Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-8990 Clean up RPC protocol for consistency
  3. HADOOP-9698

RPCv9 client must honor server's SASL negotiate response

    XMLWordPrintableJSON

    Details

    • Type: Sub-task
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 2.1.0-beta, 3.0.0-alpha1
    • Fix Version/s: 2.1.0-beta
    • Component/s: ipc
    • Labels:
      None
    • Target Version/s:
    • Hadoop Flags:
      Incompatible change, Reviewed
    • Release Note:
      The RPC client now waits for the Server's SASL negotiate response before instantiating its SASL client.

      Description

      As of HADOOP-9421, a RPCv9 server will advertise its authentication methods. This is meant to support features such as IP failover, better token selection, and interoperability in a heterogenous security environment.

      Currently the client ignores the negotiate response and just blindly attempts to authenticate instead of choosing a mutually agreeable auth method.

        Attachments

        1. HADOOP-9698.patch
          61 kB
          Daryn Sharp
        2. HADOOP-9698.patch
          61 kB
          Daryn Sharp
        3. HADOOP-9698.patch
          61 kB
          Daryn Sharp
        4. RPCv9 Authentication.pdf
          66 kB
          Daryn Sharp

          Activity

            People

            • Assignee:
              daryn Daryn Sharp
              Reporter:
              daryn Daryn Sharp
            • Votes:
              0 Vote for this issue
              Watchers:
              13 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: