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 13:43:19 +0800
Subject: [PATCH 2/8] add example for use http2 and ssl

---
 examples/pom.xml                              | 103 ++++++++----
 .../GraphSessionPoolWithHttp2Example.java     | 156 ++++++++++++++++++
 examples/src/main/resources/ssl/root.crt      |  16 ++
 examples/src/main/resources/ssl/server.crt    |  13 ++
 examples/src/main/resources/ssl/server.key    |  15 ++
 5 files changed, 268 insertions(+), 35 deletions(-)
 create mode 100644 examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
 create mode 100644 examples/src/main/resources/ssl/root.crt
 create mode 100644 examples/src/main/resources/ssl/server.crt
 create mode 100644 examples/src/main/resources/ssl/server.key

diff --git a/examples/pom.xml b/examples/pom.xml
index 335babf0f..b800916a8 100644
--- a/examples/pom.xml
+++ b/examples/pom.xml
@@ -13,6 +13,39 @@
 
     <build>
         <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-assembly-plugin</artifactId>
+                <version>2.5.3</version>
+                <executions>
+                    <execution>
+                        <phase>package</phase>
+                        <goals>
+                            <goal>single</goal>
+                        </goals>
+                    </execution>
+                </executions>
+                <configuration>
+                    <descriptorRefs>
+                        <descriptorRef>jar-with-dependencies</descriptorRef>
+                    </descriptorRefs>
+                    <finalName>${project.artifactId}-${project.version}-jar-with-dependencies</finalName>
+                    <appendAssemblyId>false</appendAssemblyId>
+                </configuration>
+            </plugin>
+            <!-- maven-jar -->
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-jar-plugin</artifactId>
+                <version>3.2.0</version>
+                <executions>
+                    <execution>
+                        <goals>
+                            <goal>test-jar</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
             <plugin>
                 <groupId>org.apache.maven.plugins</groupId>
                 <artifactId>maven-deploy-plugin</artifactId>
@@ -68,41 +101,41 @@
                     <executable>maven</executable>
                 </configuration>
             </plugin>
-            <plugin>
-                <groupId>org.apache.maven.plugins</groupId>
-                <artifactId>maven-checkstyle-plugin</artifactId>
-                <version>3.1.0</version>
-                <configuration>
-                    <configLocation>
-                        ${project.parent.basedir}/nebula_java_style_checks.xml
-                    </configLocation>
-                    <sourceDirectories>
-                        ${project.build.sourceDirectory}
-                    </sourceDirectories>
-                    <encoding>UTF-8</encoding>
-                    <failOnViolation>true</failOnViolation>
-                    <linkXRef>false</linkXRef>
-                    <includeTestSourceDirectory>true</includeTestSourceDirectory>
-                    <maxAllowedViolations>0</maxAllowedViolations>
-                    <violationSeverity>warning</violationSeverity>
-                </configuration>
-                <executions>
-                    <execution>
-                        <id>checkstyle</id>
-                        <phase>validate</phase>
-                        <goals>
-                            <goal>check</goal>
-                        </goals>
-                    </execution>
-                </executions>
-                <dependencies>
-                    <dependency>
-                        <groupId>com.puppycrawl.tools</groupId>
-                        <artifactId>checkstyle</artifactId>
-                        <version>8.29</version>
-                    </dependency>
-                </dependencies>
-            </plugin>
+<!--            <plugin>-->
+<!--                <groupId>org.apache.maven.plugins</groupId>-->
+<!--                <artifactId>maven-checkstyle-plugin</artifactId>-->
+<!--                <version>3.1.0</version>-->
+<!--                <configuration>-->
+<!--                    <configLocation>-->
+<!--                        ${project.parent.basedir}/nebula_java_style_checks.xml-->
+<!--                    </configLocation>-->
+<!--                    <sourceDirectories>-->
+<!--                        ${project.build.sourceDirectory}-->
+<!--                    </sourceDirectories>-->
+<!--                    <encoding>UTF-8</encoding>-->
+<!--                    <failOnViolation>true</failOnViolation>-->
+<!--                    <linkXRef>false</linkXRef>-->
+<!--                    <includeTestSourceDirectory>true</includeTestSourceDirectory>-->
+<!--                    <maxAllowedViolations>0</maxAllowedViolations>-->
+<!--                    <violationSeverity>warning</violationSeverity>-->
+<!--                </configuration>-->
+<!--                <executions>-->
+<!--                    <execution>-->
+<!--                        <id>checkstyle</id>-->
+<!--                        <phase>validate</phase>-->
+<!--                        <goals>-->
+<!--                            <goal>check</goal>-->
+<!--                        </goals>-->
+<!--                    </execution>-->
+<!--                </executions>-->
+<!--                <dependencies>-->
+<!--                    <dependency>-->
+<!--                        <groupId>com.puppycrawl.tools</groupId>-->
+<!--                        <artifactId>checkstyle</artifactId>-->
+<!--                        <version>8.29</version>-->
+<!--                    </dependency>-->
+<!--                </dependencies>-->
+<!--            </plugin>-->
         </plugins>
     </build>
 
diff --git a/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
new file mode 100644
index 000000000..6f17d4a49
--- /dev/null
+++ b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
@@ -0,0 +1,156 @@
+/* Copyright (c) 2023 vesoft inc. All rights reserved.
+ *
+ * This source code is licensed under Apache 2.0 License.
+ */
+package com.vesoft.nebula.examples;
+
+import com.vesoft.nebula.client.graph.NebulaPoolConfig;
+import com.vesoft.nebula.client.graph.SessionPool;
+import com.vesoft.nebula.client.graph.SessionPoolConfig;
+import com.vesoft.nebula.client.graph.data.CASignedSSLParam;
+import com.vesoft.nebula.client.graph.data.HostAddress;
+import com.vesoft.nebula.client.graph.data.ResultSet;
+import com.vesoft.nebula.client.graph.data.SSLParam;
+import com.vesoft.nebula.client.graph.exception.AuthFailedException;
+import com.vesoft.nebula.client.graph.exception.BindSpaceFailedException;
+import com.vesoft.nebula.client.graph.exception.ClientServerIncompatibleException;
+import com.vesoft.nebula.client.graph.exception.IOErrorException;
+import com.vesoft.nebula.client.graph.net.NebulaPool;
+import com.vesoft.nebula.client.graph.net.Session;
+import java.util.Arrays;
+import java.util.List;
+import java.util.concurrent.CountDownLatch;
+import java.util.concurrent.ExecutorService;
+import java.util.concurrent.Executors;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * when use http2, please call System.exit(0) to exit your process.
+ */
+public class GraphSessionPoolWithHttp2Example {
+    private static final Logger log = LoggerFactory.getLogger(GraphClientExample.class);
+
+    private static String host = "127.0.0.1";
+
+    private static int port = 9669;
+
+    private static String user = "root";
+
+    private static String password = "nebula";
+
+    private static String spaceName = "test";
+
+    private static int parallel = 20;
+
+    private static int executeTimes = 20;
+
+    public static void main(String[] args) {
+        SSLParam sslParam = new CASignedSSLParam(
+                "examples/src/main/resources/ssl/root.crt",
+                "examples/src/main/resources/ssl/server.crt",
+                "examples/src/main/resources/ssl/server.key");
+        prepare(sslParam);
+
+        SessionPoolConfig sessionPoolConfig =
+                new SessionPoolConfig(Arrays.asList(new HostAddress(host, port)), spaceName, user, password)
+                        .setMaxSessionSize(parallel)
+                        .setMinSessionSize(parallel)
+                        .setRetryConnectTimes(3)
+                        .setWaitTime(100)
+                        .setRetryTimes(3)
+                        .setIntervalTime(100)
+                        .setEnableSsl(true)
+                        .setSslParam(sslParam)
+                        .setUseHttp2(true);
+        SessionPool sessionPool = new SessionPool(sessionPoolConfig);
+        if (!sessionPool.init()) {
+            log.error("session pool init failed.");
+            System.exit(-1);
+        }
+
+        executeForSingleThread(sessionPool);
+        executeForMultiThreads(sessionPool);
+
+        sessionPool.close();
+        System.exit(0);
+    }
+
+    /**
+     * execute in single thread
+     */
+    private static void executeForSingleThread(SessionPool sessionPool) {
+        try {
+            ResultSet resultSet = sessionPool.execute("return 1;");
+            System.out.println(resultSet.toString());
+        } catch (IOErrorException | ClientServerIncompatibleException | AuthFailedException
+                 | BindSpaceFailedException e) {
+            e.printStackTrace();
+            sessionPool.close();
+            System.exit(1);
+        }
+    }
+
+    /**
+     * execute in mutil-threads
+     */
+    private static void executeForMultiThreads(SessionPool sessionPool) {
+        ExecutorService executorService = Executors.newFixedThreadPool(parallel);
+        CountDownLatch count = new CountDownLatch(parallel);
+        for (int i = 0; i < parallel; i++) {
+            executorService.submit(() -> {
+                try {
+                    for (int j = 0; j < executeTimes; j++) {
+                        ResultSet result = sessionPool.execute("return 1");
+                        System.out.println(result.toString());
+                    }
+                    count.countDown();
+                } catch (Exception e) {
+                    e.printStackTrace();
+                }
+            });
+        }
+
+        try {
+            count.await();
+        } catch (InterruptedException e) {
+            e.printStackTrace();
+        }
+
+        executorService.shutdown();
+    }
+
+
+    private static void prepare(SSLParam sslParam) {
+        NebulaPool pool = new NebulaPool();
+        Session session;
+        NebulaPoolConfig nebulaPoolConfig = new NebulaPoolConfig();
+        nebulaPoolConfig.setUseHttp2(true);
+        nebulaPoolConfig.setEnableSsl(true);
+        nebulaPoolConfig.setSslParam(sslParam);
+        nebulaPoolConfig.setMaxConnSize(10);
+        List<HostAddress> addresses = Arrays.asList(new HostAddress(host, port));
+        try {
+            boolean initResult = pool.init(addresses, nebulaPoolConfig);
+            if (!initResult) {
+                log.error("pool init failed.");
+                System.exit(-1);
+            }
+
+            session = pool.getSession("root", "nebula", false);
+            ResultSet res = session.execute(
+                    "CREATE SPACE IF NOT EXISTS " + spaceName + "(vid_type=fixed_string(20));"
+                            + "USE test;"
+                            + "CREATE TAG IF NOT EXISTS player(name string, age int);");
+            if (!res.isSucceeded()) {
+                System.out.println(res.getErrorMessage());
+                System.exit(-1);
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+            System.exit(1);
+        } finally {
+            pool.close();
+        }
+    }
+}
diff --git a/examples/src/main/resources/ssl/root.crt b/examples/src/main/resources/ssl/root.crt
new file mode 100644
index 000000000..960e47a95
--- /dev/null
+++ b/examples/src/main/resources/ssl/root.crt
@@ -0,0 +1,16 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/examples/src/main/resources/ssl/server.crt b/examples/src/main/resources/ssl/server.crt
new file mode 100644
index 000000000..1569e6575
--- /dev/null
+++ b/examples/src/main/resources/ssl/server.crt
@@ -0,0 +1,13 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/examples/src/main/resources/ssl/server.key b/examples/src/main/resources/ssl/server.key
new file mode 100644
index 000000000..32337b20d
--- /dev/null
+++ b/examples/src/main/resources/ssl/server.key
@@ -0,0 +1,15 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

From d3dd476c6859d030633bb3839499062ab159d709 Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 14:13:15 +0800
Subject: [PATCH 3/8] update example

---
 .../GraphSessionPoolWithHttp2Example.java     |  5 ++-
 examples/src/main/resources/ssl/root.crt      | 16 --------
 examples/src/main/resources/ssl/server.crt    | 13 -------
 examples/src/main/resources/ssl/server.key    | 38 ++++++++++++-------
 4 files changed, 28 insertions(+), 44 deletions(-)
 delete mode 100644 examples/src/main/resources/ssl/root.crt
 delete mode 100644 examples/src/main/resources/ssl/server.crt
 mode change 100644 => 100755 examples/src/main/resources/ssl/server.key

diff --git a/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
index 6f17d4a49..5b40b7f25 100644
--- a/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
+++ b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
@@ -81,7 +81,7 @@ public static void main(String[] args) {
      */
     private static void executeForSingleThread(SessionPool sessionPool) {
         try {
-            ResultSet resultSet = sessionPool.execute("return 1;");
+            ResultSet resultSet = sessionPool.execute("match(v:player) return v limit 1;");
             System.out.println(resultSet.toString());
         } catch (IOErrorException | ClientServerIncompatibleException | AuthFailedException
                  | BindSpaceFailedException e) {
@@ -101,7 +101,7 @@ private static void executeForMultiThreads(SessionPool sessionPool) {
             executorService.submit(() -> {
                 try {
                     for (int j = 0; j < executeTimes; j++) {
-                        ResultSet result = sessionPool.execute("return 1");
+                        ResultSet result = sessionPool.execute("match(v:player) return v limit 1;");
                         System.out.println(result.toString());
                     }
                     count.countDown();
@@ -142,6 +142,7 @@ private static void prepare(SSLParam sslParam) {
                     "CREATE SPACE IF NOT EXISTS " + spaceName + "(vid_type=fixed_string(20));"
                             + "USE test;"
                             + "CREATE TAG IF NOT EXISTS player(name string, age int);");
+            session.execute("insert vertex player(name,age) values \"1\":(\"Tom\",20);");
             if (!res.isSucceeded()) {
                 System.out.println(res.getErrorMessage());
                 System.exit(-1);
diff --git a/examples/src/main/resources/ssl/root.crt b/examples/src/main/resources/ssl/root.crt
deleted file mode 100644
index 960e47a95..000000000
--- a/examples/src/main/resources/ssl/root.crt
+++ /dev/null
@@ -1,16 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIChDCCAe2gAwIBAgIUOcM29Osli4KkMr0HRPnJW1ujVGIwDQYJKoZIhvcNAQEL
-BQAwLjELMAkGA1UEBhMCQ0gxEDAOBgNVBAoMB3Rlc3QtY2ExDTALBgNVBAMMBHJv
-b3QwHhcNMjMwODIyMDk1MDI2WhcNMjMxMTMwMDk1MDI2WjAuMQswCQYDVQQGEwJD
-SDEQMA4GA1UECgwHdGVzdC1jYTENMAsGA1UEAwwEcm9vdDCBnzANBgkqhkiG9w0B
-AQEFAAOBjQAwgYkCgYEA9GcV+QDe+/cnHjtf6jlR9P3QtaN2X/XCpQ4iJ8t/peg0
-nifkoGE3IkLvqcBzJMkmF7hZmYQMQLERkCOlSzZ/bnpZ5jaUxrlYZOh1M5D78V8g
-kUxzubUgGv+wVTxnAmFAi7z3I5OZmygph5k3q+WrYB9Kq8jdtbAqciXyXwswMisC
-AwEAAaOBnjCBmzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTwam16MJ+pc6R7
-TLLThtKrO4ClmjBpBgNVHSMEYjBggBTwam16MJ+pc6R7TLLThtKrO4ClmqEypDAw
-LjELMAkGA1UEBhMCQ0gxEDAOBgNVBAoMB3Rlc3QtY2ExDTALBgNVBAMMBHJvb3SC
-FDnDNvTrJYuCpDK9B0T5yVtbo1RiMA0GCSqGSIb3DQEBCwUAA4GBANT0Z5gGLt/S
-J0dB+S87zNVmg2g49im33sOAhgTDieOLIzpkbLkd2qhFPrFn+r7letmJnnYfHhWF
-3ZGdPLjDIljyTGawz5nBfbAdwDwW1mY1MH89YYU4wMoVEBd8fcPlZ6vv0bVbKg2A
-89p9ljCihCgr8+xNkSWwhyiqchpSSq6z
------END CERTIFICATE-----
diff --git a/examples/src/main/resources/ssl/server.crt b/examples/src/main/resources/ssl/server.crt
deleted file mode 100644
index 1569e6575..000000000
--- a/examples/src/main/resources/ssl/server.crt
+++ /dev/null
@@ -1,13 +0,0 @@
------BEGIN CERTIFICATE-----
-MIICATCCAWqgAwIBAgIURoMcwkdFzWLyNHFlICETdzGT28owDQYJKoZIhvcNAQEL
-BQAwLjELMAkGA1UEBhMCQ0gxEDAOBgNVBAoMB3Rlc3QtY2ExDTALBgNVBAMMBHJv
-b3QwHhcNMjMwODIyMDk1NDI4WhcNMjMxMTMwMDk1NDI4WjAwMQswCQYDVQQGEwJD
-SDEQMA4GA1UECgwHdGVzdC1jYTEPMA0GA1UEAwwGc2VydmVyMIGfMA0GCSqGSIb3
-DQEBAQUAA4GNADCBiQKBgQDkAJ4sWfpjqe+PZAqD660vG33MSmy6wZsoEXXR855s
-n+oU35jNX5MI9SS71ZZCQQYK9EXnCrja3O3eZde8nYWnwJsU6vhBVwJ9+b7T2O09
-wgRfephBEVfNZ7xFn3Ls2r61TgnjKItxyecoPazewX6UQUCHrcwCRd96c/F2IRA1
-jwIDAQABoxowGDAWBgNVHREEDzANggtrOHMtbm9kZS0xMTANBgkqhkiG9w0BAQsF
-AAOBgQB4A2k32vUGyfCgihvI+s3JN7vbwyCpRJYGitMsqBzplLF+jPjz+fGxvwhh
-Y8nZaDk1N32t1ymvKk4cqp197hwx68d4Bc6FdewrPn4J15ReP65j1YASBt2GsRvG
-Njj0moHgdtrwYfn7+xcamQIc7nRShTXVRfcbdNljLPgNaL+ljw==
------END CERTIFICATE-----
diff --git a/examples/src/main/resources/ssl/server.key b/examples/src/main/resources/ssl/server.key
old mode 100644
new mode 100755
index 32337b20d..861c70273
--- a/examples/src/main/resources/ssl/server.key
+++ b/examples/src/main/resources/ssl/server.key
@@ -1,15 +1,27 @@
 -----BEGIN RSA PRIVATE KEY-----
-MIICXAIBAAKBgQDkAJ4sWfpjqe+PZAqD660vG33MSmy6wZsoEXXR855sn+oU35jN
-X5MI9SS71ZZCQQYK9EXnCrja3O3eZde8nYWnwJsU6vhBVwJ9+b7T2O09wgRfephB
-EVfNZ7xFn3Ls2r61TgnjKItxyecoPazewX6UQUCHrcwCRd96c/F2IRA1jwIDAQAB
-AoGAVtXlZ/7c3hhapMH1P0kDLG3L+4Jc5sPV0+zScqPWMoi1Hj4KdC1yUncLBn7S
-O2mIY6Ok+9mZjcGW1pzzDWLxA7qu64ok3RSfynpdC6/RRAzeeH0T8NBZMRzhj2Yq
-snDQGDEryctOSh9J/5vX0LU1SHV121f0yiZk18e5dlu3wAECQQD61nb6VzGgsBi5
-EmWgmLah4itzS6JBV8+hEzq12R6uXn0evLuVijn9QqrUtmwHL3f8aYCiYQ5IhqP9
-utQwSxdPAkEA6LHYbn3ejFf79W/6j1X3EAaUPP9ZhGkAgOOqV0goec5nbu6u4tb8
-6VF3HTw6JJYG00xaRFwpiVY7F4NzxkltwQJBAOCOCmlGkckWnKtiCtTgoe7+eIN4
-3EK/B8NdYZvWSZ80O7K+pvfSjONrQV+4B7HPDw1KrbuwQ4ct8bV+AeNR9gUCQEiy
-v3aNtojMODiO+o3rgpusIoYIFPSMRY7/EcnhDlw3wxLiWRsfpbZTME6e8V9ay9kZ
-4p222XdBzIZlGDeb20ECQCNsZNC0qlJnDpn9RvRlXRMFSJlVNW1IyVXpAKysnANz
-L8H4gHy5vMt814TqvzsHhcpJ9CPWEa4FU+u+oigfIlU=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 -----END RSA PRIVATE KEY-----

From c9a33e07a6a4eb6f873bbb7aaffb117fd532b5b1 Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 14:18:37 +0800
Subject: [PATCH 4/8] format code style

---
 examples/pom.xml                              | 70 +++++++++----------
 .../GraphSessionPoolWithHttp2Example.java     |  5 +-
 examples/src/main/resources/ssl/root.crt      | 21 ++++++
 examples/src/main/resources/ssl/server.crt    | 19 +++++
 4 files changed, 78 insertions(+), 37 deletions(-)
 create mode 100644 examples/src/main/resources/ssl/root.crt
 create mode 100644 examples/src/main/resources/ssl/server.crt

diff --git a/examples/pom.xml b/examples/pom.xml
index b800916a8..0bf73b3c8 100644
--- a/examples/pom.xml
+++ b/examples/pom.xml
@@ -101,41 +101,41 @@
                     <executable>maven</executable>
                 </configuration>
             </plugin>
-<!--            <plugin>-->
-<!--                <groupId>org.apache.maven.plugins</groupId>-->
-<!--                <artifactId>maven-checkstyle-plugin</artifactId>-->
-<!--                <version>3.1.0</version>-->
-<!--                <configuration>-->
-<!--                    <configLocation>-->
-<!--                        ${project.parent.basedir}/nebula_java_style_checks.xml-->
-<!--                    </configLocation>-->
-<!--                    <sourceDirectories>-->
-<!--                        ${project.build.sourceDirectory}-->
-<!--                    </sourceDirectories>-->
-<!--                    <encoding>UTF-8</encoding>-->
-<!--                    <failOnViolation>true</failOnViolation>-->
-<!--                    <linkXRef>false</linkXRef>-->
-<!--                    <includeTestSourceDirectory>true</includeTestSourceDirectory>-->
-<!--                    <maxAllowedViolations>0</maxAllowedViolations>-->
-<!--                    <violationSeverity>warning</violationSeverity>-->
-<!--                </configuration>-->
-<!--                <executions>-->
-<!--                    <execution>-->
-<!--                        <id>checkstyle</id>-->
-<!--                        <phase>validate</phase>-->
-<!--                        <goals>-->
-<!--                            <goal>check</goal>-->
-<!--                        </goals>-->
-<!--                    </execution>-->
-<!--                </executions>-->
-<!--                <dependencies>-->
-<!--                    <dependency>-->
-<!--                        <groupId>com.puppycrawl.tools</groupId>-->
-<!--                        <artifactId>checkstyle</artifactId>-->
-<!--                        <version>8.29</version>-->
-<!--                    </dependency>-->
-<!--                </dependencies>-->
-<!--            </plugin>-->
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-checkstyle-plugin</artifactId>
+                <version>3.1.0</version>
+                <configuration>
+                    <configLocation>
+                        ${project.parent.basedir}/nebula_java_style_checks.xml
+                    </configLocation>
+                    <sourceDirectories>
+                        ${project.build.sourceDirectory}
+                    </sourceDirectories>
+                    <encoding>UTF-8</encoding>
+                    <failOnViolation>true</failOnViolation>
+                    <linkXRef>false</linkXRef>
+                    <includeTestSourceDirectory>true</includeTestSourceDirectory>
+                    <maxAllowedViolations>0</maxAllowedViolations>
+                    <violationSeverity>warning</violationSeverity>
+                </configuration>
+                <executions>
+                    <execution>
+                        <id>checkstyle</id>
+                        <phase>validate</phase>
+                        <goals>
+                            <goal>check</goal>
+                        </goals>
+                    </execution>
+                </executions>
+                <dependencies>
+                    <dependency>
+                        <groupId>com.puppycrawl.tools</groupId>
+                        <artifactId>checkstyle</artifactId>
+                        <version>8.29</version>
+                    </dependency>
+                </dependencies>
+            </plugin>
         </plugins>
     </build>
 
diff --git a/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
index 5b40b7f25..e137340ee 100644
--- a/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
+++ b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
@@ -2,6 +2,7 @@
  *
  * This source code is licensed under Apache 2.0 License.
  */
+
 package com.vesoft.nebula.examples;
 
 import com.vesoft.nebula.client.graph.NebulaPoolConfig;
@@ -52,8 +53,8 @@ public static void main(String[] args) {
                 "examples/src/main/resources/ssl/server.key");
         prepare(sslParam);
 
-        SessionPoolConfig sessionPoolConfig =
-                new SessionPoolConfig(Arrays.asList(new HostAddress(host, port)), spaceName, user, password)
+        SessionPoolConfig sessionPoolConfig = new SessionPoolConfig(
+                Arrays.asList(new HostAddress(host, port)), spaceName, user, password)
                         .setMaxSessionSize(parallel)
                         .setMinSessionSize(parallel)
                         .setRetryConnectTimes(3)
diff --git a/examples/src/main/resources/ssl/root.crt b/examples/src/main/resources/ssl/root.crt
new file mode 100644
index 000000000..6fd938602
--- /dev/null
+++ b/examples/src/main/resources/ssl/root.crt
@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----
+MIIDiTCCAnGgAwIBAgIUEXgJM36pHqMj9xpMOV+bIeLd8BkwDQYJKoZIhvcNAQEL
+BQAwLjELMAkGA1UEBhMCQ0gxEDAOBgNVBAoMB3Rlc3QtY2ExDTALBgNVBAMMBHJv
+b3QwHhcNMjMwOTA2MDMzNDI3WhcNMzMwOTAzMDMzNDI3WjAuMQswCQYDVQQGEwJD
+SDEQMA4GA1UECgwHdGVzdC1jYTENMAsGA1UEAwwEcm9vdDCCASIwDQYJKoZIhvcN
+AQEBBQADggEPADCCAQoCggEBAMjXEshOucs4SFJkJl9GUvWdN5u0mZszwlHSQZUH
+LrxRq6Z7QVm++9tDFp68FlQhEms9MTxe/ggPwLY+lpWl3QKQGGazeFSOjD6nlT0r
+FmN4G52yryP8F3VOt3APc+NRVNJHMjzyeicxVzCcfzEuII3QZVKh3QVofmhIqJDn
+RRYeFcTUOHNQygCoE3alsAv25PKpQN7H/9TefwCkuS37an4ZJm+nskM+CkDwCsai
+Hu29C7VL/TspXEtmvat52biZVY/si2vmITXZky1Sfg+FKIrdsnhEsFgTaOamn8iG
+tWrSqOdxwdRgUlfXT0I+SXCuG4qWQXWZ7oKK3pSrGc0p4p0CAwEAAaOBnjCBmzAP
+BgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQcsh7OkAUiljB9oah4A7hpk+y5VTBp
+BgNVHSMEYjBggBQcsh7OkAUiljB9oah4A7hpk+y5VaEypDAwLjELMAkGA1UEBhMC
+Q0gxEDAOBgNVBAoMB3Rlc3QtY2ExDTALBgNVBAMMBHJvb3SCFBF4CTN+qR6jI/ca
+TDlfmyHi3fAZMA0GCSqGSIb3DQEBCwUAA4IBAQBI+HZE8KlSHDo8Az5+0TZWwKlO
+D/aVAh7O7Amhxp0ukM/tOFymdBZ5J5GrlsEmgJCHX2WkGXIH+i8X67Q6VaA0bWN5
+6Wz+cA9XEyK44j2H5lHubbyIuE9qx71s6QW1u/w7YvK+vyd4K4G4jD2IIwNLiCUd
+gwuxG2elVxY2qqPLBNqjkWWLZ6N/LfJ4/qJ/hsl7h6g1OzwRZE+6wOZ2Bik8IA/R
+k6m+JhBww4FQp6lfroVKshNBmFfY4TiwLHjQ5CtnDdoktsZBvQkK6pVBGtXR5yPf
+AA/+vjiwuxueF97h9lUs1eDW2s3zkW1hOHkc/0lhgX6WBmkgDdjz7FEOi3hh
+-----END CERTIFICATE-----
diff --git a/examples/src/main/resources/ssl/server.crt b/examples/src/main/resources/ssl/server.crt
new file mode 100644
index 000000000..7b3bc178d
--- /dev/null
+++ b/examples/src/main/resources/ssl/server.crt
@@ -0,0 +1,19 @@
+-----BEGIN CERTIFICATE-----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=
+-----END CERTIFICATE-----

From 05d6e79621a7994aca761ea31b49ddd094fd6047 Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 14:59:45 +0800
Subject: [PATCH 5/8] add ping failed stack

---
 .../vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java   | 1 +
 1 file changed, 1 insertion(+)

diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
index c4da59766..6c4b9d1e9 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
@@ -103,6 +103,7 @@ public boolean ping(HostAddress addr) {
             connection.close();
             return pong;
         } catch (IOErrorException e) {
+            e.printStackTrace();
             return false;
         } catch (ClientServerIncompatibleException e) {
             LOGGER.error("version verify failed, ", e);

From 4f22c4a690203d6e01981e00d7b003816bc34c48 Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 16:00:37 +0800
Subject: [PATCH 6/8] fix socket open for tls

---
 .../java/com/vesoft/nebula/client/graph/net/SyncConnection.java  | 1 -
 1 file changed, 1 deletion(-)

diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java
index cb5d30225..641558e19 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/SyncConnection.java
@@ -160,7 +160,6 @@ private void getProtocolForTls() throws IOException {
         this.transport = new THeaderTransport(new TSocket(
                 sslSocketFactory.createSocket(serverAddr.getHost(),
                         serverAddr.getPort()), this.timeout, this.timeout));
-        transport.open();
         this.protocol = new THeaderProtocol((THeaderTransport) transport);
     }
 

From a40bcdeb723503860eafeedb410af98b0a1910f4 Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 16:01:37 +0800
Subject: [PATCH 7/8] revert ping failed stack

---
 .../vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java   | 1 -
 1 file changed, 1 deletion(-)

diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java b/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
index 6c4b9d1e9..c4da59766 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/net/RoundRobinLoadBalancer.java
@@ -103,7 +103,6 @@ public boolean ping(HostAddress addr) {
             connection.close();
             return pong;
         } catch (IOErrorException e) {
-            e.printStackTrace();
             return false;
         } catch (ClientServerIncompatibleException e) {
             LOGGER.error("version verify failed, ", e);

From 34fdd4f3242ac7d090fc709010676395ed0cd8e2 Mon Sep 17 00:00:00 2001
From: Anqi <anqi.wang@vesoft.com>
Date: Wed, 6 Sep 2023 18:16:01 +0800
Subject: [PATCH 8/8] fix comment:add log for close error & add isOpen logic

---
 .../com/facebook/thrift/transport/THttp2Client.java | 13 ++++---------
 .../nebula/client/graph/SessionPoolConfig.java      |  2 ++
 .../examples/GraphSessionPoolWithHttp2Example.java  |  8 ++++----
 3 files changed, 10 insertions(+), 13 deletions(-)

diff --git a/client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java b/client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java
index 80557b7b0..334be15d1 100644
--- a/client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java
+++ b/client/src/main/fbthrift/com/facebook/thrift/transport/THttp2Client.java
@@ -5,17 +5,12 @@
 
 package com.facebook.thrift.transport;
 
-import static java.time.LocalTime.now;
+import com.facebook.thrift.utils.Logger;
 import java.io.ByteArrayOutputStream;
-import java.util.Arrays;
-import java.util.concurrent.TimeUnit;
-import java.util.concurrent.atomic.AtomicBoolean;
 import javax.net.ssl.SSLSocketFactory;
 import javax.net.ssl.TrustManager;
-import javax.net.ssl.X509TrustManager;
 import okhttp3.MediaType;
 import okhttp3.OkHttpClient;
-import okhttp3.Protocol;
 import okhttp3.Request;
 import okhttp3.RequestBody;
 import okhttp3.Response;
@@ -23,9 +18,9 @@
 import java.io.IOException;
 import java.util.HashMap;
 import java.util.Map;
-import org.checkerframework.checker.units.qual.A;
 
 public class THttp2Client extends TTransport {
+    private static final Logger LOGGER = Logger.getLogger(THttp2Client.class.getName());
 
     private final ByteArrayOutputStream requestBuffer = new ByteArrayOutputStream();
     private ResponseBody responseBody = null;
@@ -87,13 +82,13 @@ public void close() {
 
             requestBuffer.close();
         } catch (IOException e) {
-            // ignore
+            LOGGER.warn(e.getMessage());
         }
         OkHttp3Util.close();
     }
 
     public boolean isOpen() {
-        return true;
+        return client != null;
     }
 
     public int read(byte[] buf, int off, int len) throws TTransportException {
diff --git a/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java b/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java
index 5dfcb4158..5a9fb3fcf 100644
--- a/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java
+++ b/client/src/main/java/com/vesoft/nebula/client/graph/SessionPoolConfig.java
@@ -258,6 +258,8 @@ public String toString() {
                 + ", retryTimes=" + retryTimes
                 + ", intervalTIme=" + intervalTime
                 + ", reconnect=" + reconnect
+                + ", enableSsl=" + enableSsl
+                + ",sslParam=" + sslParam
                 + ", useHttp2=" + useHttp2
                 + '}';
     }
diff --git a/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
index e137340ee..4f40d5f94 100644
--- a/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
+++ b/examples/src/main/java/com/vesoft/nebula/examples/GraphSessionPoolWithHttp2Example.java
@@ -32,9 +32,9 @@
 public class GraphSessionPoolWithHttp2Example {
     private static final Logger log = LoggerFactory.getLogger(GraphClientExample.class);
 
-    private static String host = "127.0.0.1";
+    private static String host = "192.168.8.202";
 
-    private static int port = 9669;
+    private static int port = 9119;
 
     private static String user = "root";
 
@@ -63,7 +63,7 @@ public static void main(String[] args) {
                         .setIntervalTime(100)
                         .setEnableSsl(true)
                         .setSslParam(sslParam)
-                        .setUseHttp2(true);
+                        .setUseHttp2(false);
         SessionPool sessionPool = new SessionPool(sessionPoolConfig);
         if (!sessionPool.init()) {
             log.error("session pool init failed.");
@@ -126,7 +126,7 @@ private static void prepare(SSLParam sslParam) {
         NebulaPool pool = new NebulaPool();
         Session session;
         NebulaPoolConfig nebulaPoolConfig = new NebulaPoolConfig();
-        nebulaPoolConfig.setUseHttp2(true);
+        nebulaPoolConfig.setUseHttp2(false);
         nebulaPoolConfig.setEnableSsl(true);
         nebulaPoolConfig.setSslParam(sslParam);
         nebulaPoolConfig.setMaxConnSize(10);