[
https://issues.apache.org/jira/browse/CASSANDRA-14222?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16357880#comment-16357880
]
Dinesh Joshi commented on CASSANDRA-14222:
------------------------------------------
I addressed your code review comments. Here are my responses:
# I eliminated references to {{EncryptionOptions}} except when
{{SSLFactory#initHotReloading}} is called.
# I went with option 3. The {{SSLFactory#checkCertFilesForHotReloading}}
removes the call to {{SSLFactory#initHotReloading}} in favor of throwing an
{{IllegalStateException}} if a user does not first call
{{SSLFactory#initHotReloading}}. I have documented this behavior in the Java
doc.
# Removed the reference to {{javax.xml.crypto.Data}} from {{MessagingService}}
# Changed to {{ArrayList}} instead of {{CopyOnWriteArrayList}}
# {{SSLFactory#initHotReloading}} is not synchronized and can be forced to
rebuild the list of files if needed.
> Add hot reloading of SSL Certificates capability to Cassandra
> -------------------------------------------------------------
>
> Key: CASSANDRA-14222
> URL: https://issues.apache.org/jira/browse/CASSANDRA-14222
> Project: Cassandra
> Issue Type: New Feature
> Reporter: Dinesh Joshi
> Assignee: Dinesh Joshi
> Priority: Major
> Fix For: 4.x
>
>
> Cassandra does not currently hot reload SSL certificates. For ease of
> operation it would be useful if we add this capability. This patch would
> watch changes to the truststore & keystore and would reload them when they're
> changed.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org
For additional commands, e-mail: commits-h...@cassandra.apache.org
