diff options
author | amohamad <a.mohamad@queensu.ca> | 2020-06-26 12:40:11 -0400 |
---|---|---|
committer | amohamad <a.mohamad@queensu.ca> | 2020-07-29 15:47:42 -0400 |
commit | 9ee60949d3ceca3ab1fcf47c9214f7bf6baf89c6 (patch) | |
tree | 67bf3fbecf8b3bbd4beaccc1378e3914c5c51ed2 /utils/webseal-simulator/src/main/java | |
parent | 3c54913a795813ead9dd8a50f22a846ad10ee415 (diff) |
Upgrade Vulnerable Direct Dependencies [log4j]
Signed-off-by: amohamad <a.mohamad@queensu.ca>
Issue-ID: SDC-3051
Upgrade from the vulnerable log4j 1.x to log4j 2.13.1
Add a log4j version property in sdc-main pom.xml
Add two maven dependencies to respective child pom.xml
Change name of log4j .properties and .xml config files
to reflect log4j2 naming
Update the configuration files to the totally new
log4j 2 config syntax
Replace PropertyConfigurator with LoggerContext
Remove the abandoned log4j.lf5.util.ResourceUtils
Signed-off-by: amohamad <a.mohamad@queensu.ca>
Change-Id: Ie0f141eb2e0337ee5b63b61dc1395ccd8040558d
Diffstat (limited to 'utils/webseal-simulator/src/main/java')
-rw-r--r-- | utils/webseal-simulator/src/main/java/org/openecomp/sdc/webseal/simulator/SdcProxy.java | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/utils/webseal-simulator/src/main/java/org/openecomp/sdc/webseal/simulator/SdcProxy.java b/utils/webseal-simulator/src/main/java/org/openecomp/sdc/webseal/simulator/SdcProxy.java index 29babc4b25..014b6c4031 100644 --- a/utils/webseal-simulator/src/main/java/org/openecomp/sdc/webseal/simulator/SdcProxy.java +++ b/utils/webseal-simulator/src/main/java/org/openecomp/sdc/webseal/simulator/SdcProxy.java @@ -35,7 +35,8 @@ import org.apache.http.impl.client.CloseableHttpClient; import org.apache.http.impl.client.HttpClients; import org.apache.http.impl.conn.PoolingHttpClientConnectionManager; import org.apache.http.ssl.SSLContextBuilder; -import org.apache.log4j.Logger; +import org.apache.logging.log4j.LogManager; +import org.apache.logging.log4j.Logger; import org.openecomp.sdc.webseal.simulator.conf.Conf; import javax.net.ssl.SSLContext; @@ -75,7 +76,7 @@ public class SdcProxy extends HttpServlet { private static final Set<String> RESERVED_HEADERS = Arrays.stream(ReservedHeaders.values()).map(h -> h.getValue()).collect(Collectors.toSet()); - private final static Logger logger = Logger.getLogger(SdcProxy.class); + private final static Logger logger = LogManager.getLogger(SdcProxy.class); public void init(ServletConfig config) throws ServletException { super.init(config); |