Kai Zheng created HADOOP-10847: ---------------------------------- Summary: Cleanup calling of sun.security.x509 Key: HADOOP-10847 URL: https://issues.apache.org/jira/browse/HADOOP-10847 Project: Hadoop Common Issue Type: Improvement Components: security Reporter: Kai Zheng Priority: Minor
As was told by Max (Oracle), JDK9 is likely to block all accesses to sun.* classes. Below is from email of Andrew Purtell: {quote} The use of sun.* APIs to create a certificate in Hadoop and HBase test code can be removed. Someone (Intel? Oracle?) can submit a JIRA that replaces the programmatic construction with a stringified binary cert for use in the relevant unit tests. {quote} In Hadoop, the calls in question are below: {code} hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:24:import sun.security.x509.CertificateIssuerName; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:25:import sun.security.x509.CertificateSerialNumber; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:26:import sun.security.x509.CertificateSubjectName; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:27:import sun.security.x509.CertificateValidity; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:28:import sun.security.x509.CertificateVersion; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:29:import sun.security.x509.CertificateX509Key; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:30:import sun.security.x509.X500Name; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:31:import sun.security.x509.X509CertImpl; hadoop-common/src/test/java/org/apache/hadoop/security/ssl/KeyStoreTestUtil.java:32:import sun.security.x509.X509CertInfo; {code} -- This message was sent by Atlassian JIRA (v6.2#6252)