Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ZOOKEEPER-3443: Add support of PKCS12 trust/key stores #1003

Closed
wants to merge 1 commit into from
Closed

ZOOKEEPER-3443: Add support of PKCS12 trust/key stores #1003

wants to merge 1 commit into from

Conversation

ivanyu
Copy link
Contributor

@ivanyu ivanyu commented Jun 25, 2019

This commit adds support of PKCS12 trust store and key store type.
The existing mechanism for trust/key store types that support JKS and
PEM were extended with PKCS12.

The implementations of JKSFileLoader and PKCS12FileLoader were almost
identical so most of it were abstracted away in
StandardTypeFileKeyStoreLoader.

@enixon
Copy link

enixon commented Jun 25, 2019

I didn't go super deep into this but at a superficial glance, it seems pretty straightforward. Nice addition.

eolivelli
eolivelli requested changes Jun 25, 2019
View reviewed changes
Copy link
Contributor

@eolivelli eolivelli left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good.
I am asking you to take the chance to clean up a bit current code and use try-with-resources.

Thank you

zookeeper-server/src/main/java/org/apache/zookeeper/common/StandardTypeFileKeyStoreLoader.java Outdated Show resolved Hide resolved
zookeeper-server/src/main/java/org/apache/zookeeper/common/StandardTypeFileKeyStoreLoader.java Outdated Show resolved Hide resolved
zookeeper-server/src/test/java/org/apache/zookeeper/common/X509TestContext.java Outdated Show resolved Hide resolved
@ivanyu ivanyu force-pushed the ZOOKEEPER-3443 branch 4 times, most recently from ed2f6d7 to dc763d6 Compare June 26, 2019 12:08
@ivanyu
Copy link
Contributor Author

ivanyu commented Jun 27, 2019

I guess Travis Java 11 failure is related to #1005

@ivanyu
ZOOKEEPER-3443: Add support of PKCS12 trust/key stores
08eab47 
This commit adds support of PKCS12 trust store and key store type.
The existing mechanism for trust/key store types that support JKS and
PEM were extended with PKCS12.

The implementations of JKSFileLoader and PKCS12FileLoader were almost
identical so most of it were abstracted away in
StandardTypeFileKeyStoreLoader.
eolivelli
eolivelli approved these changes Jun 30, 2019
View reviewed changes
Copy link
Contributor

@eolivelli eolivelli left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Lgtm

@dineshappavoo
Copy link

This is great. Thanks @ivanyu !
LGTM.

@ivanyu
Copy link
Contributor Author

ivanyu commented Jul 3, 2019

Thank you for the approval!
Is something else needed to merge it?

@eolivelli
Copy link
Contributor

@ivanyu we need another binding +1 (from a 'committer') then we are good to go.

Tagging @anmolnar who worked on this topic recently

anmolnar
anmolnar approved these changes Jul 15, 2019
View reviewed changes
Copy link
Contributor

@anmolnar anmolnar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1 lgtm

@asfgit asfgit closed this in 1c83846 Jul 15, 2019
asfgit pushed a commit that referenced this pull request Jul 15, 2019
@ivanyu @anmolnar
ZOOKEEPER-3443: Add support of PKCS12 trust/key stores
427899c 
This commit adds support of PKCS12 trust store and key store type.
The existing mechanism for trust/key store types that support JKS and
PEM were extended with PKCS12.

The implementations of JKSFileLoader and PKCS12FileLoader were almost
identical so most of it were abstracted away in
StandardTypeFileKeyStoreLoader.

Author: Ivan Yurchenko <ivanyu@aiven.io>

Reviewers: eolivelli@apache.org, andor@apache.org

Closes #1003 from ivanyu/ZOOKEEPER-3443

(cherry picked from commit 1c83846)
Signed-off-by: Andor Molnar <andor@apache.org>
@anmolnar
Copy link
Contributor

@ivanyu Merged to master and 3.5 branches, because it's relatively straightforward and part of Quorum TLS efforts. Thanks!
I also added you to the contributors list in Jira, so now you can pick up jiras.

@ivanyu
Copy link
Contributor Author

ivanyu commented Jul 15, 2019

Thank you!

stickyhipp pushed a commit to stickyhipp/zookeeper that referenced this pull request Aug 2, 2019
@ivanyu @stickyhipp
ZOOKEEPER-3443: Add support of PKCS12 trust/key stores
3d655fb 
This commit adds support of PKCS12 trust store and key store type.
The existing mechanism for trust/key store types that support JKS and
PEM were extended with PKCS12.

The implementations of JKSFileLoader and PKCS12FileLoader were almost
identical so most of it were abstracted away in
StandardTypeFileKeyStoreLoader.

Author: Ivan Yurchenko <ivanyu@aiven.io>

Reviewers: eolivelli@apache.org, andor@apache.org

Closes apache#1003 from ivanyu/ZOOKEEPER-3443
RokLenarcic pushed a commit to RokLenarcic/zookeeper that referenced this pull request Aug 31, 2022
@ivanyu @RokLenarcic
ZOOKEEPER-3443: Add support of PKCS12 trust/key stores
ba5ce86 
This commit adds support of PKCS12 trust store and key store type.
The existing mechanism for trust/key store types that support JKS and
PEM were extended with PKCS12.

The implementations of JKSFileLoader and PKCS12FileLoader were almost
identical so most of it were abstracted away in
StandardTypeFileKeyStoreLoader.

Author: Ivan Yurchenko <ivanyu@aiven.io>

Reviewers: eolivelli@apache.org, andor@apache.org

Closes apache#1003 from ivanyu/ZOOKEEPER-3443
RokLenarcic pushed a commit to RokLenarcic/zookeeper that referenced this pull request Sep 3, 2022
@ivanyu @RokLenarcic
ZOOKEEPER-3443: Add support of PKCS12 trust/key stores
bc134b6 
This commit adds support of PKCS12 trust store and key store type.
The existing mechanism for trust/key store types that support JKS and
PEM were extended with PKCS12.

The implementations of JKSFileLoader and PKCS12FileLoader were almost
identical so most of it were abstracted away in
StandardTypeFileKeyStoreLoader.

Author: Ivan Yurchenko <ivanyu@aiven.io>

Reviewers: eolivelli@apache.org, andor@apache.org

Closes apache#1003 from ivanyu/ZOOKEEPER-3443
anmolnar pushed a commit to anmolnar/zookeeper that referenced this pull request May 21, 2024
@ivanyu
CDPD-17774, ZOOKEEPER-3443: Add support of PKCS12 trust/key stores
2b5d479 
This commit adds support of PKCS12 trust store and key store type.
The existing mechanism for trust/key store types that support JKS and
PEM were extended with PKCS12.

The implementations of JKSFileLoader and PKCS12FileLoader were almost
identical so most of it were abstracted away in
StandardTypeFileKeyStoreLoader.

Author: Ivan Yurchenko <ivanyu@aiven.io>

Reviewers: eolivelli@apache.org, andor@apache.org

Closes apache#1003 from ivanyu/ZOOKEEPER-3443

Change-Id: Ida22313eac4f69c1a678dc4ce0c7f7e329f1b2a0
(cherry picked from commit 979cb85)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@anmolnar anmolnar anmolnar approved these changes

@eolivelli eolivelli eolivelli approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@ivanyu @enixon @dineshappavoo @eolivelli @anmolnar