Fixed Issues in Apache HDFS
Review the list of HDFS issues that are resolved in Cloudera Runtime 7.1.7.
- HDFS-15422: After upgrade from CDH to Cloudera Runtime 7 followed by a Name Node Failover, hdfs fsck command may report false negatives: "CORRUPT ReasonCode: SIZE_MISMATCH".
- This issue is resolved.
- CDPD-19930: Before this patch got merged, any actions by a HDFS superuser will not be audited in Ranger
- Users did not have a complete picture since the actions by superusers were not audited. Since 7.1.7 any action by any user on HDFS will be audited by Ranger.
- CDPD-23330: Disable vulnerable TLS versions (TLSv1, SSLv2Hello and TLSv1. Enable only TLSv1.2. Users wishing to support legacy applications can change the default by adding additional versions in a common-delimited format to hadoop.ssl.enabled.protocols in core-site.xml. For example, SSLv2Hello,TLSv1.2.
- This issue is resolved.
- OPSAPS-59364: JKS file generated for HTTPS has an incorrect keystore type.
- Added the ssl-server.xml to HTTPS role in HDFS to allow customization from Cloudera Manager. This issue is resolved.
Apache Patch Information
- HDFS-16127
- HDFS-15850
- HDFS-15422
