incubator-oozie-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dan Feldman <hriunde...@gmail.com>
Subject Authentication problems
Date Sun, 29 Apr 2012 01:41:40 GMT
Hi,

I'm trying to run a job (as a root), but I'm getting the following:
JA009: Unauthorized connection for super-user: root from IP 127.0.0.1

I'm using BigTop's installation of hadoop and oozie, and everything was
installed as root. There are no "hadoop" or "oozie" users/groups as far as
I know. I changed oozie's proxy properties in hadoop's core-site.xml:

 <property>
    <name>hadoop.proxyuser.root.hosts</name>
    <value>*</value>
  </property>
  <property>
    <name>hadoop.proxyuser.root.groups</name>
    <value>root</value>
  </property>


(because before I was getting JA009: User: root is not allowed to
impersonate root), but now I've got this new JA009 error code and I can't
seem to figure out why it's happening.

Thanks for any input!
Dan

P.S. In case it's useful, here is my error message log output:

2012-04-28 18:23:12,353  WARN ActionStartXCommand:542 - USER[root]
GROUP[root] TOKEN[] APP[pig-wf] JOB[0000001-120428180243287-oozie-root-W]
ACTION[0000001-120428180243287-oozie-root-W@pig-node] Error starting action
[pig-node]. ErrorType [TRANSIENT], ErrorCode [JA009], Message [JA009:
Unauthorized connection for super-user: root from IP 127.0.0.1]
org.apache.oozie.action.ActionExecutorException: JA009: Unauthorized
connection for super-user: root from IP 127.0.0.1
    at
org.apache.oozie.action.ActionExecutor.convertException(ActionExecutor.java:364)
    at
org.apache.oozie.action.hadoop.JavaActionExecutor.addToCache(JavaActionExecutor.java:303)
    at
org.apache.oozie.action.hadoop.JavaActionExecutor.setLibFilesArchives(JavaActionExecutor.java:356)
    at
org.apache.oozie.action.hadoop.JavaActionExecutor.submitLauncher(JavaActionExecutor.java:508)
    at
org.apache.oozie.action.hadoop.JavaActionExecutor.start(JavaActionExecutor.java:749)
    at
org.apache.oozie.command.wf.ActionStartXCommand.execute(ActionStartXCommand.java:193)
    at
org.apache.oozie.command.wf.ActionStartXCommand.execute(ActionStartXCommand.java:55)
    at org.apache.oozie.command.XCommand.call(XCommand.java:260)
    at
org.apache.oozie.service.CallableQueueService$CompositeCallable.call(CallableQueueService.java:300)
    at
org.apache.oozie.service.CallableQueueService$CompositeCallable.call(CallableQueueService.java:247)
    at
org.apache.oozie.service.CallableQueueService$CallableWrapper.run(CallableQueueService.java:166)
    at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1110)
    at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:603)
    at java.lang.Thread.run(Thread.java:636)
Caused by: org.apache.hadoop.ipc.RemoteException: Unauthorized connection
for super-user: root from IP 127.0.0.1
    at org.apache.hadoop.ipc.Client.call(Client.java:1066)
    at org.apache.hadoop.ipc.RPC$Invoker.invoke(RPC.java:225)
    at $Proxy23.getProtocolVersion(Unknown Source)
    at org.apache.hadoop.ipc.RPC.getProxy(RPC.java:396)
    at org.apache.hadoop.ipc.RPC.getProxy(RPC.java:379)
    at
org.apache.hadoop.hdfs.DFSClient.createRPCNamenode(DFSClient.java:119)
    at org.apache.hadoop.hdfs.DFSClient.<init>(DFSClient.java:238)
    at org.apache.hadoop.hdfs.DFSClient.<init>(DFSClient.java:203)
    at
org.apache.hadoop.hdfs.DistributedFileSystem.initialize(DistributedFileSystem.java:89)
    at
org.apache.hadoop.fs.FileSystem.createFileSystem(FileSystem.java:1386)
    at org.apache.hadoop.fs.FileSystem.access$200(FileSystem.java:66)
    at org.apache.hadoop.fs.FileSystem$Cache.get(FileSystem.java:1404)
    at org.apache.hadoop.fs.FileSystem.get(FileSystem.java:254)
    at org.apache.hadoop.fs.FileSystem.get(FileSystem.java:123)
    at org.apache.hadoop.fs.FileSystem.get(FileSystem.java:238)
    at org.apache.hadoop.fs.Path.getFileSystem(Path.java:187)
    at
org.apache.hadoop.filecache.DistributedCache.addFileToClassPath(DistributedCache.java:438)
    at
org.apache.oozie.service.KerberosHadoopAccessorService$4.run(KerberosHadoopAccessorService.java:227)
    at
org.apache.oozie.service.KerberosHadoopAccessorService$4.run(KerberosHadoopAccessorService.java:222)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAs(Subject.java:416)
    at
org.apache.hadoop.security.UserGroupInformation.doAs(UserGroupInformation.java:1093)
    at
org.apache.oozie.service.KerberosHadoopAccessorService.addFileToClassPath(KerberosHadoopAccessorService.java:222)
    at
org.apache.oozie.action.hadoop.JavaActionExecutor.addToCache(JavaActionExecutor.java:282)
    ... 12 more

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message