IMPALA-14956: Produce Ranger audit events for GRANT/REVOKE ROLE

Due to RANGER-5595, Impala could not produce Ranger audit events for
the GRANT/REVOKE ROLE statements. This patch works around this issue by
mimicking what RangerHiveAuthorizer#grantRole() does at
https://github.com/apache/ranger/blob/3fd46db/hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuthorizer.java#L609-L612.

On a related note, adding the test cases for the GRANT/REVOKE privilege
statements is not in the scope of this JIRA. IMPALA-15011 was created to
keep track of this.

Testing:
 - Added Java test cases to verify Ranger audit events could be produced
   for the GRANT/REVOKE ROLE statements.

Change-Id: I7e0527af0532749817ea538c253262a5e2a65c61
Reviewed-on: http://gerrit.cloudera.org:8080/24315
Reviewed-by: Michael Smith <michael.smith@cloudera.com>
Tested-by: Impala Public Jenkins <impala-public-jenkins@cloudera.com>
Reviewed-by: Jason Fehr <jfehr@cloudera.com>
7 files changed
tree: ccf0109bcbc41c7df8d369cfb12a0f1e6a16f0d5
  1. .agents/
  2. .devcontainer/
  3. be/
  4. bin/
  5. cmake_modules/
  6. common/
  7. docker/
  8. docs/
  9. fe/
  10. helm/
  11. infra/
  12. java/
  13. lib/
  14. operator/
  15. package/
  16. security/
  17. shell/
  18. ssh_keys/
  19. testdata/
  20. tests/
  21. www/
  22. .asf.yaml
  23. .clang-format
  24. .clang-tidy
  25. .gitattributes
  26. .gitignore
  27. .isort.cfg
  28. AGENTS.md
  29. buildall.sh
  30. CMakeLists.txt
  31. EXPORT_CONTROL.md
  32. LICENSE.txt
  33. LOGS.md
  34. NOTICE.txt
  35. README-build.md
  36. README.md
  37. SECURITY.md
  38. setup.cfg
README.md

Welcome to Impala

Lightning-fast, distributed SQL queries for petabytes of data stored in open data and table formats.

Impala is a modern, massively-distributed, massively-parallel, C++ query engine that lets you analyze, transform and combine data from a variety of data sources:

More about Impala

The fastest way to try out Impala is a quickstart Docker container. You can try out running queries and processing data sets in Impala on a single machine without installing dependencies. It can automatically load test data sets into Apache Kudu and Apache Parquet formats and you can start playing around with Apache Impala SQL within minutes.

To learn more about Impala as a user or administrator, or to try Impala, please visit the Impala homepage. Detailed documentation for administrators and users is available at Apache Impala documentation.

If you are interested in contributing to Impala as a developer, or learning more about Impala's internals and architecture, visit the Impala wiki.

Supported Platforms

Impala only supports Linux at the moment. Impala supports x86_64 and arm64 (as of Impala 4.4). Impala Requirements contains more detailed information on the minimum CPU requirements.

Supported OS Distributions

Impala runs on Linux systems only. The supported distros are

  • Ubuntu 20.04/22.04/24.04
  • Rocky/RHEL 8/9/10

Other systems, e.g. SLES15/16, may also be supported but are not tested by the community.

Export Control Notice

This distribution uses cryptographic software and may be subject to export controls. Please refer to EXPORT_CONTROL.md for more information.

Build Instructions

See Impala's developer documentation to get started.

Detailed build notes has some detailed information on the project layout and build.