You are viewing a plain text version of this content. The canonical link for it is here.
Posted to yarn-issues@hadoop.apache.org by "Vinod Kumar Vavilapalli (JIRA)" <ji...@apache.org> on 2012/08/27 23:01:08 UTC
[jira] [Moved] (YARN-51) [MR-279] [Security] AM should not be able
to abuse container tokens for repetitive container launches
[ https://issues.apache.org/jira/browse/YARN-51?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Vinod Kumar Vavilapalli moved MAPREDUCE-2743 to YARN-51:
--------------------------------------------------------
Component/s: (was: nodemanager)
(was: mrv2)
(was: security)
nodemanager
Fix Version/s: (was: 0.23.0)
Affects Version/s: (was: 0.23.0)
Key: YARN-51 (was: MAPREDUCE-2743)
Project: Hadoop YARN (was: Hadoop Map/Reduce)
> [MR-279] [Security] AM should not be able to abuse container tokens for repetitive container launches
> -----------------------------------------------------------------------------------------------------
>
> Key: YARN-51
> URL: https://issues.apache.org/jira/browse/YARN-51
> Project: Hadoop YARN
> Issue Type: Bug
> Components: nodemanager
> Reporter: Vinod Kumar Vavilapalli
> Assignee: Vinod Kumar Vavilapalli
> Priority: Blocker
>
> ApplicationMaster should not be able to store container tokens and use the same set of tokens for repetitive container launches. The possibility of such abuse is there in the current code, we need to fix this.
> A cache of recent containers on the NM along with container token expiry time should solve this.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira