642e01190ca19882b5052739bae5508b0b38b32e - kudu

commit	642e01190ca19882b5052739bae5508b0b38b32e	[log] [tgz]
author	Sailesh Mukil <sailesh@apache.org>	Fri Apr 07 11:53:54 2017 -0700
committer	Dan Burkert <danburkert@apache.org>	Thu Apr 13 00:24:42 2017 +0000
tree	df0e6022ce17f0b7866a75d855bb8a4b3da5a974
parent	548721090e313c4d67af9453cf8a34e89dd31259 [diff]

KUDU-1965: Allow user provided TLS certificates to work with KRPC

This patch adds a bool in the TlsContext class to keep track of
whether the certificates provided are externally provided or not.

If it is externally provided, then authenticated TLS is not
negotiated, causing a fallback to SASL authentication. The
certificates are used only for encryption.

This adds some tests in negotiation-test

Change-Id: Idd44770a1fe85e9934a657ee79d93139b9a86dff
Reviewed-on: http://gerrit.cloudera.org:8080/6594
Reviewed-by: Dan Burkert <danburkert@apache.org>
Tested-by: Kudu Jenkins

docs/design-docs/rpc.md[diff]
src/kudu/rpc/client_negotiation.cc[diff]
src/kudu/rpc/negotiation-test.cc[diff]
src/kudu/rpc/server_negotiation.cc[diff]
src/kudu/security/security-test-util.cc[diff]
src/kudu/security/security-test-util.h[diff]
src/kudu/security/tls_context.cc[diff]
src/kudu/security/tls_context.h[diff]

8 files changed

tree: df0e6022ce17f0b7866a75d855bb8a4b3da5a974

build-support/
cmake_modules/
docs/
java/
python/
src/
thirdparty/
www/
.gitignore
.ycm_extra_conf.py
CMakeLists.txt
CONTRIBUTING.adoc
LICENSE.txt
NOTICE.txt
README.adoc
RELEASING.adoc
version.txt