[ https://issues.apache.org/jira/browse/HADOOP-9698?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13705086#comment-13705086 ]
Luke Lu commented on HADOOP-9698: --------------------------------- Although, it's desirable to make the mechanism negotiation work, which is a new feature in RPC v9, I'm not sure why this would be a blocker, as there is no protocol change necessary and that there is no real regression compared to earlier versions. AFAICT, it'd require non-trivial change to the current client to really make the negotiation work properly. I see no need to rush the change for 2.2. > RPCv9 client must honor server's SASL negotiate response > -------------------------------------------------------- > > Key: HADOOP-9698 > URL: https://issues.apache.org/jira/browse/HADOOP-9698 > Project: Hadoop Common > Issue Type: Sub-task > Components: ipc > Affects Versions: 3.0.0, 2.1.0-beta > Reporter: Daryn Sharp > Assignee: Daryn Sharp > Priority: Critical > > As of HADOOP-9421, a RPCv9 server will advertise its authentication methods. > This is meant to support features such as IP failover, better token > selection, and interoperability in a heterogenous security environment. > Currently the client ignores the negotiate response and just blindly attempts > to authenticate instead of choosing a mutually agreeable auth method. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira