[
https://issues.apache.org/jira/browse/TEZ-1433?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Bikas Saha reopened TEZ-1433:
-----------------------------
> Invalid credentials can be used when a DAG is submitted to a session which
> has timed out
> ----------------------------------------------------------------------------------------
>
> Key: TEZ-1433
> URL: https://issues.apache.org/jira/browse/TEZ-1433
> Project: Apache Tez
> Issue Type: Bug
> Affects Versions: 0.4.0
> Reporter: Siddharth Seth
> Assignee: Bikas Saha
> Priority: Blocker
> Fix For: 0.5.1
>
> Attachments: TEZ-1433-v1.patch, TEZ-1433.2.patch, TEZ-1433.3.patch,
> TEZ-1433.4.patch, TEZ-1433.5.patch
>
>
> When a DAG is submitted to a session which has timed out, and the same DAG is
> then submitted to a new session - credentials associated with the old session
> can end up getting used.
> Before we know that the session is no longer valid, the DAG is modified to
> add local resources and credentials.
> On the next submission, since the DAG already has tokens (for HDFS for
> example) from the old session, the tokens are not updated.
> Meanwhile, the old token would end up being cancelled by the RM - since the
> applicaiton associated with the previous session has finished.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
