[jira] [Updated] (HADOOP-14352) Make some HttpServer2 SSL properties optional

Wed, 26 Apr 2017 12:52:53 -0700 

     [ 
https://issues.apache.org/jira/browse/HADOOP-14352?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

John Zhuge updated HADOOP-14352:
--------------------------------
    Attachment: HADOOP-14352.003.patch

Patch 003
* Fix merge issue in 003

Sample exception when keystore location or password not specified:
{noformat}
2017-04-26 12:48:55,145 INFO conf.ConfigurationWithLogging: Got 
ssl.server.keystore.location = 'null'
Exception in thread "main" java.io.IOException: Property 
ssl.server.keystore.location not specified
        at 
org.apache.hadoop.http.HttpServer2$Builder.loadSSLConfiguration(HttpServer2.java:378)
        at 
org.apache.hadoop.http.HttpServer2$Builder.build(HttpServer2.java:419)
        at 
org.apache.hadoop.crypto.key.kms.server.KMSWebServer.<init>(KMSWebServer.java:91)
        at 
org.apache.hadoop.crypto.key.kms.server.KMSWebServer.main(KMSWebServer.java:150)

2017-04-26 12:51:02,975 INFO conf.ConfigurationWithLogging: Got 
ssl.server.keystore.password = '<redacted>'
Exception in thread "main" java.io.IOException: Property 
ssl.server.keystore.password not specified
        at 
org.apache.hadoop.http.HttpServer2$Builder.loadSSLConfiguration(HttpServer2.java:384)
        at 
org.apache.hadoop.http.HttpServer2$Builder.build(HttpServer2.java:419)
        at 
org.apache.hadoop.crypto.key.kms.server.KMSWebServer.<init>(KMSWebServer.java:91)
        at 
org.apache.hadoop.crypto.key.kms.server.KMSWebServer.main(KMSWebServer.java:150)
{noformat}


> Make some HttpServer2 SSL properties optional
> ---------------------------------------------
>
>                 Key: HADOOP-14352
>                 URL: https://issues.apache.org/jira/browse/HADOOP-14352
>             Project: Hadoop Common
>          Issue Type: Improvement
>          Components: kms
>    Affects Versions: 3.0.0-alpha2
>            Reporter: John Zhuge
>            Assignee: John Zhuge
>            Priority: Minor
>         Attachments: HADOOP-14352.001.patch, HADOOP-14352.002.patch, 
> HADOOP-14352.003.patch
>
>
> {{HttpServer2#loadSSLConfiguration}} loads 5 SSL properties but only keystore 
> location and password are required, the rest of them, keystore keypassword, 
> truststore location, and truststore password, can be optional.
> According to 
> http://www.eclipse.org/jetty/documentation/current/configuring-ssl.html:
> * If there is no keymanagerpassword, then the keystorepassword is used 
> instead.
> * Trust store is typically set to the same path as the keystore.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to