ZooKeeper
  1. ZooKeeper
  2. ZOOKEEPER-1195

SASL authorizedID being incorrectly set: should use getHostName() rather than getServiceName()

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 3.4.0
    • Fix Version/s: 3.4.0
    • Component/s: None
    • Labels:
      None
    • Release Note:
      One-line fix for bug identified by Tom Klonikowski

      Description

      Tom Klonikowski writes:

      Hello developers,

      the SaslServerCallbackHandler in trunk changes the principal name
      service/host@REALM to service/service@REALM (i guess unintentionally).

      lines 131-133:
      if (!removeHost() && (kerberosName.getHostName() != null))

      { userName += "/" + kerberosName.getServiceName(); }

      Server Log:

      SaslServerCallbackHandler@115] - Successfully authenticated client:
      authenticationID=fetcher/ubook@QUINZOO;
      authorizationID=fetcher/ubook@QUINZOO.

      SaslServerCallbackHandler@137] - Setting authorizedID:
      fetcher/fetcher@QUINZOO

      1. ZOOKEEPER-1195.patch
        1 kB
        Eugene Koontz
      2. SaslAuthNamingTest.java
        4 kB
        Tom Klonikowski

        Issue Links

          Activity

          Gavin made changes -
          Link This issue depends upon ZOOKEEPER-938 [ ZOOKEEPER-938 ]
          Gavin made changes -
          Link This issue depends on ZOOKEEPER-938 [ ZOOKEEPER-938 ]
          Mahadev konar made changes -
          Status Resolved [ 5 ] Closed [ 6 ]
          Mahadev konar made changes -
          Status Patch Available [ 10002 ] Resolved [ 5 ]
          Resolution Fixed [ 1 ]
          Eugene Koontz made changes -
          Link This issue is part of ZOOKEEPER-1201 [ ZOOKEEPER-1201 ]
          Eugene Koontz made changes -
          Fix Version/s 3.4.0 [ 12314469 ]
          Affects Version/s 3.4.0 [ 12314469 ]
          Tom Klonikowski made changes -
          Attachment SaslAuthNamingTest.java [ 12495340 ]
          Tom Klonikowski made changes -
          Attachment SaslAuthNamingTest.java [ 12495333 ]
          Tom Klonikowski made changes -
          Attachment SaslAuthNamingTest.java [ 12495333 ]
          Eugene Koontz made changes -
          Link This issue relates to ZOOKEEPER-1196 [ ZOOKEEPER-1196 ]
          Eugene Koontz made changes -
          Link This issue depends on ZOOKEEPER-938 [ ZOOKEEPER-938 ]
          Eugene Koontz made changes -
          Attachment ZOOKEEPER-1195.patch [ 12495235 ]
          Eugene Koontz made changes -
          Field Original Value New Value
          Status Open [ 1 ] Patch Available [ 10002 ]
          Release Note One-line fix for bug identified by Tom Klonikowski
          Eugene Koontz created issue -

            People

            • Assignee:
              Eugene Koontz
              Reporter:
              Eugene Koontz
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development