[KUDU-1965] Allow user provided TLS certificates to work with KRPC - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.3.0
Fix Version/s: 1.4.0
Component/s: rpc, security
Labels:
- rpc
- security

Description

Kudu generates certificates when TLS is enabled and if the user does not provide them. These certificates have Kudu specific encodings which are checked for in the RPC negotiation phase.

If the certificates are user provided, it's highly likely that they will not contain these encodings, thus causing the certificate negotiation phase to fail.

We can check for and verify these encodings if the certificates are provided by Kudu, else we can skip that step in the negotiation phase if the certificates are user provided.

Attachments

Activity

People

Assignee:: Sailesh Mukil

Reporter:: Sailesh Mukil

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 05/Apr/17 06:42

Updated:: 13/Apr/17 20:05

Resolved:: 13/Apr/17 20:05