[
https://issues.apache.org/jira/browse/HADOOP-10848?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16745884#comment-16745884
]
Akira Ajisaka commented on HADOOP-10848:
----------------------------------------
In Java 11, sun.security.krb5.Config is in jdk.security.auth module and the
module is still accessible.
In addition, there are no usages of the deprecated security APIs
(https://docs.oracle.com/en/java/javase/11/security/java-security-overview1.html#GUID-E1A1E8ED-B39F-404B-8036-637F697B45A2)
in Hadoop source code. Closing this.
> Cleanup calling of sun.security.krb5.Config
> -------------------------------------------
>
> Key: HADOOP-10848
> URL: https://issues.apache.org/jira/browse/HADOOP-10848
> Project: Hadoop Common
> Issue Type: Improvement
> Reporter: Kai Zheng
> Priority: Minor
>
> As was told by Max (Oracle), JDK9 is likely to block all accesses to sun.*
> classes.
> In
> ./hadoop-common-project/hadoop-auth/src/main/java/org/apache/hadoop/security/authentication/util/KerberosUtil.java,
> sun.security.krb5.Config is called against the method getDefaultRealm() to
> get default Kerberos realm. It was proposed to remove the call by Oracle:
> {code}
> new
> javax.security.auth.kerberos.KerberosPrincipal("dummy").toString().split("@")[1]
> {code}
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: common-issues-h...@hadoop.apache.org
