[jira] [Commented] (STORM-348) (Security) Netty SASL Authentication

Tue, 29 Jul 2014 17:29:17 -0700 

    [ 
https://issues.apache.org/jira/browse/STORM-348?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14078687#comment-14078687
 ] 

ASF GitHub Bot commented on STORM-348:
--------------------------------------

Github user revans2 commented on the pull request:

    https://github.com/apache/incubator-storm/pull/202#issuecomment-50558624
  
    ```
    diff --git 
a/storm-core/test/clj/backtype/storm/messaging/netty_unit_test.clj 
b/storm-core/test/clj/backtype/storm/messaging/netty_unit_test.clj
    index ea7b8dc..c205dc3 100644
    --- a/storm-core/test/clj/backtype/storm/messaging/netty_unit_test.clj
    +++ b/storm-core/test/clj/backtype/storm/messaging/netty_unit_test.clj
    @@ -32,6 +32,7 @@
                         STORM-MESSAGING-NETTY-MAX-SLEEP-MS 5000
                         STORM-MESSAGING-NETTY-SERVER-WORKER-THREADS 1
                         STORM-MESSAGING-NETTY-CLIENT-WORKER-THREADS 1
    +                    STORM-MESSAGING-NETTY-AUTHENTICATION false
                         }
             context (TransportFactory/makeContext storm-conf)
             server (.bind context nil port)
    @@ -54,6 +55,7 @@
                         STORM-MESSAGING-NETTY-MAX-SLEEP-MS 5000
                         STORM-MESSAGING-NETTY-SERVER-WORKER-THREADS 1
                         STORM-MESSAGING-NETTY-CLIENT-WORKER-THREADS 1
    +                    STORM-MESSAGING-NETTY-AUTHENTICATION false
                         }
             context (TransportFactory/makeContext storm-conf)
             server (.bind context nil port)
    @@ -76,6 +78,7 @@
                         STORM-MESSAGING-NETTY-MAX-SLEEP-MS 5000
                         STORM-MESSAGING-NETTY-SERVER-WORKER-THREADS 1
                         STORM-MESSAGING-NETTY-CLIENT-WORKER-THREADS 1
    +                    STORM-MESSAGING-NETTY-AUTHENTICATION false
                         }
    ```
    
    is what I had to do to get the tests to pass.  Otherwise I was getting NPEs 
in the tests. If you could update your pull request it makes tracking the 
changes, a lot cleaner.


> (Security) Netty SASL Authentication
> ------------------------------------
>
>                 Key: STORM-348
>                 URL: https://issues.apache.org/jira/browse/STORM-348
>             Project: Apache Storm (Incubating)
>          Issue Type: Bug
>            Reporter: Robert Joseph Evans
>            Assignee: Raghavendra Nandagopal
>              Labels: security
>         Attachments: Storm-Netty Authentication.pdf
>
>
> Currently The Netty transport does no authentication at all.  You can encrypt 
> the tuples being sent, but that is a huge performance hit for many cases that 
> do not need it.  We should support simple SASL authentication when Netty 
> first connects to an external process.  We probably want to use something 
> similar to what we do for ZK, and generate a random secret for each topology.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Reply via email to