[ https://issues.apache.org/jira/browse/HDFS-12359?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Xiao Chen updated HDFS-12359: ----------------------------- Resolution: Fixed Hadoop Flags: Reviewed Fix Version/s: 3.0.0-beta1 Status: Resolved (was: Patch Available) Committed this to trunk. Thanks again for the review Wei-Chiu! > Re-encryption should operate with minimum KMS ACL requirements. > --------------------------------------------------------------- > > Key: HDFS-12359 > URL: https://issues.apache.org/jira/browse/HDFS-12359 > Project: Hadoop HDFS > Issue Type: Bug > Components: encryption > Affects Versions: 3.0.0-beta1 > Reporter: Xiao Chen > Assignee: Xiao Chen > Fix For: 3.0.0-beta1 > > Attachments: HDFS-12359.01.patch, HDFS-12359.02.patch, > HDFS-12359.03.patch > > > This was caught from KMS acl testing. > HDFS-10899 gets the current key versions from KMS directly, which requires > {{READ}} acls. > It also calls invalidateCache, which requires {{MANAGEMENT}} acls. > We should fix re-encryption to not require additional ACLs than original > encryption. -- This message was sent by Atlassian JIRA (v6.4.14#64029) --------------------------------------------------------------------- To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org