style check

Author: ifilonenko

docs/security.md

@@ -729,8 +729,7 @@ so that non-local processes can authenticate. These delegation tokens in Kuberne
 shared by the Driver and its Executors. As such, there are three ways of submitting a Kerberos job: 
 
 In all cases you must define the environment variable: `HADOOP_CONF_DIR` or 
-`spark.kubernetes.hadoop.configMapName` as well as either
-`spark.kubernetes.kerberos.krb5.path` or `spark.kubernetes.kerberos.krb5.configMapName`.
+`spark.kubernetes.hadoop.configMapName.`
 
 It also important to note that the KDC needs to be visible from inside the containers.
 

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/features/HadoopConfExecutorFeatureStep.scala

@@ -23,14 +23,14 @@ import org.apache.spark.deploy.k8s.Constants._
 import org.apache.spark.deploy.k8s.features.hadooputils.HadoopBootstrapUtil
 import org.apache.spark.internal.Logging
 
- /**
-  * This step is responsible for bootstraping the container with ConfigMaps
-  * containing Hadoop config files mounted as volumes and an ENV variable
-  * pointed to the mounted file directory.
-  */
+/**
+ * This step is responsible for bootstraping the container with ConfigMaps
+ * containing Hadoop config files mounted as volumes and an ENV variable
+ * pointed to the mounted file directory.
+ */
 private[spark] class HadoopConfExecutorFeatureStep(
     kubernetesConf: KubernetesConf[KubernetesExecutorSpecificConf])
-    extends KubernetesFeatureConfigStep with Logging {
+  extends KubernetesFeatureConfigStep with Logging {
 
   override def configurePod(pod: SparkPod): SparkPod = {
     val sparkConf = kubernetesConf.sparkConf

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/features/HadoopSparkUserExecutorFeatureStep.scala

@@ -24,17 +24,17 @@ import org.apache.spark.deploy.k8s.KubernetesExecutorSpecificConf
 import org.apache.spark.deploy.k8s.features.hadooputils.HadoopBootstrapUtil
 import org.apache.spark.internal.Logging
 
- /**
-  * This step is responsible for setting ENV_SPARK_USER when HADOOP_FILES are detected
-  * however, this step would not be run if Kerberos is enabled, as Kerberos sets SPARK_USER
-  */
+/**
+ * This step is responsible for setting ENV_SPARK_USER when HADOOP_FILES are detected
+ * however, this step would not be run if Kerberos is enabled, as Kerberos sets SPARK_USER
+ */
 private[spark] class HadoopSparkUserExecutorFeatureStep(
     kubernetesConf: KubernetesConf[KubernetesExecutorSpecificConf])
-    extends KubernetesFeatureConfigStep with Logging {
+  extends KubernetesFeatureConfigStep with Logging {
 
   override def configurePod(pod: SparkPod): SparkPod = {
     val sparkUserName = kubernetesConf.sparkConf.get(KERBEROS_SPARK_USER_NAME)
-      HadoopBootstrapUtil.bootstrapSparkUserPod(sparkUserName, pod)
+    HadoopBootstrapUtil.bootstrapSparkUserPod(sparkUserName, pod)
   }
 
   override def getAdditionalPodSystemProperties(): Map[String, String] = Map.empty

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/features/KerberosConfDriverFeatureStep.scala

@@ -26,13 +26,13 @@ import org.apache.spark.deploy.k8s.KubernetesDriverSpecificConf
 import org.apache.spark.deploy.k8s.features.hadooputils._
 import org.apache.spark.internal.Logging
 
- /**
-  * Runs the necessary Hadoop-based logic based on Kerberos configs and the presence of the
-  * HADOOP_CONF_DIR. This runs various bootstrap methods defined in HadoopBootstrapUtil.
-  */
+/**
+ * Runs the necessary Hadoop-based logic based on Kerberos configs and the presence of the
+ * HADOOP_CONF_DIR. This runs various bootstrap methods defined in HadoopBootstrapUtil.
+ */
 private[spark] class KerberosConfDriverFeatureStep(
     kubernetesConf: KubernetesConf[KubernetesDriverSpecificConf])
-    extends KubernetesFeatureConfigStep with Logging {
+  extends KubernetesFeatureConfigStep with Logging {
 
   require(kubernetesConf.hadoopConfSpec.isDefined,
      "Ensure that HADOOP_CONF_DIR is defined either via env or a pre-defined ConfigMap")
@@ -143,22 +143,19 @@ private[spark] class KerberosConfDriverFeatureStep(
   }
 
   override def getAdditionalKubernetesResources(): Seq[HasMetadata] = {
-    // HADOOP_CONF_DIR ConfigMap
     val hadoopConfConfigMap = for {
       hName <- newHadoopConfigMapName
       hFiles <- hadoopConfigurationFiles
     } yield {
       HadoopBootstrapUtil.buildHadoopConfigMap(hName, hFiles)
     }
 
-    // krb5 ConfigMap
     val krb5ConfigMap = krb5File.map { fileLocation =>
       HadoopBootstrapUtil.buildkrb5ConfigMap(
         kubernetesConf.krbConfigMapName,
         fileLocation)
     }
 
-    // Kerberos DT Secret
     val kerberosDTSecret = kerberosConfSpec.flatMap(_.dtSecret)
 
     hadoopConfConfigMap.toSeq ++

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/features/KerberosConfExecutorFeatureStep.scala

@@ -24,12 +24,12 @@ import org.apache.spark.deploy.k8s.KubernetesExecutorSpecificConf
 import org.apache.spark.deploy.k8s.features.hadooputils.HadoopBootstrapUtil
 import org.apache.spark.internal.Logging
 
- /**
-  * This step is responsible for mounting the DT secret for the executors
-  */
+/**
+ * This step is responsible for mounting the DT secret for the executors
+ */
 private[spark] class KerberosConfExecutorFeatureStep(
     kubernetesConf: KubernetesConf[KubernetesExecutorSpecificConf])
-    extends KubernetesFeatureConfigStep with Logging {
+  extends KubernetesFeatureConfigStep with Logging {
 
   private val sparkConf = kubernetesConf.sparkConf
   private val maybeKrb5CMap = sparkConf.getOption(KRB5_CONFIG_MAP_NAME)

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/features/hadooputils/HadoopBootstrapUtil.scala

@@ -30,18 +30,18 @@ import org.apache.spark.internal.Logging
 
 private[spark] object HadoopBootstrapUtil extends Logging {
 
-   /**
-    * Mounting the DT secret for both the Driver and the executors
-    *
-    * @param dtSecretName Name of the secret that stores the Delegation Token
-    * @param dtSecretItemKey Name of the Item Key storing the Delegation Token
-    * @param userName Name of the SparkUser to set SPARK_USER
-    * @param fileLocation Optional Location of the krb5 file
-    * @param newKrb5ConfName Optional location of the ConfigMap for Krb5
-    * @param existingKrb5ConfName Optional name of ConfigMap for Krb5
-    * @param pod Input pod to be appended to
-    * @return a modified SparkPod
-    */
+  /**
+   * Mounting the DT secret for both the Driver and the executors
+   *
+   * @param dtSecretName Name of the secret that stores the Delegation Token
+   * @param dtSecretItemKey Name of the Item Key storing the Delegation Token
+   * @param userName Name of the SparkUser to set SPARK_USER
+   * @param fileLocation Optional Location of the krb5 file
+   * @param newKrb5ConfName Optional location of the ConfigMap for Krb5
+   * @param existingKrb5ConfName Optional name of ConfigMap for Krb5
+   * @param pod Input pod to be appended to
+   * @return a modified SparkPod
+   */
   def bootstrapKerberosPod(
       dtSecretName: String,
       dtSecretItemKey: String,
@@ -138,29 +138,29 @@ private[spark] object HadoopBootstrapUtil extends Logging {
     SparkPod(kerberizedPod, kerberizedContainer)
   }
 
-   /**
-    * setting ENV_SPARK_USER when HADOOP_FILES are detected
-    *
-    * @param sparkUserName Name of the SPARK_USER
-    * @param pod Input pod to be appended to
-    * @return a modified SparkPod
-    */
+  /**
+   * setting ENV_SPARK_USER when HADOOP_FILES are detected
+   *
+   * @param sparkUserName Name of the SPARK_USER
+   * @param pod Input pod to be appended to
+   * @return a modified SparkPod
+   */
   def bootstrapSparkUserPod(sparkUserName: String, pod: SparkPod): SparkPod = {
-     val envModifiedContainer = new ContainerBuilder(pod.container)
-       .addNewEnv()
-         .withName(ENV_SPARK_USER)
-         .withValue(sparkUserName)
-         .endEnv()
+    val envModifiedContainer = new ContainerBuilder(pod.container)
+      .addNewEnv()
+        .withName(ENV_SPARK_USER)
+        .withValue(sparkUserName)
+        .endEnv()
       .build()
-     SparkPod(pod.pod, envModifiedContainer)
+    SparkPod(pod.pod, envModifiedContainer)
   }
 
-    /**
-     * Grabbing files in the HADOOP_CONF_DIR
-     *
-     * @param path location of HADOOP_CONF_DIR
-     * @return a list of File object
-     */
+  /**
+   * Grabbing files in the HADOOP_CONF_DIR
+   *
+   * @param path location of HADOOP_CONF_DIR
+   * @return a list of File object
+   */
   def getHadoopConfFiles(path: String): Seq[File] = {
     val dir = new File(path)
     if (dir.isDirectory) {
@@ -170,16 +170,16 @@ private[spark] object HadoopBootstrapUtil extends Logging {
     }
   }
 
-   /**
-    * Bootstraping the container with ConfigMaps that store
-    * Hadoop configuration files
-    *
-    * @param hadoopConfDir directory location of HADOOP_CONF_DIR env
-    * @param newHadoopConfigMapName name of the new configMap for HADOOP_CONF_DIR
-    * @param existingHadoopConfigMapName name of the pre-defined configMap for HADOOP_CONF_DIR
-    * @param pod Input pod to be appended to
-    * @return a modified SparkPod
-    */
+  /**
+   * Bootstraping the container with ConfigMaps that store
+   * Hadoop configuration files
+   *
+   * @param hadoopConfDir directory location of HADOOP_CONF_DIR env
+   * @param newHadoopConfigMapName name of the new configMap for HADOOP_CONF_DIR
+   * @param existingHadoopConfigMapName name of the pre-defined configMap for HADOOP_CONF_DIR
+   * @param pod Input pod to be appended to
+   * @return a modified SparkPod
+   */
   def bootstrapHadoopConfDir(
       hadoopConfDir: Option[String],
       newHadoopConfigMapName: Option[String],
@@ -237,14 +237,14 @@ private[spark] object HadoopBootstrapUtil extends Logging {
     SparkPod(hadoopSupportedPod, hadoopSupportedContainer)
   }
 
-   /**
-    * Builds ConfigMap given the file location of the
-    * krb5.conf file
-    *
-    * @param configMapName name of configMap for krb5
-    * @param fileLocation location of krb5 file
-    * @return a ConfigMap
-    */
+  /**
+   * Builds ConfigMap given the file location of the
+   * krb5.conf file
+   *
+   * @param configMapName name of configMap for krb5
+   * @param fileLocation location of krb5 file
+   * @return a ConfigMap
+   */
   def buildkrb5ConfigMap(
       configMapName: String,
       fileLocation: String): ConfigMap = {
@@ -258,14 +258,14 @@ private[spark] object HadoopBootstrapUtil extends Logging {
       .build()
   }
 
-   /**
-    * Builds ConfigMap given the ConfigMap name
-    * and a list of Hadoop Conf files
-    *
-    * @param hadoopConfigMapName name of hadoopConfigMap
-    * @param hadoopConfFiles list of hadoopFiles
-    * @return a ConfigMap
-    */
+  /**
+   * Builds ConfigMap given the ConfigMap name
+   * and a list of Hadoop Conf files
+   *
+   * @param hadoopConfigMapName name of hadoopConfigMap
+   * @param hadoopConfFiles list of hadoopFiles
+   * @return a ConfigMap
+   */
   def buildHadoopConfigMap(
       hadoopConfigMapName: String,
       hadoopConfFiles: Seq[File]): ConfigMap = {

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/features/hadooputils/HadoopKerberosLogin.scala

@@ -24,19 +24,19 @@ import org.apache.spark.deploy.SparkHadoopUtil
 import org.apache.spark.deploy.k8s.Constants._
 import org.apache.spark.deploy.k8s.security.KubernetesHadoopDelegationTokenManager
 
- /**
-  * This logic does all the heavy lifting for Delegation Token creation. This step
-  * assumes that the job user has either specified a principal and keytab or ran
-  * $kinit before running spark-submit. By running UGI.getCurrentUser we are able
-  * to obtain the current user, either signed in via $kinit or keytab. With the
-  * Job User principal you then retrieve the delegation token from the NameNode
-  * and store values in DelegationToken. Lastly, the class puts the data into
-  * a secret. All this is defined in a KerberosConfigSpec.
-  */
+/**
+ * This logic does all the heavy lifting for Delegation Token creation. This step
+ * assumes that the job user has either specified a principal and keytab or ran
+ * $kinit before running spark-submit. By running UGI.getCurrentUser we are able
+ * to obtain the current user, either signed in via $kinit or keytab. With the
+ * Job User principal you then retrieve the delegation token from the NameNode
+ * and store values in DelegationToken. Lastly, the class puts the data into
+ * a secret. All this is defined in a KerberosConfigSpec.
+ */
 private[spark] object HadoopKerberosLogin {
   def buildSpec(
       submissionSparkConf: SparkConf,
-      kubernetesResourceNamePrefix : String,
+      kubernetesResourceNamePrefix: String,
       tokenManager: KubernetesHadoopDelegationTokenManager): KerberosConfigSpec = {
     val hadoopConf = SparkHadoopUtil.get.newConfiguration(submissionSparkConf)
     // The JobUserUGI will be taken fom the Local Ticket Cache or via keytab+principal

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/features/hadooputils/KerberosConfigSpec.scala

@@ -18,14 +18,14 @@ package org.apache.spark.deploy.k8s.features.hadooputils
 
 import io.fabric8.kubernetes.api.model.Secret
 
- /**
-  * Represents a given configuration of the Kerberos Configuration logic
-  * <p>
-  * - The secret containing a DT, either previously specified or built on the fly
-  * - The name of the secret where the DT will be stored
-  * - The data item-key on the secret which correlates with where the current DT data is stored
-  * - The Job User's username
-  */
+/**
+ * Represents a given configuration of the Kerberos Configuration logic
+ * <p>
+ * - The secret containing a DT, either previously specified or built on the fly
+ * - The name of the secret where the DT will be stored
+ * - The data item-key on the secret which correlates with where the current DT data is stored
+ * - The Job User's username
+ */
 private[spark] case class KerberosConfigSpec(
     dtSecret: Option[Secret],
     dtSecretName: String,

resource-managers/kubernetes/core/src/main/scala/org/apache/spark/deploy/k8s/security/KubernetesHadoopDelegationTokenManager.scala

@@ -26,19 +26,19 @@ import org.apache.spark.deploy.SparkHadoopUtil
 import org.apache.spark.deploy.security.HadoopDelegationTokenManager
 import org.apache.spark.internal.Logging
 
- /**
-  * The KubernetesHadoopDelegationTokenManager fetches Hadoop delegation tokens
-  * on the behalf of the Kubernetes submission client. The new credentials
-  * (called Tokens when they are serialized) are stored in Secrets accessible
-  * to the driver and executors, when new Tokens are received they overwrite the current Secrets.
-  */
+/**
+ * The KubernetesHadoopDelegationTokenManager fetches Hadoop delegation tokens
+ * on the behalf of the Kubernetes submission client. The new credentials
+ * (called Tokens when they are serialized) are stored in Secrets accessible
+ * to the driver and executors, when new Tokens are received they overwrite the current Secrets.
+ */
 private[spark] class KubernetesHadoopDelegationTokenManager(
     tokenManager: HadoopDelegationTokenManager) extends Logging {
 
   // HadoopUGI Util methods
   def getCurrentUser: UserGroupInformation = UserGroupInformation.getCurrentUser
-  def getShortUserName : String = getCurrentUser.getShortUserName
-  def getFileSystem(hadoopConf: Configuration) : FileSystem = FileSystem.get(hadoopConf)
+  def getShortUserName: String = getCurrentUser.getShortUserName
+  def getFileSystem(hadoopConf: Configuration): FileSystem = FileSystem.get(hadoopConf)
   def isSecurityEnabled: Boolean = UserGroupInformation.isSecurityEnabled
   def loginUserFromKeytabAndReturnUGI(principal: String, keytab: String): UserGroupInformation =
     UserGroupInformation.loginUserFromKeytabAndReturnUGI(principal, keytab)