Fang-Yu Rao created IMPALA-9977:
-----------------------------------
Summary: Impala's COMPUTE STATS statement generates duplicate
Ranger audit log entries for the ALTER events
Key: IMPALA-9977
URL: https://issues.apache.org/jira/browse/IMPALA-9977
Project: IMPALA
Issue Type: Bug
Components: Frontend
Reporter: Fang-Yu Rao
Assignee: Fang-Yu Rao
IMPALA-9625 fixed the reported problem converting every fully-qualified table
name to lowercase in the method call to addAccessEvent() at
https://github.com/apache/impala/blame/master/fe/src/main/java/org/apache/impala/analysis/Analyzer.java#L2881-L2882
so that we will not have duplicate audit log entries in the file specified by
the flag of "{{-audit_event_log_dir}}" when starting Impala.
However, the patch for IMPALA-9625 did not fix the Ranger log entries resulting
from the registration of privilege requests at
https://github.com/apache/impala/blame/master/fe/src/main/java/org/apache/impala/analysis/Analyzer.java#L2860-L2872.
Specifically, Ranger performs authorization based on the privilege requests
added in the for-loop pointed out above, where the fully-qualified table names
are NOT converted to lowercase. Thus, we should also make the full table name
consistent for those privilege requests that will be used by Ranger.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
