vivekratnavel opened a new pull request #2556: URL: https://github.com/apache/ozone/pull/2556
## What changes were proposed in this pull request? Add all CA Certs to trust manager while creating GRPC Replication Server between datanodes. ## What is the link to the Apache JIRA https://issues.apache.org/jira/browse/HDDS-5556 ## How was this patch tested? Tested with docker-compose by bringing up the following containers initially in ozonesecure-ha environment: ``` docker-compose up -d kdc kms scm1.org scm2.org scm3.org recon om1 om2 om3 datanode1 // To change the SCM leader node docker-compose stop scm1.org // Start datanode2 to get its cert signed by new SCM leader (scm2.org) docker-compose up -d datanode2 // Change leader again docker-compose start scm1.org docker-compose stop scm2.org // Start dn3 docker-compose up -d datanode3 // put a file docker-compose exec om bash kinit -kt /etc/security/keytabs/om.keytab om/om ozone sh vol create vol1 ozone sh bucket create vol1/bucket1 ozone sh key put /vol1/bucket1/key1 <path_to_file> // stop dn3 and remove docker-compose stop datanode3 docker-compose rm datanode3 // start dn3 as a fresh container docker-compose up -d datanode3 ``` After this, verified that SCM scheduled replication of the container to datanode3 and it succeeded without any errors. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
