[ https://issues.apache.org/jira/browse/SOLR-14001?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16988952#comment-16988952 ]
Kevin Risden edited comment on SOLR-14001 at 12/5/19 4:32 PM: -------------------------------------------------------------- [~rmuir] let me know if that output isn't what you were looking for. I can see a few access denied in there. {code:java} access: access denied ("javax.security.auth.AuthPermission" "modifyPublicCredentials") access: access denied ("java.lang.RuntimePermission" "loadLibrary.hadoop") {code} I also just kicked off a run of {code:java} ant test -D'args="-Djava.security.debug=access,failure"' -Dtests.nightly=true -Dtests.awaitsfix=false -Dtests.badapples=false -Dtests.slow=true -Dtests.verbose=true {code} which hopefully should catch any other tests that have issues. was (Author: risdenk): [~rmuir] let me know if that output isn't what you were looking for. I can see a few access denied in there. {code:java} access: access denied ("javax.security.auth.AuthPermission" "modifyPublicCredentials") access: access denied ("java.lang.RuntimePermission" "loadLibrary.hadoop") {code} I also just kicked off a run of {code:java} ant test -D'args="-Djava.security.debug=access,failure"' -Dtests.nightly=true -Dtests.awaitsfix=false -Dtests.badapples=false -Dtests.slow=true {code} which hopefully should catch any other tests that have issues. > fix HdfsBackupRepositoryTest on windows > --------------------------------------- > > Key: SOLR-14001 > URL: https://issues.apache.org/jira/browse/SOLR-14001 > Project: Solr > Issue Type: Improvement > Security Level: Public(Default Security Level. Issues are Public) > Reporter: Robert Muir > Priority: Major > Fix For: 8.4 > > Attachments: tests-failures.txt > > > Its a missing permission, but the exception gets swallowed so jenkins logs > aren't enough :( > I mentioned this was likely to happen with SOLR-13991 changes. > It needs different loadLibrary permission on windows (IIRC). I will spin up a > windows VM and run the test with -Djava.security.debug and fix it: > {noformat} > org.apache.solr.common.SolrException: > org.apache.hadoop.security.KerberosAuthException: failure to login: > javax.security.auth.login.LoginException: Security Exception > at > org.apache.solr.core.backup.repository.HdfsBackupRepository.init(HdfsBackupRepository.java:91) > at > org.apache.solr.core.backup.repository.HdfsBackupRepositoryTest.testCopyBufferDefaultSize(HdfsBackupRepositoryTest.java:92) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at > org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:50) > at > org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:12) > at > org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:47) > at > org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:17) > at org.junit.runners.ParentRunner.runLeaf(ParentRunner.java:325) > at > org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:78) > at > org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:57) > at org.junit.runners.ParentRunner$3.run(ParentRunner.java:290) > at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:71) > at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:288) > at org.junit.runners.ParentRunner.access$000(ParentRunner.java:58) > at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:268) > at org.junit.runners.ParentRunner.run(ParentRunner.java:363) > at > com.carrotsearch.ant.tasks.junit4.slave.SlaveMain.execute(SlaveMain.java:269) > at > com.carrotsearch.ant.tasks.junit4.slave.SlaveMain.main(SlaveMain.java:394) > at > com.carrotsearch.ant.tasks.junit4.slave.SlaveMainSafe.main(SlaveMainSafe.java:13) > Caused by: org.apache.hadoop.security.KerberosAuthException: failure to > login: javax.security.auth.login.LoginException: Security Exception > at > org.apache.hadoop.security.UserGroupInformation.doSubjectLogin(UserGroupInformation.java:1847) > at > org.apache.hadoop.security.UserGroupInformation.createLoginUser(UserGroupInformation.java:710) > at > org.apache.hadoop.security.UserGroupInformation.getLoginUser(UserGroupInformation.java:660) > at > org.apache.hadoop.security.UserGroupInformation.getCurrentUser(UserGroupInformation.java:571) > at org.apache.hadoop.hdfs.DFSClient.<init>(DFSClient.java:322) > at org.apache.hadoop.hdfs.DFSClient.<init>(DFSClient.java:289) > at > org.apache.hadoop.hdfs.DistributedFileSystem.initialize(DistributedFileSystem.java:176) > at > org.apache.hadoop.fs.FileSystem.createFileSystem(FileSystem.java:3303) > at org.apache.hadoop.fs.FileSystem.get(FileSystem.java:476) > at > org.apache.solr.core.backup.repository.HdfsBackupRepository.init(HdfsBackupRepository.java:89) > ... 21 more > Caused by: javax.security.auth.login.LoginException: Security Exception > at javax.security.auth.login.LoginContext.invoke(LoginContext.java:840) > at > javax.security.auth.login.LoginContext.access$000(LoginContext.java:195) > at javax.security.auth.login.LoginContext$4.run(LoginContext.java:682) > at javax.security.auth.login.LoginContext$4.run(LoginContext.java:680) > at java.security.AccessController.doPrivileged(Native Method) > at > javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680) > at javax.security.auth.login.LoginContext.login(LoginContext.java:587) > at > org.apache.hadoop.security.UserGroupInformation$HadoopLoginContext.login(UserGroupInformation.java:1926) > at > org.apache.hadoop.security.UserGroupInformation.doSubjectLogin(UserGroupInformation.java:1837) > ... 30 more > Caused by: java.lang.SecurityException > at javax.security.auth.login.LoginContext.invoke(LoginContext.java:841) > ... 38 more > {noformat} -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@lucene.apache.org For additional commands, e-mail: issues-h...@lucene.apache.org