Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-12817

Enable TLS v1.1 and 1.2

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.9.0, 3.0.0-alpha1, 2.8.4
    • Component/s: security
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      Java 7 supports TLSv1.1 and TLSv1.2, which are more secure than TLSv1 (which was all that was supported in Java 6), so we should add those to the default list for hadoop.ssl.enabled.protocols.

        Attachments

        1. HADOOP-12817.002.patch
          3 kB
          Robert Kanter
        2. HADOOP-12817.001.patch
          1 kB
          Robert Kanter

          Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-16000 Remove TLSv1 and SSLv2Hello from the default value of hadoop.ssl.enabled.protocols

          • Major - Major loss of function.
          • Resolved
          relates to

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-11218 Add TLSv1.1,TLSv1.2 to KMS, HttpFS, SSLFactory

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

            Activity

              People

              • Assignee:
                rkanter Robert Kanter
                Reporter:
                rkanter Robert Kanter
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: