Details
-
Bug
-
Status: Closed
-
Critical
-
Resolution: Fixed
-
0.23.1, 0.24.0
-
None
Description
Multi-token filesystem support and its interactions with the MR TokenCache is problematic. The TokenCache tries to assume it has the knowledge to know if the tokens for a filesystem are available, which it can't possibly know for multi-token filesystems. Filtered filesystems are also problematic, such as har on viewfs. When mergeFs is implemented, it too will become a problem with the current implementation. Currently FileSystem will leak tokens even when some tokens are already present.
The decision for token acquisition, and which tokens, should be pushed all the way down into the FileSystem level. The TokenCache should be ignorant and simply request tokens from each FileSystem.
Attachments
Attachments
Issue Links
- blocks
-
MAPREDUCE-3825 MR should not be getting duplicate tokens for a MR Job.
- Resolved
- is duplicated by
-
HDFS-2854 SecurityUtil.buildTokenService returns java.net.UnknownHostException when using paths like viewfs://default/some/path
- Resolved
- is related to
-
MAPREDUCE-3639 TokenCache likely broken for FileSystems which don't issue delegation tokens
- Closed
-
HADOOP-7933 Viewfs changes for MAPREDUCE-3529
- Closed
-
HDFS-2710 HDFS part of MAPREDUCE-3529, HADOOP-7933
- Closed
- relates to
-
HDFS-2854 SecurityUtil.buildTokenService returns java.net.UnknownHostException when using paths like viewfs://default/some/path
- Resolved
-
HADOOP-8701 Reduce visibility of getDelegationToken
- Open
-
HADOOP-8048 Allow merging of Credentials
- Resolved