You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@spark.apache.org by "Hasnain Lakhani (Jira)" <ji...@apache.org> on 2023/11/22 22:01:00 UTC
[jira] [Created] (SPARK-46058) [CORE] Add separate flag for privateKeyPassword
Hasnain Lakhani created SPARK-46058:
---------------------------------------
Summary: [CORE] Add separate flag for privateKeyPassword
Key: SPARK-46058
URL: https://issues.apache.org/jira/browse/SPARK-46058
Project: Spark
Issue Type: Bug
Components: Spark Core
Affects Versions: 4.0.0
Reporter: Hasnain Lakhani
Right now with config inheritance we support:
* JKS with password A, PEM with password B
* JKS with no password, PEM with password A
* JKS and PEM with no password
But we do not support the case where JKS has a password and PEM does not. If we set keyPassword we will attempt to use it, and cannot set `spark.ssl.rpc.keyPassword` to null. So let's make it a separate flag as the easiest workaround.
This was noticed while migrating some existing deployments to the RPC SSL support where we use openssl support for RPC and use a key with no password
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@spark.apache.org
For additional commands, e-mail: issues-help@spark.apache.org