[
https://issues.apache.org/jira/browse/YARN-4629?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15123667#comment-15123667
]
Steve Loughran commented on YARN-4629:
--------------------------------------
+ add a check that the RM principal config option is non-null/non-empty
> Distributed shell breaks under strong security
> ----------------------------------------------
>
> Key: YARN-4629
> URL: https://issues.apache.org/jira/browse/YARN-4629
> Project: Hadoop YARN
> Issue Type: Bug
> Components: applications/distributed-shell, security
> Affects Versions: 2.7.1
> Environment: Secure cluster with the RM principal listed with a
> /_HOST entry to be expanded, most common with YARN HA enabled.
> Reporter: Daniel Templeton
> Assignee: Daniel Templeton
> Attachments: YARN-4629.001.patch, YARN-4629.002.patch
>
>
> If the auth_to_local is set to map requests from unknown hosts to nobody, the
> dist shell app fails. The reason is that the client doesn't translate the
> _HOST placeholder to the local hostname.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
