Package org.apache.hadoop.hbase.io.crypto.tls
package org.apache.hadoop.hbase.io.crypto.tls
-
ClassDescriptionImplementation of
FileKeyStoreLoaderthat loads from BCKFS files.Base class for instances ofKeyStoreLoaderwhich load the key/trust stores from files on a filesystem.FileKeyStoreLoader.Builder<T extends FileKeyStoreLoader>Base class for builder pattern used by subclasses.This file has been copied from the Apache ZooKeeper project.When enabled inX509Util, handles verifying that the hostname of a peer matches the certificate it presents.Note: copied from Apache httpclient with some minor modifications.A custom TrustManager that supports hostname verification We attempt to perform verification using just the IP address first and if that fails will attempt to perform a reverse DNS lookup and verify using the hostname.Implementation ofFileKeyStoreLoaderthat loads from JKS files.This enum represents the file type of a KeyStore or TrustStore.An interface for an object that can load key stores or trust stores.Implementation ofFileKeyStoreLoaderthat loads from PEM files.This file has been copied from the Apache ZooKeeper project.Implementation ofFileKeyStoreLoaderthat loads from PKCS12 files.Base class for instances ofKeyStoreLoaderwhich load the key/trust stores from files on a filesystem using standardKeyStoretypes like JKS or PKCS12.Utility code for X509 handling Default cipher suites: Performance testing done by Facebook engineers shows that on Intel x86_64 machines, Java9 performs better with GCM and Java8 performs better with CBC, so these seem like reasonable defaults.Enum specifying the client auth requirement of server-side TLS sockets created by this X509Util.