[
https://issues.apache.org/jira/browse/HADOOP-17894?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Steve Loughran resolved HADOOP-17894.
-------------------------------------
Fix Version/s: 3.3.2
Resolution: Fixed
> CredentialProviderFactory.getProviders() recursion loading JCEKS file from s3a
> ------------------------------------------------------------------------------
>
> Key: HADOOP-17894
> URL: https://issues.apache.org/jira/browse/HADOOP-17894
> Project: Hadoop Common
> Issue Type: Sub-task
> Components: conf, fs/s3
> Affects Versions: 3.3.1
> Reporter: Steve Loughran
> Priority: Major
> Labels: pull-request-available
> Fix For: 3.3.2
>
> Time Spent: 1h 20m
> Remaining Estimate: 0h
>
> {{CredentialProviderFactory.getProviders()}} will be called recursively if
> the FS being instantiated as a source of a JCECKs file calls
> {{Configuration.getPassword()}}.
> S3A FileSystem does this when looking at encryption settings, even when
> authentication
> is not being done by hadoop config options.
> Recursion is straightforward to detect, leaving a choice of actions
> # Fail
> # Fix by having getPassword() return null; this implicitly skips use of the
> credential providers for the nested FS instance.
> # fix by skipping the specific credential provider factory with the problem
> (warn first?)
> My preference is for #3.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
