YARN-5206. RegistrySecurity includes id:pass in exception text if considered invalid. Contributed by Steve Loughran

(cherry picked from commit 8c8a377cac10b086a7ff37ee366b79e6b04d2738)
2016-06-08 14:11:25 +00:00 · 2016-06-08 14:11:25 +00:00 · fdea6ee0d1
commit fdea6ee0d1
parent 9b68eda274
2 changed files with 4 additions and 1 deletions
--- a/hadoop-yarn-project/CHANGES.txt
+++ b/hadoop-yarn-project/CHANGES.txt
@ -145,6 +145,9 @@ Release 2.7.3 - UNRELEASED
    YARN-4459. container-executor should only kill process groups (Jun Gong
    via jlowe)

+    YARN-5206. RegistrySecurity includes id:pass in exception text if
+    considered invalid (Steve Loughran via jlowe)
+
 Release 2.7.2 - 2016-01-25

  INCOMPATIBLE CHANGES
--- a/hadoop-yarn-project/hadoop-yarn/hadoop-yarn-registry/src/main/java/org/apache/hadoop/registry/client/impl/zk/RegistrySecurity.java
+++ b/hadoop-yarn-project/hadoop-yarn/hadoop-yarn-registry/src/main/java/org/apache/hadoop/registry/client/impl/zk/RegistrySecurity.java
@ -443,7 +443,7 @@ public String getKerberosRealm() {
   */
  public String digest(String idPasswordPair) throws IOException {
    if (StringUtils.isEmpty(idPasswordPair) || !isValid(idPasswordPair)) {
-      throw new IOException("Invalid id:password: " + idPasswordPair);
+      throw new IOException("Invalid id:password");
    }
    try {
      return DigestAuthenticationProvider.generateDigest(idPasswordPair);