Home Explore Help
Register Sign In
apache
/
hadoop
mirror of https://github.com/apache/hadoop.git
2
0
Fork 1
Files Issues 0 Wiki
Browse Source

HADOOP-12559. KMS connection failures should trigger TGT renewal. Contributed by Zhe Zhang.

Conflicts:
	hadoop-common-project/hadoop-common/CHANGES.txt
Xiaoyu Yao 9 years ago
parent
f0c278469b
commit
c6f68a7f98
1 changed files with 2 additions and 0 deletions
Unified View Show Diff Stats
  1. 2 0
      hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/crypto/key/kms/KMSClientProvider.java

+ 2 - 0
hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/crypto/key/kms/KMSClientProvider.java
View File 

@@ -474,6 +474,8 @@ public class KMSClientProvider extends KeyProvider implements CryptoExtension,
 
           UserGroupInformation.AuthenticationMethod.PROXY)
 
           UserGroupInformation.AuthenticationMethod.PROXY)
 
                               ? currentUgi.getShortUserName() : null;
 
                               ? currentUgi.getShortUserName() : null;
 
 
 
+      // check and renew TGT to handle potential expiration
 
+      actualUgi.checkTGTAndReloginFromKeytab();
 
       // creating the HTTP connection using the current UGI at constructor time
 
       // creating the HTTP connection using the current UGI at constructor time
 
       conn = actualUgi.doAs(new PrivilegedExceptionAction<HttpURLConnection>() {
 
       conn = actualUgi.doAs(new PrivilegedExceptionAction<HttpURLConnection>() {
 
         @Override
 
         @Override