[ https://issues.apache.org/jira/browse/MAPREDUCE-181?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Devaraj Das updated MAPREDUCE-181: ---------------------------------- Attachment: 181-8.patch This fixes Owen's offline comments about having a finite limit on the split meta info that the JobTracker reads. The other comment was about a typo in writJobSplitMetaInfo. I also fixed the testcases. To be specific, w.r.t the earlier patch, the differences in this w.r.t the testcases are in 1) TestSubmitJob.java / TestSeveral.java / ClusterWithLinuxTaskController.java where i setup the staging area root directory with proper permissions so that job clients can create the ".staging" directories there. Other than that a javadoc warning is fixed. I ran "test-patch" locally and it passed. "ant test" is in progress. > Secure job submission > ---------------------- > > Key: MAPREDUCE-181 > URL: https://issues.apache.org/jira/browse/MAPREDUCE-181 > Project: Hadoop Map/Reduce > Issue Type: Sub-task > Reporter: Amar Kamat > Assignee: Devaraj Das > Fix For: 0.22.0 > > Attachments: 181-1.patch, 181-2.patch, 181-3.patch, 181-3.patch, > 181-4.patch, 181-5.1.patch, 181-5.1.patch, 181-6.patch, 181-8.patch, > hadoop-3578-branch-20-example-2.patch, hadoop-3578-branch-20-example.patch, > HADOOP-3578-v2.6.patch, HADOOP-3578-v2.7.patch, MAPRED-181-v3.32.patch, > MAPRED-181-v3.8.patch > > > Currently the jobclient accesses the {{mapred.system.dir}} to add job > details. Hence the {{mapred.system.dir}} has the permissions of > {{rwx-wx-wx}}. This could be a security loophole where the job files might > get overwritten/tampered after the job submission. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.