[
https://issues.apache.org/jira/browse/HDDS-1119?focusedWorklogId=210828&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-210828
]
ASF GitHub Bot logged work on HDDS-1119:
----------------------------------------
Author: ASF GitHub Bot
Created on: 11/Mar/19 05:27
Start Date: 11/Mar/19 05:27
Worklog Time Spent: 10m
Work Description: ajayydv commented on pull request #574: HDDS-1119. DN
get OM certificate from SCM CA for block token validation.
URL: https://github.com/apache/hadoop/pull/574#discussion_r264094999
##########
File path:
hadoop-hdds/common/src/main/java/org/apache/hadoop/hdds/security/x509/certificate/client/CertificateClient.java
##########
@@ -121,14 +130,23 @@ boolean verifySignature(byte[] data, byte[] signature,
X509Certificate queryCertificate(String query);
/**
- * Stores the Certificate.
+ * Stores the Certificate for this client. Don't use this api to add
+ * trusted certificates of other s.
*
- * @param certificate - X509 Certificate
-
+ * @param pemEncodedCert - pem encoded X509 Certificate
+ * @param force - override any existing file
+ * @param isLocalIdentityCert - true if certificate belongs to the
+ * identity cert for this certificate client.
* @throws CertificateException - on Error.
+ *
+ * Note: Certificate client can store certificates for other daemons as well.
+ * Local certificate refers to the certificate issued to this certificate
+ * client. This is stored along with public key and private key.
+ * Certificate of other daemons is stoed in sub dirs named after
+ * certificate serial id of certificate.
Review comment:
Comment is not correct, patch stores all certificate in default certs dir
for simplicity. Updated the comment.
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
Issue Time Tracking
-------------------
Worklog Id: (was: 210828)
Time Spent: 2.5h (was: 2h 20m)
> DN get OM certificate from SCM CA for block token validation
> ------------------------------------------------------------
>
> Key: HDDS-1119
> URL: https://issues.apache.org/jira/browse/HDDS-1119
> Project: Hadoop Distributed Data Store
> Issue Type: Sub-task
> Reporter: Xiaoyu Yao
> Assignee: Ajay Kumar
> Priority: Major
> Labels: pull-request-available
> Time Spent: 2.5h
> Remaining Estimate: 0h
>
> This is needed when the DN received block token signed by OM and it does not
> have the certificate that OM.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org
