Issac Buenrostro created HADOOP-16214:
-----------------------------------------
Summary: Kerberos name implementation in Hadoop does not accept
principals with more than two components
Key: HADOOP-16214
URL: https://issues.apache.org/jira/browse/HADOOP-16214
Project: Hadoop Common
Issue Type: Bug
Components: auth
Reporter: Issac Buenrostro
org.apache.hadoop.security.authentication.util.KerberosName is in charge of
converting a Kerberos principal to a user name in Hadoop for all of the
services requiring authentication.
Although the Kerberos spec
([https://web.mit.edu/kerberos/krb5-1.5/krb5-1.5.4/doc/krb5-user/What-is-a-Kerberos-Principal_003f.html)]
allows for an arbitrary number of components in the principal, the Hadoop
implementation will throw a "Malformed Kerberos name:" error if the principal
has more than two components (because the regex can only read serviceName and
hostName).
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-dev-unsubscr...@hadoop.apache.org
For additional commands, e-mail: common-dev-h...@hadoop.apache.org
