zookeeper-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From ph...@apache.org
Subject svn commit: r1745536 - in /zookeeper/branches/branch-3.5: CHANGES.txt src/java/main/org/apache/zookeeper/Login.java
Date Wed, 25 May 2016 20:45:11 GMT
Author: phunt
Date: Wed May 25 20:45:11 2016
New Revision: 1745536

URL: http://svn.apache.org/viewvc?rev=1745536&view=rev
Log:
ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential information (Michael Han via
phunt)

Modified:
    zookeeper/branches/branch-3.5/CHANGES.txt
    zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java

Modified: zookeeper/branches/branch-3.5/CHANGES.txt
URL: http://svn.apache.org/viewvc/zookeeper/branches/branch-3.5/CHANGES.txt?rev=1745536&r1=1745535&r2=1745536&view=diff
==============================================================================
--- zookeeper/branches/branch-3.5/CHANGES.txt (original)
+++ zookeeper/branches/branch-3.5/CHANGES.txt Wed May 25 20:45:11 2016
@@ -153,6 +153,9 @@ BUGFIXES:
   ZOOKEEPER-2423: Upgrade Netty version due to security vulnerability
   (CVE-2014-3488) (Michael Han via phunt)
 
+  ZOOKEEPER-2405: getTGT() in Login.java mishandles confidential
+  information (Michael Han via phunt)
+
 IMPROVEMENTS:
 
   ZOOKEEPER-2270: Allow MBeanRegistry to be overridden for better unit tests

Modified: zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java
URL: http://svn.apache.org/viewvc/zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java?rev=1745536&r1=1745535&r2=1745536&view=diff
==============================================================================
--- zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java (original)
+++ zookeeper/branches/branch-3.5/src/java/main/org/apache/zookeeper/Login.java Wed May 25
20:45:11 2016
@@ -335,7 +335,8 @@ public class Login {
         for(KerberosTicket ticket: tickets) {
             KerberosPrincipal server = ticket.getServer();
             if (server.getName().equals("krbtgt/" + server.getRealm() + "@" + server.getRealm()))
{
-                LOG.debug("Found tgt {}.", ticket);
+                LOG.debug("Client principal is \"" + ticket.getClient().getName() + "\".");
+                LOG.debug("Server principal is \"" + ticket.getServer().getName() + "\".");
                 return ticket;
             }
         }



Mime
View raw message