hadoop-hdfs-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Arpit Agarwal (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HDFS-11403) Zookeper ACLs on NN HA enabled clusters to be handled consistently
Date Sat, 11 Feb 2017 00:37:42 GMT

    [ https://issues.apache.org/jira/browse/HDFS-11403?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15862080#comment-15862080

Arpit Agarwal commented on HDFS-11403:

+1 pending Jenkins.

The following check is unnecessary since prefix will never be "/". It's harmless and in pre-existing
tests. We can do a separate patch to remove it everywhere.

      if (!"/".equals(prefix.toString())) {

> Zookeper ACLs on NN HA enabled clusters to be handled consistently
> ------------------------------------------------------------------
>                 Key: HDFS-11403
>                 URL: https://issues.apache.org/jira/browse/HDFS-11403
>             Project: Hadoop HDFS
>          Issue Type: Bug
>          Components: hdfs
>            Reporter: Laszlo Puskas
>            Assignee: Hanisha Koneru
>         Attachments: HDFS-11403.000.patch, HDFS-11403.001.patch
> On clusters where NN HA is enabled zookeper ACLs need to be handled consistently when
enabling security.
> The current behavior is as follows:
> * if HA is enabled before the cluster is made secure, proper ACLs are only set on the
leaf znodes, while there's no ACLs set on the path (eg.:/hadoop-ha/mycluster/ActiveStandbyElectorLock)
> * if HA is enabled after the cluster is made secure ACLs are set on the root znode as

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: hdfs-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: hdfs-issues-help@hadoop.apache.org

View raw message