[jira] [Commented] (HDFS-13292) Crypto command should give proper exception when key is already exist for zone directory

Thu, 15 Mar 2018 07:18:12 -0700 

    [ 
https://issues.apache.org/jira/browse/HDFS-13292?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16400453#comment-16400453
 ] 

Rushabh S Shah commented on HDFS-13292:
---------------------------------------

[~Harsha1206],
Are you sure you didn't write anything into {{/kms}} directory between steps 1 
and 2.
If you look at [this code | 
https://github.com/apache/hadoop/blob/branch-2.8/hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/namenode/EncryptionZoneManager.java#L314],
 first it checks whether the directory is empty or not and then it checks 
whether any zone is already created for that directory.
You might want to check again.

> Crypto command should give proper exception when key is already exist for 
> zone directory
> ----------------------------------------------------------------------------------------
>
>                 Key: HDFS-13292
>                 URL: https://issues.apache.org/jira/browse/HDFS-13292
>             Project: Hadoop HDFS
>          Issue Type: Bug
>          Components: hdfs, kms
>    Affects Versions: 2.8.3
>            Reporter: Harshakiran Reddy
>            Priority: Major
>
> {{Scenario:}}
>  # Create a Dir
>  # Create EZ for the above dir with Key1
>  # Again you can try to create ZONE for same directory with Diff Key i.e Key2
> {noformat}
> hadoopclient> hadoop key list
> Listing keys for KeyProvider: 
> org.apache.hadoop.crypto.key.kms.LoadBalancingKMSClientProvider@152aa092
> key2
> key1
> hadoopclient> hdfs dfs -mkdir /kms
> hadoopclient> hdfs dfs -put bigdata_env /kms/file1
> hadoopclient> hdfs crypto -createZone -keyName key1 -path /kms
> RemoteException: Attempt to create an encryption zone for a non-empty 
> directory.
> hadoopclient> hdfs dfs -rmr /kms/file1
> rmr: DEPRECATED: Please use '-rm -r' instead.
> Deleted /kms/file1
> hadoopclient> hdfs crypto -createZone -keyName key1 -path /kms
> Added encryption zone /kms
> hadoopclient> hdfs crypto -createZone -keyName key2 -path /kms
> RemoteException: Attempt to create an encryption zone for a non-empty 
> directory.
> hadoopclient>
>  {noformat}
> Actual Output:
> ===========
> {{Exception should be Like Dir already having the ZONE will not allow to 
> create new ZONE on this Dir}}
> Expected Output:
> =============
> {{RemoteException:Attempt to create an encryption zone for non-empty 
> directory}}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to