You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@tez.apache.org by "Jonathan Eagles (JIRA)" <ji...@apache.org> on 2014/09/10 23:04:34 UTC
[jira] [Commented] (TEZ-1433) Invalid credentials can be used when
a DAG is submitted to a session which has timed out
[ https://issues.apache.org/jira/browse/TEZ-1433?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14129104#comment-14129104 ]
Jonathan Eagles commented on TEZ-1433:
--------------------------------------
I'm not going to be able to get to this soon. Can someone take over for me on this ticket? [~sseth]?
> Invalid credentials can be used when a DAG is submitted to a session which has timed out
> ----------------------------------------------------------------------------------------
>
> Key: TEZ-1433
> URL: https://issues.apache.org/jira/browse/TEZ-1433
> Project: Apache Tez
> Issue Type: Bug
> Affects Versions: 0.4.0
> Reporter: Siddharth Seth
> Assignee: Jonathan Eagles
> Attachments: TEZ-1433-v1.patch
>
>
> When a DAG is submitted to a session which has timed out, and the same DAG is then submitted to a new session - credentials associated with the old session can end up getting used.
> Before we know that the session is no longer valid, the DAG is modified to add local resources and credentials.
> On the next submission, since the DAG already has tokens (for HDFS for example) from the old session, the tokens are not updated.
> Meanwhile, the old token would end up being cancelled by the RM - since the applicaiton associated with the previous session has finished.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)