+1 Dinesh. It will be like that. For client and server both encryption options you can choose different key material types. I'll raise a PR soon and you can check the tests I've.
Thanks Maulin On Tue, Oct 12, 2021 at 9:22 PM Dinesh Joshi <djos...@icloud.com.invalid> wrote: > On 10/11/21 12:34 PM, Maulin Vasavada wrote: > > Dinesh, when you say PEM and JKS formats simultaneously, do you mean that > > for client vs internnode ssl we should be able to use different formats > OR > > beyond that within particular encryption options have a combination - PEM > > based private keys and JKS based truststore? > > Currently, Cassandra has two configuration blocks one for the client > (client_encryption_options) and the other for the internode > (server_encryption_options). Both blocks individually can specify a > different type of truststore. Currently it only supports the stores that > are supported by Java's standard stores like JKS and PKCS12. If you plan > on adding new types, then lets make sure that we continue supporting > these types and support PEM in addition. > > Dinesh > > --------------------------------------------------------------------- > To unsubscribe, e-mail: dev-unsubscr...@cassandra.apache.org > For additional commands, e-mail: dev-h...@cassandra.apache.org > >
