hadoop-yarn-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Karthik Kambatla (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (YARN-1026) Test and verify ACL based ZKRMStateStore fencing for RM State Store
Date Mon, 23 Sep 2013 03:47:04 GMT

    [ https://issues.apache.org/jira/browse/YARN-1026?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13774274#comment-13774274
] 

Karthik Kambatla commented on YARN-1026:
----------------------------------------

Yes. The root's ACLs (as in yarn-1222-1.patch) are (the ACLs passed through the conf minus
create-delete perms) + (RM ACL with exclusive create-delete perms).
                
> Test and verify ACL based ZKRMStateStore fencing for RM State Store
> -------------------------------------------------------------------
>
>                 Key: YARN-1026
>                 URL: https://issues.apache.org/jira/browse/YARN-1026
>             Project: Hadoop YARN
>          Issue Type: Sub-task
>            Reporter: Bikas Saha
>            Assignee: Karthik Kambatla
>
> ZooKeeper allows create/delete ACL's for immediate children of a znode. It also has admin
ACL's on a znode that allow changing the create/delete ACL's on that znode. RM instances could
share the admin ACL's on the state store root znode. When an RM transitions to active, it
can use the shared admin ACL's to give itself exclusive create/delete permissions on the children
of the root znode. If all ZK state store operations are atomic and involve a create/delete
znode then the above effectively fences other RM instances from modifying the store. This
ACL change is only allowed when transitioning to active.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message