You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-dev@hadoop.apache.org by "Yu Gao (JIRA)" <ji...@apache.org> on 2013/09/17 02:22:52 UTC

[jira] [Created] (HADOOP-9969) TGT expiration doesn't trigger Kerberos relogin

Yu Gao created HADOOP-9969:
------------------------------

             Summary: TGT expiration doesn't trigger Kerberos relogin
                 Key: HADOOP-9969
                 URL: https://issues.apache.org/jira/browse/HADOOP-9969
             Project: Hadoop Common
          Issue Type: Bug
          Components: ipc, security
    Affects Versions: 2.1.0-beta
            Reporter: Yu Gao


In HADOOP 9698 & HADOOP 9850, RPC client and Sasl client have been changed to respect the auth method advertised from server, instead of blindly attempting the configured one at client side. However, when TGT has expired, an exception will be thrown from SaslRpcClient#createSaslClient(SaslAuth authType), and at this time the authMethod still holds the initial value which is SIMPLE and never has a chance to be updated with the expected one requested by server, so kerberos relogin will not happen.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira