Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-3630

Kudu uses deprecated SecurityManager features

Attach filesAttach ScreenshotAdd voteVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • client, java

    Description

      JDK 18 deprecated Subject.doAs in favour of a new method Subject.callAs. JDK 23 requires -Djava.security.manager=allow to use Kudu client, while JDK 24 removes the Security Manager altogether which makes Kudu client impossible to use.

      Kudu client uses deprecated APIs in places like: https://github.com/apache/kudu/blob/da6211df5f8df0c53ceedd542b61634f3bab7205/java/kudu-client/src/main/java/org/apache/kudu/client/Negotiator.java#L955

      This can be solved using reflective access as done by other projects, like Kafka's shim: https://github.com/apache/kafka/pull/16522

      Attachments

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            Unassigned Unassigned
            wendigo Mateusz Gajewski

            Dates

              Created:
              Updated:

              Slack

                Issue deployment