[HDFS-2264] NamenodeProtocol has the wrong value for clientPrincipal in KerberosInfo annotation - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.0.2-alpha
Fix Version/s: 2.0.3-alpha, 1.3.0
Component/s: namenode
Labels:
None

Target Version/s:

2.0.3-alpha
Hadoop Flags:

Reviewed

Description

The @KerberosInfo annotation specifies the expected server and client principals for a given protocol in order to look up the correct principal name from the config. The NamenodeProtocol has the wrong value for the client config key. This wasn't noticed because most setups actually use the same value for for both the NN and 2NN principals (hdfs/_HOST@REALM), in which the _HOST part gets replaced at run-time. This bug therefore only manifests itself on secure setups which explicitly specify the NN and 2NN principals.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HDFS-2264.b1.patch
18/Nov/13 22:00
6 kB
Jing Zhao
HDFS-2264.patch
07/Dec/12 17:25
5 kB
Aaron Myers
HDFS-2264.patch
07/Dec/12 03:18
5 kB
Aaron Myers
HDFS-2264.r1.diff
17/Aug/11 16:30
0.8 kB
Harsh J

Issue Links

duplicates

HDFS-3403 SecondaryNamenode doesn't start up in secure cluster

Resolved

is duplicated by

HDFS-3345 Primary and secondary NameNode principals must be the same

Resolved

HDFS-4081 NamenodeProtocol and other Secure Protocols should use different config keys for serverPrincipal and clientPrincipal KerberosInfo components

Resolved

Activity

People

Assignee:: Aaron Myers

Reporter:: Aaron Myers

Votes:: 0 Vote for this issue

Watchers:: 17 Start watching this issue

Dates

Created:: 17/Aug/11 02:18

Updated:: 22/Jan/14 21:10

Resolved:: 11/Dec/12 00:55