[
https://issues.apache.org/jira/browse/HADOOP-12716?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15103569#comment-15103569
]
Xiaoyu Yao commented on HADOOP-12716:
-------------------------------------
Can't repro the following unit test failures locally. No unit test is added as
this is a simple fix with minor refactor.
{code}
JDK v1.8.0_66 Failed junit tests
hadoop.security.ssl.TestReloadingX509TrustManager
JDK v1.7.0_91 Failed junit tests hadoop.metrics2.impl.TestGangliaMetrics
{code}
> KerberosAuthenticator#doSpnegoSequence use incorrect class to determine
> isKeyTab in JDK8
> ----------------------------------------------------------------------------------------
>
> Key: HADOOP-12716
> URL: https://issues.apache.org/jira/browse/HADOOP-12716
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 2.7.1
> Environment: Java 8
> Reporter: Xiaoyu Yao
> Assignee: Xiaoyu Yao
> Attachments: HADOOP-12716.000.patch, HADOOP-12716.001.patch
>
>
> HADOOP-11287 and HADOOP-10786 has fixed the issue in UserGroupInformation
> class for JDK8.
> However, the logic in KerberosAuthenticator#doSpnegoSequence is not updated.
> The KerberosKey.class below should be KeyTab.class for JDK8.
> {code}
> if (subject == null
> || (subject.getPrivateCredentials(KerberosKey.class).isEmpty()
> &&
> subject.getPrivateCredentials(KerberosTicket.class).isEmpty())) {
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
