Skip to content

[Maintenance] Fix bc-fips dependency jarhell for maven publish#5963

Merged
cwperks merged 1 commit into
opensearch-project:mainfrom
RyanL1997:fix-maven-build-with-FIPS
Feb 20, 2026
Merged

[Maintenance] Fix bc-fips dependency jarhell for maven publish#5963
cwperks merged 1 commit into
opensearch-project:mainfrom
RyanL1997:fix-maven-build-with-FIPS

Conversation

@RyanL1997
Copy link
Copy Markdown
Collaborator

@RyanL1997 RyanL1997 commented Feb 19, 2026

Description

The FIPS flag (-Pcrypto.standard=FIPS-140-3) was added to plugin_install.yml and scripts/build.sh, but it's missing from maven-publish.yml. This means the published snapshots are still built without the flag, so bc-fips, bcpkix-fips, and bcutil-fips are bundled as implementation instead of compileOnly. This causes jar hell for downstream plugins (like SQL) that download the security snapshot for integration tests, since those jars already exist in OpenSearch core's lib/ directory.

Issues Resolved

Check List

  • New functionality includes testing
  • New functionality has been documented
  • New Roles/Permissions have a corresponding security dashboards plugin PR
  • API changes companion pull request created
  • Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@RyanL1997
[maintenance] Fix bc-fips dependency jarhell for maven publish
a16633a 
Signed-off-by: Jialiang Liang <jiallian@amazon.com>
@RyanL1997 RyanL1997 changed the title [maintenance] Fix bc-fips dependency jarhell for maven publish [Maintenance] Fix bc-fips dependency jarhell for maven publish Feb 19, 2026
@RyanL1997 RyanL1997 added the maintenance Project maintenance label Feb 19, 2026
@cwperks cwperks mentioned this pull request Feb 20, 2026
Merged
1 task
@cwperks cwperks merged commit 20b074e into opensearch-project:main Feb 20, 2026
103 of 121 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@reta reta reta approved these changes

@cwperks cwperks cwperks approved these changes

@DarshitChanpura DarshitChanpura Awaiting requested review from DarshitChanpura DarshitChanpura is a code owner

@derek-ho derek-ho Awaiting requested review from derek-ho derek-ho is a code owner

@nibix nibix Awaiting requested review from nibix nibix is a code owner

@shikharj05 shikharj05 Awaiting requested review from shikharj05 shikharj05 is a code owner

@willyborankin willyborankin Awaiting requested review from willyborankin willyborankin is a code owner

Assignees

No one assigned

Labels

maintenance Project maintenance skip-changelog

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@RyanL1997 @reta @cwperks