Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-12716

KerberosAuthenticator#doSpnegoSequence use incorrect class to determine isKeyTab in JDK8

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 2.7.1
    • 2.8.0, 3.0.0-alpha1
    • security
    • None
    • Java 8

    • Reviewed

    Description

      HADOOP-11287 and HADOOP-10786 has fixed the issue in UserGroupInformation class for JDK8.

      However, the logic in KerberosAuthenticator#doSpnegoSequence is not updated. The KerberosKey.class below should be KeyTab.class for JDK8.

      if (subject == null
                || (subject.getPrivateCredentials(KerberosKey.class).isEmpty()
                    && subject.getPrivateCredentials(KerberosTicket.class).isEmpty())) {
      

      Attachments

        1. HADOOP-12716.000.patch
          5 kB
          Xiaoyu Yao
        2. HADOOP-12716.001.patch
          5 kB
          Xiaoyu Yao
        3. HADOOP-12716.002.patch
          5 kB
          Xiaoyu Yao

        Activity

          People

            xyao Xiaoyu Yao
            xyao Xiaoyu Yao
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: