You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hc.apache.org by "Oleg Kalnichevski (Jira)" <ji...@apache.org> on 2021/02/01 11:27:00 UTC

[jira] [Resolved] (HTTPCORE-664) WARNING: Illegal reflective access by org.apache.hc.core5.util.ReflectionUtils$1 (file:/mnt/blah.jar) to method sun.security.ssl.SSLEngineImpl.getApplicationProtocol()

     [ https://issues.apache.org/jira/browse/HTTPCORE-664?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Oleg Kalnichevski resolved HTTPCORE-664.
----------------------------------------
    Resolution: Invalid

[~jnrouvignac] HttpClient 5.0.x is based on Java 1.7. Restrictions imposed by later Java versions do not apply. If you want to get rid of the warning please follow the instructions in this sample app:
http://hc.apache.org/httpcomponents-client-5.0.x/httpclient5/xref-test/org/apache/hc/client5/http/examples/AsyncClientTlsAlpn.html

Oleg   

> WARNING: Illegal reflective access by org.apache.hc.core5.util.ReflectionUtils$1 (file:/mnt/blah.jar) to method sun.security.ssl.SSLEngineImpl.getApplicationProtocol()
> -----------------------------------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: HTTPCORE-664
>                 URL: https://issues.apache.org/jira/browse/HTTPCORE-664
>             Project: HttpComponents HttpCore
>          Issue Type: Bug
>          Components: HttpCore
>    Affects Versions: 5.0.3
>         Environment: Java 11
>            Reporter: Jean-Noel Rouvignac
>            Priority: Major
>
> Using httpcore5 with Java 11, we noticed the code is reporting the following warning reported by the JVM:
> {noformat}
> 11:50:19 WARNING: An illegal reflective access operation has occurred
> 11:50:19 WARNING: Illegal reflective access by org.apache.hc.core5.util.ReflectionUtils$1 (file:/mnt/blah.jar) to method sun.security.ssl.SSLEngineImpl.getApplicationProtocol()
> 11:50:19 WARNING: Please consider reporting this to the maintainers of org.apache.hc.core5.util.ReflectionUtils$1
> 11:50:19 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations
> 11:50:19 WARNING: All illegal access operations will be denied in a future release
> {noformat}
> This illegal access should not be performed at all. I have not yet looked at the code to see how it can be avoided / removed.
>  
> The likely cause of this message is the following code in [{{SSLIOSession.doHandshake()}}|https://github.com/apache/httpcomponents-core/blob/master/httpcore5/src/main/java/org/apache/hc/core5/reactor/ssl/SSLIOSession.java#L390]:
> {code:java}
>                     if (this.tlsDetails == null) {
>                         final SSLSession sslSession = this.sslEngine.getSession();
>                         final String applicationProtocol = ReflectionUtils.callGetter(this.sslEngine, "ApplicationProtocol", String.class);
>                         this.tlsDetails = new TlsDetails(sslSession, applicationProtocol);           
>                     }
> {code}



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org