Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.5.0
    • Fix Version/s: 2.5.0
    • Component/s: namenode
    • Labels:
      None
    • Target Version/s:
    • Hadoop Flags:
      Reviewed

      Description

      After discuss with Uma, we should refine setting permissions of user and trusted namespace xattrs.
      1. For user namespace xattrs, In HDFS-6374, says "setXAttr should require the user to be the owner of the file or directory", we have a bit misunderstanding. It actually is:

      The access permissions for user attributes are defined by the file permission bits. only regular files and directories can have extended attributes. For sticky directories, only the owner and privileged user can write attributes.

      We can refer to linux source code in http://lxr.free-electrons.com/source/fs/xattr.c?v=2.6.35
      I also check in linux, it's controlled by the file permission bits for regular files and directories (not sticky).

      2. For trusted namespace, currently we require the user should be owner and superuser. Actually superuser is enough.

        Attachments

        1. RefinedPermissions-HDFS-6556.patch
          15 kB
          Uma Maheswara Rao G
        2. RefinedPermissions-HDFS-6556-1.patch
          15 kB
          Uma Maheswara Rao G
        3. refinedPermissions-HDFS-6556-2.patch
          13 kB
          Uma Maheswara Rao G
        4. refinedPermissions-HDFS-6556-3.patch
          12 kB
          Uma Maheswara Rao G

          Issue Links

            Activity

              People

              • Assignee:
                umamaheswararao Uma Maheswara Rao G
                Reporter:
                hitliuyi Yi Liu
              • Votes:
                0 Vote for this issue
                Watchers:
                7 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: