Uploaded image for project: 'Apache Ozone'
  1. Apache Ozone
  2. HDDS-10802

Improve logging for signature verification

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Implemented
    • None
    • 2.0.0
    • OM

    Description

      When one encounters a 'Tampered/Invalid token' exception, it may occur due to 
      OzoneDelegationTokenSecretManager#verifySignature failing in any one of the following scenarios:

      1. Failure when obtaining the signer's certificate (CertificateClient#getCertificate call).
      2. In case the signer's certificate returned from this code is simply null.
      3. In case of an expired certificate or a certificate not yet valid.
      4. Failure during CertificateClient#verifySignature (with the signer's certificate).

      Related code snippet link.

      While we are already logging an error for the latter two cases, this patch introduces additional logging for the former two cases.

      Attachments

        Issue Links

          links to

          Web Link GitHub Pull Request #6630

          Activity

            People

              tanvipenumudy Tanvi Penumudy
              tanvipenumudy Tanvi Penumudy
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: