Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-13381

KMS clients should use KMS Delegation Tokens from current UGI.

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 2.6.0
    • Fix Version/s: 2.8.0, 3.0.0-alpha1
    • Component/s: kms
    • Labels:
      None
    • Target Version/s:
    • Hadoop Flags:
      Reviewed

      Description

      When /tmp is setup as an EZ, one may experience YARN log aggregation failure after the very first KMS token is expired. The MR job itself runs fine though.

      When this happens, YARN NodeManager's log will show AuthenticationException with token is expired / token can't be found in cache, depending on whether the expired token is removed by the background or not.

        Attachments

        1. HADOOP-13381.01.patch
          8 kB
          Xiao Chen
        2. HADOOP-13381.02.patch
          10 kB
          Xiao Chen
        3. HADOOP-13381.03.patch
          10 kB
          Xiao Chen
        4. HADOOP-13381.04.patch
          9 kB
          Xiao Chen

          Issue Links

            Activity

              People

              • Assignee:
                xiaochen Xiao Chen
                Reporter:
                xiaochen Xiao Chen
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: