Skip to content

Closes #14. Proxy in workload job to use enable permission checking.#18

Merged
xkrogen merged 1 commit into
linkedin:masterfrom
xkrogen:ekrogen-workload-proxy
Apr 5, 2018
Merged

Closes #14. Proxy in workload job to use enable permission checking.#18
xkrogen merged 1 commit into
linkedin:masterfrom
xkrogen:ekrogen-workload-proxy

Conversation

@xkrogen

@xkrogen xkrogen commented Mar 28, 2018

Copy link
Copy Markdown
Collaborator

No description provided.

chliang71
chliang71 approved these changes Mar 28, 2018
View reviewed changes

@chliang71 chliang71 left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, only some minor nits

Comment thread ...rkload/src/main/java/com/linkedin/dynamometer/workloadgenerator/audit/AuditReplayThread.java
commandQueue = new DelayQueue<>();
Configuration mapperConf = mapperContext.getConfiguration();
String namenodeURI = mapperConf.get(WorkloadDriver.NN_URI);
this.fsCache = fsCache;

@chliang71 chliang71 Mar 28, 2018

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: remove 'this.' to be consistent with the rest?

@xkrogen xkrogen Mar 30, 2018

Copy link
Copy Markdown
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The this is necessary to quality fsCache as a field since fsCache is also the name of a parameter.

Comment thread ...oad/src/main/java/com/linkedin/dynamometer/workloadgenerator/audit/AuditLogDirectParser.java
String auditMessageSanitized = m.group(2).replace("(options=", "(options:");
Map<String, String> parameterMap = AUDIT_SPLITTER.split(auditMessageSanitized);
return new AuditReplayCommand(relativeToAbsolute.apply(relativeTimestamp),
SPACE_SPLITTER.split(parameterMap.get("ugi")).iterator().next(),

@chliang71 chliang71 Mar 28, 2018

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

more of a question, does this imply there can be multiple values for ugi, and here we only take the first? I wonder why there can be multiple of them, and why taking just first is enough?

@xkrogen xkrogen Mar 30, 2018

Copy link
Copy Markdown
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sort of. Here are a few example UGI strings:

ugi=user (auth:TOKEN) via user/host@REALM (auth:TOKEN)
ugi=user (auth:KERBEROS)
ugi=user@REALM (auth:TOKEN)
ugi=user/host@REALM (auth:TOKEN)

Taking the first is enough because the second is used if the UGI is proxied; the first user is the effective user which is all we care about.

However this made me realize that this current logic is not sufficient to cover the last two cases. Maybe it would be best to do a regex match for the first character string up until whitespace, /, or @. I will update accordingly.

@xkrogen

xkrogen commented Mar 30, 2018

Copy link
Copy Markdown
Collaborator Author

Hey @chen-liang , mind taking another quick look? I added a comment to address your last question about why we split on space for UGI, and also fixed the issue that UGIs like ugi/host@REALM or ugi@REALM would not be properly handled.

@chliang71

chliang71 commented Apr 5, 2018

Copy link
Copy Markdown
Collaborator

LGTM, +1

@xkrogen xkrogen force-pushed the ekrogen-workload-proxy branch from 2e682bd to 6b5f12c Compare April 5, 2018 17:34
@xkrogen xkrogen merged commit aadf7c2 into linkedin:master Apr 5, 2018
xkrogen added a commit to xkrogen/dynamometer that referenced this pull request Apr 6, 2018
@xkrogen
Fix TestWorkloadGenerator which was broken by PR linkedin#18.
0ae371a
@xkrogen xkrogen mentioned this pull request Apr 6, 2018
Merged
xkrogen added a commit that referenced this pull request Apr 9, 2018
@xkrogen
Fix TestWorkloadGenerator which was broken by PR #18. (PR #24)
e31b30b
@xkrogen xkrogen deleted the ekrogen-workload-proxy branch April 11, 2018 21:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chliang71 chliang71 chliang71 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@xkrogen @chliang71