Author: phunt
Date: Wed May 25 20:46:35 2016
New Revision: 1745537
URL: http://svn.apache.org/viewvc?rev=1745537&view=rev
Log:
ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential information
(Michael Han via phunt)
Modified:
zookeeper/branches/branch-3.4/CHANGES.txt
zookeeper/branches/branch-3.4/src/java/main/org/apache/zookeeper/Login.java
Modified: zookeeper/branches/branch-3.4/CHANGES.txt
URL:
http://svn.apache.org/viewvc/zookeeper/branches/branch-3.4/CHANGES.txt?rev=1745537&r1=1745536&r2=1745537&view=diff
==============================================================================
--- zookeeper/branches/branch-3.4/CHANGES.txt (original)
+++ zookeeper/branches/branch-3.4/CHANGES.txt Wed May 25 20:46:35 2016
@@ -33,6 +33,9 @@ BUGFIXES:
ZOOKEEPER-2423: Upgrade Netty version due to security vulnerability
(CVE-2014-3488) (Michael Han via phunt)
+ ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential
+ information (Michael Han via phunt)
+
IMPROVEMENTS:
ZOOKEEPER-2240 Make the three-node minimum more explicit in
Modified:
zookeeper/branches/branch-3.4/src/java/main/org/apache/zookeeper/Login.java
URL:
http://svn.apache.org/viewvc/zookeeper/branches/branch-3.4/src/java/main/org/apache/zookeeper/Login.java?rev=1745537&r1=1745536&r2=1745537&view=diff
==============================================================================
--- zookeeper/branches/branch-3.4/src/java/main/org/apache/zookeeper/Login.java
(original)
+++ zookeeper/branches/branch-3.4/src/java/main/org/apache/zookeeper/Login.java
Wed May 25 20:46:35 2016
@@ -317,7 +317,8 @@ public class Login {
for(KerberosTicket ticket: tickets) {
KerberosPrincipal server = ticket.getServer();
if (server.getName().equals("krbtgt/" + server.getRealm() + "@" +
server.getRealm())) {
- LOG.debug("Found tgt " + ticket + ".");
+ LOG.debug("Client principal is \"" +
ticket.getClient().getName() + "\".");
+ LOG.debug("Server principal is \"" +
ticket.getServer().getName() + "\".");
return ticket;
}
}
