hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jitendra Nath Pandey (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-7510) Tokens should use original hostname provided instead of ip
Date Fri, 16 Sep 2011 18:54:13 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-7510?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13106696#comment-13106696

Jitendra Nath Pandey commented on HADOOP-7510:

  getCanonicalServiceName in this case uses hftpUri, instead of getUri. I think the difference
is that hftpUri uses https port, while getUri uses nnAddr.getPort(). It doesn't seem to be
identical to the default implementation in FileSystem. 

>  We need to renew/cancel tokens with the same configuration used to get the token.
  This is not a requirement, particularly because delegation tokens are usually obtained at
the client, while they are renewed at JT. We can't expect same configurations.
# Current implementation calls createRPCNamenode which unnecessarily forces RPC and eschews
the RetryProxy. createNamenode abstracts both of these details.
# Exception/retry policies appear to be changed only for file creation, thus not an issue.
# Looking deeper, actually need to instantiate DFSClient to get the configuration timeout/retry
for socket connects. Also tags the client with the job id for easier debugging.

This is not relevant to this jira. We should discuss about it in a different jira, if something
needs to be fixed here.

 Lets just focus on what needs to be fixed for this jira.

> Tokens should use original hostname provided instead of ip
> ----------------------------------------------------------
>                 Key: HADOOP-7510
>                 URL: https://issues.apache.org/jira/browse/HADOOP-7510
>             Project: Hadoop Common
>          Issue Type: Improvement
>          Components: security
>            Reporter: Daryn Sharp
>            Assignee: Daryn Sharp
>             Fix For:
>         Attachments: HADOOP-7510-2.patch, HADOOP-7510-3.patch, HADOOP-7510-4.patch, HADOOP-7510-5.patch,
HADOOP-7510-6.patch, HADOOP-7510.patch
> Tokens currently store the ip:port of the remote server.  This precludes tokens from
being used after a host's ip is changed.  Tokens should store the hostname used to make the
RPC connection.  This will enable new processes to use their existing tokens.

This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira


View raw message