You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by Colm O hEigeartaigh <co...@apache.org> on 2017/04/10 11:26:18 UTC
Review Request 58294: RANGER-1505 - Remove KeyProtector code in KMS
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/58294/
-----------------------------------------------------------
Review request for ranger.
Bugs: RANGER-1505
https://issues.apache.org/jira/browse/RANGER-1505
Repository: ranger
Description
-------
The KMS service uses reflection to call on the com.sun.crypto.provider.KeyProtector class to encrypt/decrypt keys using a password. This causes problems with Java 9 and is generally unnecessary, as we can just use the normal Java API to do this.
Diffs
-----
kms/src/main/java/org/apache/hadoop/crypto/key/RangerKeyStore.java a001c08
Diff: https://reviews.apache.org/r/58294/diff/1/
Testing
-------
Tested the Ranger KMS Service.
Thanks,
Colm O hEigeartaigh
Re: Review Request 58294: RANGER-1505 - Remove KeyProtector code in
KMS
Posted by Qiang Zhang <zh...@zte.com.cn>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/58294/#review171528
-----------------------------------------------------------
Ship it!
Ship It!
- Qiang Zhang
On April 10, 2017, 11:26 a.m., Colm O hEigeartaigh wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/58294/
> -----------------------------------------------------------
>
> (Updated April 10, 2017, 11:26 a.m.)
>
>
> Review request for ranger.
>
>
> Bugs: RANGER-1505
> https://issues.apache.org/jira/browse/RANGER-1505
>
>
> Repository: ranger
>
>
> Description
> -------
>
> The KMS service uses reflection to call on the com.sun.crypto.provider.KeyProtector class to encrypt/decrypt keys using a password. This causes problems with Java 9 and is generally unnecessary, as we can just use the normal Java API to do this.
>
>
> Diffs
> -----
>
> kms/src/main/java/org/apache/hadoop/crypto/key/RangerKeyStore.java a001c08
>
>
> Diff: https://reviews.apache.org/r/58294/diff/1/
>
>
> Testing
> -------
>
> Tested the Ranger KMS Service.
>
>
> Thanks,
>
> Colm O hEigeartaigh
>
>