преди 9 години · 64add87f5c
--- a/hadoop-common-project/hadoop-common/CHANGES.txt
+++ b/hadoop-common-project/hadoop-common/CHANGES.txt
@@ -810,6 +810,9 @@ Release 2.8.0 - UNRELEASED
 
				     HADOOP-11901. BytesWritable fails to support 2G chunks due to integer
			
 
				     overflow. (Reynold Xin via wheat9)
			
 
				 
			
 
				+    HADOOP-11218. Add TLSv1.1,TLSv1.2 to KMS, HttpFS, SSLFactory.
			
 
				+    (Vijay Singh via wheat9)
			
 
				+
			
 
				 Release 2.7.3 - UNRELEASED
			
 
				 
			
 
				   INCOMPATIBLE CHANGES
			
--- a/hadoop-common-project/hadoop-kms/src/main/tomcat/ssl-server.xml.conf
+++ b/hadoop-common-project/hadoop-kms/src/main/tomcat/ssl-server.xml.conf
@@ -70,7 +70,7 @@
 
				          described in the APR documentation -->
			
 
				     <Connector port="${kms.http.port}" protocol="HTTP/1.1" SSLEnabled="true"
			
 
				                maxThreads="${kms.max.threads}" scheme="https" secure="true"
			
 
				-               clientAuth="false" sslEnabledProtocols="TLSv1,SSLv2Hello"
			
 
				+               clientAuth="false" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2,SSLv2Hello"
			
 
				                truststorePass="_kms_ssl_truststore_pass_"
			
 
				                keystoreFile="${kms.ssl.keystore.file}"
			
 
				                keystorePass="_kms_ssl_keystore_pass_"/>
			
--- a/hadoop-hdfs-project/hadoop-hdfs-httpfs/src/main/tomcat/ssl-server.xml
+++ b/hadoop-hdfs-project/hadoop-hdfs-httpfs/src/main/tomcat/ssl-server.xml
@@ -70,7 +70,7 @@
 
				          described in the APR documentation -->
			
 
				     <Connector port="${httpfs.http.port}" protocol="HTTP/1.1" SSLEnabled="true"
			
 
				                maxThreads="150" scheme="https" secure="true"
			
 
				-               clientAuth="false" sslEnabledProtocols="TLSv1,SSLv2Hello"
			
 
				+               clientAuth="false" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2,SSLv2Hello"
			
 
				                keystoreFile="${httpfs.ssl.keystore.file}"
			
 
				                keystorePass="${httpfs.ssl.keystore.pass}"/>