Home | About | Sematext search-lucene.com search-hadoop.com
 Search Hadoop and all its subprojects:

Switch to Threaded View
HDFS, mail # user - Re: kerberos principal don't replace _HTTP to their own host name


Copy link to this message
-
Re: kerberos principal don't replace _HTTP to their own host name
Oh Seok Keun 2013-04-02, 05:18
When I tested the config has a specific hostname (ex. HTTP/
[EMAIL PROTECTED] - specify namenode host), namenode was ok,
but datanode didn't start info server.
I think datanode also use that config value
("hadoop.http.authentication.kerberos.principal").

datanode's host is dn01.hadoop.com
error log is following:

# error log

2013-04-02 09:46:45,651 INFO
org.apache.hadoop.hdfs.server.datanode.DataNode: dfs.webhdfs.enabled = false
2013-04-02 09:46:45,652 INFO org.mortbay.log: jetty-6.1.26
2013-04-02 09:46:46,651 INFO
org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler:
Login using keytab /hadoop/security/keytab/hdfs.keytab, for principal HTTP/
[EMAIL PROTECTED]
2013-04-02 09:46:46,658 WARN org.mortbay.log: failed authentication:
javax.servlet.ServletException: javax.security.auth.login.LoginException:
Unable to obtain password from user

2013-04-02 09:46:46,660 WARN org.mortbay.log: Failed startup of context
org.mortbay.jetty.webapp.WebAppContext@24c6e1ec
{/,file:/hadoop/webapps/datanode}
javax.servlet.ServletException: javax.security.auth.login.LoginException:
Unable to obtain password from user

        at
org.apache.hadoop.security.authentication.server.KerberosAuthenticationHandler.init(KerberosAuthenticationHandler.java:178)
        at
org.apache.hadoop.security.authentication.server.AuthenticationFilter.init(AuthenticationFilter.java:146)
        at
org.mortbay.jetty.servlet.FilterHolder.doStart(FilterHolder.java:97)
        at
org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50)
        at
org.mortbay.jetty.servlet.ServletHandler.initialize(ServletHandler.java:713)
        at org.mortbay.jetty.servlet.Context.startContext(Context.java:140)
        at
org.mortbay.jetty.webapp.WebAppContext.startContext(WebAppContext.java:1282)
        at
org.mortbay.jetty.handler.ContextHandler.doStart(ContextHandler.java:518)
        at
org.mortbay.jetty.webapp.WebAppContext.doStart(WebAppContext.java:499)
        at
org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50)
        at
org.mortbay.jetty.handler.HandlerCollection.doStart(HandlerCollection.java:152)
        at
org.mortbay.jetty.handler.ContextHandlerCollection.doStart(ContextHandlerCollection.java:156)
        at
org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50)
        at
org.mortbay.jetty.handler.HandlerWrapper.doStart(HandlerWrapper.java:130)
        at org.mortbay.jetty.Server.doStart(Server.java:224)
        at
org.mortbay.component.AbstractLifeCycle.start(AbstractLifeCycle.java:50)
        at org.apache.hadoop.http.HttpServer.start(HttpServer.java:585)
        at
org.apache.hadoop.hdfs.server.datanode.DataNode.startDataNode(DataNode.java:518)
        at
org.apache.hadoop.hdfs.server.datanode.DataNode.<init>(DataNode.java:309)
        at
org.apache.hadoop.hdfs.server.datanode.DataNode.makeInstance(DataNode.java:1651)
        at
org.apache.hadoop.hdfs.server.datanode.DataNode.instantiateDataNode(DataNode.java:1590)
        at
org.apache.hadoop.hdfs.server.datanode.DataNode.createDataNode(DataNode.java:1608)
        at
org.apache.hadoop.hdfs.server.datanode.DataNode.secureMain(DataNode.java:1734)
        at
org.apache.hadoop.hdfs.server.datanode.SecureDataNodeStarter.start(SecureDataNodeStarter.java:109)
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
        at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
        at java.lang.reflect.Method.invoke(Method.java:597)
        at
org.apache.commons.daemon.support.DaemonLoader.start(DaemonLoader.java:177)

the other odd thing is that I config
'hadoop.http.authentication.signature.secret.file' and
'hadoop.http.authentication.signature.secret' but warn log occur like this

# warn log
2013-04-02 10:28:19,508 WARN
org.apache.hadoop.security.authentication.server.AuthenticationFilter:
'signature.secret' configuration not set, using a random value as secret

Who know about this?

Thanks.

2013/4/1 Daryn Sharp <[EMAIL PROTECTED]>