fapifta opened a new pull request, #6802: URL: https://github.com/apache/ozone/pull/6802
## What changes were proposed in this pull request? This PR is about replacing the usage of a direct BouncyCastle dependency, the X509CertificateHolder class. This class can be replaced by the Java base class X509Certificate in almost all cases. As BoncyCastle is not a compliant crypto provider in all jurisdictions, it is beneficial for us to restrict its usage to the bare minimum, so we can abstract it away and make the usage of it optional, while opening up the possibility to plug in compliant replacement implementations. The changeset itself touches a few other BouncyCastle usages that I felt closely related to how we handle Certificate implementation throughout our codebase, so it touches a couple of other things that we use to deal with X509Certificates, to help the switch from the BC implementation to the base Java implementation. ## What is the link to the Apache JIRA https://issues.apache.org/jira/browse/HDDS-10888 ## How was this patch tested? The related tests should catch problems, all the tests that were using the X509CertificateHolder are rewritten also to use X509Certificate. The existing docker based security tests should should also cover these changes. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
