HBase
  1. HBase
  2. HBASE-10860

Insufficient AccessController covering permission check

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 0.98.0
    • Fix Version/s: 0.99.0, 0.98.2
    • Component/s: security
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

        List<Cell> list = (List<Cell>)entry.getValue();
        if (list == null || list.isEmpty()) {
      	get.addFamily(col);
        } else {
      	for (Cell cell : list) {
      	  get.addColumn(col, CellUtil.cloneQualifier(cell));
      	}
        }
      

      When a delete family Mutation comes, a Cell will be added into the list with Qualifier as null. (See Delete#deleteFamily(byte[])). So it will miss getting added against the check list == null || list.isEmpty(). We will fail getting the cells under this cf for covering permission check.

      1. HBASE-10860.patch
        2 kB
        Anoop Sam John

        Activity

        Enis Soztutar made changes -
        Status Resolved [ 5 ] Closed [ 6 ]
        Anoop Sam John made changes -
        Fix Version/s 0.98.2 [ 12326505 ]
        Fix Version/s 0.98.1 [ 12325664 ]
        Andrew Purtell made changes -
        Fix Version/s 0.98.1 [ 12325664 ]
        Fix Version/s 0.98.2 [ 12326505 ]
        Anoop Sam John made changes -
        Status Patch Available [ 10002 ] Resolved [ 5 ]
        Hadoop Flags Reviewed [ 10343 ]
        Resolution Fixed [ 1 ]
        Andrew Purtell made changes -
        Priority Critical [ 2 ] Major [ 3 ]
        Anoop Sam John made changes -
        Status Open [ 1 ] Patch Available [ 10002 ]
        Anoop Sam John made changes -
        Field Original Value New Value
        Attachment HBASE-10860.patch [ 12637373 ]
        Anoop Sam John created issue -

          People

          • Assignee:
            Anoop Sam John
            Reporter:
            Anoop Sam John
          • Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development