[SPARK-7524][SPARK-7846]add configs for keytab and principal, pass these two configs with different way in different modes #6051
Conversation
|
Merged build triggered. |
|
Merged build started. |
|
Test build #32382 has started for PR 6051 at commit |
|
Merged build triggered. |
|
Merged build started. |
|
Test build #32383 has started for PR 6051 at commit |
|
Test build #32383 has finished for PR 6051 at commit
|
|
Merged build finished. Test FAILed. |
|
Test FAILed. |
|
Test build #32382 has finished for PR 6051 at commit
|
|
Merged build finished. Test PASSed. |
|
Test PASSed. |
| @@ -169,6 +169,8 @@ private[deploy] class SparkSubmitArguments(args: Seq[String], env: Map[String, S | |||
| deployMode = Option(deployMode).orElse(env.get("DEPLOY_MODE")).orNull | |||
| numExecutors = Option(numExecutors) | |||
| .getOrElse(sparkProperties.get("spark.executor.instances").orNull) | |||
| keytab = Option(keytab).orElse(sparkProperties.get("spark.yarn.keytab")).orNull | |||
| principal = Option(principal).orElse(sparkProperties.get("spark.yarn.principal")).orNull | |||
There was a problem hiding this comment.
please document the configs since you are making them public in the running-on-yarn.md
|
Have you actually run this one a cluster with the various options:
Also, I have not seen spark.internal. options elsewhere in Spark? Are there are other config options like this? I am wondering if it makes sense to just re-use the current configs? If the command line params are set, just overwrite the ones we read from the configuration? |
|
No spark doesn't use the .internal. elsewhere. Please don't rename any of the ones we haven't documented as internal. I agree that we should just expand the use of the current ones since they are going to be propagated anyway. |
|
@WangTaoTheTonic can you update based on comments? |
|
@tgravescs Okay, I will do it right now. |
|
Build triggered. |
|
Build started. |
WangTaoTheTonic
changed the title
|
Test build #33438 has started for PR 6051 at commit |
|
Merged build triggered. |
|
Merged build started. |
|
Test build #33439 has started for PR 6051 at commit |
|
Merged build finished. Test FAILed. |
|
Test FAILed. |
|
Test build #33438 has finished for PR 6051 at commit
|
|
Build finished. Test FAILed. |
|
Test FAILed. |
|
Test build #33441 has finished for PR 6051 at commit
|
|
Merged build finished. Test PASSed. |
|
Test PASSed. |
|
I updated per comments and add fix for SPARK-7846. Haven't tested as there is some problem with my cluster and will do it ASAP. |
|
@harishreedharan
It all worked fine. |
|
ping? @harishreedharan @tgravescs |
|
lgtm. going to kick jenkins once more. |
|
Jenkins, test this please |
|
Merged build triggered. |
|
Merged build started. |
|
Test build #33736 has started for PR 6051 at commit |
|
Test build #33736 has finished for PR 6051 at commit
|
|
Merged build finished. Test PASSed. |
|
@WangTaoTheTonic can you please fix the description on this pr. Remove the [YARN]1 from heading. |
WangTaoTheTonic
changed the title
WangTaoTheTonic
changed the title
|
@tgravescs Done. |
|
Sorry, I am late to this to this one. Could you create a followup PR to update the security.md file with info about running in client vs cluster modes and that this is supported only in cluster mode via command line params. @tgravescs - If 1.4 gets released without this patch, there will be a regression in client mode ( |
|
@harishreedharan I'm pretty sure the --keytab and --principal options still work in client mode to SparkSubmit. Its simply the way it passes it on to the client. in yarn client mode it uses the config and in yarn cluster mode it uses the command line options. OptionAssigner(args.principal, YARN, CLIENT, sysProp = "spark.yarn.principal"), I'm building now and will test it to double check. Did you try it yourself? That would not be a blocker for 1.4 though. We would revert and fix. |
|
Ah, right - my bad! I wasn't reading the code properly. I will try it out later today to confirm. |
|
@harishreedharan How about the confirm? Should we do some changes in branh 1.4? |
…these two configs with different way in different modes * As spark now supports long running service by updating tokens for namenode, but only accept parameters passed with "--k=v" format which is not very convinient. This patch add spark.* configs in properties file and system property. * --principal and --keytabl options are passed to client but when we started thrift server or spark-shell these two are also passed into the Main class (org.apache.spark.sql.hive.thriftserver.HiveThriftServer2 and org.apache.spark.repl.Main). In these two main class, arguments passed in will be processed with some 3rd libraries, which will lead to some error: "Invalid option: --principal" or "Unrecgnised option: --principal". We should pass these command args in different forms, say system properties. Author: WangTaoTheTonic <wangtao111@huawei.com> Closes apache#6051 from WangTaoTheTonic/SPARK-7524 and squashes the following commits: e65699a [WangTaoTheTonic] change logic to loadEnvironments ebd9ea0 [WangTaoTheTonic] merge master ecfe43a [WangTaoTheTonic] pass keytab and principal seperately in different mode 33a7f40 [WangTaoTheTonic] expand the use of the current configs 08bb4e8 [WangTaoTheTonic] fix wrong cite 73afa64 [WangTaoTheTonic] add configs for keytab and principal, move originals to internal
…these two configs with different way in different modes * As spark now supports long running service by updating tokens for namenode, but only accept parameters passed with "--k=v" format which is not very convinient. This patch add spark.* configs in properties file and system property. * --principal and --keytabl options are passed to client but when we started thrift server or spark-shell these two are also passed into the Main class (org.apache.spark.sql.hive.thriftserver.HiveThriftServer2 and org.apache.spark.repl.Main). In these two main class, arguments passed in will be processed with some 3rd libraries, which will lead to some error: "Invalid option: --principal" or "Unrecgnised option: --principal". We should pass these command args in different forms, say system properties. Author: WangTaoTheTonic <wangtao111@huawei.com> Closes apache#6051 from WangTaoTheTonic/SPARK-7524 and squashes the following commits: e65699a [WangTaoTheTonic] change logic to loadEnvironments ebd9ea0 [WangTaoTheTonic] merge master ecfe43a [WangTaoTheTonic] pass keytab and principal seperately in different mode 33a7f40 [WangTaoTheTonic] expand the use of the current configs 08bb4e8 [WangTaoTheTonic] fix wrong cite 73afa64 [WangTaoTheTonic] add configs for keytab and principal, move originals to internal
…these two configs with different way in different modes * As spark now supports long running service by updating tokens for namenode, but only accept parameters passed with "--k=v" format which is not very convinient. This patch add spark.* configs in properties file and system property. * --principal and --keytabl options are passed to client but when we started thrift server or spark-shell these two are also passed into the Main class (org.apache.spark.sql.hive.thriftserver.HiveThriftServer2 and org.apache.spark.repl.Main). In these two main class, arguments passed in will be processed with some 3rd libraries, which will lead to some error: "Invalid option: --principal" or "Unrecgnised option: --principal". We should pass these command args in different forms, say system properties. Author: WangTaoTheTonic <wangtao111@huawei.com> Closes apache#6051 from WangTaoTheTonic/SPARK-7524 and squashes the following commits: e65699a [WangTaoTheTonic] change logic to loadEnvironments ebd9ea0 [WangTaoTheTonic] merge master ecfe43a [WangTaoTheTonic] pass keytab and principal seperately in different mode 33a7f40 [WangTaoTheTonic] expand the use of the current configs 08bb4e8 [WangTaoTheTonic] fix wrong cite 73afa64 [WangTaoTheTonic] add configs for keytab and principal, move originals to internal Conflicts: docs/running-on-yarn.md
In these two main class, arguments passed in will be processed with some 3rd libraries, which will lead to some error: "Invalid option: --principal" or "Unrecgnised option: --principal".
We should pass these command args in different forms, say system properties.