[jira] Subscription: Oozie Patch Available
Issue Subscription Filter: Oozie Patch Available (102 issues) Subscriber: ooziedaily Key Summary OOZIE-3689 Remove usage of commons-httpclient due to EOL https://issues.apache.org/jira/browse/OOZIE-3689 OOZIE-3687 Fix Oozie client always using the current system username instead the one specified by the user (e.g.: via kerberos or via explicit basic authentication) https://issues.apache.org/jira/browse/OOZIE-3687 OOZIE-3680 Add default value to custom configuration of all the supported file systems in Oozie https://issues.apache.org/jira/browse/OOZIE-3680 OOZIE-3663 Upgrade Apache Xerces Java to 2.12.2 https://issues.apache.org/jira/browse/OOZIE-3663 OOZIE-3654 update to httpclient 4.5.13 https://issues.apache.org/jira/browse/OOZIE-3654 OOZIE-3635 Reduce nest of code in RecoveryService https://issues.apache.org/jira/browse/OOZIE-3635 OOZIE-3623 Fix Typos in Distro Assembly https://issues.apache.org/jira/browse/OOZIE-3623 OOZIE-3621 Make TestECPolicyDisabler work with Hadoop 3 https://issues.apache.org/jira/browse/OOZIE-3621 OOZIE-3620 hadoopId is not sent to eventHandlerService (listener) for workflow action events https://issues.apache.org/jira/browse/OOZIE-3620 OOZIE-3609 Zookeeper SSL/TLS support https://issues.apache.org/jira/browse/OOZIE-3609 OOZIE-3596 When the SSH action is killed, it must be changed to the kill command that can terminate the related subprocess. https://issues.apache.org/jira/browse/OOZIE-3596 OOZIE-3568 Have large amount of log information “WARN messages [main] openjpa.MetaData” in jetty.log need to clean https://issues.apache.org/jira/browse/OOZIE-3568 OOZIE-3567 Oozie ShellAction should support absolute bash file path https://issues.apache.org/jira/browse/OOZIE-3567 OOZIE-3560 IDEA shows have some error in index.jsp https://issues.apache.org/jira/browse/OOZIE-3560 OOZIE-3545 Upgrade jQuery https://issues.apache.org/jira/browse/OOZIE-3545 OOZIE-3482 Fix bug in CoordSubmitXCommand#validateCoordinatorJob https://issues.apache.org/jira/browse/OOZIE-3482 OOZIE-3480 Add windowactionstatus metrics in DBLiteWorkflowStoreService https://issues.apache.org/jira/browse/OOZIE-3480 OOZIE-3461 CoordMaterializeTriggerService code cleanup https://issues.apache.org/jira/browse/OOZIE-3461 OOZIE-3449 Make spark-2 as the default profile https://issues.apache.org/jira/browse/OOZIE-3449 OOZIE-3447 Run test case in local : It shows oozie-hsqldb-orm.xml exception https://issues.apache.org/jira/browse/OOZIE-3447 OOZIE-3434 Filtering for invalid jobtype should give error message https://issues.apache.org/jira/browse/OOZIE-3434 OOZIE-3418 Upgrade to Guava 27 https://issues.apache.org/jira/browse/OOZIE-3418 OOZIE-3404 The env variable of SPARK_HOME needs to be set when running pySpark https://issues.apache.org/jira/browse/OOZIE-3404 OOZIE-3375 Can't use empty in coordinator https://issues.apache.org/jira/browse/OOZIE-3375 OOZIE-3367 Using && in EL expressions in oozie bundle.xml files generates parse errors https://issues.apache.org/jira/browse/OOZIE-3367 OOZIE-3366 Update workflow status and subworkflow status on suspend command https://issues.apache.org/jira/browse/OOZIE-3366 OOZIE-3364 Rerunning Oozie bundle jobs starts the coordinators in indeterminate order https://issues.apache.org/jira/browse/OOZIE-3364 OOZIE-3362 When killed, SSH action should kill the spawned processes on target host https://issues.apache.org/jira/browse/OOZIE-3362 OOZIE-3335 Cleanup parseFilter methods https://issues.apache.org/jira/browse/OOZIE-3335 OOZIE-3328 Create Hive compatibility action executor to run hive actions using beeline https://issues.apache.org/jira/browse/OOZIE-3328 OOZIE-3319 Log SSH action callback error output https://issues.apache.org/jira/browse/OOZIE-3319 OOZIE-3301 Update NOTICE file https://issues.apache.org/jira/browse/OOZIE-3301 OOZIE-3274 Remove slf4j https://issues.apache.org/jira/browse/OOZIE-3274 OOZIE-3266 Coord action rerun support RERUN_SKIP_NODES option https://issues.apache.org/jira/browse/OOZIE-3266 OOZIE-3256 refactor OozieCLI class https://issues.apache.org/jira/browse/OOZIE-3256 OOZIE-3196 Authorization: restrict world readability by user https://issues.apache.org/jira/browse/OOZIE-3196 OOZIE-3170 Oozie Diagnostic Bundle tool fails with NPE due to missing service class https://issues.apache.org/jira/browse/OOZIE-3170 OOZIE-3141 Expose external child job IDs to EL functions: wf:externalChildIDs(String actionName) https://issues.apache.org/jira/browse/OOZIE-3141 OOZIE-3137 Add
[jira] [Commented] (OOZIE-3689) Remove usage of commons-httpclient due to EOL
[ https://issues.apache.org/jira/browse/OOZIE-3689?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17648195#comment-17648195 ] Janos Makai commented on OOZIE-3689: Hi [~dionusos] could you please review the provided patch? The issues found by SpotBugs are unrelated to this change. > Remove usage of commons-httpclient due to EOL > - > > Key: OOZIE-3689 > URL: https://issues.apache.org/jira/browse/OOZIE-3689 > Project: Oozie > Issue Type: Improvement >Affects Versions: 5.2.1 >Reporter: Janos Makai >Assignee: Janos Makai >Priority: Major > Attachments: OOZIE-3689-001.patch > > > Currently usages of `commons-httpclient` can be found > `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL > state. > Oozie at this moment does not pull it in directly, but used from a transitive > dependency. > The goal of this ticket is to modify the test inside `TestHAShareLibService` > not to use `commons-httpclient`. > NOTE: this change only introduces a unit test change and does not contains > production change. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (OOZIE-3689) Remove usage of commons-httpclient due to EOL
[ https://issues.apache.org/jira/browse/OOZIE-3689?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17648194#comment-17648194 ] Hadoop QA commented on OOZIE-3689: -- Testing JIRA OOZIE-3689 Cleaning local git workspace {color:green}+1 PATCH_APPLIES{color} {color:green}+1 CLEAN{color} {color:green}+1 RAW_PATCH_ANALYSIS{color} .{color:green}+1{color} the patch does not introduce any @author tags .{color:green}+1{color} the patch does not introduce any tabs .{color:green}+1{color} the patch does not introduce any trailing spaces .{color:green}+1{color} the patch does not introduce any star imports .{color:green}+1{color} the patch does not introduce any line longer than 132 .{color:green}+1{color} the patch adds/modifies 1 testcase(s) {color:green}+1 RAT{color} .{color:green}+1{color} the patch does not seem to introduce new RAT warnings {color:green}+1 JAVADOC{color} .{color:green}+1{color} Javadoc generation succeeded with the patch .{color:green}+1{color} the patch does not seem to introduce new Javadoc warning(s) {color:green}+1 COMPILE{color} .{color:green}+1{color} HEAD compiles .{color:green}+1{color} patch compiles .{color:green}+1{color} the patch does not seem to introduce new javac warnings {color:red}-1{color} There are [1] new bugs found below threshold in total that must be fixed. .{color:green}+1{color} There are no new bugs found in [examples]. .{color:green}+1{color} There are no new bugs found in [fluent-job/fluent-job-api]. .{color:green}+1{color} There are no new bugs found in [sharelib/hive]. .{color:green}+1{color} There are no new bugs found in [sharelib/hive2]. .{color:green}+1{color} There are no new bugs found in [sharelib/git]. .{color:green}+1{color} There are no new bugs found in [sharelib/distcp]. .{color:green}+1{color} There are no new bugs found in [sharelib/hcatalog]. .{color:green}+1{color} There are no new bugs found in [sharelib/sqoop]. .{color:green}+1{color} There are no new bugs found in [sharelib/spark]. .{color:red}-1{color} There are [1] new bugs found below threshold in [sharelib/oozie] that must be fixed. .You can find the SpotBugs diff here (look for the red and orange ones): sharelib/oozie/findbugs-new.html .The most important SpotBugs errors are: .At ShellMain.java:[line 93]: This usage of java/lang/ProcessBuilder.init(Ljava/util/List;)V can be vulnerable to Command Injection .At ShellMain.java:[line 91]: At ShellMain.java:[line 90] .At ShellMain.java:[line 92] .{color:green}+1{color} There are no new bugs found in [sharelib/pig]. .{color:green}+1{color} There are no new bugs found in [sharelib/streaming]. .{color:green}+1{color} There are no new bugs found in [server]. .{color:green}+1{color} There are no new bugs found in [docs]. .{color:green}+1{color} There are no new bugs found in [webapp]. .{color:green}+1{color} There are no new bugs found in [core]. .{color:green}+1{color} There are no new bugs found in [tools]. .{color:green}+1{color} There are no new bugs found in [client]. {color:green}+1 BACKWARDS_COMPATIBILITY{color} .{color:green}+1{color} the patch does not change any JPA Entity/Colum/Basic/Lob/Transient annotations .{color:green}+1{color} the patch does not modify JPA files {color:green}+1 TESTS{color} .Tests run: 3259 .{color:orange}Tests failed at first run:{color} TestJMSAccessorService#testConnectionRetry .For the complete list of flaky tests, see TEST-SUMMARY-FULL files. {color:green}+1 DISTRO{color} .{color:green}+1{color} distro tarball builds with the patch {color:green}+1 MODERNIZER{color} {color:red}*-1 Overall result, please check the reported -1(s)*{color} The full output of the test-patch run is available at . https://ci-hadoop.apache.org/job/PreCommit-OOZIE-Build/172/ > Remove usage of commons-httpclient due to EOL > - > > Key: OOZIE-3689 > URL: https://issues.apache.org/jira/browse/OOZIE-3689 > Project: Oozie > Issue Type: Improvement >Affects Versions: 5.2.1 >Reporter: Janos Makai >Assignee: Janos Makai >Priority: Major > Attachments: OOZIE-3689-001.patch > > > Currently usages of `commons-httpclient` can be found > `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL > state. > Oozie at this moment does not pull it in directly, but used from a transitive > dependency. > The goal of this ticket is to modify the test inside `TestHAShareLibService` > not to use `commons-httpclient`. > NOTE: this change only introduces a unit test change and does not contains > production change. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Commented] (OOZIE-3689) Remove usage of commons-httpclient due to EOL
[ https://issues.apache.org/jira/browse/OOZIE-3689?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17648151#comment-17648151 ] Hadoop QA commented on OOZIE-3689: -- PreCommit-OOZIE-Build started > Remove usage of commons-httpclient due to EOL > - > > Key: OOZIE-3689 > URL: https://issues.apache.org/jira/browse/OOZIE-3689 > Project: Oozie > Issue Type: Improvement >Affects Versions: 5.2.1 >Reporter: Janos Makai >Assignee: Janos Makai >Priority: Major > Attachments: OOZIE-3689-001.patch > > > Currently usages of `commons-httpclient` can be found > `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL > state. > Oozie at this moment does not pull it in directly, but used from a transitive > dependency. > The goal of this ticket is to modify the test inside `TestHAShareLibService` > not to use `commons-httpclient`. > NOTE: this change only introduces a unit test change and does not contains > production change. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OOZIE-3689) Remove usage of commons-httpclient due to EOL
[ https://issues.apache.org/jira/browse/OOZIE-3689?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Janos Makai updated OOZIE-3689: --- Description: Currently usages of `commons-httpclient` can be found `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL state. Oozie at this moment does not pull it in directly, but used from a transitive dependency. The goal of this ticket is to modify the test inside `TestHAShareLibService` not to use `commons-httpclient`. NOTE: this change only introduces a unit test change and does not contains production change. was: Currently usages of `commons-httpclient` can be found `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL state and has CVE issue (CVE-2012-5783). Oozie at this moment does not pull it in directly, but used from a transitive dependency. The goal of this ticket is to modify the test inside `TestHAShareLibService` not to use `commons-httpclient`. > Remove usage of commons-httpclient due to EOL > - > > Key: OOZIE-3689 > URL: https://issues.apache.org/jira/browse/OOZIE-3689 > Project: Oozie > Issue Type: Improvement >Affects Versions: 5.2.1 >Reporter: Janos Makai >Assignee: Janos Makai >Priority: Major > Attachments: OOZIE-3689-001.patch > > > Currently usages of `commons-httpclient` can be found > `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL > state. > Oozie at this moment does not pull it in directly, but used from a transitive > dependency. > The goal of this ticket is to modify the test inside `TestHAShareLibService` > not to use `commons-httpclient`. > NOTE: this change only introduces a unit test change and does not contains > production change. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (OOZIE-3689) Remove usage of commons-httpclient due to EOL
[ https://issues.apache.org/jira/browse/OOZIE-3689?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Janos Makai updated OOZIE-3689: --- Summary: Remove usage of commons-httpclient due to EOL (was: Remove usage of commons-httpclient due to EOL and CVEs (CVE-2012-5783)) > Remove usage of commons-httpclient due to EOL > - > > Key: OOZIE-3689 > URL: https://issues.apache.org/jira/browse/OOZIE-3689 > Project: Oozie > Issue Type: Improvement >Affects Versions: 5.2.1 >Reporter: Janos Makai >Assignee: Janos Makai >Priority: Major > Attachments: OOZIE-3689-001.patch > > > Currently usages of `commons-httpclient` can be found > `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL > state and has CVE issue (CVE-2012-5783). > Oozie at this moment does not pull it in directly, but used from a transitive > dependency. > The goal of this ticket is to modify the test inside `TestHAShareLibService` > not to use `commons-httpclient`. -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Created] (OOZIE-3689) Remove usage of commons-httpclient due to EOL and CVEs (CVE-2012-5783)
Janos Makai created OOZIE-3689: -- Summary: Remove usage of commons-httpclient due to EOL and CVEs (CVE-2012-5783) Key: OOZIE-3689 URL: https://issues.apache.org/jira/browse/OOZIE-3689 Project: Oozie Issue Type: Improvement Affects Versions: 5.2.1 Reporter: Janos Makai Assignee: Janos Makai Currently usages of `commons-httpclient` can be found `TestHAShareLibService`'s unit test, however, `commons-httpclient` is in EOL state and has CVE issue (CVE-2012-5783). Oozie at this moment does not pull it in directly, but used from a transitive dependency. The goal of this ticket is to modify the test inside `TestHAShareLibService` not to use `commons-httpclient`. -- This message was sent by Atlassian Jira (v8.20.10#820010)