Add TLS support in the Opendaylight Controller:
- TLS configuration is specified in file ./configuration/config.ini. To enable the TLS feature, set secureChannelEnabled=true and specify the location of controller Java KeyStore and TrustStore files. The Java KeyStore contains controller's private key and certificate. The Java TrustStore contains the trusted certificate entries, including switches' Certification Authority (CA) certificates. Here is the sample configuration,
secureChannelEnabled=true
controllerKeyStore=./configuration/ctlKeyStore
controllerKeyStorePassword=xxxxx (this password should match the password used for KeyStore generation)
controllerTrustStore=./configuration/ctlTrustStore
controllerTrustStorePassword=xxxxx (this password should match the password used for TrustStore generation)
- Added two message read/write services, one for clear text, one for secure communication.
- Added priority queue for message transmission. The system critical messages, such as Hello, Echo Reply etc will be treated as high priority and will be served ahead of other messages, like statistics request, discovery packets etc.
Signed-off-by: Jason Ye <yisye@cisco.com>