Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-7172

SecureIO should not check owner on non-secure clusters that have no native support

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Critical
    • Resolution: Fixed
    • 0.22.0
    • 0.22.0, 0.23.0
    • io, security
    • None
    • Reviewed

    Description

      The SecureIOUtils.openForRead function currently uses a racy stat/open combo if security is disabled and the native libraries are not available. This ends up shelling out to "ls -ld" which is very very slow. We've seen this cause significant performance regressions on clusters that match this profile.

      Since the racy permissions check doesn't buy us any security anyway, we should just fall back to a normal "open" without any stat() at all, if we can't use the native support to do it efficiently.

      Attachments

        1. hadoop-7172.txt
          3 kB
          Todd Lipcon
        2. hadoop-7172.txt
          3 kB
          Todd Lipcon
        3. hadoop-7172.txt
          2 kB
          Todd Lipcon

        Issue Links

          depends upon

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-7115 Add a cache for getpwuid_r and getpwgid_r calls

          • Major - Major loss of function.
          • Closed

          Activity

            People

              tlipcon Todd Lipcon
              tlipcon Todd Lipcon
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: