[
https://issues.apache.org/jira/browse/HADOOP-6951?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12913318#action_12913318
]
Aaron T. Myers commented on HADOOP-6951:
----------------------------------------
I just ran the tests, with the following results. The javadoc warning was
present before my patch.
-1 overall.
+1 @author. The patch does not contain any @author tags.
+1 tests included. The patch appears to include 3 new or modified tests.
-1 javadoc. The javadoc tool appears to have generated 1 warning messages.
+1 javac. The applied patch does not increase the total number of javac
compiler warnings.
+1 findbugs. The patch does not introduce any new Findbugs warnings.
+1 release audit. The applied patch does not increase the total number of
release audit warnings.
+1 system tests framework. The patch passed system tests framework compile.
> Distinct minicluster services (e.g. NN and JT) overwrite each other's service
> policies
> --------------------------------------------------------------------------------------
>
> Key: HADOOP-6951
> URL: https://issues.apache.org/jira/browse/HADOOP-6951
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Reporter: Aaron T. Myers
> Assignee: Aaron T. Myers
> Fix For: 0.22.0
>
> Attachments: hadoop-6951.1.txt, hadoop-6951.2.txt, hadoop-6951.txt.0
>
>
> Because the protocol -> ACL mapping in ServiceAuthorizationManager is static,
> services which are run in the same JVM have the potential to clobber the
> other's service authorization ACLs whenever
> ServiceAuthorizationManager.refresh() is called. This causes authorization
> failures if one tries to launch a 2NN connected to a minicluster with
> hadoop.security.authorization enabled. Seems like each service should have
> its own instance of a ServiceAuthorizationManager, instead of using static
> methods.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
