This is an automated email from the ASF dual-hosted git repository.
penghui pushed a change to branch branch-2.9
in repository https://gitbox.apache.org/repos/asf/pulsar.git
from 278531f2f92 [Broker/Client] Close connection if a ping or pong message
cannot be sent (#15382)
new f2bb45b7de8 Use tlsCertRefreshCheckDurationSec instead of 0 for
refresh value (#15075)
new c509e4b7982 Add KeyStore support in WebSocket, Function Worker HTTPS
Servers (#15084)
new a118ab953ed [improve][broker-web&websocket&proxy&function-worker]
Full-support set ssl provider, ciphers and protocols (#13740)
The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
conf/broker.conf | 5 +
conf/functions_worker.yml | 40 +++++
conf/proxy.conf | 32 ++++
conf/standalone.conf | 3 +
conf/websocket.conf | 35 ++++
docker/pulsar/scripts/gen-yml-from-env.py | 4 +-
.../apache/pulsar/broker/ServiceConfiguration.java | 23 ++-
.../org/apache/pulsar/jetty}/package-info.java | 2 +-
.../pulsar/jetty/tls/JettySslContextFactory.java | 116 +++++++++++++
.../org/apache/pulsar/jetty/tls}/package-info.java | 2 +-
.../jetty/tls/JettySslContextFactoryTest.java | 174 +++++++++++++++++++
.../JettySslContextFactoryWithKeyStoreTest.java | 193 +++++++++++++++++++++
.../src/test/resources/ssl/jetty_client_key.jks | Bin
.../src/test/resources/ssl/jetty_client_trust.jks | Bin
.../src/test/resources/ssl/jetty_server_key.jks | Bin
.../src/test/resources/ssl/jetty_server_trust.jks | Bin
.../src/test/resources/ssl/my-ca/ca.pem | 0
.../src/test/resources/ssl/my-ca/client-ca.pem | 0
.../src/test/resources/ssl/my-ca/client-key.pem | 0
.../src/test/resources/ssl/my-ca/server-ca.pem | 0
.../src/test/resources/ssl/my-ca/server-key.pem | 0
.../org/apache/pulsar/broker/PulsarService.java | 2 +
.../org/apache/pulsar/broker/web/WebService.java | 16 +-
.../proxy/ProxyPublishConsumeTlsTest.java | 2 +-
pulsar-common/pom.xml | 5 -
.../common/util/DefaultSslContextBuilder.java | 23 ++-
.../apache/pulsar/common/util/SecurityUtility.java | 74 +++-----
.../util/keystoretls/KeyStoreSSLContext.java | 57 +-----
.../SslContextFactoryWithAutoRefresh.java | 66 -------
.../pulsar/functions/worker/WorkerConfig.java | 75 +++++++-
.../worker/WorkerApiV2ResourceConfigTest.java | 18 +-
.../functions/worker/PulsarWorkerService.java | 10 +-
.../pulsar/functions/worker/rest/WorkerServer.java | 39 ++++-
.../pulsar/proxy/server/AdminProxyHandler.java | 14 +-
.../pulsar/proxy/server/ProxyConfiguration.java | 21 +++
.../org/apache/pulsar/proxy/server/WebServer.java | 15 +-
.../pulsar/websocket/service/ProxyServer.java | 40 +++--
.../service/WebSocketProxyConfiguration.java | 63 ++++++-
38 files changed, 934 insertions(+), 235 deletions(-)
copy {pulsar-broker/src/main/java/org/apache/pulsar =>
pulsar-broker-common/src/main/java/org/apache/pulsar/jetty}/package-info.java
(96%)
create mode 100644
pulsar-broker-common/src/main/java/org/apache/pulsar/jetty/tls/JettySslContextFactory.java
copy {pulsar-broker/src/main/java/org/apache/pulsar =>
pulsar-broker-common/src/main/java/org/apache/pulsar/jetty/tls}/package-info.java
(95%)
create mode 100644
pulsar-broker-common/src/test/java/org/apache/pulsar/jetty/tls/JettySslContextFactoryTest.java
create mode 100644
pulsar-broker-common/src/test/java/org/apache/pulsar/jetty/tls/JettySslContextFactoryWithKeyStoreTest.java
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/jetty_client_key.jks (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/jetty_client_trust.jks (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/jetty_server_key.jks (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/jetty_server_trust.jks (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/my-ca/ca.pem (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/my-ca/client-ca.pem (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/my-ca/client-key.pem (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/my-ca/server-ca.pem (100%)
copy {pulsar-common =>
pulsar-broker-common}/src/test/resources/ssl/my-ca/server-key.pem (100%)
delete mode 100644
pulsar-common/src/main/java/org/apache/pulsar/common/util/keystoretls/SslContextFactoryWithAutoRefresh.java
