| /** |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| package org.apache.hadoop.ipc; |
| |
| import org.apache.commons.lang3.builder.EqualsBuilder; |
| import org.apache.commons.lang3.builder.HashCodeBuilder; |
| import org.apache.hadoop.classification.InterfaceAudience; |
| import org.apache.hadoop.classification.InterfaceStability; |
| import org.apache.hadoop.conf.Configuration; |
| |
| import java.nio.charset.Charset; |
| import java.nio.charset.StandardCharsets; |
| import java.util.Arrays; |
| import java.util.Collections; |
| import java.util.HashSet; |
| import java.util.Set; |
| |
| import static org.apache.hadoop.fs.CommonConfigurationKeysPublic.HADOOP_CALLER_CONTEXT_SEPARATOR_DEFAULT; |
| import static org.apache.hadoop.fs.CommonConfigurationKeysPublic.HADOOP_CALLER_CONTEXT_SEPARATOR_KEY; |
| |
| /** |
| * A class defining the caller context for auditing coarse granularity |
| * operations. |
| * |
| * This class is immutable. |
| */ |
| @InterfaceAudience.Public |
| @InterfaceStability.Evolving |
| public final class CallerContext { |
| public static final Charset SIGNATURE_ENCODING = StandardCharsets.UTF_8; |
| /** The caller context. |
| * |
| * It will be truncated if it exceeds the maximum allowed length in |
| * server. The default length limit is |
| * {@link org.apache.hadoop.fs.CommonConfigurationKeysPublic#HADOOP_CALLER_CONTEXT_MAX_SIZE_DEFAULT} |
| */ |
| private final String context; |
| |
| /** The caller's signature for validation. |
| * |
| * The signature is optional. The null or empty signature will be abandoned. |
| * If the signature exceeds the maximum allowed length in server, the caller |
| * context will be abandoned. The default length limit is |
| * {@link org.apache.hadoop.fs.CommonConfigurationKeysPublic#HADOOP_CALLER_CONTEXT_SIGNATURE_MAX_SIZE_DEFAULT} |
| */ |
| private final byte[] signature; |
| |
| private CallerContext(Builder builder) { |
| this.context = builder.getContext(); |
| this.signature = builder.getSignature(); |
| } |
| |
| public String getContext() { |
| return context; |
| } |
| |
| public byte[] getSignature() { |
| return signature == null ? |
| null : Arrays.copyOf(signature, signature.length); |
| } |
| |
| @InterfaceAudience.Private |
| public boolean isContextValid() { |
| return context != null && !context.isEmpty(); |
| } |
| |
| @Override |
| public int hashCode() { |
| return new HashCodeBuilder().append(context).toHashCode(); |
| } |
| |
| @Override |
| public boolean equals(Object obj) { |
| if (obj == null) { |
| return false; |
| } else if (obj == this) { |
| return true; |
| } else if (obj.getClass() != getClass()) { |
| return false; |
| } else { |
| CallerContext rhs = (CallerContext) obj; |
| return new EqualsBuilder() |
| .append(context, rhs.context) |
| .append(signature, rhs.signature) |
| .isEquals(); |
| } |
| } |
| |
| @Override |
| public String toString() { |
| if (!isContextValid()) { |
| return ""; |
| } |
| String str = context; |
| if (signature != null) { |
| str += ":"; |
| str += new String(signature, SIGNATURE_ENCODING); |
| } |
| return str; |
| } |
| |
| /** The caller context builder. */ |
| public static final class Builder { |
| private static final String KEY_VALUE_SEPARATOR = ":"; |
| /** |
| * The illegal separators include '\t', '\n', '='. |
| * User should not set illegal separator. |
| */ |
| private static final Set<String> ILLEGAL_SEPARATORS = |
| Collections.unmodifiableSet( |
| new HashSet<>(Arrays.asList("\t", "\n", "="))); |
| private final String fieldSeparator; |
| private final StringBuilder sb = new StringBuilder(); |
| private byte[] signature; |
| |
| public Builder(String context) { |
| this(context, HADOOP_CALLER_CONTEXT_SEPARATOR_DEFAULT); |
| } |
| |
| public Builder(String context, Configuration conf) { |
| if (isValid(context)) { |
| sb.append(context); |
| } |
| fieldSeparator = conf.get(HADOOP_CALLER_CONTEXT_SEPARATOR_KEY, |
| HADOOP_CALLER_CONTEXT_SEPARATOR_DEFAULT); |
| checkFieldSeparator(fieldSeparator); |
| } |
| |
| public Builder(String context, String separator) { |
| if (isValid(context)) { |
| sb.append(context); |
| } |
| fieldSeparator = separator; |
| checkFieldSeparator(fieldSeparator); |
| } |
| |
| /** |
| * Check whether the separator is legal. |
| * The illegal separators include '\t', '\n', '='. |
| * Throw IllegalArgumentException if the separator is Illegal. |
| * @param separator the separator of fields. |
| */ |
| private void checkFieldSeparator(String separator) { |
| if (ILLEGAL_SEPARATORS.contains(separator)) { |
| throw new IllegalArgumentException("Illegal field separator: " |
| + separator); |
| } |
| } |
| |
| /** |
| * Whether the field is valid. |
| * The field should not contain '\t', '\n', '='. |
| * Because the context could be written to audit log. |
| * @param field one of the fields in context. |
| * @return true if the field is not null or empty. |
| */ |
| private boolean isValid(String field) { |
| return field != null && field.length() > 0; |
| } |
| |
| public Builder setSignature(byte[] signature) { |
| if (signature != null && signature.length > 0) { |
| this.signature = Arrays.copyOf(signature, signature.length); |
| } |
| return this; |
| } |
| |
| /** |
| * Get the context. |
| * For example, the context is "key1:value1,key2:value2". |
| * @return the valid context or null. |
| */ |
| public String getContext() { |
| return sb.length() > 0 ? sb.toString() : null; |
| } |
| |
| /** |
| * Get the signature. |
| * @return the signature. |
| */ |
| public byte[] getSignature() { |
| return signature; |
| } |
| |
| /** |
| * Append new field to the context. |
| * @param field one of fields to append. |
| * @return the builder. |
| */ |
| public Builder append(String field) { |
| if (isValid(field)) { |
| if (sb.length() > 0) { |
| sb.append(fieldSeparator); |
| } |
| sb.append(field); |
| } |
| return this; |
| } |
| |
| /** |
| * Append new field which contains key and value to the context. |
| * @param key the key of field. |
| * @param value the value of field. |
| * @return the builder. |
| */ |
| public Builder append(String key, String value) { |
| if (isValid(key) && isValid(value)) { |
| if (sb.length() > 0) { |
| sb.append(fieldSeparator); |
| } |
| sb.append(key).append(KEY_VALUE_SEPARATOR).append(value); |
| } |
| return this; |
| } |
| |
| /** |
| * Append new field which contains key and value to the context |
| * if the key("key:") is absent. |
| * @param key the key of field. |
| * @param value the value of field. |
| * @return the builder. |
| */ |
| public Builder appendIfAbsent(String key, String value) { |
| if (sb.toString().contains(key + KEY_VALUE_SEPARATOR)) { |
| return this; |
| } |
| if (isValid(key) && isValid(value)) { |
| if (sb.length() > 0) { |
| sb.append(fieldSeparator); |
| } |
| sb.append(key).append(KEY_VALUE_SEPARATOR).append(value); |
| } |
| return this; |
| } |
| |
| public CallerContext build() { |
| return new CallerContext(this); |
| } |
| } |
| |
| /** |
| * The thread local current caller context. |
| * <p> |
| * Internal class for defered singleton idiom. |
| * https://en.wikipedia.org/wiki/Initialization_on_demand_holder_idiom |
| */ |
| private static final class CurrentCallerContextHolder { |
| static final ThreadLocal<CallerContext> CALLER_CONTEXT = |
| new InheritableThreadLocal<>(); |
| } |
| |
| public static CallerContext getCurrent() { |
| return CurrentCallerContextHolder.CALLER_CONTEXT.get(); |
| } |
| |
| public static void setCurrent(CallerContext callerContext) { |
| CurrentCallerContextHolder.CALLER_CONTEXT.set(callerContext); |
| } |
| } |