[HDDS-1190] Fix jdk 11 issue for ozonesecure base image and docker-compose - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Target Version/s:

0.4.0
Sprint:
HDDS BadLands

Description

~~HDDS-1019~~ changes to use hadoop-runner as base image for ozonesecure docker-compose. There are a few issues that need to fixed.

1.The hadoop-runner uses jdk11 but the ozonesecure/docker-config assume openjdk8 for JAVA_HOME.

2. The KEYTAB_DIR needs to be quoted with '.

3. keytab based login failed with Message stream modified (41), elek mentioned in ~~HDDS-1019~~ that we need to add max_renewable_life to "docker-image/docker-krb5/krb5.conf" like follows.
[realms]
EXAMPLE.COM = {
kdc = localhost
admin_server = localhost
max_renewable_life = 7d
}
Failures:


 org.apache.hadoop.security.KerberosAuthException: failure to login: for principal: scm/scm@EXAMPLE.COM from keytab /etc/security/keytabs/scm.keytab javax.security.auth.login.LoginException: Message stream modified (41)

scm_1           | at org.apache.hadoop.security.UserGroupInformation.doSubjectLogin(UserGroupInformation.java:1847)

scm_1           |

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HDDS-1190-trunk.001.patch
28/Feb/19 03:34
1 kB
Xiaoyu Yao
HDDS-1190-docker-hadoop-runner.001.patch
28/Feb/19 03:35
0.3 kB
Xiaoyu Yao

Issue Links

is caused by

HDDS-1019 Use apache/hadoop-runner image to test ozone secure cluster

Resolved

Activity

People

Assignee:: Xiaoyu Yao

Reporter:: Xiaoyu Yao

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 28/Feb/19 03:11

Updated:: 28/Feb/19 18:13

Resolved:: 28/Feb/19 14:56