[
https://issues.apache.org/jira/browse/HBASE-22728?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16904433#comment-16904433
]
Viraj Jasani commented on HBASE-22728:
--------------------------------------
To add more surprises, shell doesn't work from unpacked tarball:
{code:java}
$ bin/hbase shell
LoadError: load error: hbase/hbase -- java.lang.NoClassDefFoundError:
org/codehaus/jackson/JsonGenerator
require at org/jruby/RubyKernel.java:1062
(root) at /Users/alpha/hbase-1.5.0-SNAPSHOT/bin/../lib/ruby/hbase.rb:102
{code}
Tried updating "org.codehaus.jackson.JsonGenerator" references with "
com.fasterxml.jackson.core.JsonGenerator" in hbase-server code but still above
error is coming. Not sure where is the root cause.
Also, looks like test/provided/runtime scopes are not going to put jackson jar
in the lib/classpath and hence, with assembly:single, these are not helpful.
Will update here if I can find some solution.
Moreover, even master and branch-2 are exposing org.codehaus.jackson:1.9.13 as
'compile' scope. Even though these branches went from Jackson1 to Jackson2 long
back, transitive dependencies from hadoop are not cleaned up and hence this
exposure!
> Upgrade jackson dependencies in branch-1
> ----------------------------------------
>
> Key: HBASE-22728
> URL: https://issues.apache.org/jira/browse/HBASE-22728
> Project: HBase
> Issue Type: Sub-task
> Affects Versions: 1.4.10, 1.3.5
> Reporter: Andrew Purtell
> Assignee: Viraj Jasani
> Priority: Major
> Fix For: 1.5.0, 1.3.6, 1.4.11
>
> Attachments: HBASE-22728-addendum.patch, HBASE-22728-addendum.patch,
> HBASE-22728.branch-1.01.patch, HBASE-22728.branch-1.02.patch,
> HBASE-22728.branch-1.04.patch, HBASE-22728.branch-1.06.patch,
> HBASE-22728.branch-1.10.patch, HBASE-22728.branch-1.11.patch,
> HBASE-22728.branch-1.12.patch, HBASE-22728.branch-1.14.patch
>
>
> Avoid Jackson versions and dependencies with known CVEs
--
This message was sent by Atlassian JIRA
(v7.6.14#76016)
