[jira] [Commented] (IMPALA-14066) Rebase the Kudu code in Impala to 1.17.1

Mon, 16 Jun 2025 07:32:39 -0700 


    [ 
https://issues.apache.org/jira/browse/IMPALA-14066?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17979255#comment-17979255
 ] 

ASF subversion and git services commented on IMPALA-14066:
----------------------------------------------------------

Commit eddf075a7af8c5d2e76e9613142260333e3d65b1 in impala's branch 
refs/heads/master from Joe McDonnell
[ https://gitbox.apache.org/repos/asf?p=impala.git;h=eddf075a7 ]

IMPALA-14066 (Part 6): Re-applying IMPALA-14038: Pull in KUDU-3663 to handle 
certs with RSASSA-PSS

This commit re-applies IMPALA-14038 to the Kudu files after the Kudu
rebase to v1.17.1.

Testing:
 - exhaustive tests have passed

The original commit message is below:

The existing KRPC code to determine the hash algorithm for a
certificate does not handle RSASSA-PSS signatures as the hash
algorithm is configurable for RSASSA-PSS. This was addressed
in Kudu with KUDU-3663. That fix uses OpenSSL 1.1.1's
x509_get_signature_info() function, which is able to determine
the hash algorithm even for RSASSA-PSS. This is similar to the
fix that Postgres did in a similar situation. It does not support
RSASSA-PSS on OpenSSL 1.0.2, but it improves the error message
in that case.

Testing:
 - Kudu added a unit test that passes

Change-Id: I162efac2d68c2bfb34a5086557182f68670d8c2a
Reviewed-on: http://gerrit.cloudera.org:8080/22923
Reviewed-by: Jason Fehr <[email protected]>
Tested-by: Impala Public Jenkins <[email protected]>
Reviewed-on: http://gerrit.cloudera.org:8080/23015
Reviewed-by: Daniel Becker <[email protected]>
Tested-by: Daniel Becker <[email protected]>


> Rebase the Kudu code in Impala to 1.17.1
> ----------------------------------------
>
>                 Key: IMPALA-14066
>                 URL: https://issues.apache.org/jira/browse/IMPALA-14066
>             Project: IMPALA
>          Issue Type: Improvement
>          Components: Backend, Toolchain
>            Reporter: Daniel Becker
>            Assignee: Daniel Becker
>            Priority: Major
>
> Rebase the Kudu code that is copied into Impala to version 1.17.1. 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to