Author: phunt
Date: Wed May 25 20:44:35 2016
New Revision: 1745534
URL: http://svn.apache.org/viewvc?rev=1745534&view=rev
Log:
ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential information
(Michael Han via phunt)
Modified:
zookeeper/trunk/CHANGES.txt
zookeeper/trunk/src/java/main/org/apache/zookeeper/Login.java
Modified: zookeeper/trunk/CHANGES.txt
URL:
http://svn.apache.org/viewvc/zookeeper/trunk/CHANGES.txt?rev=1745534&r1=1745533&r2=1745534&view=diff
==============================================================================
--- zookeeper/trunk/CHANGES.txt (original)
+++ zookeeper/trunk/CHANGES.txt Wed May 25 20:44:35 2016
@@ -305,6 +305,9 @@ BUGFIXES:
ZOOKEEPER-2423: Upgrade Netty version due to security vulnerability
(CVE-2014-3488) (Michael Han via phunt)
+ ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential
+ information (Michael Han via phunt)
+
IMPROVEMENTS:
ZOOKEEPER-2024 Major throughput improvement with mixed workloads (Kfir
Lev-Ari via shralex)
Modified: zookeeper/trunk/src/java/main/org/apache/zookeeper/Login.java
URL:
http://svn.apache.org/viewvc/zookeeper/trunk/src/java/main/org/apache/zookeeper/Login.java?rev=1745534&r1=1745533&r2=1745534&view=diff
==============================================================================
--- zookeeper/trunk/src/java/main/org/apache/zookeeper/Login.java (original)
+++ zookeeper/trunk/src/java/main/org/apache/zookeeper/Login.java Wed May 25
20:44:35 2016
@@ -335,7 +335,8 @@ public class Login {
for(KerberosTicket ticket: tickets) {
KerberosPrincipal server = ticket.getServer();
if (server.getName().equals("krbtgt/" + server.getRealm() + "@" +
server.getRealm())) {
- LOG.debug("Found tgt {}.", ticket);
+ LOG.debug("Client principal is \"" +
ticket.getClient().getName() + "\".");
+ LOG.debug("Server principal is \"" +
ticket.getServer().getName() + "\".");
return ticket;
}
}
