honeymoose
/
OpenSearch
mirror of https://github.com/honeymoose/OpenSearch.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Run forbidden api checks with runtimeJavaVersion (#32947) 

Run forbidden APIs checks with runtime hava version
This commit is contained in:
Alpar Torok 2018-08-22 09:05:22 +03:00 committed by GitHub
parent 0a4b55c9c0
commit 82d10b484a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
30 changed files with 241 additions and 172 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

108
buildSrc/src/main/groovy/org/elasticsearch/gradle/precommit/PrecommitTasks.groovy
View File

@ -18,18 +18,12 @@
*/ */
package org.elasticsearch.gradle.precommit package org.elasticsearch.gradle.precommit
import de.thetaphi.forbiddenapis.gradle.CheckForbiddenApis
import de.thetaphi.forbiddenapis.gradle.ForbiddenApisPlugin
import org.elasticsearch.gradle.ExportElasticsearchBuildResourcesTask import org.elasticsearch.gradle.ExportElasticsearchBuildResourcesTask
import org.gradle.api.JavaVersion
import org.gradle.api.Project import org.gradle.api.Project
import org.gradle.api.Task import org.gradle.api.Task
import org.gradle.api.file.FileCollection import org.gradle.api.artifacts.Configuration
import org.gradle.api.plugins.JavaBasePlugin import org.gradle.api.plugins.JavaBasePlugin
import org.gradle.api.plugins.quality.Checkstyle import org.gradle.api.plugins.quality.Checkstyle
import org.gradle.api.tasks.JavaExec
import org.gradle.api.tasks.StopExecutionException
/** /**
* Validation tasks which should be run before committing. These run before tests. * Validation tasks which should be run before committing. These run before tests.
*/ */
@ -38,8 +32,8 @@ class PrecommitTasks {
/** Adds a precommit task, which depends on non-test verification tasks. */ /** Adds a precommit task, which depends on non-test verification tasks. */
public static Task create(Project project, boolean includeDependencyLicenses) { public static Task create(Project project, boolean includeDependencyLicenses) {
List<Task> precommitTasks = [ List<Task> precommitTasks = [
configureForbiddenApis(project),
configureCheckstyle(project), configureCheckstyle(project),
configureForbiddenApisCli(project),
configureNamingConventions(project), configureNamingConventions(project),
project.tasks.create('forbiddenPatterns', ForbiddenPatternsTask.class), project.tasks.create('forbiddenPatterns', ForbiddenPatternsTask.class),
project.tasks.create('licenseHeaders', LicenseHeadersTask.class), project.tasks.create('licenseHeaders', LicenseHeadersTask.class),
@ -48,9 +42,6 @@ class PrecommitTasks {
project.tasks.create('thirdPartyAudit', ThirdPartyAuditTask.class) project.tasks.create('thirdPartyAudit', ThirdPartyAuditTask.class)
] ]
// Configure it but don't add it as a dependency yet
configureForbiddenApisCli(project)
// tasks with just tests don't need dependency licenses, so this flag makes adding // tasks with just tests don't need dependency licenses, so this flag makes adding
// the task optional // the task optional
if (includeDependencyLicenses) { if (includeDependencyLicenses) {
@ -84,77 +75,60 @@ class PrecommitTasks {
return project.tasks.create(precommitOptions) return project.tasks.create(precommitOptions)
} }
private static Task configureForbiddenApis(Project project) {
project.pluginManager.apply(ForbiddenApisPlugin.class)
project.forbiddenApis {
failOnUnsupportedJava = false
bundledSignatures = ['jdk-unsafe', 'jdk-deprecated', 'jdk-non-portable', 'jdk-system-out']
signaturesURLs = [getClass().getResource('/forbidden/jdk-signatures.txt'),
getClass().getResource('/forbidden/es-all-signatures.txt')]
suppressAnnotations = ['**.SuppressForbidden']
}
project.tasks.withType(CheckForbiddenApis) {
// we do not use the += operator to add signatures, as conventionMappings of Gradle do not work when it's configured using withType:
if (name.endsWith('Test')) {
signaturesURLs = project.forbiddenApis.signaturesURLs +
[ getClass().getResource('/forbidden/es-test-signatures.txt'), getClass().getResource('/forbidden/http-signatures.txt') ]
} else {
signaturesURLs = project.forbiddenApis.signaturesURLs +
[ getClass().getResource('/forbidden/es-server-signatures.txt') ]
}
// forbidden apis doesn't support Java 11, so stop at 10
String targetMajorVersion = (project.compilerJavaVersion.compareTo(JavaVersion.VERSION_1_10) > 0 ?
JavaVersion.VERSION_1_10 :
project.compilerJavaVersion).getMajorVersion()
targetCompatibility = Integer.parseInt(targetMajorVersion) >= 9 ?targetMajorVersion : "1.${targetMajorVersion}"
}
Task forbiddenApis = project.tasks.findByName('forbiddenApis')
forbiddenApis.group = "" // clear group, so this does not show up under verification tasks
return forbiddenApis
}
private static Task configureForbiddenApisCli(Project project) { private static Task configureForbiddenApisCli(Project project) {
project.configurations.create("forbiddenApisCliJar") Configuration forbiddenApisConfiguration = project.configurations.create("forbiddenApisCliJar")
project.dependencies { project.dependencies {
forbiddenApisCliJar 'de.thetaphi:forbiddenapis:2.5' forbiddenApisCliJar ('de.thetaphi:forbiddenapis:2.5')
} }
Task forbiddenApisCli = project.tasks.create('forbiddenApisCli') Task forbiddenApisCli = project.tasks.create('forbiddenApis')
project.sourceSets.forEach { sourceSet -> project.sourceSets.forEach { sourceSet ->
forbiddenApisCli.dependsOn( forbiddenApisCli.dependsOn(
project.tasks.create(sourceSet.getTaskName('forbiddenApisCli', null), JavaExec) { project.tasks.create(sourceSet.getTaskName('forbiddenApis', null), ForbiddenApisCliTask) {
ExportElasticsearchBuildResourcesTask buildResources = project.tasks.getByName('buildResources') ExportElasticsearchBuildResourcesTask buildResources = project.tasks.getByName('buildResources')
dependsOn(buildResources) dependsOn(buildResources)
classpath = project.files( execAction = { spec ->
project.configurations.forbiddenApisCliJar, spec.classpath = project.files(
project.configurations.forbiddenApisCliJar,
sourceSet.compileClasspath,
sourceSet.runtimeClasspath
)
spec.executable = "${project.runtimeJavaHome}/bin/java"
}
inputs.files(
forbiddenApisConfiguration,
sourceSet.compileClasspath, sourceSet.compileClasspath,
sourceSet.runtimeClasspath sourceSet.runtimeClasspath
) )
main = 'de.thetaphi.forbiddenapis.cli.CliMain'
executable = "${project.runtimeJavaHome}/bin/java" targetCompatibility = project.compilerJavaVersion
args "-b", 'jdk-unsafe-1.8' bundledSignatures = [
args "-b", 'jdk-deprecated-1.8' "jdk-unsafe", "jdk-deprecated", "jdk-non-portable", "jdk-system-out"
args "-b", 'jdk-non-portable' ]
args "-b", 'jdk-system-out' signaturesFiles = project.files(
args "-f", buildResources.copy("forbidden/jdk-signatures.txt") buildResources.copy("forbidden/jdk-signatures.txt"),
args "-f", buildResources.copy("forbidden/es-all-signatures.txt") buildResources.copy("forbidden/es-all-signatures.txt")
args "--suppressannotation", '**.SuppressForbidden' )
suppressAnnotations = ['**.SuppressForbidden']
if (sourceSet.name == 'test') { if (sourceSet.name == 'test') {
args "-f", buildResources.copy("forbidden/es-test-signatures.txt") signaturesFiles += project.files(
args "-f", buildResources.copy("forbidden/http-signatures.txt") buildResources.copy("forbidden/es-test-signatures.txt"),
buildResources.copy("forbidden/http-signatures.txt")
)
} else { } else {
args "-f", buildResources.copy("forbidden/es-server-signatures.txt") signaturesFiles += project.files(buildResources.copy("forbidden/es-server-signatures.txt"))
} }
dependsOn sourceSet.classesTaskName dependsOn sourceSet.classesTaskName
doFirst { classesDirs = sourceSet.output.classesDirs
// Forbidden APIs expects only existing dirs, and requires at least one ext.replaceSignatureFiles = { String... names ->
FileCollection existingOutputs = sourceSet.output.classesDirs signaturesFiles = project.files(
.filter { it.exists() } names.collect { buildResources.copy("forbidden/${it}.txt") }
if (existingOutputs.isEmpty()) { )
throw new StopExecutionException("${sourceSet.name} has no outputs") }
} ext.addSignatureFiles = { String... names ->
existingOutputs.forEach { args "-d", it } signaturesFiles += project.files(
names.collect { buildResources.copy("forbidden/${it}.txt") }
)
} }
} }
) )

3
buildSrc/src/main/java/org/elasticsearch/gradle/ExportElasticsearchBuildResourcesTask.java
View File

@ -35,6 +35,7 @@ import java.io.IOException;
import java.io.InputStream; import java.io.InputStream;
import java.nio.file.Files; import java.nio.file.Files;
import java.nio.file.Path; import java.nio.file.Path;
import java.nio.file.StandardCopyOption;
import java.util.Collections; import java.util.Collections;
import java.util.HashSet; import java.util.HashSet;
import java.util.Set; import java.util.Set;
@ -105,7 +106,7 @@ public class ExportElasticsearchBuildResourcesTask extends DefaultTask {
if (is == null) { if (is == null) {
throw new GradleException("Can't export `" + resourcePath + "` from build-tools: not found"); throw new GradleException("Can't export `" + resourcePath + "` from build-tools: not found");
} }
Files.copy(is, destination); Files.copy(is, destination, StandardCopyOption.REPLACE_EXISTING);
} catch (IOException e) { } catch (IOException e) {
throw new GradleException("Can't write resource `" + resourcePath + "` to " + destination, e); throw new GradleException("Can't write resource `" + resourcePath + "` to " + destination, e);
} }

154
buildSrc/src/main/java/org/elasticsearch/gradle/precommit/ForbiddenApisCliTask.java Normal file
View File

@ -0,0 +1,154 @@
/*
* Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright
* ownership. Elasticsearch licenses this file to you under
* the Apache License, Version 2.0 (the "License"); you may
* not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.elasticsearch.gradle.precommit;
import de.thetaphi.forbiddenapis.cli.CliMain;
import org.gradle.api.Action;
import org.gradle.api.DefaultTask;
import org.gradle.api.JavaVersion;
import org.gradle.api.file.FileCollection;
import org.gradle.api.tasks.Input;
import org.gradle.api.tasks.InputFiles;
import org.gradle.api.tasks.OutputFile;
import org.gradle.api.tasks.SkipWhenEmpty;
import org.gradle.api.tasks.TaskAction;
import org.gradle.process.JavaExecSpec;
import java.io.File;
import java.io.IOException;
import java.nio.file.Files;
import java.util.ArrayList;
import java.util.Collections;
import java.util.LinkedHashSet;
import java.util.List;
import java.util.Set;
public class ForbiddenApisCliTask extends DefaultTask {
private FileCollection signaturesFiles;
private List<String> signatures = new ArrayList<>();
private Set<String> bundledSignatures = new LinkedHashSet<>();
private Set<String> suppressAnnotations = new LinkedHashSet<>();
private JavaVersion targetCompatibility;
private FileCollection classesDirs;
private Action<JavaExecSpec> execAction;
public JavaVersion getTargetCompatibility() {
return targetCompatibility;
}
public void setTargetCompatibility(JavaVersion targetCompatibility) {
this.targetCompatibility = targetCompatibility;
}
public Action<JavaExecSpec> getExecAction() {
return execAction;
}
public void setExecAction(Action<JavaExecSpec> execAction) {
this.execAction = execAction;
}
@OutputFile
public File getMarkerFile() {
return new File(
new File(getProject().getBuildDir(), "precommit"),
getName()
);
}
@InputFiles
@SkipWhenEmpty
public FileCollection getClassesDirs() {
return classesDirs.filter(File::exists);
}
public void setClassesDirs(FileCollection classesDirs) {
this.classesDirs = classesDirs;
}
@InputFiles
public FileCollection getSignaturesFiles() {
return signaturesFiles;
}
public void setSignaturesFiles(FileCollection signaturesFiles) {
this.signaturesFiles = signaturesFiles;
}
@Input
public List<String> getSignatures() {
return signatures;
}
public void setSignatures(List<String> signatures) {
this.signatures = signatures;
}
@Input
public Set<String> getBundledSignatures() {
return bundledSignatures;
}
public void setBundledSignatures(Set<String> bundledSignatures) {
this.bundledSignatures = bundledSignatures;
}
@Input
public Set<String> getSuppressAnnotations() {
return suppressAnnotations;
}
public void setSuppressAnnotations(Set<String> suppressAnnotations) {
this.suppressAnnotations = suppressAnnotations;
}
@TaskAction
public void runForbiddenApisAndWriteMarker() throws IOException {
getProject().javaexec((JavaExecSpec spec) -> {
execAction.execute(spec);
spec.setMain(CliMain.class.getName());
// build the command line
getSignaturesFiles().forEach(file -> spec.args("-f", file.getAbsolutePath()));
getSuppressAnnotations().forEach(annotation -> spec.args("--suppressannotation", annotation));
getBundledSignatures().forEach(bundled -> {
// there's no option for target compatibility so we have to interpret it
final String prefix;
if (bundled.equals("jdk-system-out") ||
bundled.equals("jdk-reflection") ||
bundled.equals("jdk-non-portable")) {
prefix = "";
} else {
prefix = "-" + (
getTargetCompatibility().compareTo(JavaVersion.VERSION_1_9) >= 0 ?
getTargetCompatibility().getMajorVersion() :
"1." + getTargetCompatibility().getMajorVersion())
;
}
spec.args("-b", bundled + prefix);
}
);
getClassesDirs().forEach(dir ->
spec.args("-d", dir)
);
});
Files.write(getMarkerFile().toPath(), Collections.emptyList());
}
}

6
client/rest-high-level/build.gradle
View File

@ -16,8 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
import org.elasticsearch.gradle.test.RestIntegTestTask import org.elasticsearch.gradle.test.RestIntegTestTask
import org.gradle.api.internal.provider.Providers import org.gradle.api.internal.provider.Providers
@ -75,8 +73,8 @@ dependencyLicenses {
forbiddenApisMain { forbiddenApisMain {
// core does not depend on the httpclient for compile so we add the signatures here. We don't add them for test as they are already // core does not depend on the httpclient for compile so we add the signatures here. We don't add them for test as they are already
// specified // specified
signaturesURLs += [PrecommitTasks.getResource('/forbidden/http-signatures.txt')] addSignatureFiles 'http-signatures'
signaturesURLs += [file('src/main/resources/forbidden/rest-high-level-signatures.txt').toURI().toURL()] signaturesFiles += files('src/main/resources/forbidden/rest-high-level-signatures.txt')
} }
integTestCluster { integTestCluster {

13
client/rest/build.gradle
View File

@ -1,3 +1,5 @@
import org.elasticsearch.gradle.precommit.ForbiddenApisCliTask
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -16,9 +18,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
apply plugin: 'nebula.maven-base-publish' apply plugin: 'nebula.maven-base-publish'
apply plugin: 'nebula.maven-scm' apply plugin: 'nebula.maven-scm'
@ -53,10 +52,9 @@ dependencies {
testCompile "org.elasticsearch:mocksocket:${versions.mocksocket}" testCompile "org.elasticsearch:mocksocket:${versions.mocksocket}"
} }
forbiddenApisMain { tasks.withType(ForbiddenApisCliTask) {
//client does not depend on server, so only jdk and http signatures should be checked //client does not depend on server, so only jdk and http signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt'), replaceSignatureFiles ('jdk-signatures', 'http-signatures')
PrecommitTasks.getResource('/forbidden/http-signatures.txt')]
} }
forbiddenPatterns { forbiddenPatterns {
@ -67,9 +65,6 @@ forbiddenApisTest {
//we are using jdk-internal instead of jdk-non-portable to allow for com.sun.net.httpserver.* usage //we are using jdk-internal instead of jdk-non-portable to allow for com.sun.net.httpserver.* usage
bundledSignatures -= 'jdk-non-portable' bundledSignatures -= 'jdk-non-portable'
bundledSignatures += 'jdk-internal' bundledSignatures += 'jdk-internal'
//client does not depend on server, so only jdk signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt'),
PrecommitTasks.getResource('/forbidden/http-signatures.txt')]
} }
// JarHell is part of es server, which we don't want to pull in // JarHell is part of es server, which we don't want to pull in

7
client/sniffer/build.gradle
View File

@ -16,9 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
apply plugin: 'nebula.maven-base-publish' apply plugin: 'nebula.maven-base-publish'
apply plugin: 'nebula.maven-scm' apply plugin: 'nebula.maven-scm'
@ -55,7 +52,7 @@ dependencies {
forbiddenApisMain { forbiddenApisMain {
//client does not depend on server, so only jdk signatures should be checked //client does not depend on server, so only jdk signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
forbiddenApisTest { forbiddenApisTest {
@ -63,7 +60,7 @@ forbiddenApisTest {
bundledSignatures -= 'jdk-non-portable' bundledSignatures -= 'jdk-non-portable'
bundledSignatures += 'jdk-internal' bundledSignatures += 'jdk-internal'
//client does not depend on server, so only jdk signatures should be checked //client does not depend on server, so only jdk signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
dependencyLicenses { dependencyLicenses {

8
client/test/build.gradle
View File

@ -16,10 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
import org.gradle.api.JavaVersion
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
targetCompatibility = JavaVersion.VERSION_1_7 targetCompatibility = JavaVersion.VERSION_1_7
@ -36,7 +32,7 @@ dependencies {
forbiddenApisMain { forbiddenApisMain {
//client does not depend on core, so only jdk signatures should be checked //client does not depend on core, so only jdk signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
forbiddenApisTest { forbiddenApisTest {
@ -44,7 +40,7 @@ forbiddenApisTest {
bundledSignatures -= 'jdk-non-portable' bundledSignatures -= 'jdk-non-portable'
bundledSignatures += 'jdk-internal' bundledSignatures += 'jdk-internal'
//client does not depend on core, so only jdk signatures should be checked //client does not depend on core, so only jdk signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
// JarHell is part of es server, which we don't want to pull in // JarHell is part of es server, which we don't want to pull in

6
client/transport/build.gradle
View File

@ -16,9 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
apply plugin: 'nebula.maven-base-publish' apply plugin: 'nebula.maven-base-publish'
apply plugin: 'nebula.maven-scm' apply plugin: 'nebula.maven-scm'
@ -47,8 +44,7 @@ dependencyLicenses {
forbiddenApisTest { forbiddenApisTest {
// we don't use the core test-framework, no lucene classes present so we don't want the es-test-signatures to // we don't use the core test-framework, no lucene classes present so we don't want the es-test-signatures to
// be pulled in // be pulled in
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt'), replaceSignatureFiles 'jdk-signatures', 'es-all-signatures'
PrecommitTasks.getResource('/forbidden/es-all-signatures.txt')]
} }
namingConventions { namingConventions {

6
distribution/tools/java-version-checker/build.gradle
View File

@ -1,11 +1,11 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
targetCompatibility = JavaVersion.VERSION_1_7 targetCompatibility = JavaVersion.VERSION_1_7
// java_version_checker do not depend on core so only JDK signatures should be checked // java_version_checker do not depend on core so only JDK signatures should be checked
forbiddenApisMain.signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] forbiddenApisMain {
replaceSignatureFiles 'jdk-signatures'
}
test.enabled = false test.enabled = false
namingConventions.enabled = false namingConventions.enabled = false

12
distribution/tools/launchers/build.gradle
View File

@ -17,8 +17,9 @@
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
import org.gradle.api.JavaVersion
import org.elasticsearch.gradle.precommit.ForbiddenApisCliTask
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
@ -31,10 +32,9 @@ dependencies {
archivesBaseName = 'elasticsearch-launchers' archivesBaseName = 'elasticsearch-launchers'
// java_version_checker do not depend on core so only JDK signatures should be checked tasks.withType(ForbiddenApisCliTask) {
List jdkSignatures = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
forbiddenApisMain.signaturesURLs = jdkSignatures }
forbiddenApisTest.signaturesURLs = jdkSignatures
namingConventions { namingConventions {
testClass = 'org.elasticsearch.tools.launchers.LaunchersTestCase' testClass = 'org.elasticsearch.tools.launchers.LaunchersTestCase'

5
libs/cli/build.gradle
View File

@ -16,9 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
apply plugin: 'nebula.optional-base' apply plugin: 'nebula.optional-base'
apply plugin: 'nebula.maven-base-publish' apply plugin: 'nebula.maven-base-publish'
@ -34,5 +31,5 @@ test.enabled = false
jarHell.enabled = false jarHell.enabled = false
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }

4
libs/core/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -91,7 +89,7 @@ dependencies {
forbiddenApisMain { forbiddenApisMain {
// :libs:core does not depend on server // :libs:core does not depend on server
// TODO: Need to decide how we want to handle for forbidden signatures with the changes to server // TODO: Need to decide how we want to handle for forbidden signatures with the changes to server
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
if (isEclipse) { if (isEclipse) {

4
libs/dissect/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -33,7 +31,7 @@ dependencies {
} }
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
if (isEclipse) { if (isEclipse) {

4
libs/grok/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -34,7 +32,7 @@ dependencies {
} }
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
if (isEclipse) { if (isEclipse) {

5
libs/nio/build.gradle
View File

@ -16,9 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'nebula.maven-base-publish' apply plugin: 'nebula.maven-base-publish'
apply plugin: 'nebula.maven-scm' apply plugin: 'nebula.maven-scm'
@ -62,5 +59,5 @@ if (isEclipse) {
forbiddenApisMain { forbiddenApisMain {
// nio does not depend on core, so only jdk signatures should be checked // nio does not depend on core, so only jdk signatures should be checked
// es-all is not checked as we connect and accept sockets // es-all is not checked as we connect and accept sockets
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }

5
libs/secure-sm/build.gradle
View File

@ -16,9 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'nebula.maven-base-publish' apply plugin: 'nebula.maven-base-publish'
apply plugin: 'nebula.maven-scm' apply plugin: 'nebula.maven-scm'
@ -47,7 +44,7 @@ dependencies {
} }
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
if (isEclipse) { if (isEclipse) {

4
libs/x-content/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -57,7 +55,7 @@ dependencies {
forbiddenApisMain { forbiddenApisMain {
// x-content does not depend on server // x-content does not depend on server
// TODO: Need to decide how we want to handle for forbidden signatures with the changes to core // TODO: Need to decide how we want to handle for forbidden signatures with the changes to core
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
if (isEclipse) { if (isEclipse) {

4
plugins/analysis-icu/build.gradle
View File

@ -1,3 +1,5 @@
import org.elasticsearch.gradle.precommit.ForbiddenApisCliTask
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -22,7 +24,7 @@ esplugin {
classname 'org.elasticsearch.plugin.analysis.icu.AnalysisICUPlugin' classname 'org.elasticsearch.plugin.analysis.icu.AnalysisICUPlugin'
} }
forbiddenApis { tasks.withType(ForbiddenApisCliTask) {
signatures += [ signatures += [
"com.ibm.icu.text.Collator#getInstance() @ Don't use default locale, use getInstance(ULocale) instead" "com.ibm.icu.text.Collator#getInstance() @ Don't use default locale, use getInstance(ULocale) instead"
] ]

6
qa/vagrant/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -69,9 +67,7 @@ esvagrant {
} }
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [ replaceSignatureFiles 'jdk-signatures'
PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')
]
} }
// we don't have additional tests for the tests themselves // we don't have additional tests for the tests themselves

7
test/framework/build.gradle
View File

@ -16,9 +16,6 @@
* specific language governing permissions and limitations * specific language governing permissions and limitations
* under the License. * under the License.
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks;
dependencies { dependencies {
compile "org.elasticsearch.client:elasticsearch-rest-client:${version}" compile "org.elasticsearch.client:elasticsearch-rest-client:${version}"
compile "org.elasticsearch.client:elasticsearch-rest-client-sniffer:${version}" compile "org.elasticsearch.client:elasticsearch-rest-client-sniffer:${version}"
@ -41,9 +38,7 @@ compileTestJava.options.compilerArgs << '-Xlint:-rawtypes'
// the main files are actually test files, so use the appropriate forbidden api sigs // the main files are actually test files, so use the appropriate forbidden api sigs
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt'), replaceSignatureFiles 'jdk-signatures', 'es-all-signatures', 'es-test-signatures'
PrecommitTasks.getResource('/forbidden/es-all-signatures.txt'),
PrecommitTasks.getResource('/forbidden/es-test-signatures.txt')]
} }
// TODO: should we have licenses for our test deps? // TODO: should we have licenses for our test deps?

4
test/logger-usage/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
/* /*
* Licensed to Elasticsearch under one or more contributor * Licensed to Elasticsearch under one or more contributor
* license agreements. See the NOTICE file distributed with * license agreements. See the NOTICE file distributed with
@ -29,7 +27,7 @@ loggerUsageCheck.enabled = false
forbiddenApisMain.enabled = true // disabled by parent project forbiddenApisMain.enabled = true // disabled by parent project
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] // does not depend on core, only jdk signatures replaceSignatureFiles 'jdk-signatures' // does not depend on core, only jdk signatures
} }
jarHell.enabled = true // disabled by parent project jarHell.enabled = true // disabled by parent project

4
x-pack/plugin/ml/log-structure-finder/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
archivesBaseName = 'x-pack-log-structure-finder' archivesBaseName = 'x-pack-log-structure-finder'
@ -31,6 +29,6 @@ artifacts {
forbiddenApisMain { forbiddenApisMain {
// log-structure-finder does not depend on server, so cannot forbid server methods // log-structure-finder does not depend on server, so cannot forbid server methods
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }

3
x-pack/plugin/security/build.gradle
View File

@ -158,8 +158,7 @@ forbiddenPatterns {
} }
forbiddenApisMain { forbiddenApisMain {
signaturesURLs += file('forbidden/ldap-signatures.txt').toURI().toURL() signaturesFiles += files('forbidden/ldap-signatures.txt', 'forbidden/xml-signatures.txt')
signaturesURLs += file('forbidden/xml-signatures.txt').toURI().toURL()
} }
// classes are missing, e.g. com.ibm.icu.lang.UCharacter // classes are missing, e.g. com.ibm.icu.lang.UCharacter

2
x-pack/plugin/sql/jdbc/build.gradle
View File

@ -8,7 +8,7 @@ archivesBaseName = "x-pack-sql-jdbc"
forbiddenApisMain { forbiddenApisMain {
// does not depend on core, so only jdk and http signatures should be checked // does not depend on core, so only jdk and http signatures should be checked
signaturesURLs = [this.class.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
dependencies { dependencies {

5
x-pack/plugin/sql/sql-action/build.gradle
View File

@ -2,9 +2,6 @@
/* /*
* This project contains transport-level requests and responses that are shared between x-pack plugin and qa tests * This project contains transport-level requests and responses that are shared between x-pack plugin and qa tests
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
description = 'Request and response objects shared by the cli, jdbc ' + description = 'Request and response objects shared by the cli, jdbc ' +
@ -34,7 +31,7 @@ dependencies {
forbiddenApisMain { forbiddenApisMain {
//sql does not depend on server, so only jdk signatures should be checked //sql does not depend on server, so only jdk signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
dependencyLicenses { dependencyLicenses {

8
x-pack/plugin/sql/sql-cli/build.gradle
View File

@ -1,3 +1,4 @@
import org.elasticsearch.gradle.precommit.ForbiddenApisCliTask
/* /*
* This project is named sql-cli because it is in the "org.elasticsearch.plugin" * This project is named sql-cli because it is in the "org.elasticsearch.plugin"
@ -74,11 +75,8 @@ artifacts {
} }
forbiddenApisMain { tasks.withType(ForbiddenApisCliTask) {
signaturesURLs += file('src/forbidden/cli-signatures.txt').toURI().toURL() signaturesFiles += files('src/forbidden/cli-signatures.txt')
}
forbiddenApisTest {
signaturesURLs += file('src/forbidden/cli-signatures.txt').toURI().toURL()
} }
thirdPartyAudit.excludes = [ thirdPartyAudit.excludes = [

2
x-pack/plugin/sql/sql-client/build.gradle
View File

@ -26,7 +26,7 @@ dependencyLicenses {
forbiddenApisMain { forbiddenApisMain {
// does not depend on core, so only jdk and http signatures should be checked // does not depend on core, so only jdk and http signatures should be checked
signaturesURLs = [this.class.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
forbiddenApisTest { forbiddenApisTest {

5
x-pack/plugin/sql/sql-proto/build.gradle
View File

@ -2,9 +2,6 @@
/* /*
* This project contains XContent protocol classes shared between server and http client * This project contains XContent protocol classes shared between server and http client
*/ */
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
description = 'Request and response objects shared by the cli, jdbc ' + description = 'Request and response objects shared by the cli, jdbc ' +
@ -25,7 +22,7 @@ dependencies {
forbiddenApisMain { forbiddenApisMain {
//sql does not depend on server, so only jdk signatures should be checked //sql does not depend on server, so only jdk signatures should be checked
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt')] replaceSignatureFiles 'jdk-signatures'
} }
dependencyLicenses { dependencyLicenses {

4
x-pack/qa/sql/build.gradle
View File

@ -1,4 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
import org.elasticsearch.gradle.test.RunTask import org.elasticsearch.gradle.test.RunTask
description = 'Integration tests for SQL' description = 'Integration tests for SQL'
@ -29,8 +28,7 @@ dependenciesInfo.enabled = false
// the main files are actually test files, so use the appropriate forbidden api sigs // the main files are actually test files, so use the appropriate forbidden api sigs
forbiddenApisMain { forbiddenApisMain {
signaturesURLs = [PrecommitTasks.getResource('/forbidden/es-all-signatures.txt'), replaceSignatureFiles 'es-all-signatures', 'es-test-signatures'
PrecommitTasks.getResource('/forbidden/es-test-signatures.txt')]
} }
thirdPartyAudit.excludes = [ thirdPartyAudit.excludes = [

5
x-pack/transport-client/build.gradle
View File

@ -1,5 +1,3 @@
import org.elasticsearch.gradle.precommit.PrecommitTasks
apply plugin: 'elasticsearch.build' apply plugin: 'elasticsearch.build'
apply plugin: 'nebula.maven-base-publish' apply plugin: 'nebula.maven-base-publish'
apply plugin: 'nebula.maven-scm' apply plugin: 'nebula.maven-scm'
@ -22,8 +20,7 @@ dependencyLicenses.enabled = false
forbiddenApisTest { forbiddenApisTest {
// we don't use the core test-framework, no lucene classes present so we don't want the es-test-signatures to // we don't use the core test-framework, no lucene classes present so we don't want the es-test-signatures to
// be pulled in // be pulled in
signaturesURLs = [PrecommitTasks.getResource('/forbidden/jdk-signatures.txt'), replaceSignatureFiles 'jdk-signatures', 'es-all-signatures'
PrecommitTasks.getResource('/forbidden/es-all-signatures.txt')]
} }
namingConventions { namingConventions {