Skip to content

[SPARK-19970][SQL] Table owner should be USER instead of PRINCIPAL in kerberized clusters #17311

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 5 commits into from
Closed

[SPARK-19970][SQL] Table owner should be USER instead of PRINCIPAL in kerberized clusters #17311

wants to merge 5 commits into from

Conversation

@dongjoon-hyun
Copy link
Member

@dongjoon-hyun dongjoon-hyun commented Mar 16, 2017
edited
Loading

What changes were proposed in this pull request?

In the kerberized hadoop cluster, when Spark creates tables, the owner of tables are filled with PRINCIPAL strings instead of USER names. This is inconsistent with Hive and causes problems when using ROLE in Hive. We had better to fix this.

BEFORE

scala> sql("create table t(a int)").show
scala> sql("desc formatted t").show(false)
...
|Owner:                      |spark@EXAMPLE.COM                                         |       |

AFTER

scala> sql("create table t(a int)").show
scala> sql("desc formatted t").show(false)
...
|Owner:                      |spark                                         |       |

How was this patch tested?

Manually do create table and desc formatted because this happens in Kerberized clusters.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 16, 2017

Hi, @vanzin .
Could you review this PR?

@SparkQA
Copy link

SparkQA commented Mar 16, 2017

Test build #74657 has finished for PR 17311 at commit 9dfbf82.

  • This patch fails Spark unit tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 16, 2017

Oh, there exists a version issue. Let me fix that.

dongjoon-hyun
dongjoon-hyun commented Mar 16, 2017
View reviewed changes
sql/hive/src/main/scala/org/apache/spark/sql/hive/client/HiveClientImpl.scala Outdated
}
hiveTable.setPartCols(partCols.asJava)
conf.foreach(c => hiveTable.setOwner(c.getUser))
conf.foreach(c => hiveTable.setOwner(SessionState.getUserFromAuthenticator()))
Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 16, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

getUserFromAuthenticator was added 0.13.

@SparkQA
Copy link

SparkQA commented Mar 16, 2017

Test build #74664 has finished for PR 17311 at commit e8ef7d1.

  • This patch passes all tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

dongjoon-hyun
dongjoon-hyun commented Mar 17, 2017
View reviewed changes
sql/hive/src/main/scala/org/apache/spark/sql/hive/client/HiveClientImpl.scala Outdated
}
hiveTable.setPartCols(partCols.asJava)
conf.foreach(c => hiveTable.setOwner(c.getUser))
conf.foreach(c => hiveTable.setOwner(SessionState.get().getAuthenticator().getUserName()))
Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We cannot use the following since it was introduced in 0.13.

conf.foreach(c => hiveTable.setOwner(SessionState.getUserFromAuthenticator()))

Copy link
Contributor

@vanzin vanzin Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Since you're touching this, could you make it follow the usual style?

.foreach { c => ... }

Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you for review, @vanzin !
Which object do you mean for .foreach here?
For conf, we already use that.
For SessionState.get(), it's not Option.

Copy link
Contributor

@vanzin vanzin Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There's only one foreach call and it's using a different style than the rest of the code.

Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 17, 2017
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh, I see. It's about removing .foreach.

Copy link
Contributor

@vanzin vanzin Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No, it's about style. Parentheses v. braces.

Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah. Sorry again.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 17, 2017

Hi, @gatorsmile .
Could you review this issue?

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 17, 2017

I fixed that, @vanzin . Thank you again.

dongjoon-hyun
dongjoon-hyun commented Mar 17, 2017
View reviewed changes
sql/hive/src/main/scala/org/apache/spark/sql/hive/client/HiveClientImpl.scala
}
hiveTable.setPartCols(partCols.asJava)
conf.foreach(c => hiveTable.setOwner(c.getUser))
conf.foreach { _ => hiveTable.setOwner(SessionState.get().getAuthenticator().getUserName()) }
Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh, I think we can remove conf here.

Copy link
Contributor

@vanzin vanzin Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah, yes, you're not using it anymore. So away it goes.

Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 17, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yep!

Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 17, 2017
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@vanzin . Some test cases seems to related with conf is None, it causes failures. In this PR, I'll focus on putting the correct name only with the exactly same situations of the previous existing logic.

Copy link
Member

@gatorsmile gatorsmile Mar 24, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we should pass the user name.

@SparkQA
Copy link

SparkQA commented Mar 17, 2017

Test build #74750 has finished for PR 17311 at commit 5efdf8b.

  • This patch fails Spark unit tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

@SparkQA
Copy link

SparkQA commented Mar 17, 2017

Test build #74748 has finished for PR 17311 at commit 2959d98.

  • This patch passes all tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

@dongjoon-hyun
Revert "conf is not used."
258ff8d 
This reverts commit 5efdf8b.
@SparkQA
Copy link

SparkQA commented Mar 17, 2017

Test build #74753 has finished for PR 17311 at commit 258ff8d.

  • This patch passes all tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 18, 2017

If there is anything to do more, please let me know.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 18, 2017

Hi, @vanzin and @srowen .
Could you review this PR (again) when you have sometime?
I feel guilty because this PR need to be verified by manually on kerberized clusters.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 20, 2017

Retest this please

@SparkQA
Copy link

SparkQA commented Mar 20, 2017

Test build #74877 has finished for PR 17311 at commit 258ff8d.

  • This patch passes all tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

vanzin
vanzin reviewed Mar 20, 2017
View reviewed changes
sql/hive/src/main/scala/org/apache/spark/sql/hive/client/HiveClientImpl.scala
}
hiveTable.setPartCols(partCols.asJava)
conf.foreach(c => hiveTable.setOwner(c.getUser))
conf.foreach { _ => hiveTable.setOwner(SessionState.get().getAuthenticator().getUserName()) }
Copy link
Contributor

@vanzin vanzin Mar 20, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Shouldn't you be using the state field in the class instead of SessionState.get()? Maybe that will allow you to get rid of the foreach.

Copy link
Member Author

@dongjoon-hyun dongjoon-hyun Mar 20, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

state is in class HiveClientImpl, but this function is in object HiveClientImpl.

Copy link
Contributor

@vanzin vanzin Mar 20, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ahh. Now it makes sense why conf would be None.

@vanzin
Copy link
Contributor

vanzin commented Mar 20, 2017

LGTM, merging to master / 2.1.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 20, 2017

Thank you so much, @vanzin !

@vanzin
Copy link
Contributor

vanzin commented Mar 20, 2017

Couldn't merge to 2.1.

@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 20, 2017

Oh, I'll make a backport then.

@asfgit asfgit closed this in fc75545 Mar 20, 2017
@dongjoon-hyun
Copy link
Member Author

dongjoon-hyun commented Mar 20, 2017

The difference is due to 3881f34#diff-6fd847124f8eae45ba2de1cf7d6296feR855 .

@dongjoon-hyun dongjoon-hyun mentioned this pull request Mar 20, 2017
Closed
@gatorsmile gatorsmile mentioned this pull request Mar 24, 2017
Closed
ghost pushed a commit to dbtsai/spark that referenced this pull request Mar 24, 2017
@gatorsmile @cloud-fan
[SPARK-19970][SQL][FOLLOW-UP] Table owner should be USER instead of P…
344f38b 
…RINCIPAL in kerberized clusters apache#17311

### What changes were proposed in this pull request?
This is a follow-up for the PR: apache#17311

- For safety, use `sessionState` to get the user name, instead of calling `SessionState.get()` in the function `toHiveTable`.
- Passing `user names` instead of `conf` when calling `toHiveTable`.

### How was this patch tested?
N/A

Author: Xiao Li <gatorsmile@gmail.com>

Closes apache#17405 from gatorsmile/user.
@dongjoon-hyun dongjoon-hyun deleted the SPARK-19970 branch January 7, 2019 07:03
@HeartSaVioR HeartSaVioR mentioned this pull request Sep 6, 2019
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vanzin vanzin vanzin left review comments

@gatorsmile gatorsmile gatorsmile left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@dongjoon-hyun @SparkQA @vanzin @gatorsmile