Home Explore Help
Register Sign In
apache
/
hadoop
mirror of https://github.com/apache/hadoop.git
2
0
Fork 1
Files Issues 0 Wiki
Browse Source

YARN-10555. Missing access check before getAppAttempts (#2608)

Co-authored-by: lujie <lujie@foxmail.com>
Signed-off-by: Akira Ajisaka <aajisaka@apache.org>
(cherry picked from commit d92a25b790e5ad7d8e21fc3949cdd0f74d496b1b)
lujiefsi 4 years ago
parent
2f56e2b54d
commit
137e20cc9b
3 changed files with 5 additions and 5 deletions
Split View Show Diff Stats
  1. 1 1
      hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-resourcemanager/src/main/java/org/apache/hadoop/yarn/server/resourcemanager/webapp/RMAppBlock.java
  2. 1 1
      hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-resourcemanager/src/main/java/org/apache/hadoop/yarn/server/resourcemanager/webapp/RMWebServices.java
  3. 3 3
      hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-resourcemanager/src/main/java/org/apache/hadoop/yarn/server/resourcemanager/webapp/dao/AppAttemptInfo.java

+ 1 - 1
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-resourcemanager/src/main/java/org/apache/hadoop/yarn/server/resourcemanager/webapp/RMAppBlock.java
View File 

@@ -142,7 +142,7 @@ public class RMAppBlock extends AppBlock{
 
         continue;
 
       }
 
       AppAttemptInfo attemptInfo =
 
-          new AppAttemptInfo(this.rm, rmAppAttempt, rmApp.getUser(),
 
+          new AppAttemptInfo(this.rm, rmAppAttempt, true, rmApp.getUser(),
 
               WebAppUtils.getHttpSchemePrefix(conf));
 
       Set<String> nodes = rmAppAttempt.getBlacklistedNodes();
 
       // nodes which are blacklisted by the application

+ 1 - 1
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-resourcemanager/src/main/java/org/apache/hadoop/yarn/server/resourcemanager/webapp/RMWebServices.java
View File 

@@ -1074,7 +1074,7 @@ public class RMWebServices extends WebServices implements RMWebServiceProtocol {
 
     AppAttemptsInfo appAttemptsInfo = new AppAttemptsInfo();
 
     for (RMAppAttempt attempt : app.getAppAttempts().values()) {
 
       AppAttemptInfo attemptInfo = new AppAttemptInfo(rm, attempt,
 
-          app.getUser(), hsr.getScheme() + "://");
 
+          hasAccess(app, hsr), app.getUser(), hsr.getScheme() + "://");
 
       appAttemptsInfo.add(attemptInfo);
 
     }

+ 3 - 3
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-resourcemanager/src/main/java/org/apache/hadoop/yarn/server/resourcemanager/webapp/dao/AppAttemptInfo.java
View File 

@@ -49,8 +49,8 @@ public class AppAttemptInfo {
 
   public AppAttemptInfo() {
 
   }
 
 
-  public AppAttemptInfo(ResourceManager rm, RMAppAttempt attempt, String user,
 
-      String schemePrefix) {
 
+  public AppAttemptInfo(ResourceManager rm, RMAppAttempt attempt,
 
+      Boolean hasAccess, String user, String schemePrefix) {
 
     this.startTime = 0;
 
     this.containerId = "";
 
     this.nodeHttpAddress = "";
 
@@ -63,7 +63,7 @@ public class AppAttemptInfo {
 
       this.startTime = attempt.getStartTime();
 
       this.finishedTime = attempt.getFinishTime();
 
       Container masterContainer = attempt.getMasterContainer();
 
-      if (masterContainer != null) {
 
+      if (masterContainer != null && hasAccess) {
 
         this.containerId = masterContainer.getId().toString();
 
         this.nodeHttpAddress = masterContainer.getNodeHttpAddress();
 
         this.nodeId = masterContainer.getNodeId().toString();