|
|
@@ -29,6 +29,14 @@ function hadoop_usage
|
|
|
hadoop_generate_usage "${MYNAME}" false
|
|
|
}
|
|
|
|
|
|
+function hadoop_escape() {
|
|
|
+ # Escape special chars for the later sed which saves the text as xml attribute
|
|
|
+ local ret
|
|
|
+ ret=$(sed 's/[\/&]/\\&/g' <<< "$1" | sed 's/&/\&/g' | sed 's/"/\\\"/g' \
|
|
|
+ | sed "s/'/\\\\\'/g" | sed 's/</\\\</g' | sed 's/>/\\\>/g')
|
|
|
+ echo "$ret"
|
|
|
+}
|
|
|
+
|
|
|
# let's locate libexec...
|
|
|
if [[ -n "${HADOOP_HOME}" ]]; then
|
|
|
HADOOP_DEFAULT_LIBEXEC_DIR="${HADOOP_HOME}/libexec"
|
|
|
@@ -96,8 +104,10 @@ fi
|
|
|
if [[ -f "${HADOOP_CATALINA_HOME}/conf/ssl-server.xml.conf" ]]; then
|
|
|
if [[ -n "${KMS_SSL_KEYSTORE_PASS+x}" ]] || [[ -n "${KMS_SSL_TRUSTSTORE_PASS}" ]]; then
|
|
|
export KMS_SSL_KEYSTORE_PASS=${KMS_SSL_KEYSTORE_PASS:-password}
|
|
|
- sed -e 's/_kms_ssl_keystore_pass_/'${KMS_SSL_KEYSTORE_PASS}'/g' \
|
|
|
- -e 's/_kms_ssl_truststore_pass_/'${KMS_SSL_TRUSTSTORE_PASS}'/g' \
|
|
|
+ KMS_SSL_KEYSTORE_PASS_ESCAPED=$(hadoop_escape "$KMS_SSL_KEYSTORE_PASS")
|
|
|
+ KMS_SSL_TRUSTSTORE_PASS_ESCAPED=$(hadoop_escape "$KMS_SSL_TRUSTSTORE_PASS")
|
|
|
+ sed -e 's/"_kms_ssl_keystore_pass_"/'"\"${KMS_SSL_KEYSTORE_PASS_ESCAPED}\""'/g' \
|
|
|
+ -e 's/"_kms_ssl_truststore_pass_"/'"\"${KMS_SSL_TRUSTSTORE_PASS_ESCAPED}\""'/g' \
|
|
|
"${HADOOP_CATALINA_HOME}/conf/ssl-server.xml.conf" \
|
|
|
> "${HADOOP_CATALINA_HOME}/conf/ssl-server.xml"
|
|
|
chmod 700 "${HADOOP_CATALINA_HOME}/conf/ssl-server.xml" >/dev/null 2>&1
|
Andrew Wang