hadoop-hdfs-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Charles Lamb (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HDFS-7067) ClassCastException while using a key created by keytool to create encryption zone.
Date Fri, 12 Dec 2014 18:49:14 GMT

    [ https://issues.apache.org/jira/browse/HDFS-7067?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14244600#comment-14244600

Charles Lamb commented on HDFS-7067:

The three FB warnings appear to be unrelated. I ran FB with and without the patch and it produced
the same results. The test failure is expected since test-patch does not apply the hdfs7067.keystore
file to src/test/resources.

Code 	Warning
RV 	Return value of java.util.concurrent.CountDownLatch.await(long, TimeUnit) ignored in org.apache.hadoop.ha.ActiveStandbyElector$WatcherWithClientRef.process(WatchedEvent)
Multithreaded correctness Warnings
Code 	Warning
AT 	Sequence of calls to java.util.concurrent.ConcurrentHashMap may not be atomic in org.apache.hadoop.net.NetUtils.canonicalizeHost(String)
Security Warnings
Code 	Warning
XSS 	HTTP parameter written to Servlet output in org.apache.hadoop.jmx.JMXJsonServlet.doGet(HttpServletRequest,

> ClassCastException while using a key created by keytool to create encryption zone. 
> -----------------------------------------------------------------------------------
>                 Key: HDFS-7067
>                 URL: https://issues.apache.org/jira/browse/HDFS-7067
>             Project: Hadoop HDFS
>          Issue Type: Bug
>          Components: encryption
>    Affects Versions: 2.6.0
>            Reporter: Yi Yao
>            Assignee: Charles Lamb
>            Priority: Minor
>         Attachments: HDFS-7067.001.patch, HDFS-7067.002.patch, hdfs7067.keystore
> I'm using transparent encryption. If I create a key for KMS keystore via keytool and
use the key to create an encryption zone. I get a ClassCastException rather than an exception
with decent error message. I know we should use 'hadoop key create' to create a key. It's
better to provide an decent error message to remind user to use the right way to create a
KMS key.
> [LOG]
> ERROR[user=hdfs] Method:'GET' Exception:'java.lang.ClassCastException: javax.crypto.spec.SecretKeySpec
cannot be cast to org.apache.hadoop.crypto.key.JavaKeyStoreProvider$KeyMetadata'

This message was sent by Atlassian JIRA

View raw message