-
Notifications
You must be signed in to change notification settings - Fork 28.3k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
### What changes were proposed in this pull request?
The pr is add AVA_OPTION_PURE_MODE configuration item. When the configuration item is set to true, JavaOptions cannot be configured. ### Why are the changes needed? Adding JAVA_OPTION_PURE_MODE can completely prevent command injection caused by Java parameters in Yarn mode. This is more secure when JVM parameters do not need to be customized. ### Does this PR introduce _any_ user-facing change? Yes. If JAVA_OPTION_PURE_MODE is set to true, JavaOptions cannot be set. ### How was this patch tested? Added a new UT. ### Was this patch authored or co-authored using generative AI tooling? No.
- Loading branch information
1 parent
c3176a7
commit 04e9b19
Showing
4 changed files
with
57 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters