[YARN-5280] Allow YARN containers to run with Java Security Manager - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.6.4
Fix Version/s: 3.0.0-alpha4
Component/s: nodemanager, yarn
Labels:
- oct16-medium

Target Version/s:

3.0.0-alpha4
Hadoop Flags:

Reviewed
Flags:

Patch

Description

YARN applications have the ability to perform privileged actions which have the potential to add instability into the cluster. The Java Security Manager can be used to prevent users from running privileged actions while still allowing their core data processing use cases.
Introduce a YARN flag which will allow a Hadoop administrator to enable the Java Security Manager for user code, while still providing complete permissions to core Hadoop libraries.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

YARN-5280.001.patch
23/Sep/16 12:44
39 kB
Greg Phillips
YARN-5280.002.patch
26/Sep/16 12:19
39 kB
Greg Phillips
YARN-5280.003.patch
28/Oct/16 17:54
40 kB
Greg Phillips
YARN-5280.004.patch
07/Nov/16 19:00
43 kB
Greg Phillips
YARN-5280.005.patch
21/Nov/16 20:52
57 kB
Greg Phillips
YARN-5280.006.patch
05/Jan/17 19:30
60 kB
Greg Phillips
YARN-5280.007.patch
14/Feb/17 14:55
62 kB
Greg Phillips
YARN-5280.008.patch
14/Feb/17 21:19
63 kB
Greg Phillips
YARN-5280.patch
21/Jun/16 11:50
17 kB
Greg Phillips
YARNContainerSandbox.pdf
21/Jun/16 11:50
188 kB
Greg Phillips

Activity

People

Assignee:: Greg Phillips

Reporter:: Greg Phillips

Votes:: 3 Vote for this issue

Watchers:: 16 Start watching this issue

Dates

Created:: 21/Jun/16 11:47

Updated:: 02/Mar/17 02:12

Resolved:: 02/Mar/17 01:32