[
https://issues.apache.org/jira/browse/ZOOKEEPER-1000?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14151430#comment-14151430
]
Michi Mutsuzaki commented on ZOOKEEPER-1000:
--------------------------------------------
Yes, we used netty and added ssl support:
https://github.com/zk1931/jzab/blob/master/src/main/java/com/github/zk1931/jzab/transport/NettyTransport.java
https://github.com/zk1931/jzab/blob/0ab137d0650b03425df7840972eb9de4ba123030/src/test/java/com/github/zk1931/jzab/transport/NettyTransportTest.java#L519
Right now ZooKeeper supports netty only for client-to-server communication on
the server side (NettyServerCnxn.java). Server-to-server communication uses
java.net.Socket in Leader.java, PeerHandler.java, Learner.java, and
QuorumCnxManager.java. Maybe this issue can be broken into smaller subtasks:
- implement a netty version of ClientCnxnSocket.
- modify Leader.java/PeerHandler.java to use netty.
- modify Learner.java to use netty.
- modify QuorumCnxManager.java to use netty.
Ideally we should have "netty client socket" and "netty server socket" classes
that all of these classes can reuse so that we don't repeat logic for netty
pipeline initialization and things.
> Provide SSL in zookeeper to be able to run cross colos.
> -------------------------------------------------------
>
> Key: ZOOKEEPER-1000
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1000
> Project: ZooKeeper
> Issue Type: Improvement
> Reporter: Mahadev konar
> Assignee: Mahadev konar
> Fix For: 3.5.1
>
>
> This jira is to track SSL for zookeeper. The inter zookeeper server
> communication and the client to server communication should be over ssl so
> that zookeeper can be deployed over WAN's.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
