Hadoop Common
  1. Hadoop Common
  2. HADOOP-10224

JavaKeyStoreProvider has to protect against corrupting underlying store

    Details

    • Type: Bug Bug
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: security
    • Labels:
      None

      Description

      Java keystores get corrupted at times. A key management operation that writes the store to disk could cause a corruption and all protected data would then be unaccessible.

        Activity

        Hide
        Larry McCay added a comment -

        I am thinking that the flush() needs to backup the original store to a randomized name, write the contents of the store, reload and maybe list the keys to ensure that it isn't corrupt.

        Once it has proven to not e corrupt we can delete the backup.

        Show
        Larry McCay added a comment - I am thinking that the flush() needs to backup the original store to a randomized name, write the contents of the store, reload and maybe list the keys to ensure that it isn't corrupt. Once it has proven to not e corrupt we can delete the backup.

          People

          • Assignee:
            Larry McCay
            Reporter:
            Larry McCay
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated:

              Development