Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-15832

Upgrade BouncyCastle to 1.60

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 3.2.0, 3.3.0
    • 3.3.0, 3.2.1
    • None
    • None
    • Reviewed

    Description

      As part of my work on YARN-6586, I noticed that we're using a very old version of BouncyCastle:

      <dependency>
   <groupId>org.bouncycastle</groupId>
   <artifactId>bcprov-jdk16</artifactId>
   <version>1.46</version>
   <scope>test</scope>
</dependency>

      The *-jdk16 artifacts have been discontinued and are not recommended (see http://bouncy-castle.1462172.n4.nabble.com/Bouncycaslte-bcprov-jdk15-vs-bcprov-jdk16-td4656252.html).
      In particular, the newest release, 1.46, is from 2011!
      https://mvnrepository.com/artifact/org.bouncycastle/bcprov-jdk16

      The currently maintained and recommended artifacts are *-jdk15on:
      https://www.bouncycastle.org/latest_releases.html
      They're currently on version 1.60, released only a few months ago.

      We should update BouncyCastle to the *-jdk15on artifacts and the 1.60 release. It's currently a test-only artifact, so there should be no backwards-compatibility issues with updating this. It's also needed for YARN-6586, where we'll actually be shipping it.

      Attachments

        1. HADOOP-15832.001.patch
          13 kB
          Robert Kanter
        2. HADOOP-15832.addendum.patch
          0.4 kB
          Robert Kanter

        Issue Links

          breaks

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-17324 Don't relocate org.bouncycastle in shaded client jars

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. YARN-8919 Some tests fail due to NoClassDefFoundError for OperatorCreationException

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. YARN-8899 TestCleanupAfterKIll is failing due to unsatisfied dependencies

          • Blocker - Blocks development and/or testing work, production could not run
          • Resolved
          is depended upon by

          Improvement - An improvement or enhancement to an existing feature or task. YARN-6586 YARN to facilitate HTTPS in AM web server

          • Major - Major loss of function.
          • Resolved
          is related to

          Sub-task - The sub-task of the issue HADOOP-16015 Add bouncycastle jars to hadoop-aws as test dependencies

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-15874 Add Bouncy Castle License

          • Blocker - Blocks development and/or testing work, production could not run
          • Resolved
          is required by

          Sub-task - The sub-task of the issue YARN-8448 AM HTTPS Support for AM communication with RMWeb proxy

          • Major - Major loss of function.
          • Resolved
          is superceded by

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-17898 Upgrade BouncyCastle to 1.69

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              rkanter Robert Kanter
              rkanter Robert Kanter
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: