[
https://issues.apache.org/jira/browse/HADOOP-18919?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17776240#comment-17776240
]
ASF GitHub Bot commented on HADOOP-18919:
-----------------------------------------
ferdelyi commented on PR #6194:
URL: https://github.com/apache/hadoop/pull/6194#issuecomment-1766546738
> Could you take a look at this @ferdelyi? I saw that you worked on both
#5638 and #6114.
>
> I moved some code that you added from ZKCuratorManager to SecurityUtil, so
I could use it when we are using ZooKeeper without Curator in ZKFC. I also did
some changes in Yarn in this patch, where I am creating an ActiveStandbyElector
with a TruststoreKeystore based on the Yarn SSL configs. Do you think it is the
right way to do that?
Thank you @dombizita for reaching out. We discussed it in a call. Looks good
to me and great work!
> Zookeeper SSL/TLS support in HDFS ZKFC
> --------------------------------------
>
> Key: HADOOP-18919
> URL: https://issues.apache.org/jira/browse/HADOOP-18919
> Project: Hadoop Common
> Issue Type: Improvement
> Reporter: Zita Dombi
> Assignee: Zita Dombi
> Priority: Major
> Labels: pull-request-available
>
> HADOOP-18709 added support for Zookeeper to communicate with SSL/TLS enabled
> in hadoop-common. With those changes we have the necessary parameters, that
> we need to set to enable SSL/TLS in a ZK Client.
> In YARN-11468 the SSL communication can be set in Yarn, now we need to
> similar changes in HDFS to enable it correctly. In HDFS ZK Client is used in
> the Failover Controller. In this improvement we need to create the ZK client
> with the necessary SSL configs if we enable it, which we can track under a
> new HDFS config.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
