[
https://issues.apache.org/jira/browse/HDFS-17296?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Emil Kleszcz updated HDFS-17296:
--------------------------------
Description:
Looks like the inheritance of ACLs for the files is not working correctly.
I have tried the following in HDFS v3.2.1:
{code:java}
>hdfs dfs -mkdir /test
>hdfs dfs -touchz /test/test1
>hdfs dfs -mkdir /test/testdir1
>hdfs dfs -setfacl -m user:test:rwx /test
>hdfs dfs -getfacl -R /test # file: /test
# owner: hdfs
# group: hdfs
user::rwx
group::rwx
other::rwx
# file: /test/test1
# owner: hdfs
# group: hdfs
user::rw-
group::rw-
other::rw-
# file: /test/test2
# owner: hdfs
# group: hdfs
user::rw-
group::r--
other::r--
# file: /test/testdir1
# owner: hdfs
# group: hdfs
user::rwx
group::rwx
other::rwx{code}
The same happens when I set default permissions and umask to rwx
{code:java}
hdfs dfs -setfacl -m default:user::rwx /test
hdfs dfs -setfacl -m mask::rwx /test{code}
Also I was overwriting the default umask-mode in core-site.xml:
{code:java}
<property>
<name>fs.permissions.umask-mode</name>
<value>000</value>
</property> {code}
Not helping.
Other relevant parameters:
{code:java}
<property>
<name>dfs.permissions</name>
<value>true</value>
</property><property>
<name>dfs.permissions.supergroup</name>
<value>hdfs</value>
</property><property>
<name>dfs.namenode.acls.enabled</name>
<value>true</value>
</property> {code}
Inheritance was not disabled and according to docs by default is set to true:
{code:java}
dfs.namenode.posix.acl.inheritance.enabled{code}
Ref.
[https://hadoop.apache.org/docs/r3.2.1/hadoop-project-dist/hadoop-hdfs/hdfs-default.xml]
was:
Looks like the inheritance of ACLs for the files is not working correctly.
I have tried the following in HDFS v3.2.1:
{code:java}
>hdfs dfs -mkdir /test
>hdfs dfs -touchz /test/test1
>hdfs dfs -mkdir /test/testdir1
>hdfs dfs -getfacl -R /test # file: /test
# owner: hdfs
# group: hdfs
user::rwx
group::rwx
other::rwx# file: /test/test1
# owner: hdfs
# group: hdfs
user::rw-
group::rw-
other::rw-# file: /test/testdir1
# owner: hdfs
# group: hdfs
user::rwx
group::rwx
other::rwx{code}
The same happens when I set default permissions and umask to rwx
{code:java}
hdfs dfs -setfacl -m default:user::rwx /test
hdfs dfs -setfacl -m mask::rwx /test{code}
Also I was overwriting the default umask-mode in core-site.xml:
{code:java}
<property>
<name>fs.permissions.umask-mode</name>
<value>000</value>
</property> {code}
Not helping.
Other relevant parameters:
{code:java}
<property>
<name>dfs.permissions</name>
<value>true</value>
</property><property>
<name>dfs.permissions.supergroup</name>
<value>hdfs</value>
</property><property>
<name>dfs.namenode.acls.enabled</name>
<value>true</value>
</property> {code}
Inheritance was not disabled and according to docs by default is set to true:
{code:java}
dfs.namenode.posix.acl.inheritance.enabled{code}
Ref.
[https://hadoop.apache.org/docs/r3.2.1/hadoop-project-dist/hadoop-hdfs/hdfs-default.xml]
> ACL inheritance broken for new files
> ------------------------------------
>
> Key: HDFS-17296
> URL: https://issues.apache.org/jira/browse/HDFS-17296
> Project: Hadoop HDFS
> Issue Type: Bug
> Components: hdfs
> Affects Versions: 2.7.5, 3.2.1
> Reporter: Emil Kleszcz
> Priority: Critical
>
> Looks like the inheritance of ACLs for the files is not working correctly.
> I have tried the following in HDFS v3.2.1:
> {code:java}
> >hdfs dfs -mkdir /test
> >hdfs dfs -touchz /test/test1
> >hdfs dfs -mkdir /test/testdir1
> >hdfs dfs -setfacl -m user:test:rwx /test
> >hdfs dfs -getfacl -R /test # file: /test
> # owner: hdfs
> # group: hdfs
> user::rwx
> group::rwx
> other::rwx
> # file: /test/test1
> # owner: hdfs
> # group: hdfs
> user::rw-
> group::rw-
> other::rw-
> # file: /test/test2
> # owner: hdfs
> # group: hdfs
> user::rw-
> group::r--
> other::r--
> # file: /test/testdir1
> # owner: hdfs
> # group: hdfs
> user::rwx
> group::rwx
> other::rwx{code}
> The same happens when I set default permissions and umask to rwx
> {code:java}
> hdfs dfs -setfacl -m default:user::rwx /test
> hdfs dfs -setfacl -m mask::rwx /test{code}
> Also I was overwriting the default umask-mode in core-site.xml:
> {code:java}
> <property>
> <name>fs.permissions.umask-mode</name>
> <value>000</value>
> </property> {code}
> Not helping.
> Other relevant parameters:
> {code:java}
> <property>
> <name>dfs.permissions</name>
> <value>true</value>
> </property><property>
> <name>dfs.permissions.supergroup</name>
> <value>hdfs</value>
> </property><property>
> <name>dfs.namenode.acls.enabled</name>
> <value>true</value>
> </property> {code}
> Inheritance was not disabled and according to docs by default is set to true:
> {code:java}
> dfs.namenode.posix.acl.inheritance.enabled{code}
> Ref.
> [https://hadoop.apache.org/docs/r3.2.1/hadoop-project-dist/hadoop-hdfs/hdfs-default.xml]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org
