[HADOOP-10702] KerberosAuthenticationHandler does not log the principal names correctly - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.5.0
Fix Version/s: 2.5.0
Component/s: security
Labels:
None

Target Version/s:

2.5.0
Hadoop Flags:

Reviewed

Description

With ~~HADOOP-10158~~, it is possible to load multiple principal names or all HTTP principals in the key tab by specifying “*”.
Each principal name is logged when when the principal is loaded from key tab. But there is a bug due to which principal name is logged each time as either “*” or the full list of principals.

The log snippet is as below:

2014-06-15 00:19:13,288 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *
2014-06-15 00:19:13,292 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *
2014-06-15 00:19:13,294 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *
2014-06-15 00:19:13,295 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HADOOP-10702.patch
15/Jun/14 08:48
1 kB
Benoy Antony

Issue Links

is related to

HADOOP-10158 SPNEGO should work with multiple interfaces/SPNs.

Closed

Activity

People

Assignee:: Benoy Antony

Reporter:: Benoy Antony

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 15/Jun/14 08:44

Updated:: 03/Sep/14 20:36

Resolved:: 16/Jun/14 23:12