[jira] [Commented] (OOZIE-3674) Add a --insecure like parameter to Oozie client so it can ignore certificate errors

Thu, 24 Nov 2022 15:51:06 -0800 


    [ 
https://issues.apache.org/jira/browse/OOZIE-3674?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17638432#comment-17638432
 ] 

Hadoop QA commented on OOZIE-3674:
----------------------------------


Testing JIRA OOZIE-3674

Cleaning local git workspace

----------------------------

{color:green}+1 PATCH_APPLIES{color}
{color:green}+1 CLEAN{color}
{color:red}-1 RAW_PATCH_ANALYSIS{color}
.    {color:green}+1{color} the patch does not introduce any @author tags
.    {color:green}+1{color} the patch does not introduce any tabs
.    {color:green}+1{color} the patch does not introduce any trailing spaces
.    {color:green}+1{color} the patch does not introduce any star imports
.    {color:red}-1{color} the patch contains 2 line(s) longer than 132 
characters
.    {color:green}+1{color} the patch adds/modifies 1 testcase(s)
{color:green}+1 RAT{color}
.    {color:green}+1{color} the patch does not seem to introduce new RAT 
warnings
{color:green}+1 JAVADOC{color}
.    {color:green}+1{color} Javadoc generation succeeded with the patch
.    {color:green}+1{color} the patch does not seem to introduce new Javadoc 
warning(s)
{color:green}+1 COMPILE{color}
.    {color:green}+1{color} HEAD compiles
.    {color:green}+1{color} patch compiles
.    {color:green}+1{color} the patch does not seem to introduce new javac 
warnings
{color:green}+1{color} There are no new bugs found in total.
.    {color:green}+1{color} There are no new bugs found in [examples].
.    {color:green}+1{color} There are no new bugs found in 
[fluent-job/fluent-job-api].
.    {color:green}+1{color} There are no new bugs found in [sharelib/hive].
.    {color:green}+1{color} There are no new bugs found in [sharelib/hive2].
.    {color:green}+1{color} There are no new bugs found in [sharelib/git].
.    {color:green}+1{color} There are no new bugs found in [sharelib/distcp].
.    {color:green}+1{color} There are no new bugs found in [sharelib/hcatalog].
.    {color:green}+1{color} There are no new bugs found in [sharelib/sqoop].
.    {color:green}+1{color} There are no new bugs found in [sharelib/spark].
.    {color:green}+1{color} There are no new bugs found in [sharelib/oozie].
.    {color:green}+1{color} There are no new bugs found in [sharelib/pig].
.    {color:green}+1{color} There are no new bugs found in [sharelib/streaming].
.    {color:green}+1{color} There are no new bugs found in [server].
.    {color:green}+1{color} There are no new bugs found in [docs].
.    {color:green}+1{color} There are no new bugs found in [webapp].
.    {color:green}+1{color} There are no new bugs found in [core].
.    {color:green}+1{color} There are no new bugs found in [tools].
.    {color:green}+1{color} There are no new bugs found in [client].
{color:green}+1 BACKWARDS_COMPATIBILITY{color}
.    {color:green}+1{color} the patch does not change any JPA 
Entity/Colum/Basic/Lob/Transient annotations
.    {color:green}+1{color} the patch does not modify JPA files
{color:red}-1 TESTS{color}
.    Tests run        : 2749
.    Tests failed     : 0
.    Tests in error   : 0
.    Tests timed out  : 1

Check console output for the full list of errors/failures
{color:green}+1 DISTRO{color}
.    {color:green}+1{color} distro tarball builds with the patch 
{color:green}+1 MODERNIZER{color}

----------------------------
{color:red}*-1 Overall result, please check the reported -1(s)*{color}


The full output of the test-patch run is available at

. https://ci-hadoop.apache.org/job/PreCommit-OOZIE-Build/141/



> Add a --insecure like parameter to Oozie client so it can ignore certificate 
> errors
> -----------------------------------------------------------------------------------
>
>                 Key: OOZIE-3674
>                 URL: https://issues.apache.org/jira/browse/OOZIE-3674
>             Project: Oozie
>          Issue Type: Task
>          Components: client
>    Affects Versions: 5.2.1
>            Reporter: Janos Makai
>            Assignee: Janos Makai
>            Priority: Major
>         Attachments: OOZIE-3674-001.patch, OOZIE-3674-002.patch, 
> OOZIE-3674-003.patch
>
>
> Currently when SSL is enabled you need to pass the -Djavax.net.ssl.trustStore 
> and -Djavax.net.ssl.trustStorePassword system properties to the Oozie client 
> or you need to import the certificate into the JDK's cert store otherwise 
> Oozie client won't be able to connect to the Oozie server. Always passing 
> these variables is very inconvenient, and another solution might be to allow 
> certificate errors in the client. This would be like the curl 
> *{color:#0747a6}--insecure{color}* option. The data would still be encrypted, 
> but the client would not check the certificate. This should not be turned on 
> by default in the Oozie client, but this could be a new command line 
> parameter.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to