[
https://issues.apache.org/jira/browse/HADOOP-12716?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Chris Nauroth updated HADOOP-12716:
-----------------------------------
Resolution: Fixed
Hadoop Flags: Reviewed
Fix Version/s: 2.8.0
Status: Resolved (was: Patch Available)
+1 for the patch. I have committed this to trunk, branch-2 and branch-2.8.
[~xyao], thank you for the patch. [~xiaobingo], thank you for helping with the
code review.
> KerberosAuthenticator#doSpnegoSequence use incorrect class to determine
> isKeyTab in JDK8
> ----------------------------------------------------------------------------------------
>
> Key: HADOOP-12716
> URL: https://issues.apache.org/jira/browse/HADOOP-12716
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 2.7.1
> Environment: Java 8
> Reporter: Xiaoyu Yao
> Assignee: Xiaoyu Yao
> Fix For: 2.8.0
>
> Attachments: HADOOP-12716.000.patch, HADOOP-12716.001.patch,
> HADOOP-12716.002.patch
>
>
> HADOOP-11287 and HADOOP-10786 has fixed the issue in UserGroupInformation
> class for JDK8.
> However, the logic in KerberosAuthenticator#doSpnegoSequence is not updated.
> The KerberosKey.class below should be KeyTab.class for JDK8.
> {code}
> if (subject == null
> || (subject.getPrivateCredentials(KerberosKey.class).isEmpty()
> &&
> subject.getPrivateCredentials(KerberosTicket.class).isEmpty())) {
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
