|
@@ -338,11 +338,13 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
"Unexpected not positive size: "+size);
|
|
"Unexpected not positive size: "+size);
|
|
|
}
|
|
}
|
|
|
namesystem.checkOperation(OperationCategory.READ);
|
|
namesystem.checkOperation(OperationCategory.READ);
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
return namesystem.getBlockManager().getBlocks(datanode, size);
|
|
return namesystem.getBlockManager().getBlocks(datanode, size);
|
|
|
}
|
|
}
|
|
|
|
|
|
|
|
@Override // NamenodeProtocol
|
|
@Override // NamenodeProtocol
|
|
|
public ExportedBlockKeys getBlockKeys() throws IOException {
|
|
public ExportedBlockKeys getBlockKeys() throws IOException {
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
return namesystem.getBlockManager().getBlockKeys();
|
|
return namesystem.getBlockManager().getBlockKeys();
|
|
|
}
|
|
}
|
|
|
|
|
|
|
@@ -351,6 +353,7 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
int errorCode,
|
|
int errorCode,
|
|
|
String msg) throws IOException {
|
|
String msg) throws IOException {
|
|
|
namesystem.checkOperation(OperationCategory.UNCHECKED);
|
|
namesystem.checkOperation(OperationCategory.UNCHECKED);
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
verifyRequest(registration);
|
|
verifyRequest(registration);
|
|
|
LOG.info("Error report from " + registration + ": " + msg);
|
|
LOG.info("Error report from " + registration + ": " + msg);
|
|
|
if (errorCode == FATAL) {
|
|
if (errorCode == FATAL) {
|
|
@@ -361,6 +364,7 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
@Override // NamenodeProtocol
|
|
@Override // NamenodeProtocol
|
|
|
public NamenodeRegistration register(NamenodeRegistration registration)
|
|
public NamenodeRegistration register(NamenodeRegistration registration)
|
|
|
throws IOException {
|
|
throws IOException {
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
verifyLayoutVersion(registration.getVersion());
|
|
verifyLayoutVersion(registration.getVersion());
|
|
|
NamenodeRegistration myRegistration = nn.setRegistration();
|
|
NamenodeRegistration myRegistration = nn.setRegistration();
|
|
|
namesystem.registerBackupNode(registration, myRegistration);
|
|
namesystem.registerBackupNode(registration, myRegistration);
|
|
@@ -370,6 +374,7 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
@Override // NamenodeProtocol
|
|
@Override // NamenodeProtocol
|
|
|
public NamenodeCommand startCheckpoint(NamenodeRegistration registration)
|
|
public NamenodeCommand startCheckpoint(NamenodeRegistration registration)
|
|
|
throws IOException {
|
|
throws IOException {
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
verifyRequest(registration);
|
|
verifyRequest(registration);
|
|
|
if(!nn.isRole(NamenodeRole.NAMENODE))
|
|
if(!nn.isRole(NamenodeRole.NAMENODE))
|
|
|
throw new IOException("Only an ACTIVE node can invoke startCheckpoint.");
|
|
throw new IOException("Only an ACTIVE node can invoke startCheckpoint.");
|
|
@@ -379,6 +384,7 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
@Override // NamenodeProtocol
|
|
@Override // NamenodeProtocol
|
|
|
public void endCheckpoint(NamenodeRegistration registration,
|
|
public void endCheckpoint(NamenodeRegistration registration,
|
|
|
CheckpointSignature sig) throws IOException {
|
|
CheckpointSignature sig) throws IOException {
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
namesystem.endCheckpoint(registration, sig);
|
|
namesystem.endCheckpoint(registration, sig);
|
|
|
}
|
|
}
|
|
|
|
|
|
|
@@ -755,17 +761,20 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
@Override // NamenodeProtocol
|
|
@Override // NamenodeProtocol
|
|
|
public long getTransactionID() throws IOException {
|
|
public long getTransactionID() throws IOException {
|
|
|
namesystem.checkOperation(OperationCategory.UNCHECKED);
|
|
namesystem.checkOperation(OperationCategory.UNCHECKED);
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
return namesystem.getFSImage().getLastAppliedOrWrittenTxId();
|
|
return namesystem.getFSImage().getLastAppliedOrWrittenTxId();
|
|
|
}
|
|
}
|
|
|
|
|
|
|
|
@Override // NamenodeProtocol
|
|
@Override // NamenodeProtocol
|
|
|
public long getMostRecentCheckpointTxId() throws IOException {
|
|
public long getMostRecentCheckpointTxId() throws IOException {
|
|
|
namesystem.checkOperation(OperationCategory.UNCHECKED);
|
|
namesystem.checkOperation(OperationCategory.UNCHECKED);
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
return namesystem.getFSImage().getMostRecentCheckpointTxId();
|
|
return namesystem.getFSImage().getMostRecentCheckpointTxId();
|
|
|
}
|
|
}
|
|
|
|
|
|
|
|
@Override // NamenodeProtocol
|
|
@Override // NamenodeProtocol
|
|
|
public CheckpointSignature rollEditLog() throws IOException {
|
|
public CheckpointSignature rollEditLog() throws IOException {
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
return namesystem.rollEditLog();
|
|
return namesystem.rollEditLog();
|
|
|
}
|
|
}
|
|
|
|
|
|
|
@@ -773,6 +782,7 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
public RemoteEditLogManifest getEditLogManifest(long sinceTxId)
|
|
public RemoteEditLogManifest getEditLogManifest(long sinceTxId)
|
|
|
throws IOException {
|
|
throws IOException {
|
|
|
namesystem.checkOperation(OperationCategory.READ);
|
|
namesystem.checkOperation(OperationCategory.READ);
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
return namesystem.getEditLog().getEditLogManifest(sinceTxId);
|
|
return namesystem.getEditLog().getEditLogManifest(sinceTxId);
|
|
|
}
|
|
}
|
|
|
|
|
|
|
@@ -949,6 +959,7 @@ class NameNodeRpcServer implements NamenodeProtocols {
|
|
|
|
|
|
|
|
@Override // DatanodeProtocol, NamenodeProtocol
|
|
@Override // DatanodeProtocol, NamenodeProtocol
|
|
|
public NamespaceInfo versionRequest() throws IOException {
|
|
public NamespaceInfo versionRequest() throws IOException {
|
|
|
|
|
+ namesystem.checkSuperuserPrivilege();
|
|
|
return namesystem.getNamespaceInfo();
|
|
return namesystem.getNamespaceInfo();
|
|
|
}
|
|
}
|
|
|
|
|
|
Aaron Myers