[SPARK-45545][CORE] Pass SSLOptions wherever we create a SparkTransportConf #43387
Conversation
|
test failures looked unrelated, retrying now though. |
|
A bit swamped this week, will go over this PR later this week. |
|
no rush - thanks for looking into this! |
core/src/test/scala/org/apache/spark/SslExternalShuffleServiceSuite.scala
Outdated
Show resolved
Hide resolved
There was a problem hiding this comment.
This is a repeated pattern - why not add it to SslSampleConfigs ?
SslSampleConfigs.updateConfWithDefault or some such ?
There was a problem hiding this comment.
I wanted to do that, but SparkConf is in core and SslSampleConfigs is in network-common - this would create a dependency loop since we don't have access to SparkConf inside network-common. If there is another good place to put this helper I can do it.
There was a problem hiding this comment.
Good point.
Why not TestUtils ?
There was a problem hiding this comment.
@mridulm I took a look but unfortunately I can't -- TestUtils is in the main codebase, not the test codebase. SslSampleConfigs is test only (See
spark/core/src/main/scala/org/apache/spark/TestUtils.scala
Lines 60 to 66 in 48e207f
But I created an SslTestUtils and used it everywhere except yarn.
core/src/test/scala/org/apache/spark/network/netty/NettyBlockTransferSecuritySuite.scala
Outdated
Show resolved
Hide resolved
core/src/test/scala/org/apache/spark/network/netty/NettyBlockTransferSecuritySuite.scala
Outdated
Show resolved
Hide resolved
core/src/test/scala/org/apache/spark/network/netty/NettyBlockTransferSecuritySuite.scala
Outdated
Show resolved
Hide resolved
|
Can you also fix the conflicts please ? |
hasnain-db
left a comment
hasnain-db
left a comment
There was a problem hiding this comment.
will address conflicts, thanks!
core/src/test/scala/org/apache/spark/network/netty/NettyBlockTransferSecuritySuite.scala
Outdated
Show resolved
Hide resolved
There was a problem hiding this comment.
I wanted to do that, but SparkConf is in core and SslSampleConfigs is in network-common - this would create a dependency loop since we don't have access to SparkConf inside network-common. If there is another good place to put this helper I can do it.
core/src/test/scala/org/apache/spark/network/netty/NettyBlockTransferSecuritySuite.scala
Outdated
Show resolved
Hide resolved
core/src/test/scala/org/apache/spark/network/netty/NettyBlockTransferSecuritySuite.scala
Outdated
Show resolved
Hide resolved
core/src/test/scala/org/apache/spark/SslExternalShuffleServiceSuite.scala
Outdated
Show resolved
Hide resolved
hasnain-db
force-pushed
the
spark-tls-integrate-everywhere
branch
from
17cb346 to
722dea9
Compare
mridulm
left a comment
mridulm
left a comment
There was a problem hiding this comment.
Looks good to me, pending CI
mridulm
left a comment
mridulm
left a comment
There was a problem hiding this comment.
Looks good to me, pending CI
|
CI looks green. thank you for reviewing @mridulm ! |
|
Merged to master. |
2 participants
What changes were proposed in this pull request?
This change ensures that RPC SSL options settings inheritance works properly after #43238 - we pass
sslOptionswherever we callfromSparkConf.In addition to that minor mechanical change, duplicate/add tests for every place that calls this method, to add a test case that runs with SSL support in the config.
Why are the changes needed?
These changes are needed to ensure that the RPC SSL functionality can work properly with settings inheritance. In addition, through these tests we can ensure that any changes to these modules are also tested with SSL support and avoid regressions in the future.
Does this PR introduce any user-facing change?
No
How was this patch tested?
Full integration testing also done as part of #42685
Added some tests and ran them:
and
Was this patch authored or co-authored using generative AI tooling?
No