You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Benoy Antony (JIRA)" <ji...@apache.org> on 2014/06/15 10:45:02 UTC

[jira] [Created] (HADOOP-10702) KerberosAuthenticationHandler does not log the principal names correctly

Benoy Antony created HADOOP-10702:
-------------------------------------

             Summary: KerberosAuthenticationHandler does not log the principal names correctly
                 Key: HADOOP-10702
                 URL: https://issues.apache.org/jira/browse/HADOOP-10702
             Project: Hadoop Common
          Issue Type: Bug
          Components: security
    Affects Versions: 2.5.0
            Reporter: Benoy Antony
            Assignee: Benoy Antony
            Priority: Minor


With Hadoop-10158, it is possible to load multiple principal names or all HTTP principals in the key tab by specifying “*”.
Each principal name is logged when when the principal is loaded from key tab. But there is a bug due to which principal name is logged each time  as either “*” or the full list of principals.

The log snippet is as below:

2014-06-15 00:19:13,288 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *
2014-06-15 00:19:13,292 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *
2014-06-15 00:19:13,294 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *
2014-06-15 00:19:13,295 INFO org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler: Login using keytab /etc/hadoop/hadoop.keytab, for principal *



--
This message was sent by Atlassian JIRA
(v6.2#6252)