Details

      Description

      The current implementation persists and ACL bit in FSImage and editlogs. Moreover, the security decisions also depend on whether the bit is set.

      The problem here is that we have to maintain the implicit invariant, which is the ACL bit is set if and only if the the inode has AclFeature. The invariant has to be maintained everywhere otherwise it can lead to a security vulnerability. In the worst case, an attacker can toggle the bit and bypass the ACL checks.

      The jira proposes to treat the ACL bit as a transient bit. The bit should not be persisted onto the disk, neither it should affect any security decisions.

      1. HDFS-5923.004.patch
        61 kB
        Chris Nauroth
      2. HDFS-5923.003.patch
        33 kB
        Haohui Mai
      3. HDFS-5923.002.patch
        58 kB
        Chris Nauroth
      4. HDFS-5923.001.patch
        30 kB
        Haohui Mai
      5. HDFS-5923.000.patch
        29 kB
        Haohui Mai

        Issue Links

          Activity

          Chris Nauroth made changes -
          Link This issue is related to HDFS-7384 [ HDFS-7384 ]
          Chris Nauroth made changes -
          Link This issue is related to HADOOP-10361 [ HADOOP-10361 ]
          Chris Nauroth made changes -
          Link This issue is related to HADOOP-10354 [ HADOOP-10354 ]
          Chris Nauroth made changes -
          Status Open [ 1 ] Resolved [ 5 ]
          Hadoop Flags Reviewed [ 10343 ]
          Fix Version/s HDFS ACLs (HDFS-4685) [ 12325671 ]
          Resolution Fixed [ 1 ]
          Chris Nauroth made changes -
          Attachment HDFS-5923.004.patch [ 12628587 ]
          Haohui Mai made changes -
          Attachment HDFS-5923.002.patch [ 12628574 ]
          Haohui Mai made changes -
          Attachment HDFS-5923.003.patch [ 12628575 ]
          Haohui Mai made changes -
          Attachment HDFS-5923.002.patch [ 12628574 ]
          Chris Nauroth made changes -
          Link This issue is related to HDFS-5621 [ HDFS-5621 ]
          Chris Nauroth made changes -
          Link This issue relates to HDFS-4685 [ HDFS-4685 ]
          Chris Nauroth made changes -
          Link This issue is required by HDFS-5937 [ HDFS-5937 ]
          Chris Nauroth made changes -
          Link This issue is required by HDFS-5932 [ HDFS-5932 ]
          Chris Nauroth made changes -
          Attachment HDFS-5923.002.patch [ 12628385 ]
          Haohui Mai made changes -
          Link This issue is depended upon by HDFS-5933 [ HDFS-5933 ]
          Haohui Mai made changes -
          Attachment HDFS-5923.001.patch [ 12628346 ]
          Chris Nauroth made changes -
          Affects Version/s HDFS ACLs (HDFS-4685) [ 12325671 ]
          Target Version/s HDFS ACLs (HDFS-4685) [ 12325671 ]
          Haohui Mai made changes -
          Attachment HDFS-5923.000.patch [ 12628342 ]
          Haohui Mai made changes -
          Field Original Value New Value
          Component/s hdfs-client [ 12312928 ]
          Component/s namenode [ 12312926 ]
          Component/s security [ 12313400 ]
          Haohui Mai created issue -

            People

            • Assignee:
              Haohui Mai
              Reporter:
              Haohui Mai
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development