Uploaded image for project: 'Hadoop HDFS'
  1. Hadoop HDFS
  2. HDFS-903

NN should verify images and edit logs on startup

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Critical
    • Resolution: Fixed
    • None
    • 0.22.0
    • namenode
    • None
    • Incompatible change, Reviewed
    • Store fsimage MD5 checksum in VERSION file. Validate checksum when loading a fsimage. Layout version bumped.

    Description

      I was playing around with corrupting fsimage and edits logs when there are multiple dfs.name.dirs specified. I noticed that:

      • As long as your corruption does not make the image invalid, eg changes an opcode so it's an invalid opcode HDFS doesn't notice and happily uses a corrupt image or applies the corrupt edit.
      • If the first image in dfs.name.dir is "valid" it replaces the other copies in the other name.dirs, even if they are different, with this first image, ie if the first image is actually invalid/old/corrupt metadata than you've lost your valid metadata, which can result in data loss if the namenode garbage collects blocks that it thinks are no longer used.

      How about we maintain a checksum as part of the image and edit log and check those on startup and refuse to startup if they are different. Or at least provide a configuration option to do so if people are worried about the overhead of maintaining checksums of these files. Even if we assume dfs.name.dir is reliable storage this guards against operator errors.

      Attachments

        1. trunkChecksumImage.patch
          19 kB
          Hairong Kuang
        2. trunkChecksumImage1.patch
          23 kB
          Hairong Kuang
        3. trunkChecksumImage2.patch
          22 kB
          Hairong Kuang
        4. trunkChecksumImage3.patch
          24 kB
          Hairong Kuang
        5. trunkChecksumImage4.patch
          24 kB
          Hairong Kuang

        Issue Links

          blocks

          Improvement - An improvement or enhancement to an existing feature or task. HDFS-1481 NameNode should validate fsimage before rolling

          • Major - Major loss of function.
          • Resolved
          breaks

          Bug - A problem which impairs or prevents the functions of the product. HDFS-1500 TestOfflineImageViewer failing on trunk

          • Major - Major loss of function.
          • Closed
          contains

          Bug - A problem which impairs or prevents the functions of the product. HDFS-52 SecondaryNameNode should validate the downloaded files.

          • Major - Major loss of function.
          • Resolved
          is blocked by

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-7009 MD5Hash provides a public factory method that creates an instance of MessageDigest

          • Major - Major loss of function.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. HDFS-1496 TestStorageRestore is failing after HDFS-903 fix

          • Blocker - Blocks development and/or testing work, production could not run
          • Resolved
          relates to

          Bug - A problem which impairs or prevents the functions of the product. HDFS-1382 A transient failure with edits log and a corrupted fstime together could lead to a data loss

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. HDFS-1602 NameNode storage failed replica restoration is broken

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. HDFS-1458 Improve checkpoint performance by avoiding unnecessary image downloads

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              hairong Hairong Kuang
              eli Eli Collins
              Votes:
              0 Vote for this issue
              Watchers:
              16 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: