You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Daryn Sharp (Updated) (JIRA)" <ji...@apache.org> on 2011/11/23 18:33:39 UTC

[jira] [Updated] (HADOOP-7853) multiple javax security configurations cause conflicts

     [ https://issues.apache.org/jira/browse/HADOOP-7853?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Daryn Sharp updated HADOOP-7853:
--------------------------------

    Attachment: HADOOP-7853.patch

UGI and SPNEGO will now instantiate a LoginContext that explicitly uses their respective security configurations.  Even if another class sets the global security conf, UGI and SPNEGO will not be affected.

Extra log debugs are included that were invaluable in tracking down this silent problem. 
                
> multiple javax security configurations cause conflicts
> ------------------------------------------------------
>
>                 Key: HADOOP-7853
>                 URL: https://issues.apache.org/jira/browse/HADOOP-7853
>             Project: Hadoop Common
>          Issue Type: Bug
>          Components: security
>    Affects Versions: 0.20.205.1
>            Reporter: Daryn Sharp
>            Assignee: Daryn Sharp
>            Priority: Blocker
>         Attachments: HADOOP-7853.patch
>
>
> Both UGI and the SPNEGO KerberosAuthenticator set the global javax security configuration.  SPNEGO stomps on UGI's security config which leads to kerberos/SASL authentication errors.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira