zookeeper-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (ZOOKEEPER-1045) Support Quorum Peer mutual authentication via SASL
Date Mon, 27 Nov 2017 23:27:01 GMT

    [ https://issues.apache.org/jira/browse/ZOOKEEPER-1045?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16267785#comment-16267785
] 

Hudson commented on ZOOKEEPER-1045:
-----------------------------------

FAILURE: Integrated in Jenkins build ZooKeeper-trunk #3631 (See [https://builds.apache.org/job/ZooKeeper-trunk/3631/])
ZOOKEEPER-2935: [QP MutualAuth]: Port ZOOKEEPER-1045 implementation from (phunt: rev 75411ab34a3d53c43c2d508b12314a9788aa417d)
* (edit) src/java/main/org/apache/zookeeper/server/quorum/Leader.java
* (edit) src/java/test/org/apache/zookeeper/server/quorum/LearnerTest.java
* (edit) src/java/test/org/apache/zookeeper/server/quorum/LearnerHandlerTest.java
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/MiniKdc.java
* (edit) src/zookeeper.jute
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/QuorumAuthTestBase.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/Observer.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/FastLeaderElection.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/QuorumPeerMain.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/QuorumAuthLearner.java
* (edit) src/java/main/org/apache/zookeeper/server/ServerCnxn.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/Follower.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/SaslQuorumAuthServer.java
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/QuorumKerberosAuthTest.java
* (edit) build.xml
* (edit) src/java/main/org/apache/zookeeper/server/auth/SaslServerCallbackHandler.java
* (edit) src/java/main/org/apache/zookeeper/client/ZooKeeperSaslClient.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/Learner.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/SaslQuorumAuthLearner.java
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/KerberosSecurityTestcase.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/SaslQuorumServerCallbackHandler.java
* (edit) src/java/main/org/apache/zookeeper/Login.java
* (edit) src/java/test/org/apache/zookeeper/server/quorum/Zab1_0Test.java
* (add) src/java/test/data/kerberos/minikdc.ldiff
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/QuorumAuthUpgradeTest.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/NullQuorumAuthLearner.java
* (add) src/java/test/data/kerberos/minikdc-krb5.conf
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/MiniKdcTest.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/LearnerHandler.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/QuorumCnxManager.java
* (add) src/java/main/org/apache/zookeeper/util/SecurityUtils.java
* (edit) ivy.xml
* (edit) src/java/test/org/apache/zookeeper/server/quorum/QuorumPeerTestBase.java
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/QuorumDigestAuthTest.java
* (add) src/java/main/org/apache/zookeeper/SaslClientCallbackHandler.java
* (edit) src/java/test/org/apache/zookeeper/test/CnxManagerTest.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/QuorumAuthServer.java
* (edit) src/java/test/org/apache/zookeeper/server/quorum/EphemeralNodeDeletionTest.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/QuorumAuth.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/QuorumPeerConfig.java
* (edit) src/java/test/org/apache/zookeeper/server/quorum/FLEBackwardElectionRoundTest.java
* (edit) src/java/main/org/apache/zookeeper/server/quorum/QuorumPeer.java
* (add) src/java/main/org/apache/zookeeper/server/quorum/auth/NullQuorumAuthServer.java
* (edit) src/java/test/org/apache/zookeeper/server/quorum/RaceConditionTest.java
* (edit) src/java/main/org/apache/zookeeper/server/ZooKeeperSaslServer.java
* (edit) src/java/test/org/apache/zookeeper/server/quorum/FLELostMessageTest.java
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/QuorumKerberosHostBasedAuthTest.java
* (edit) src/java/test/org/apache/zookeeper/test/FLEPredicateTest.java
* (edit) src/java/test/config/findbugsExcludeFile.xml
* (edit) src/java/main/org/apache/zookeeper/server/ZooKeeperServer.java
* (add) src/java/test/org/apache/zookeeper/server/quorum/auth/KerberosTestUtils.java


> Support Quorum Peer mutual authentication via SASL
> --------------------------------------------------
>
>                 Key: ZOOKEEPER-1045
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1045
>             Project: ZooKeeper
>          Issue Type: New Feature
>          Components: quorum, security
>            Reporter: Eugene Koontz
>            Assignee: Rakesh R
>            Priority: Critical
>             Fix For: 3.4.10
>
>         Attachments: 0001-ZOOKEEPER-1045-br-3-4.patch, 1045_failing_phunt.tar.gz, HOST_RESOLVER-ZK-1045.patch,
QuorumPeer Mutual Authentication Via Sasl Feature Doc - 2016-Nov-10.pdf, QuorumPeer Mutual
Authentication Via Sasl Feature Doc - 2016-Nov-25.pdf, QuorumPeer Mutual Authentication Via
Sasl Feature Doc - 2016-Nov-29.pdf, QuorumPeer Mutual Authentication Via Sasl Feature Doc
- 2016-Nov-30.pdf, QuorumPeer Mutual Authentication Via Sasl Feature Doc - 2016-Sep-25.pdf,
TEST-org.apache.zookeeper.server.quorum.auth.QuorumAuthUpgradeTest.txt, ZK-1045-test-case-failure-logs.zip,
ZOOKEEPER-1045 Test Plan.pdf, ZOOKEEPER-1045-00.patch, ZOOKEEPER-1045-Rolling Upgrade Design
Proposal.pdf, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch,
ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch,
ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch,
ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045-br-3-4.patch, ZOOKEEPER-1045TestValidationDesign.pdf,
org.apache.zookeeper.server.quorum.auth.QuorumAuthUpgradeTest.testRollingUpgrade.log
>
>
> ZOOKEEPER-938 addresses mutual authentication between clients and servers. This bug,
on the other hand, is for authentication among quorum peers. Hopefully much of the work done
on SASL integration with Zookeeper for ZOOKEEPER-938 can be used as a foundation for this
enhancement.
> Review board: https://reviews.apache.org/r/47354/



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message