Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-12911

Upgrade Hadoop MiniKDC with Kerby

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 3.0.0-alpha1
    • test
    • None

    Description

      As discussed in the mailing list, we’d like to introduce Apache Kerby into Hadoop. Initially it’s good to start with upgrading Hadoop MiniKDC with Kerby offerings. Apache Kerby (https://github.com/apache/directory-kerby), as an Apache Directory sub project, is a Java Kerberos binding. It provides a SimpleKDC server that borrowed ideas from MiniKDC and implemented all the facilities existing in MiniKDC. Currently MiniKDC depends on the old Kerberos implementation in Directory Server project, but the implementation is stopped being maintained. Directory community has a plan to replace the implementation using Kerby. MiniKDC can use Kerby SimpleKDC directly to avoid depending on the full of Directory project. Kerby also provides nice identity backends such as the lightweight memory based one and the very simple json one for easy development and test environments.

      Attachments

        1. HADOOP-12911-v1.patch
          44 kB
          Jiajia Li
        2. HADOOP-12911-v2.patch
          44 kB
          Jiajia Li
        3. HADOOP-12911-v3.patch
          44 kB
          Jiajia Li
        4. HADOOP-12911-v4.patch
          44 kB
          Jiajia Li
        5. HADOOP-12911-v5.patch
          49 kB
          Jiajia Li
        6. HADOOP-12911-v6.patch
          48 kB
          Jiajia Li
        7. HADOOP-12911-v7.patch
          45 kB
          Jiajia Li
        8. HaDOOP-12911-v8.patch
          45 kB
          Jiajia Li

        Issue Links

          contains

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-14426 Upgrade Kerby version from 1.0.0-RC2 to 1.0.0

          • Blocker - Blocks development and/or testing work, production could not run
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-13220 Follow on fixups after upgraded mini-kdc using Kerby

          • Major - Major loss of function.
          • Resolved
          is blocked by

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-12687 SecureUtil#getByName should also try to resolve direct hostname, incase multiple loopback addresses are present in /etc/hosts

          • Major - Major loss of function.
          • Reopened
          is related to

          Sub-task - The sub-task of the issue SPARK-29957 Reset MiniKDC's default enctypes to fit jdk8/jdk11

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. HBASE-27564 Add default encryption type for MiniKDC to fix failed tests on JDK11+

          • Major - Major loss of function.
          • Resolved

          New Feature - A new feature of the product, which has yet to be developed. HADOOP-9848 Create a MiniKDC for use with security testing

          • Major - Major loss of function.
          • Closed
          is required by

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-13013 Introduce Apache Kerby into Hadoop

          • Major - Major loss of function.
          • Open

          Test - A new unit, integration or system test. HADOOP-13027 Add unit test for MiniKDC to issue tickets for >1 persons in the same instance

          • Major - Major loss of function.
          • Open
          relates to

          Improvement - An improvement or enhancement to an existing feature or task. HDFS-10212 HDFS: Upgrade Hadoop MiniKDC with Kerby

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. YARN-4867 YARN: Upgrade Hadoop MiniKDC with Kerby

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              jiajia Jiajia Li
              jiajia Jiajia Li
              Votes:
              0 Vote for this issue
              Watchers:
              13 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: