[
https://issues.apache.org/jira/browse/HDFS-5612?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13865931#comment-13865931
]
Haohui Mai commented on HDFS-5612:
----------------------------------
Can you specify the invariants (i.e., the correctness conditions) of a valid
list of AclEntry? I think it is important to document them as {{checkAcl}}
depend on these invariants.
It seems that the following invariants hold for a valid list of AclEntry:
# The list has to be sorted.
# Each entry in the list is unique.
# Default entries do not have names.
# There is at least one user / group / other entry does not have a name. (Why?)
I guess it is not immediately clear to me what is the semantic of the name of
an entry. Can you please explain?
> NameNode: change all permission checks to enforce ACLs in addition to
> permissions.
> ----------------------------------------------------------------------------------
>
> Key: HDFS-5612
> URL: https://issues.apache.org/jira/browse/HDFS-5612
> Project: Hadoop HDFS
> Issue Type: Sub-task
> Components: namenode
> Affects Versions: HDFS ACLs (HDFS-4685)
> Reporter: Chris Nauroth
> Assignee: Chris Nauroth
> Attachments: HDFS-5612.1.patch, HDFS-5612.2.patch
>
>
> All {{NameNode}} code paths that enforce permissions must be updated so that
> they also enforce ACLs.
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
