Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-7215

RPC clients must connect over a network interface corresponding to the host name in the client's kerberos principal key

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 0.20.203.0, 0.21.1, 0.23.0
    • Component/s: security
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      HADOOP-7104 introduced a change where RPC server matches client's hostname with the hostname specified in the client's Kerberos principal name. RPC client binds the socket to a random local address, which might not match the hostname specified in the principal name. This results authorization failure of the client at the server.

        Attachments

        1. hadoop-7215-0.22.patch
          7 kB
          Benoy Antony
        2. HADOOP-7215.2xx.patch
          6 kB
          Suresh Srinivas
        3. HADOOP-7215.3.trunk.patch
          8 kB
          Suresh Srinivas
        4. HADOOP-7215.debug.patch
          8 kB
          Suresh Srinivas
        5. HADOOP-7215.2.trunk.patch
          8 kB
          Suresh Srinivas
        6. HADOOP-7215.debug.patch
          8 kB
          Suresh Srinivas
        7. HADOOP-7215.1.trunk.patch
          8 kB
          Suresh Srinivas

          Issue Links

            Activity

              People

              • Assignee:
                sureshms Suresh Srinivas
                Reporter:
                sureshms Suresh Srinivas
              • Votes:
                0 Vote for this issue
                Watchers:
                9 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: