Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-7215

RPC clients must connect over a network interface corresponding to the host name in the client's kerberos principal key

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Blocker
    • Resolution: Fixed
    • None
    • 0.20.203.0, 0.21.1, 0.23.0
    • security
    • None
    • Reviewed

    Description

      HADOOP-7104 introduced a change where RPC server matches client's hostname with the hostname specified in the client's Kerberos principal name. RPC client binds the socket to a random local address, which might not match the hostname specified in the principal name. This results authorization failure of the client at the server.

      Attachments

        1. hadoop-7215-0.22.patch
          7 kB
          Benoy Antony
        2. HADOOP-7215.2xx.patch
          6 kB
          Suresh Srinivas
        3. HADOOP-7215.3.trunk.patch
          8 kB
          Suresh Srinivas
        4. HADOOP-7215.debug.patch
          8 kB
          Suresh Srinivas
        5. HADOOP-7215.2.trunk.patch
          8 kB
          Suresh Srinivas
        6. HADOOP-7215.debug.patch
          8 kB
          Suresh Srinivas
        7. HADOOP-7215.1.trunk.patch
          8 kB
          Suresh Srinivas

        Issue Links

          Activity

            People

              sureshms Suresh Srinivas
              sureshms Suresh Srinivas
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: