Skip to content

Replace java.security.AccessController with org.opensearch.secure_sm.AccessController in discovery plugins #19802

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Replace java.security.AccessController with org.opensearch.secure_sm.AccessController in discovery plugins #19802

wants to merge 3 commits into from
+61 −209

Conversation

@cwperks
Copy link
Member

@cwperks cwperks commented Oct 28, 2025

Description

Replace java.security.AccessController with org.opensearch.secure_sm.AccessController in discovery plugins.

Replacing all of these calls in a single PR would be a lot to review, so opting to split up the core by subprojects to replace the calls.

Related Issues

Related to #18339

Check List

  • Functionality includes testing.
  • API changes companion pull request created, if applicable.
  • Public documentation issue/PR created, if applicable.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@cwperks
Replace java.security.AccessController with org.opensearch.secure_sm.…
1623b50 
…AccessController in discovery plugins

Signed-off-by: Craig Perkins <[email protected]>
@cwperks cwperks requested a review from a team as a code owner October 28, 2025 19:59
@cwperks
Add to CHANGELOG
0d4c60b 
Signed-off-by: Craig Perkins <[email protected]>
@github-actions
Copy link
Contributor

❌ Gradle check result for 0d4c60b: null

Please examine the workflow log, locate, and copy-paste the failure(s) below, then iterate to green. Is the failure a flaky test unrelated to your change?

@github-actions
Copy link
Contributor

❌ Gradle check result for 0d4c60b: FAILURE

Please examine the workflow log, locate, and copy-paste the failure(s) below, then iterate to green. Is the failure a flaky test unrelated to your change?

@cwperks
Fix test
0896720 
Signed-off-by: Craig Perkins <[email protected]>
@github-actions
Copy link
Contributor

❌ Gradle check result for 0896720: FAILURE

Please examine the workflow log, locate, and copy-paste the failure(s) below, then iterate to green. Is the failure a flaky test unrelated to your change?

@github-actions
Copy link
Contributor

✅ Gradle check result for 0896720: SUCCESS

@codecov
Copy link

codecov bot commented Oct 29, 2025

Codecov Report

❌ Patch coverage is 84.37500% with 5 lines in your changes missing coverage. Please review.
✅ Project coverage is 73.15%. Comparing base (8dd1286) to head (0896720).
⚠️ Report is 1 commits behind head on main.

Files with missing lines Patch % Lines
...re/classic/management/AzureComputeServiceImpl.java 0.00% 3 Missing ⚠️
.../opensearch/cloud/gce/GceInstancesServiceImpl.java 87.50% 1 Missing ⚠️
.../opensearch/cloud/gce/network/GceNameResolver.java 50.00% 1 Missing ⚠️
Additional details and impacted files 
@@             Coverage Diff              @@
##               main   #19802      +/-   ##
============================================
+ Coverage     73.12%   73.15%   +0.03%     
- Complexity    71099    71116      +17     
============================================
  Files          5754     5752       -2     
  Lines        325296   325277      -19     
  Branches      47052    47053       +1     
============================================
+ Hits         237868   237955      +87     
+ Misses        68282    68200      -82     
+ Partials      19146    19122      -24

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

sandeshkr419
sandeshkr419 reviewed Oct 30, 2025
View reviewed changes
plugins/discovery-ec2/src/main/java/org/opensearch/discovery/ec2/Ec2DiscoveryPlugin.java
}
} catch (final IOException e) {
} catch (final Exception e) {
if (e instanceof IllegalStateException) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any reason for changing the behavior?

plugins/discovery-ec2/src/main/java/org/opensearch/discovery/ec2/Ec2NameResolver.java
// only one address: because we explicitly ask for only one via the Ec2HostnameType
return new InetAddress[] { InetAddress.getByName(metadataResult) };
} catch (IOException e) {
} catch (Exception e) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any reason for changing this or was this unintentional?

(applies to other places as well)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sandeshkr419 sandeshkr419 sandeshkr419 left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cwperks @sandeshkr419