Return-Path: Delivered-To: apmail-hadoop-mapreduce-issues-archive@minotaur.apache.org Received: (qmail 44742 invoked from network); 4 Dec 2009 06:53:44 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 4 Dec 2009 06:53:44 -0000 Received: (qmail 42051 invoked by uid 500); 4 Dec 2009 06:53:44 -0000 Delivered-To: apmail-hadoop-mapreduce-issues-archive@hadoop.apache.org Received: (qmail 41978 invoked by uid 500); 4 Dec 2009 06:53:44 -0000 Mailing-List: contact mapreduce-issues-help@hadoop.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: mapreduce-issues@hadoop.apache.org Delivered-To: mailing list mapreduce-issues@hadoop.apache.org Received: (qmail 41968 invoked by uid 99); 4 Dec 2009 06:53:44 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 04 Dec 2009 06:53:44 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 04 Dec 2009 06:53:41 +0000 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id CCFB4234C498 for ; Thu, 3 Dec 2009 22:53:20 -0800 (PST) Message-ID: <528226476.1259909600838.JavaMail.jira@brutus> Date: Fri, 4 Dec 2009 06:53:20 +0000 (UTC) From: "Hemanth Yamijala (JIRA)" To: mapreduce-issues@hadoop.apache.org Subject: [jira] Commented: (MAPREDUCE-896) Users can set non-writable permissions on temporary files for TT and can abuse disk usage. In-Reply-To: <795470237.1250829494816.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/MAPREDUCE-896?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12785787#action_12785787 ] Hemanth Yamijala commented on MAPREDUCE-896: -------------------------------------------- Some comments on the C code and testcases: - I feel secure_path is a better API name than change_permissions - any specific reason for the change ? - The parameter 'secure' can be renamed 'check_ownership' to better reflect its intent. - Why do we need check_group ? - Please document the permissions being set in the comments describing enable_path_for_deletion, like is done for other methods like initialize_user. - Typo in test case createFileAndSetPermissions ? a=rw should be a-rw - The error in TestLocalizationWithLinuxTaskController.testUserLocalization could be better fixed by refactoring the test cases in TestLocalizationWithLinuxTaskController and TestTaskTrackerLocalization as follows: Define a method canRun() in TestTaskTrackerLocalization and call it as the first statement in every test in TestTaskTrackerLocalization. Override this method in TestLocalizationWithLinuxTaskController to return ClusterWithLinuxTaskController.shouldRun(). Then we can stop overriding every test case in TestTaskTrackerLocalization - It seems like we can write a test case for TaskRunner.setupWorkDir, if we ignore distributed cache files for now. > Users can set non-writable permissions on temporary files for TT and can abuse disk usage. > ------------------------------------------------------------------------------------------ > > Key: MAPREDUCE-896 > URL: https://issues.apache.org/jira/browse/MAPREDUCE-896 > Project: Hadoop Map/Reduce > Issue Type: Bug > Components: tasktracker > Affects Versions: 0.21.0 > Reporter: Vinod K V > Assignee: Ravi Gummadi > Fix For: 0.21.0 > > Attachments: MR-896.patch, MR-896.v1.patch > > > As of now, irrespective of the TaskController in use, TT itself does a full delete on local files created by itself or job tasks. This step, depending upon TT's umask and the permissions set by files by the user, for e.g in job-work/task-work or child.tmp directories, may or may not go through successful completion fully. Thus is left an opportunity for abusing disk space usage either accidentally or intentionally by TT/users. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.