[ https://issues.apache.org/jira/browse/HADOOP-9880?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13742357#comment-13742357 ]
Sanjay Radia commented on HADOOP-9880: -------------------------------------- Daryn, your hack is slightly more appealing. However, the client-side does know how to deal with StandbyException (ie it tries on the other side). So we need to fix the client side to catch the InvalidToken unwrap the cause and then retry. BTW HDFS-3083 has a test and we need to run that test against this one verify that we have not regressed. > SASL changes from HADOOP-9421 breaks Secure HA NN > -------------------------------------------------- > > Key: HADOOP-9880 > URL: https://issues.apache.org/jira/browse/HADOOP-9880 > Project: Hadoop Common > Issue Type: Bug > Affects Versions: 2.1.0-beta > Reporter: Kihwal Lee > Assignee: Daryn Sharp > Priority: Blocker > Attachments: HADOOP-9880.patch > > > buildSaslNegotiateResponse() will create a SaslRpcServer with TOKEN auth. > When create() is called against it, secretManager.checkAvailableForRead() is > called, which fails in HA standby. Thus HA standby nodes cannot be > transitioned to active. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira