Details
-
Bug
-
Status: Closed
-
Blocker
-
Resolution: Fixed
-
None
-
None
-
Reviewed
Description
HADOOP-7104 introduced a change where RPC server matches client's hostname with the hostname specified in the client's Kerberos principal name. RPC client binds the socket to a random local address, which might not match the hostname specified in the principal name. This results authorization failure of the client at the server.
Attachments
Attachments
Issue Links
- is depended upon by
-
HADOOP-8357 Restore security in Hadoop 0.22 branch
- Resolved
- is related to
-
HADOOP-7104 Remove unnecessary DNS reverse lookups from RPC layer
- Closed