[HDFS-11403] Zookeper ACLs on NN HA enabled clusters to be handled consistently - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.9.0, 3.0.0-alpha4
Component/s: hdfs
Labels:
None

Hadoop Flags:

Reviewed

Description

On clusters where NN HA is enabled zookeper ACLs need to be handled consistently when enabling security.

The current behavior is as follows:

if HA is enabled before the cluster is made secure, proper ACLs are only set on the leaf znodes, while there's no ACLs set on the path (eg.:/hadoop-ha/mycluster/ActiveStandbyElectorLock)
if HA is enabled after the cluster is made secure ACLs are set on the root znode as well

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HDFS-11403.000.patch
10/Feb/17 09:55
8 kB
Hanisha Koneru
HDFS-11403.001.patch
11/Feb/17 00:02
4 kB
Hanisha Koneru

Issue Links

breaks

HADOOP-14543 ZKFC should use getAversion() while setting the zkacl

Resolved

Activity

People

Assignee:: Hanisha Koneru

Reporter:: Laszlo Puskas

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 10/Feb/17 01:25

Updated:: 23/Jun/17 23:53

Resolved:: 11/Feb/17 09:26