From 331907ad716b1af9d673dce4b9ce33a43e4ba97a Mon Sep 17 00:00:00 2001 From: "Doroszlai, Attila" Date: Fri, 3 May 2024 20:48:28 +0200 Subject: [PATCH 1/2] HDDS-10803. HttpServer fails to start with wildcard principal --- hadoop-hdds/hadoop-dependency-server/pom.xml | 8 ++++++++ .../dist/src/main/compose/ozonesecure/docker-config | 2 +- pom.xml | 11 +++++++++++ 3 files changed, 20 insertions(+), 1 deletion(-) diff --git a/hadoop-hdds/hadoop-dependency-server/pom.xml b/hadoop-hdds/hadoop-dependency-server/pom.xml index f50048a0182f..28d098edba29 100644 --- a/hadoop-hdds/hadoop-dependency-server/pom.xml +++ b/hadoop-hdds/hadoop-dependency-server/pom.xml @@ -162,6 +162,14 @@ https://maven.apache.org/xsd/maven-4.0.0.xsd"> + + org.apache.kerby + kerb-core + + + org.apache.kerby + kerb-util + org.xerial.snappy snappy-java diff --git a/hadoop-ozone/dist/src/main/compose/ozonesecure/docker-config b/hadoop-ozone/dist/src/main/compose/ozonesecure/docker-config index 0d5e2d04ee70..19cb80c4c2c0 100644 --- a/hadoop-ozone/dist/src/main/compose/ozonesecure/docker-config +++ b/hadoop-ozone/dist/src/main/compose/ozonesecure/docker-config @@ -115,7 +115,7 @@ OZONE-SITE.XML_ozone.s3g.http.auth.kerberos.keytab=/etc/security/keytabs/s3g.key OZONE-SITE.XML_ozone.s3g.http.auth.kerberos.principal=HTTP/s3g@EXAMPLE.COM OZONE-SITE.XML_ozone.httpfs.http.auth.kerberos.keytab=/etc/security/keytabs/httpfs.keytab OZONE-SITE.XML_ozone.httpfs.http.auth.kerberos.principal=HTTP/httpfs@EXAMPLE.COM -OZONE-SITE.XML_ozone.recon.http.auth.kerberos.principal=HTTP/recon@EXAMPLE.COM +OZONE-SITE.XML_ozone.recon.http.auth.kerberos.principal=* OZONE-SITE.XML_ozone.recon.http.auth.kerberos.keytab=/etc/security/keytabs/recon.keytab CORE-SITE.XML_hadoop.http.authentication.simple.anonymous.allowed=false diff --git a/pom.xml b/pom.xml index 87916856c60d..16de19cbaf22 100644 --- a/pom.xml +++ b/pom.xml @@ -179,6 +179,7 @@ xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xs 3.4.4 1.2.25 + 1.0.1 1.9.22 1.11 4.7.5 @@ -451,6 +452,16 @@ xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xs httpcore-nio ${httpcore.version} + + org.apache.kerby + kerb-core + ${kerby.version} + + + org.apache.kerby + kerb-util + ${kerby.version} + commons-codec commons-codec From f114e5bcba6547de39dc40b8dd9eb2392e701675 Mon Sep 17 00:00:00 2001 From: "Doroszlai, Attila" Date: Fri, 3 May 2024 21:13:06 +0200 Subject: [PATCH 2/2] fix jar-report (LICENSE already has these) --- hadoop-ozone/dist/src/main/license/jar-report.txt | 3 +++ 1 file changed, 3 insertions(+) diff --git a/hadoop-ozone/dist/src/main/license/jar-report.txt b/hadoop-ozone/dist/src/main/license/jar-report.txt index bc73aa6fe3f8..3a5f5066df99 100644 --- a/hadoop-ozone/dist/src/main/license/jar-report.txt +++ b/hadoop-ozone/dist/src/main/license/jar-report.txt @@ -157,7 +157,10 @@ share/ozone/lib/json-simple.jar share/ozone/lib/jsp-api.jar share/ozone/lib/jsr311-api.jar share/ozone/lib/kerb-core.jar +share/ozone/lib/kerb-crypto.jar +share/ozone/lib/kerb-util.jar share/ozone/lib/kerby-asn1.jar +share/ozone/lib/kerby-config.jar share/ozone/lib/kerby-pkix.jar share/ozone/lib/kerby-util.jar share/ozone/lib/kotlin-stdlib-common.jar