Details
-
Bug
-
Status: Open
-
Critical
-
Resolution: Unresolved
-
2.7.5, 3.2.1, 3.3.6
-
None
-
None
Description
Looks like the inheritance of ACLs for the files is not working correctly.
I have tried the following in HDFS v3.2.1:
>hdfs dfs -mkdir /test >hdfs dfs -touchz /test/test1 >hdfs dfs -mkdir /test/testdir1 >hdfs dfs -setfacl -m user:test:rwx /test >hdfs dfs -touchz /test/test2 >hdfs dfs -getfacl -R /test # file: /test # owner: hdfs # group: hdfs user::rwx group::rwx other::rwx # file: /test/test1 # owner: hdfs # group: hdfs user::rw- group::rw- other::rw- # file: /test/test2 # owner: hdfs # group: hdfs user::rw- group::r-- other::r-- # file: /test/testdir1 # owner: hdfs # group: hdfs user::rwx group::rwx other::rwx
The same happens when I set default permissions and umask to rwx
hdfs dfs -setfacl -m default:user::rwx /test
hdfs dfs -setfacl -m mask::rwx /test
Also I was overwriting the default umask-mode in core-site.xml:
<property> <name>fs.permissions.umask-mode</name> <value>000</value> </property>
Not helping.
Other relevant parameters:
<property> <name>dfs.permissions</name> <value>true</value> </property><property> <name>dfs.permissions.supergroup</name> <value>hdfs</value> </property><property> <name>dfs.namenode.acls.enabled</name> <value>true</value> </property>
Inheritance was not disabled and according to docs by default is set to true:
dfs.namenode.posix.acl.inheritance.enabled
Ref. https://hadoop.apache.org/docs/r3.2.1/hadoop-project-dist/hadoop-hdfs/hdfs-default.xml