Apache Hadoop qbt Report: branch-2.10+JDK7 on Linux/x86_64

2022-01-07 Thread Apache Jenkins Server
For more details, see https://ci-hadoop.apache.org/job/hadoop-qbt-branch-2.10-java7-linux-x86_64/535/ No changes -1 overall The following subsystems voted -1: asflicense hadolint mvnsite pathlen unit The following subsystems voted -1 but were configured to be filtered/ignored: cc

Fwd: [jira] [Created] (HADOOP-18069) CVE-2021-0341 in okhttp@2.7.5 detected in hdfs-client

2022-01-07 Thread Steve Loughran
okhttp was last updated in 2017 why use this over httpclient? its only used in a couple of places and removing it entirely would make this problem go away forever -- Forwarded message - From: Eugene Shinn (Truveta) (Jira) Date: Wed, 5 Jan 2022 at 19:48 Subject: [jira] [Created] (

Re: [jira] [Created] (HADOOP-18069) CVE-2021-0341 in okhttp@2.7.5 detected in hdfs-client

2022-01-07 Thread Duo Zhang
https://square.github.io/okhttp/changelog/ The latest stable release is 4.9.1 which was published at 2021.1.30 https://github.com/square/okhttp/commits/master And there are still lots of commits recently. I'm not saying we should not remove it in hadoop, just want to point out that it is still

Apache Hadoop qbt Report: trunk+JDK8 on Linux/x86_64

2022-01-07 Thread Apache Jenkins Server
For more details, see https://ci-hadoop.apache.org/job/hadoop-qbt-trunk-java8-linux-x86_64/743/ [Jan 6, 2022 5:24:27 AM] (noreply) HADOOP-18065. ExecutorHelper.logThrowableFromAfterExecute() is too noisy. (#3860) [Jan 6, 2022 9:56:49 AM] (noreply) HADOOP-18055. Async Profiler endpoint for Hadoo

Apache Hadoop qbt Report: trunk+JDK11 on Linux/x86_64

2022-01-07 Thread Apache Jenkins Server
For more details, see https://ci-hadoop.apache.org/job/hadoop-qbt-trunk-java11-linux-x86_64/239/ [Jan 5, 2022 3:42:58 PM] (noreply) HDFS-16408. Ensure LeaseRecheckIntervalMs is greater than zero (#3856) [Jan 5, 2022 3:51:14 PM] (noreply) HDFS-16410. Insecure Xml parsing in OfflineEditsXmlLoader