You are viewing a plain text version of this content. The canonical link for it is here.

Posted to yarn-issues@hadoop.apache.org by "Hadoop QA (JIRA)" <ji...@apache.org> on 2014/04/10 21:24:15 UTC

[jira] [Commented] (YARN-1853) Allow containers to be ran under real user even in insecure mode

    [ https://issues.apache.org/jira/browse/YARN-1853?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13965739#comment-13965739 ] 

Hadoop QA commented on YARN-1853:
---------------------------------

{color:red}-1 overall{color}.  Here are the results of testing the latest attachment 
  http://issues.apache.org/jira/secure/attachment/12637429/YARN-1853.patch
  against trunk revision .

    {color:red}-1 patch{color}.  The patch command could not apply the patch.

Console output: https://builds.apache.org/job/PreCommit-YARN-Build/3545//console

This message is automatically generated.

> Allow containers to be ran under real user even in insecure mode
> ----------------------------------------------------------------
>
>                 Key: YARN-1853
>                 URL: https://issues.apache.org/jira/browse/YARN-1853
>             Project: Hadoop YARN
>          Issue Type: Improvement
>          Components: nodemanager, resourcemanager
>    Affects Versions: 2.2.0
>            Reporter: Andrey Stepachev
>         Attachments: YARN-1853.patch, YARN-1853.patch
>
>
> Currently unsecure cluster runs all containers under one user (typically nobody). That is not appropriate, because yarn applications doesn't play well with hdfs having enabled permissions. Yarn applications try to write data (as expected) into /user/nobody regardless of user, who launched application.
> Another sideeffect is that it is not possible to configure cgroups for particular users.



--
This message was sent by Atlassian JIRA
(v6.2#6252)