HADOOP-10639. FileBasedKeyStoresFactory initialization is not using default for SSL_REQUIRE_CLIENT_CERT_KEY. (tucu)
git-svn-id: https://svn.apache.org/repos/asf/hadoop/common/trunk@1598413 13f79535-47bb-0310-9956-ffa450edef68
This commit is contained in:
parent
f40a36758b
commit
04b0f6851b
@ -516,6 +516,9 @@ Release 2.5.0 - UNRELEASED
|
||||
HADOOP-10602. Documentation has broken "Go Back" hyperlinks.
|
||||
(Akira AJISAKA via cnauroth)
|
||||
|
||||
HADOOP-10639. FileBasedKeyStoresFactory initialization is not using default
|
||||
for SSL_REQUIRE_CLIENT_CERT_KEY. (tucu)
|
||||
|
||||
Release 2.4.1 - UNRELEASED
|
||||
|
||||
INCOMPATIBLE CHANGES
|
||||
|
@ -131,7 +131,8 @@ public void init(SSLFactory.Mode mode)
|
||||
throws IOException, GeneralSecurityException {
|
||||
|
||||
boolean requireClientCert =
|
||||
conf.getBoolean(SSLFactory.SSL_REQUIRE_CLIENT_CERT_KEY, true);
|
||||
conf.getBoolean(SSLFactory.SSL_REQUIRE_CLIENT_CERT_KEY,
|
||||
SSLFactory.DEFAULT_SSL_REQUIRE_CLIENT_CERT);
|
||||
|
||||
// certificate store
|
||||
String keystoreType =
|
||||
|
@ -272,4 +272,17 @@ private void checkSSLFactoryInitWithPasswords(SSLFactory.Mode mode,
|
||||
sslFactory.destroy();
|
||||
}
|
||||
}
|
||||
|
||||
@Test
|
||||
public void testNoClientCertsInitialization() throws Exception {
|
||||
Configuration conf = createConfiguration(false);
|
||||
conf.unset(SSLFactory.SSL_REQUIRE_CLIENT_CERT_KEY);
|
||||
SSLFactory sslFactory = new SSLFactory(SSLFactory.Mode.CLIENT, conf);
|
||||
try {
|
||||
sslFactory.init();
|
||||
} finally {
|
||||
sslFactory.destroy();
|
||||
}
|
||||
}
|
||||
|
||||
}
|
||||
|
Loading…
Reference in New Issue
Block a user