Uploaded image for project: 'HBase'
  1. HBase
  2. HBASE-12984

SSL cannot be used by the InfoPort after removing deprecated code in HBASE-10336

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Blocker
    • Resolution: Fixed
    • 1.0.0, 1.1.0, 2.0.0
    • 1.0.0, 1.1.0
    • None
    • None
    • Reviewed

    Description

      Setting hbase.ssl.enabled to true doesn't enable SSL on the InfoServer. Found that the problem is down the InfoServer and HttpConfig in how we setup the protocol in the HttpServer:

      for (URI ep : endpoints) {
              Connector listener = null;
              String scheme = ep.getScheme();
       if ("http".equals(scheme)) {
                listener = HttpServer.createDefaultChannelConnector();
              } else if ("https".equals(scheme)) {
                SslSocketConnector c = new SslSocketConnectorSecure();
                c.setNeedClientAuth(needsClientAuth);
                c.setKeyPassword(keyPassword);
      

      It depends what end points have been added by the InfoServer:

      builder
            .setName(name)
            .addEndpoint(URI.create("http://" + bindAddress + ":" + port))
            .setAppDir(HBASE_APP_DIR).setFindPort(findPort).setConf(c);
      

      Basically we always use http and we don't look via HttConfig if hbase.ssl.enabled was set to true and we assign the right schema based on the configuration.

      Attachments

        1. HBASE-12984-v1.txt
          6 kB
          Esteban Gutierrez
        2. HBASE-12984-v3.txt
          6 kB
          Esteban Gutierrez
        3. HBASE-12984-v3.txt
          6 kB
          Michael Stack
        4. HBASE-12984-v4.txt
          7 kB
          Esteban Gutierrez

        Activity

          People

            esteban Esteban Gutierrez
            esteban Esteban Gutierrez
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: