HADOOP-18481. Don't warn on EnvironmentCredentialsProvider. #4973

ahmarsuhail · 2022-10-05T16:41:25Z

Description of PR

This PR prevents logging of V1 Credential provider warning for EnvironmentCredentialsProvider.

How was this patch tested?

Ran an integration test, checked what's logged. No warning logged for EnvironmentCredentialsProvider, warning logged when I set cred provider as com.amazonaws.auth.InstanceProfileCredentialsProvider

hadoop-yetus · 2022-10-05T18:22:44Z

💔 -1 overall

Vote	Subsystem	Runtime	Logfile	Comment
+0 🆗	reexec	0m 45s		Docker mode activated.
			_ Prechecks _
+1 💚	dupname	0m 0s		No case conflicting files found.
+0 🆗	codespell	0m 0s		codespell was not available.
+0 🆗	detsecrets	0m 0s		detect-secrets was not available.
+1 💚	@author	0m 0s		The patch does not contain any @author tags.
-1 ❌	test4tests	0m 0s		The patch doesn't appear to include any new or modified tests. Please justify why no new tests are needed for this patch. Also please list what manual steps were performed to verify this patch.
			_ trunk Compile Tests _
+1 💚	mvninstall	40m 50s		trunk passed
+1 💚	compile	0m 58s		trunk passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	compile	0m 45s		trunk passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	checkstyle	0m 43s		trunk passed
+1 💚	mvnsite	0m 55s		trunk passed
+1 💚	javadoc	0m 39s		trunk passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	javadoc	0m 42s		trunk passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	spotbugs	1m 30s		trunk passed
+1 💚	shadedclient	21m 50s		branch has no errors when building and testing our client artifacts.
			_ Patch Compile Tests _
+1 💚	mvninstall	0m 38s		the patch passed
+1 💚	compile	0m 41s		the patch passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	javac	0m 41s		the patch passed
+1 💚	compile	0m 37s		the patch passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	javac	0m 37s		the patch passed
+1 💚	blanks	0m 0s		The patch has no blanks issues.
+1 💚	checkstyle	0m 27s		the patch passed
+1 💚	mvnsite	0m 42s		the patch passed
+1 💚	javadoc	0m 20s		the patch passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	javadoc	0m 31s		the patch passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	spotbugs	1m 12s		the patch passed
+1 💚	shadedclient	20m 38s		patch has no errors when building and testing our client artifacts.
			_ Other Tests _
+1 💚	unit	2m 39s		hadoop-aws in the patch passed.
+1 💚	asflicense	0m 45s		The patch does not generate ASF License warnings.
		99m 55s

Subsystem	Report/Notes
Docker	ClientAPI=1.41 ServerAPI=1.41 base: https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-4973/1/artifact/out/Dockerfile
GITHUB PR	#4973
Optional Tests	dupname asflicense compile javac javadoc mvninstall mvnsite unit shadedclient spotbugs checkstyle codespell detsecrets
uname	Linux 197de77f960a 4.15.0-191-generic #202-Ubuntu SMP Thu Aug 4 01:49:29 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux
Build tool	maven
Personality	dev-support/bin/hadoop.sh
git revision	trunk / `35c78b9`
Default Java	Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
Multi-JDK versions	/usr/lib/jvm/java-11-openjdk-amd64:Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04 /usr/lib/jvm/java-8-openjdk-amd64:Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
Test Results	https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-4973/1/testReport/
Max. process+thread count	558 (vs. ulimit of 5500)
modules	C: hadoop-tools/hadoop-aws U: hadoop-tools/hadoop-aws
Console output	https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-4973/1/console
versions	git=2.25.1 maven=3.6.3 spotbugs=4.2.2
Powered by	Apache Yetus 0.14.0 https://yetus.apache.org

This message was automatically generated.

ahmarsuhail · 2022-10-10T13:26:11Z

@steveloughran could you please review? I'll then pick up testing for #4698 (prerequisites for upgrading to V2) against branch-3.3.

steveloughran

code looks good, just wondering if we may want to do the same for a couple more providers which we can easily migrate

steveloughran · 2022-10-10T16:51:59Z

hadoop-tools/hadoop-aws/src/main/java/org/apache/hadoop/fs/s3a/S3AUtils.java

    for (Class<?> aClass : awsClasses) {

-      if (aClass.getName().contains(AWS_AUTH_CLASS_PREFIX)) {
+      if (!aClass.getSimpleName().equals("EnvironmentVariableCredentialsProvider")


how about having an array of simple names to skip on, with that, EC2ContainerCredentialsProviderWrapper, and InstanceProfileCredentialsProvider in. we only added our own IAMInstanceCredentialsProvider with delegation tokens, HADOOP-15449, and until then just included the aws sdk one directly. any refs to either can be mapped to IAMInstanceCredentialsProvider before trying to instantiate

ahmarsuhail · 2022-10-12T17:04:42Z

thanks @steveloughran, have added EC2ContainerCredentialsProviderWrapper and InstanceProfileCredentialsProvider

hadoop-yetus · 2022-10-12T18:45:42Z

💔 -1 overall

Vote	Subsystem	Runtime	Logfile	Comment
+0 🆗	reexec	0m 52s		Docker mode activated.
			_ Prechecks _
+1 💚	dupname	0m 0s		No case conflicting files found.
+0 🆗	codespell	0m 1s		codespell was not available.
+0 🆗	detsecrets	0m 1s		detect-secrets was not available.
+1 💚	@author	0m 0s		The patch does not contain any @author tags.
-1 ❌	test4tests	0m 0s		The patch doesn't appear to include any new or modified tests. Please justify why no new tests are needed for this patch. Also please list what manual steps were performed to verify this patch.
			_ trunk Compile Tests _
+1 💚	mvninstall	40m 56s		trunk passed
+1 💚	compile	0m 55s		trunk passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	compile	0m 48s		trunk passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	checkstyle	0m 45s		trunk passed
+1 💚	mvnsite	0m 59s		trunk passed
+1 💚	javadoc	0m 41s		trunk passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	javadoc	0m 40s		trunk passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	spotbugs	1m 28s		trunk passed
+1 💚	shadedclient	23m 1s		branch has no errors when building and testing our client artifacts.
			_ Patch Compile Tests _
+1 💚	mvninstall	0m 42s		the patch passed
+1 💚	compile	0m 42s		the patch passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	javac	0m 42s		the patch passed
+1 💚	compile	0m 35s		the patch passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	javac	0m 35s		the patch passed
+1 💚	blanks	0m 0s		The patch has no blanks issues.
+1 💚	checkstyle	0m 24s		the patch passed
+1 💚	mvnsite	0m 40s		the patch passed
+1 💚	javadoc	0m 19s		the patch passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04
+1 💚	javadoc	0m 29s		the patch passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
+1 💚	spotbugs	1m 16s		the patch passed
+1 💚	shadedclient	20m 39s		patch has no errors when building and testing our client artifacts.
			_ Other Tests _
+1 💚	unit	2m 38s		hadoop-aws in the patch passed.
+1 💚	asflicense	0m 41s		The patch does not generate ASF License warnings.
		101m 37s

Subsystem	Report/Notes
Docker	ClientAPI=1.41 ServerAPI=1.41 base: https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-4973/2/artifact/out/Dockerfile
GITHUB PR	#4973
Optional Tests	dupname asflicense compile javac javadoc mvninstall mvnsite unit shadedclient spotbugs checkstyle codespell detsecrets
uname	Linux 00d9d8c2ca79 4.15.0-191-generic #202-Ubuntu SMP Thu Aug 4 01:49:29 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux
Build tool	maven
Personality	dev-support/bin/hadoop.sh
git revision	trunk / `192d039`
Default Java	Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
Multi-JDK versions	/usr/lib/jvm/java-11-openjdk-amd64:Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04 /usr/lib/jvm/java-8-openjdk-amd64:Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07
Test Results	https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-4973/2/testReport/
Max. process+thread count	562 (vs. ulimit of 5500)
modules	C: hadoop-tools/hadoop-aws U: hadoop-tools/hadoop-aws
Console output	https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-4973/2/console
versions	git=2.25.1 maven=3.6.3 spotbugs=4.2.2
Powered by	Apache Yetus 0.14.0 https://yetus.apache.org

This message was automatically generated.

steveloughran · 2022-10-13T16:38:35Z

and you tested it against an s3 store again, right?

ahmarsuhail · 2022-10-14T08:34:56Z

Yes, sorry should have mentioned! Tested by setting fs.s3a.aws.credentials.provider to com.amazonaws.auth.AWSStaticCredentialsProvider, and ran an Integration test (ITestPrefetchingInputStream) which logs warning. Then tested with com.amazonaws.auth.EnvironmentVariableCredentialsProvider, com.amazonaws.auth.EC2ContainerCredentialsProviderWrapper and com.amazonaws.auth.InstanceProfileCredentialsProvider which do not log warning.

steveloughran

+1

steveloughran · 2022-10-14T09:48:51Z

merged to trunk; will backport

…tial Providers. (#4973) The AWS SDKV2 upgrade log no longer warns about instantiation of the v1 SDK credential providers which are commonly used in s3a configurations: * com.amazonaws.auth.EnvironmentVariableCredentialsProvider * com.amazonaws.auth.EC2ContainerCredentialsProviderWrapper * com.amazonaws.auth.InstanceProfileCredentialsProvider When the hadoop-aws module moves to the v2 SDK, references to these credential providers will be rewritten to their v2 equivalents. Follow-on to HADOOP-18382. "Upgrade AWS SDK to V2 - Prerequisites" Contributed by Ahmar Suhail

…tial Providers. (apache#4973) The AWS SDKV2 upgrade log no longer warns about instantiation of the v1 SDK credential providers which are commonly used in s3a configurations: * com.amazonaws.auth.EnvironmentVariableCredentialsProvider * com.amazonaws.auth.EC2ContainerCredentialsProviderWrapper * com.amazonaws.auth.InstanceProfileCredentialsProvider When the hadoop-aws module moves to the v2 SDK, references to these credential providers will be rewritten to their v2 equivalents. Follow-on to HADOOP-18382. "Upgrade AWS SDK to V2 - Prerequisites" Contributed by Ahmar Suhail

don't warn on EnvironmentCredProvider

35c78b9

steveloughran reviewed Oct 10, 2022

View reviewed changes

adds in additional cred providers

192d039

steveloughran approved these changes Oct 14, 2022

View reviewed changes

steveloughran merged commit 77e551a into apache:trunk Oct 14, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

HADOOP-18481. Don't warn on EnvironmentCredentialsProvider. #4973

HADOOP-18481. Don't warn on EnvironmentCredentialsProvider. #4973

Uh oh!

ahmarsuhail commented Oct 5, 2022

Uh oh!

hadoop-yetus commented Oct 5, 2022

Uh oh!

ahmarsuhail commented Oct 10, 2022 •

edited

Loading

Uh oh!

steveloughran left a comment

Uh oh!

steveloughran Oct 10, 2022

Uh oh!

ahmarsuhail commented Oct 12, 2022

Uh oh!

hadoop-yetus commented Oct 12, 2022

Uh oh!

steveloughran commented Oct 13, 2022

Uh oh!

ahmarsuhail commented Oct 14, 2022

Uh oh!

steveloughran left a comment

Uh oh!

steveloughran commented Oct 14, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

HADOOP-18481. Don't warn on EnvironmentCredentialsProvider. #4973

HADOOP-18481. Don't warn on EnvironmentCredentialsProvider. #4973

Uh oh!

Conversation

ahmarsuhail commented Oct 5, 2022

Description of PR

How was this patch tested?

Uh oh!

hadoop-yetus commented Oct 5, 2022

Uh oh!

ahmarsuhail commented Oct 10, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

steveloughran left a comment

Choose a reason for hiding this comment

Uh oh!

steveloughran Oct 10, 2022

Choose a reason for hiding this comment

Uh oh!

ahmarsuhail commented Oct 12, 2022

Uh oh!

hadoop-yetus commented Oct 12, 2022

Uh oh!

steveloughran commented Oct 13, 2022

Uh oh!

ahmarsuhail commented Oct 14, 2022

Uh oh!

steveloughran left a comment

Choose a reason for hiding this comment

Uh oh!

steveloughran commented Oct 14, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

ahmarsuhail commented Oct 10, 2022 •

edited

Loading