[ https://issues.apache.org/jira/browse/HDFS-6570?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14071215#comment-14071215 ]
Hadoop QA commented on HDFS-6570: --------------------------------- {color:red}-1 overall{color}. Here are the results of testing the latest attachment http://issues.apache.org/jira/secure/attachment/12657190/HDFS-6570.3.patch against trunk revision . {color:green}+1 @author{color}. The patch does not contain any @author tags. {color:green}+1 tests included{color}. The patch appears to include 5 new or modified test files. {color:green}+1 javac{color}. The applied patch does not increase the total number of javac compiler warnings. {color:green}+1 javadoc{color}. There were no new javadoc warning messages. {color:green}+1 eclipse:eclipse{color}. The patch built with eclipse:eclipse. {color:green}+1 findbugs{color}. The patch does not introduce any new Findbugs (version 2.0.3) warnings. {color:green}+1 release audit{color}. The applied patch does not increase the total number of release audit warnings. {color:red}-1 core tests{color}. The patch failed these unit tests in hadoop-common-project/hadoop-common hadoop-hdfs-project/hadoop-hdfs: org.apache.hadoop.ha.TestZKFailoverControllerStress org.apache.hadoop.ipc.TestIPC org.apache.hadoop.hdfs.server.namenode.ha.TestPipelinesFailover {color:green}+1 contrib tests{color}. The patch passed contrib unit tests. Test results: https://builds.apache.org/job/PreCommit-HDFS-Build/7428//testReport/ Console output: https://builds.apache.org/job/PreCommit-HDFS-Build/7428//console This message is automatically generated. > add api that enables checking if a user has certain permissions on a file > ------------------------------------------------------------------------- > > Key: HDFS-6570 > URL: https://issues.apache.org/jira/browse/HDFS-6570 > Project: Hadoop HDFS > Issue Type: Bug > Reporter: Thejas M Nair > Assignee: Jitendra Nath Pandey > Attachments: HDFS-6570-prototype.1.patch, HDFS-6570.2.patch, > HDFS-6570.3.patch > > > For some of the authorization modes in Hive, the servers in Hive check if a > given user has permissions on a certain file or directory. For example, the > storage based authorization mode allows hive table metadata to be modified > only when the user has access to the corresponding table directory on hdfs. > There are likely to be such use cases outside of Hive as well. > HDFS does not provide an api for such checks. As a result, the logic to check > if a user has permissions on a directory gets replicated in Hive. This > results in duplicate logic and there introduces possibilities for > inconsistencies in the interpretation of the permission model. This becomes a > bigger problem with the complexity of ACL logic. > HDFS should provide an api that provides functionality that is similar to > access function in unistd.h - http://linux.die.net/man/2/access . -- This message was sent by Atlassian JIRA (v6.2#6252)