Alexey Serbin has submitted this change and it was merged. ( http://gerrit.cloudera.org:8080/15426 )
Change subject: [tests] use 768-bit RSA keys for crypto in tests ...................................................................... [tests] use 768-bit RSA keys for crypto in tests With default Java security policies on CentOS 8, RSA keys shorter than 2048 bits are considered lax and cannot be used while establishing a TLS connection, server certificates are rejected, etc. To allow smaller RSA keys to be accepted by Java security, this patch overrides MiniKuduCluster's custom security settings for the corresponding properties: * jdk.certpath.disabledAlgorithms * jdk.tls.disabledAlgorithms In addition, this patch lowers security level for the OpenSSL library to 0 (applicable starting OpenSSL 1.1.0) to allow for using of 768-bit RSA keys. This is to spare CPU resources while running Kudu tests. This is a follow-up to 0ee93e31a1febb987c72e7392a69b2584e6f38ed. Change-Id: I6fa0794ff8f8dac6c58b1765539e3fc16857013f Reviewed-on: http://gerrit.cloudera.org:8080/15426 Tested-by: Kudu Jenkins Reviewed-by: Grant Henke <[email protected]> --- M java/kudu-test-utils/src/main/java/org/apache/kudu/test/cluster/MiniKuduCluster.java M src/kudu/mini-cluster/external_mini_cluster.cc M src/kudu/tools/tool_test_util.cc M src/kudu/util/test_util.cc 4 files changed, 27 insertions(+), 21 deletions(-) Approvals: Kudu Jenkins: Verified Grant Henke: Looks good to me, approved -- To view, visit http://gerrit.cloudera.org:8080/15426 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: merged Gerrit-Change-Id: I6fa0794ff8f8dac6c58b1765539e3fc16857013f Gerrit-Change-Number: 15426 Gerrit-PatchSet: 2 Gerrit-Owner: Alexey Serbin <[email protected]> Gerrit-Reviewer: Adar Dembo <[email protected]> Gerrit-Reviewer: Alexey Serbin <[email protected]> Gerrit-Reviewer: Grant Henke <[email protected]> Gerrit-Reviewer: Kudu Jenkins (120)
