hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-12886) Exclude weak ciphers in SSLFactory through ssl-server.xml
Date Wed, 30 Mar 2016 21:46:26 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-12886?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15218929#comment-15218929
] 

Hudson commented on HADOOP-12886:
---------------------------------

FAILURE: Integrated in Hadoop-trunk-Commit #9529 (See [https://builds.apache.org/job/Hadoop-trunk-Commit/9529/])
HADOOP-12886. Exclude weak ciphers in SSLFactory through ssl-server.xml. (zezhang: rev e4fc609d5d3739b7809057954c5233cfd1d1117b)
* hadoop-common-project/hadoop-common/src/test/java/org/apache/hadoop/security/ssl/TestSSLFactory.java
* hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/ssl/SSLFactory.java


> Exclude weak ciphers in SSLFactory through ssl-server.xml
> ---------------------------------------------------------
>
>                 Key: HADOOP-12886
>                 URL: https://issues.apache.org/jira/browse/HADOOP-12886
>             Project: Hadoop Common
>          Issue Type: Improvement
>    Affects Versions: 2.7.2
>            Reporter: Wei-Chiu Chuang
>            Assignee: Wei-Chiu Chuang
>              Labels: Netty, datanode, security
>             Fix For: 2.8.0
>
>         Attachments: HADOOP-12886.001.patch, HADOOP-12886.002.patch, HADOOP-12886.003.patch,
HADOOP-12886.004.patch
>
>
> HADOOP-12668 added support to exclude weak ciphers in HttpServer2, which is good for
name nodes. But data node web UI is based on Netty, which uses SSLFactory and does not read
ssl-server.xml to exclude the ciphers.
> We should also add the same support for Netty for consistency.
> I will attach a full patch later.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message