apache
HDDS-11417. Refactor SCMSecurityProtocol to return X509Certificates instead of Strings
What changes were proposed in this pull request?
SCMSecurityProtocol consistently returns encoded versions of certificates which causes this encoding to spread around the code.
With the ongoing crypto-compliance efforts it's best to limit the places that use BouncyCastle dependencies. With this refactor it's ensured that only the proto layer translators use it on SCM side.
An additional later benefit of this pull request is that the CAServer can eventually implement the SCMSecurityProtocol, which will be useful when the default certificate server is separated to root and sub ca servers.
How was this patch tested?
No functional changes in code, existing CI runs should suffice. Here is a CI run from my fork that uses the same changeset (Although different branch because the Jira ticket was created later) https://github.com/Galsza/ozone/actions/runs/10699894112
