Author: phunt
Date: Wed May 25 20:45:11 2016
New Revision: 1745536
URL: http://svn.apache.org/viewvc?rev=1745536&view=rev
Log:
ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential information
(Michael Han via phunt)
Modified:
zookeeper/branches/branch-3.5/CHANGES.txt
zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java
Modified: zookeeper/branches/branch-3.5/CHANGES.txt
URL:
http://svn.apache.org/viewvc/zookeeper/branches/branch-3.5/CHANGES.txt?rev=1745536&r1=1745535&r2=1745536&view=diff
==============================================================================
--- zookeeper/branches/branch-3.5/CHANGES.txt (original)
+++ zookeeper/branches/branch-3.5/CHANGES.txt Wed May 25 20:45:11 2016
@@ -153,6 +153,9 @@ BUGFIXES:
ZOOKEEPER-2423: Upgrade Netty version due to security vulnerability
(CVE-2014-3488) (Michael Han via phunt)
+ ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential
+ information (Michael Han via phunt)
+
IMPROVEMENTS:
ZOOKEEPER-2270: Allow MBeanRegistry to be overridden for better unit tests
Modified:
zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java
URL:
http://svn.apache.org/viewvc/zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java?rev=1745536&r1=1745535&r2=1745536&view=diff
==============================================================================
--- zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java
(original)
+++ zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java
Wed May 25 20:45:11 2016
@@ -335,7 +335,8 @@ public class Login {
for(KerberosTicket ticket: tickets) {
KerberosPrincipal server = ticket.getServer();
if (server.getName().equals("krbtgt/" + server.getRealm() + "@" +
server.getRealm())) {
- LOG.debug("Found tgt {}.", ticket);
+ LOG.debug("Client principal is \"" +
ticket.getClient().getName() + "\".");
+ LOG.debug("Server principal is \"" +
ticket.getServer().getName() + "\".");
return ticket;
}
}
