[jira] [Updated] (STORM-3728) Workers are not able to connect to Pacemaker if pacemaker.auth.method is KERBEROS
[ https://issues.apache.org/jira/browse/STORM-3728?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Ethan Li updated STORM-3728: Fix Version/s: 2.3.0 > Workers are not able to connect to Pacemaker if pacemaker.auth.method is > KERBEROS > - > > Key: STORM-3728 > URL: https://issues.apache.org/jira/browse/STORM-3728 > Project: Apache Storm > Issue Type: Bug >Affects Versions: 2.0.0, 2.1.0, 2.2.0 >Reporter: Ethan Li >Assignee: Ethan Li >Priority: Major > Fix For: 2.3.0 > > Time Spent: 1h 10m > Remaining Estimate: 0h > > When pacemaker.auth.method is KERBEROS, worker will fail to connect to > KERBEROS because of exceptions like the following: > > {code:java} > 2020-12-21 20:07:00.786 o.a.s.c.PaceMakerStateStorage > executor-heartbeat-timer [ERROR] Timed out waiting for channel ready. Failed > to set_worker_hb. Will make 2 more attempts. > 2020-12-21 20:07:00.902 o.a.s.m.n.KerberosSaslClientHandler > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Connection established > from /10.215.73.209:45548 to > openstorm3blue-n10.blue.ygrid.yahoo.com/10.215.79.152:6699 > 2020-12-21 20:07:00.903 o.a.s.m.n.KerberosSaslNettyClient > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Creating Kerberos Client. > 2020-12-21 20:07:00.906 o.a.s.m.n.KerberosSaslNettyClient > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Kerberos Client Callback > Handler got callback: class javax.security.auth.callback.PasswordCallback > 2020-12-21 20:07:00.906 o.a.s.m.n.Login > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [ERROR] Login using jaas conf > /home/y/lib/storm/current/conf/storm_jaas.conf failed > 2020-12-21 20:07:00.906 o.a.s.m.n.KerberosSaslNettyClient > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [ERROR] Client failed to login > in principal:javax.security.auth.login.LoginException: No password provided > javax.security.auth.login.LoginException: No password provided > at > com.sun.security.auth.module.Krb5LoginModule.promptForPass(Krb5LoginModule.java:923) > ~[?:1.8.0_262] > at > com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:764) > ~[?:1.8.0_262] > at > com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:618) > ~[?:1.8.0_262] > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > ~[?:1.8.0_262] > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > ~[?:1.8.0_262] > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > ~[?:1.8.0_262] > at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.invoke(LoginContext.java:755) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.access$000(LoginContext.java:195) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext$4.run(LoginContext.java:682) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext$4.run(LoginContext.java:680) > ~[?:1.8.0_262] > at java.security.AccessController.doPrivileged(Native Method) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.login(LoginContext.java:587) > ~[?:1.8.0_262] > at org.apache.storm.messaging.netty.Login.login(Login.java:301) > ~[storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at org.apache.storm.messaging.netty.Login.(Login.java:83) > ~[storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.messaging.netty.KerberosSaslNettyClient.(KerberosSaslNettyClient.java:66) > [storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.messaging.netty.KerberosSaslClientHandler.channelActive(KerberosSaslClientHandler.java:59) > [storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:213) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:199) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.fireChannelActive(AbstractChannelHandlerContext.java:192) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.ChannelInboundHandlerAdapter.channelActive(ChannelInboundHandlerAdapter.java:64) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.
[jira] [Updated] (STORM-3728) Workers are not able to connect to Pacemaker if pacemaker.auth.method is KERBEROS
[ https://issues.apache.org/jira/browse/STORM-3728?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Ethan Li updated STORM-3728: Affects Version/s: 2.2.0 2.0.0 2.1.0 > Workers are not able to connect to Pacemaker if pacemaker.auth.method is > KERBEROS > - > > Key: STORM-3728 > URL: https://issues.apache.org/jira/browse/STORM-3728 > Project: Apache Storm > Issue Type: Bug >Affects Versions: 2.0.0, 2.1.0, 2.2.0 >Reporter: Ethan Li >Assignee: Ethan Li >Priority: Major > Time Spent: 1h > Remaining Estimate: 0h > > When pacemaker.auth.method is KERBEROS, worker will fail to connect to > KERBEROS because of exceptions like the following: > > {code:java} > 2020-12-21 20:07:00.786 o.a.s.c.PaceMakerStateStorage > executor-heartbeat-timer [ERROR] Timed out waiting for channel ready. Failed > to set_worker_hb. Will make 2 more attempts. > 2020-12-21 20:07:00.902 o.a.s.m.n.KerberosSaslClientHandler > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Connection established > from /10.215.73.209:45548 to > openstorm3blue-n10.blue.ygrid.yahoo.com/10.215.79.152:6699 > 2020-12-21 20:07:00.903 o.a.s.m.n.KerberosSaslNettyClient > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Creating Kerberos Client. > 2020-12-21 20:07:00.906 o.a.s.m.n.KerberosSaslNettyClient > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Kerberos Client Callback > Handler got callback: class javax.security.auth.callback.PasswordCallback > 2020-12-21 20:07:00.906 o.a.s.m.n.Login > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [ERROR] Login using jaas conf > /home/y/lib/storm/current/conf/storm_jaas.conf failed > 2020-12-21 20:07:00.906 o.a.s.m.n.KerberosSaslNettyClient > openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [ERROR] Client failed to login > in principal:javax.security.auth.login.LoginException: No password provided > javax.security.auth.login.LoginException: No password provided > at > com.sun.security.auth.module.Krb5LoginModule.promptForPass(Krb5LoginModule.java:923) > ~[?:1.8.0_262] > at > com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:764) > ~[?:1.8.0_262] > at > com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:618) > ~[?:1.8.0_262] > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > ~[?:1.8.0_262] > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > ~[?:1.8.0_262] > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > ~[?:1.8.0_262] > at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.invoke(LoginContext.java:755) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.access$000(LoginContext.java:195) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext$4.run(LoginContext.java:682) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext$4.run(LoginContext.java:680) > ~[?:1.8.0_262] > at java.security.AccessController.doPrivileged(Native Method) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680) > ~[?:1.8.0_262] > at > javax.security.auth.login.LoginContext.login(LoginContext.java:587) > ~[?:1.8.0_262] > at org.apache.storm.messaging.netty.Login.login(Login.java:301) > ~[storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at org.apache.storm.messaging.netty.Login.(Login.java:83) > ~[storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.messaging.netty.KerberosSaslNettyClient.(KerberosSaslNettyClient.java:66) > [storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.messaging.netty.KerberosSaslClientHandler.channelActive(KerberosSaslClientHandler.java:59) > [storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:213) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:199) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.fireChannelActive(AbstractChannelHandlerContext.java:192) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at > org.apache.storm.shade.io.netty.channel.ChannelInboundHandlerAdapter.channelActive(ChannelInboundHandlerAdapter.java:64) > [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] > at
[jira] [Updated] (STORM-3728) Workers are not able to connect to Pacemaker if pacemaker.auth.method is KERBEROS
[ https://issues.apache.org/jira/browse/STORM-3728?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Ethan Li updated STORM-3728: Description: When pacemaker.auth.method is KERBEROS, worker will fail to connect to KERBEROS because of exceptions like the following: {code:java} 2020-12-21 20:07:00.786 o.a.s.c.PaceMakerStateStorage executor-heartbeat-timer [ERROR] Timed out waiting for channel ready. Failed to set_worker_hb. Will make 2 more attempts. 2020-12-21 20:07:00.902 o.a.s.m.n.KerberosSaslClientHandler openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Connection established from /10.215.73.209:45548 to openstorm3blue-n10.blue.ygrid.yahoo.com/10.215.79.152:6699 2020-12-21 20:07:00.903 o.a.s.m.n.KerberosSaslNettyClient openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Creating Kerberos Client. 2020-12-21 20:07:00.906 o.a.s.m.n.KerberosSaslNettyClient openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [INFO] Kerberos Client Callback Handler got callback: class javax.security.auth.callback.PasswordCallback 2020-12-21 20:07:00.906 o.a.s.m.n.Login openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [ERROR] Login using jaas conf /home/y/lib/storm/current/conf/storm_jaas.conf failed 2020-12-21 20:07:00.906 o.a.s.m.n.KerberosSaslNettyClient openstorm3blue-n10.blue.ygrid.yahoo.com-pm-1 [ERROR] Client failed to login in principal:javax.security.auth.login.LoginException: No password provided javax.security.auth.login.LoginException: No password provided at com.sun.security.auth.module.Krb5LoginModule.promptForPass(Krb5LoginModule.java:923) ~[?:1.8.0_262] at com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:764) ~[?:1.8.0_262] at com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:618) ~[?:1.8.0_262] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_262] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_262] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_262] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_262] at javax.security.auth.login.LoginContext.invoke(LoginContext.java:755) ~[?:1.8.0_262] at javax.security.auth.login.LoginContext.access$000(LoginContext.java:195) ~[?:1.8.0_262] at javax.security.auth.login.LoginContext$4.run(LoginContext.java:682) ~[?:1.8.0_262] at javax.security.auth.login.LoginContext$4.run(LoginContext.java:680) ~[?:1.8.0_262] at java.security.AccessController.doPrivileged(Native Method) ~[?:1.8.0_262] at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680) ~[?:1.8.0_262] at javax.security.auth.login.LoginContext.login(LoginContext.java:587) ~[?:1.8.0_262] at org.apache.storm.messaging.netty.Login.login(Login.java:301) ~[storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.messaging.netty.Login.(Login.java:83) ~[storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.messaging.netty.KerberosSaslNettyClient.(KerberosSaslNettyClient.java:66) [storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.messaging.netty.KerberosSaslClientHandler.channelActive(KerberosSaslClientHandler.java:59) [storm-client-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:213) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:199) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.fireChannelActive(AbstractChannelHandlerContext.java:192) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.ChannelInboundHandlerAdapter.channelActive(ChannelInboundHandlerAdapter.java:64) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:213) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.invokeChannelActive(AbstractChannelHandlerContext.java:199) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.AbstractChannelHandlerContext.fireChannelActive(AbstractChannelHandlerContext.java:192) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shade.io.netty.channel.DefaultChannelPipeline$HeadContext.channelActive(DefaultChannelPipeline.java:1422) [storm-shaded-deps-2.3.0.y.jar:2.3.0-SNAPSHOT] at org.apache.storm.shad