[HDFS-13112] Token expiration edits may cause log corruption or deadlock - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Critical
Resolution: Fixed
Affects Version/s: 2.1.0-beta, 0.23.8
Fix Version/s: 3.1.0, 2.10.0, 2.9.1, 3.0.1, 2.8.4, 2.7.6
Component/s: namenode
Labels:
None

Target Version/s:

3.0.1, 2.7.6
Hadoop Flags:

Reviewed

Description

~~HDFS-4477~~ specifically did not acquire the fsn lock during token cancellation based on the belief that edit logs are thread-safe. However, log rolling is not thread-safe. Failure to externally synchronize on the fsn lock during a roll will cause problems.

For sync edit logging, it may cause corruption by interspersing edits with the end/start segment edits. Async edit logging may encounter a deadlock if the log queue overflows. Luckily, losing the race is extremely rare. In ~5 years, we've never encountered it. However, ~~HDFS-13051~~ lost the race with async edits.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HDFS-13112.patch
06/Feb/18 17:57
7 kB
Daryn Sharp
HDFS-13112.1.patch
09/Feb/18 18:46
10 kB
Daryn Sharp

Issue Links

is caused by

HDFS-4477 Secondary namenode may retain old tokens

Closed

is related to

HDFS-13051 Fix dead lock during async editlog rolling if edit queue is full

Resolved

HDFS-16558 Consider changing the lock of delegation token from write lock to read lock

Open

requires

HADOOP-15212 Add independent secret manager method for logging expired tokens

Resolved

Activity

People

Assignee:: Daryn Sharp

Reporter:: Daryn Sharp

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: 06/Feb/18 17:32

Updated:: 24/Apr/22 06:29

Resolved:: 15/Feb/18 21:51