Bug 545 - Added exemplary TLS configuration

 - uncommenting the code takes effect only after https://git.opendaylight.org/gerrit/#/c/9225/ is merged
   and keys are used inside mininet for tls communication

Change-Id: I4397d094a35a429f8393466b6d69ae700a61cc4a
Signed-off-by: Michal Polkorab <michal.polkorab@pantheon.sk>

diff --git a/openflowplugin-controller-config/src/main/resources/initial/42-openflowplugin.xml b/openflowplugin-controller-config/src/main/resources/initial/42-openflowplugin.xml
index 7c9214518103ac371bc041e45c5ab7263b3b03f5..a8ec1ba9d81b2ad9368a2a12529ddbab13ba8d2f 100644 (file)
--- a/openflowplugin-controller-config/src/main/resources/initial/42-openflowplugin.xml
+++ b/openflowplugin-controller-config/src/main/resources/initial/42-openflowplugin.xml
@@ -28,6 +28,25 @@ and is available at http://www.eclipse.org/legal/epl-v10.html
           <name>openflow-switch-connection-provider-default-impl</name>
           <port>6633</port>
           <switch-idle-timeout>15000</switch-idle-timeout>
+<!--           Exemplary TLS configuration:
+                - uncomment the <tls> tag
+                - copy exemplary-switch-privkey.pem, exemplary-switch-cert.pem and exemplary-cacert.pem
+                  files into your virtual machine
+                - set VM encryption options to use copied keys
+                - start communication
+               Please visit OpenflowPlugin or Openflow Protocol Library#Documentation wiki pages
+               for detailed information regarding TLS -->
+<!--           <tls>
+                 <keystore>/exemplary-ctlKeystore</keystore>
+                 <keystore-type>JKS</keystore-type>
+                 <keystore-path-type>CLASSPATH</keystore-path-type>
+                 <keystore-password>opendaylight</keystore-password>
+                 <truststore>/exemplary-ctlTrustStore</truststore>
+                 <truststore-type>JKS</truststore-type>
+                 <truststore-path-type>CLASSPATH</truststore-path-type>
+                 <truststore-password>opendaylight</truststore-password>
+                 <certificate-password>opendaylight</certificate-password>
+               </tls> -->
         </module>
         <!-- default OF-switch-connection-provider (port 6653) -->
         <module>
@@ -35,6 +54,25 @@ and is available at http://www.eclipse.org/legal/epl-v10.html
           <name>openflow-switch-connection-provider-legacy-impl</name>
           <port>6653</port>
           <switch-idle-timeout>15000</switch-idle-timeout>
+<!--           Exemplary TLS configuration:
+                - uncomment the <tls> tag
+                - copy exemplary-switch-privkey.pem, exemplary-switch-cert.pem and exemplary-cacert.pem
+                  files into your virtual machine
+                - set VM encryption options to use copied keys
+                - start communication
+               Please visit OpenflowPlugin or Openflow Protocol Library#Documentation wiki pages
+               for detailed information regarding TLS -->
+<!--           <tls>
+                 <keystore>/exemplary-ctlKeystore</keystore>
+                 <keystore-type>JKS</keystore-type>
+                 <keystore-path-type>CLASSPATH</keystore-path-type>
+                 <keystore-password>opendaylight</keystore-password>
+                 <truststore>/exemplary-ctlTrustStore</truststore>
+                 <truststore-type>JKS</truststore-type>
+                 <truststore-path-type>CLASSPATH</truststore-path-type>
+                 <truststore-password>opendaylight</truststore-password>
+                 <certificate-password>opendaylight</certificate-password>
+               </tls> -->
         </module>