[
https://issues.apache.org/jira/browse/HADOOP-9511?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Vinod Kumar Vavilapalli updated HADOOP-9511:
--------------------------------------------
Status: Open (was: Patch Available)
Looking through the patch:
- forceSecureOpenForRead is public after the patch. Why? Only for testing? If
so, add @VisibleForTesting otherwise the java comment needs to be fixed.
- Similarly for forceSecureOpenForRandomRead
- For openFSDataInputStream and forceSecureOpenFSDataInputStream, comment that
it can only be a local FS path and the the FS also need to be local? May be
even explicitly add checks? Best yet, we can just remove it from the API, use
the static variable rawFilesystem, but add checks to the passed-in path to make
sure it is a local FS path.
- testReadUnrestricted: For the newly added code, user/group should be null?
> Adding support for additional input streams (FSDataInputStream and
> RandomAccessFile) in SecureIOUtils.
> ------------------------------------------------------------------------------------------------------
>
> Key: HADOOP-9511
> URL: https://issues.apache.org/jira/browse/HADOOP-9511
> Project: Hadoop Common
> Issue Type: Improvement
> Reporter: Omkar Vinit Joshi
> Assignee: Omkar Vinit Joshi
> Attachments: HADOOP-9511.20130426.patch, HADOOP-9511.20130429.patch
>
>
> At present we can only get secured InputStream. However we want other types
> of input streams to avoid possible security attacks.
> YARN-578 needs this fix.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
