[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[ https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16926351#comment-16926351 ] Akira Ajisaka commented on HADOOP-16549: Thank you, [~daisuke.kobayashi] and [~jojochuang]! > Remove Unsupported SSL/TLS Versions from Docs/Properties > > > Key: HADOOP-16549 > URL: https://issues.apache.org/jira/browse/HADOOP-16549 > Project: Hadoop Common > Issue Type: Improvement > Components: documentation, security >Affects Versions: 3.3.0 >Reporter: Daisuke Kobayashi >Assignee: Daisuke Kobayashi >Priority: Minor > Fix For: 3.3.0 > > Attachments: HADOOP-16549.001.patch > > > We should remove the following unsupported versions from docs and > core-default.xml appropriately. > TLS v1.0 > TLS v1.1 > SSL v3 > SSLv2Hello > ref: > https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html > https://github.com/eclipse/jetty.project/issues/866 > [~aajisaka], I happened to find you left TLSv1.1 in > https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it? -- This message was sent by Atlassian Jira (v8.3.2#803003) - To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[ https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16926282#comment-16926282 ] Hudson commented on HADOOP-16549: - FAILURE: Integrated in Jenkins build Hadoop-trunk-Commit #17266 (See [https://builds.apache.org/job/Hadoop-trunk-Commit/17266/]) HADOOP-16549. Remove Unsupported SSL/TLS Versions from Docs/Properties. (weichiu: rev bc2d3a71d6e09310d1e49e4e31433304c76e6701) * (edit) hadoop-common-project/hadoop-common/src/main/resources/core-default.xml * (edit) hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/ssl/SSLFactory.java * (edit) hadoop-mapreduce-project/hadoop-mapreduce-client/hadoop-mapreduce-client-core/src/site/markdown/EncryptedShuffle.md > Remove Unsupported SSL/TLS Versions from Docs/Properties > > > Key: HADOOP-16549 > URL: https://issues.apache.org/jira/browse/HADOOP-16549 > Project: Hadoop Common > Issue Type: Improvement > Components: documentation, security >Affects Versions: 3.3.0 >Reporter: Daisuke Kobayashi >Assignee: Daisuke Kobayashi >Priority: Minor > Fix For: 3.3.0 > > Attachments: HADOOP-16549.001.patch > > > We should remove the following unsupported versions from docs and > core-default.xml appropriately. > TLS v1.0 > TLS v1.1 > SSL v3 > SSLv2Hello > ref: > https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html > https://github.com/eclipse/jetty.project/issues/866 > [~aajisaka], I happened to find you left TLSv1.1 in > https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it? -- This message was sent by Atlassian Jira (v8.3.2#803003) - To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[ https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16926266#comment-16926266 ] Wei-Chiu Chuang commented on HADOOP-16549: -- +1 will commit this shortly. Set target version 3.3.0. For HADOOP-16152, it's a pretty tricky change actually. I'm hoping to get it into 3.3.0 but not sure. > Remove Unsupported SSL/TLS Versions from Docs/Properties > > > Key: HADOOP-16549 > URL: https://issues.apache.org/jira/browse/HADOOP-16549 > Project: Hadoop Common > Issue Type: Improvement > Components: documentation, security >Affects Versions: 3.3.0 >Reporter: Daisuke Kobayashi >Assignee: Daisuke Kobayashi >Priority: Minor > Attachments: HADOOP-16549.001.patch > > > We should remove the following unsupported versions from docs and > core-default.xml appropriately. > TLS v1.0 > TLS v1.1 > SSL v3 > SSLv2Hello > ref: > https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html > https://github.com/eclipse/jetty.project/issues/866 > [~aajisaka], I happened to find you left TLSv1.1 in > https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it? -- This message was sent by Atlassian Jira (v8.3.2#803003) - To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[ https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16926203#comment-16926203 ] Daisuke Kobayashi commented on HADOOP-16549: That makes sense. So, to which version should we set the fix version of this jira? [~jojochuang] > Remove Unsupported SSL/TLS Versions from Docs/Properties > > > Key: HADOOP-16549 > URL: https://issues.apache.org/jira/browse/HADOOP-16549 > Project: Hadoop Common > Issue Type: Improvement > Components: documentation, security >Reporter: Daisuke Kobayashi >Assignee: Daisuke Kobayashi >Priority: Minor > Attachments: HADOOP-16549.001.patch > > > We should remove the following unsupported versions from docs and > core-default.xml appropriately. > TLS v1.0 > TLS v1.1 > SSL v3 > SSLv2Hello > ref: > https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html > https://github.com/eclipse/jetty.project/issues/866 > [~aajisaka], I happened to find you left TLSv1.1 in > https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it? -- This message was sent by Atlassian Jira (v8.3.2#803003) - To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[ https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16925609#comment-16925609 ] Wei-Chiu Chuang commented on HADOOP-16549: -- Also note HADOOP-16152 intends to upgrade to Jetty 9.4, and since 9.4.12 it supports TLS 1.3. So HADOOP-16152 should also add TLS1.3 into the enabled protocol. > Remove Unsupported SSL/TLS Versions from Docs/Properties > > > Key: HADOOP-16549 > URL: https://issues.apache.org/jira/browse/HADOOP-16549 > Project: Hadoop Common > Issue Type: Improvement > Components: documentation, security >Reporter: Daisuke Kobayashi >Assignee: Daisuke Kobayashi >Priority: Minor > Attachments: HADOOP-16549.001.patch > > > We should remove the following unsupported versions from docs and > core-default.xml appropriately. > TLS v1.0 > TLS v1.1 > SSL v3 > SSLv2Hello > ref: > https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html > https://github.com/eclipse/jetty.project/issues/866 > [~aajisaka], I happened to find you left TLSv1.1 in > https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it? -- This message was sent by Atlassian Jira (v8.3.2#803003) - To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[ https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16925604#comment-16925604 ] Wei-Chiu Chuang commented on HADOOP-16549: -- LGTM thanks Daisuke > Remove Unsupported SSL/TLS Versions from Docs/Properties > > > Key: HADOOP-16549 > URL: https://issues.apache.org/jira/browse/HADOOP-16549 > Project: Hadoop Common > Issue Type: Improvement > Components: documentation, security >Reporter: Daisuke Kobayashi >Assignee: Daisuke Kobayashi >Priority: Minor > Attachments: HADOOP-16549.001.patch > > > We should remove the following unsupported versions from docs and > core-default.xml appropriately. > TLS v1.0 > TLS v1.1 > SSL v3 > SSLv2Hello > ref: > https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html > https://github.com/eclipse/jetty.project/issues/866 > [~aajisaka], I happened to find you left TLSv1.1 in > https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it? -- This message was sent by Atlassian Jira (v8.3.2#803003) - To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[
https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16923338#comment-16923338
]
Hadoop QA commented on HADOOP-16549:
| (x) *{color:red}-1 overall{color}* |
\\
\\
|| Vote || Subsystem || Runtime || Comment ||
| {color:blue}0{color} | {color:blue} reexec {color} | {color:blue} 1m
38s{color} | {color:blue} Docker mode activated. {color} |
|| || || || {color:brown} Prechecks {color} ||
| {color:green}+1{color} | {color:green} @author {color} | {color:green} 0m
0s{color} | {color:green} The patch does not contain any @author tags. {color} |
| {color:red}-1{color} | {color:red} test4tests {color} | {color:red} 0m
0s{color} | {color:red} The patch doesn't appear to include any new or modified
tests. Please justify why no new tests are needed for this patch. Also please
list what manual steps were performed to verify this patch. {color} |
|| || || || {color:brown} trunk Compile Tests {color} ||
| {color:blue}0{color} | {color:blue} mvndep {color} | {color:blue} 1m
18s{color} | {color:blue} Maven dependency ordering for branch {color} |
| {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 20m
11s{color} | {color:green} trunk passed {color} |
| {color:green}+1{color} | {color:green} compile {color} | {color:green} 15m
40s{color} | {color:green} trunk passed {color} |
| {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 2m
16s{color} | {color:green} trunk passed {color} |
| {color:green}+1{color} | {color:green} mvnsite {color} | {color:green} 1m
52s{color} | {color:green} trunk passed {color} |
| {color:green}+1{color} | {color:green} shadedclient {color} | {color:green}
16m 17s{color} | {color:green} branch has no errors when building and testing
our client artifacts. {color} |
| {color:green}+1{color} | {color:green} findbugs {color} | {color:green} 2m
34s{color} | {color:green} trunk passed {color} |
| {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m
26s{color} | {color:green} trunk passed {color} |
|| || || || {color:brown} Patch Compile Tests {color} ||
| {color:blue}0{color} | {color:blue} mvndep {color} | {color:blue} 0m
26s{color} | {color:blue} Maven dependency ordering for patch {color} |
| {color:green}+1{color} | {color:green} mvninstall {color} | {color:green} 1m
21s{color} | {color:green} the patch passed {color} |
| {color:green}+1{color} | {color:green} compile {color} | {color:green} 17m
40s{color} | {color:green} the patch passed {color} |
| {color:green}+1{color} | {color:green} javac {color} | {color:green} 17m
40s{color} | {color:green} the patch passed {color} |
| {color:green}+1{color} | {color:green} checkstyle {color} | {color:green} 2m
20s{color} | {color:green} the patch passed {color} |
| {color:green}+1{color} | {color:green} mvnsite {color} | {color:green} 1m
47s{color} | {color:green} the patch passed {color} |
| {color:green}+1{color} | {color:green} whitespace {color} | {color:green} 0m
0s{color} | {color:green} The patch has no whitespace issues. {color} |
| {color:green}+1{color} | {color:green} xml {color} | {color:green} 0m
2s{color} | {color:green} The patch has no ill-formed XML file. {color} |
| {color:green}+1{color} | {color:green} shadedclient {color} | {color:green}
11m 36s{color} | {color:green} patch has no errors when building and testing
our client artifacts. {color} |
| {color:green}+1{color} | {color:green} findbugs {color} | {color:green} 2m
53s{color} | {color:green} the patch passed {color} |
| {color:green}+1{color} | {color:green} javadoc {color} | {color:green} 1m
25s{color} | {color:green} the patch passed {color} |
|| || || || {color:brown} Other Tests {color} ||
| {color:green}+1{color} | {color:green} unit {color} | {color:green} 9m
3s{color} | {color:green} hadoop-common in the patch passed. {color} |
| {color:green}+1{color} | {color:green} unit {color} | {color:green} 5m
25s{color} | {color:green} hadoop-mapreduce-client-core in the patch passed.
{color} |
| {color:green}+1{color} | {color:green} asflicense {color} | {color:green} 0m
58s{color} | {color:green} The patch does not generate ASF License warnings.
{color} |
| {color:black}{color} | {color:black} {color} | {color:black}117m 10s{color} |
{color:black} {color} |
\\
\\
|| Subsystem || Report/Notes ||
| Docker | Client=19.03.0 Server=19.03.0 Image:yetus/hadoop:bdbca0e53b4 |
| JIRA Issue | HADOOP-16549 |
| JIRA Patch URL |
https://issues.apache.org/jira/secure/attachment/12979537/HADOOP-16549.001.patch
|
| Optional Tests | dupname asflicense compile javac javadoc mvninstall
mvnsite unit shadedclient findbugs checkstyle xml |
| uname | Linux 1ce096832401 4.15.0-58-generic #64-Ubuntu SMP Tue Aug 6
11:12:41 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux |
| Build tool | maven |
| Personality | /testptch/patchprocess/precommit/personality/provided.sh
[jira] [Commented] (HADOOP-16549) Remove Unsupported SSL/TLS Versions from Docs/Properties
[ https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16923247#comment-16923247 ] Akira Ajisaka commented on HADOOP-16549: LGTM, +1 pending Jenkins. > Remove Unsupported SSL/TLS Versions from Docs/Properties > > > Key: HADOOP-16549 > URL: https://issues.apache.org/jira/browse/HADOOP-16549 > Project: Hadoop Common > Issue Type: Improvement > Components: documentation, security >Reporter: Daisuke Kobayashi >Assignee: Daisuke Kobayashi >Priority: Minor > Attachments: HADOOP-16549.001.patch > > > We should remove the following unsupported versions from docs and > core-default.xml appropriately. > TLS v1.0 > TLS v1.1 > SSL v3 > SSLv2Hello > ref: > https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html > https://github.com/eclipse/jetty.project/issues/866 > [~aajisaka], I happened to find you left TLSv1.1 in > https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it? -- This message was sent by Atlassian Jira (v8.3.2#803003) - To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org
