http://git-wip-us.apache.org/repos/asf/hbase-site/blob/c54c242b/devapidocs/src-html/org/apache/hadoop/hbase/ipc/BlockingRpcConnection.CallSender.html ---------------------------------------------------------------------- diff --git a/devapidocs/src-html/org/apache/hadoop/hbase/ipc/BlockingRpcConnection.CallSender.html b/devapidocs/src-html/org/apache/hadoop/hbase/ipc/BlockingRpcConnection.CallSender.html index 81f352c..0782ea7 100644 --- a/devapidocs/src-html/org/apache/hadoop/hbase/ipc/BlockingRpcConnection.CallSender.html +++ b/devapidocs/src-html/org/apache/hadoop/hbase/ipc/BlockingRpcConnection.CallSender.html @@ -51,39 +51,39 @@ <span class="sourceLineNo">043</span>import java.util.concurrent.ConcurrentHashMap;<a name="line.43"></a> <span class="sourceLineNo">044</span>import java.util.concurrent.ConcurrentMap;<a name="line.44"></a> <span class="sourceLineNo">045</span>import java.util.concurrent.ThreadLocalRandom;<a name="line.45"></a> -<span class="sourceLineNo">046</span><a name="line.46"></a> -<span class="sourceLineNo">047</span>import javax.security.sasl.SaslException;<a name="line.47"></a> -<span class="sourceLineNo">048</span><a name="line.48"></a> -<span class="sourceLineNo">049</span>import org.apache.commons.logging.Log;<a name="line.49"></a> -<span class="sourceLineNo">050</span>import org.apache.commons.logging.LogFactory;<a name="line.50"></a> -<span class="sourceLineNo">051</span>import org.apache.hadoop.conf.Configuration;<a name="line.51"></a> -<span class="sourceLineNo">052</span>import org.apache.hadoop.hbase.CellScanner;<a name="line.52"></a> -<span class="sourceLineNo">053</span>import org.apache.hadoop.hbase.DoNotRetryIOException;<a name="line.53"></a> -<span class="sourceLineNo">054</span>import org.apache.hadoop.hbase.exceptions.ConnectionClosingException;<a name="line.54"></a> -<span class="sourceLineNo">055</span>import org.apache.hadoop.hbase.io.ByteArrayOutputStream;<a name="line.55"></a> -<span class="sourceLineNo">056</span>import org.apache.hadoop.hbase.ipc.HBaseRpcController.CancellationCallback;<a name="line.56"></a> -<span class="sourceLineNo">057</span>import org.apache.hadoop.hbase.security.HBaseSaslRpcClient;<a name="line.57"></a> -<span class="sourceLineNo">058</span>import org.apache.hadoop.hbase.security.SaslUtil;<a name="line.58"></a> -<span class="sourceLineNo">059</span>import org.apache.hadoop.hbase.security.SaslUtil.QualityOfProtection;<a name="line.59"></a> -<span class="sourceLineNo">060</span>import org.apache.hadoop.hbase.shaded.com.google.protobuf.Message;<a name="line.60"></a> -<span class="sourceLineNo">061</span>import org.apache.hadoop.hbase.shaded.com.google.protobuf.Message.Builder;<a name="line.61"></a> -<span class="sourceLineNo">062</span>import org.apache.hadoop.hbase.shaded.com.google.protobuf.RpcCallback;<a name="line.62"></a> -<span class="sourceLineNo">063</span>import org.apache.hadoop.hbase.shaded.protobuf.ProtobufUtil;<a name="line.63"></a> -<span class="sourceLineNo">064</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos;<a name="line.64"></a> -<span class="sourceLineNo">065</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.CellBlockMeta;<a name="line.65"></a> -<span class="sourceLineNo">066</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.ConnectionHeader;<a name="line.66"></a> -<span class="sourceLineNo">067</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.ExceptionResponse;<a name="line.67"></a> -<span class="sourceLineNo">068</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.RequestHeader;<a name="line.68"></a> -<span class="sourceLineNo">069</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.ResponseHeader;<a name="line.69"></a> -<span class="sourceLineNo">070</span>import org.apache.hadoop.hbase.trace.TraceUtil;<a name="line.70"></a> -<span class="sourceLineNo">071</span>import org.apache.hadoop.hbase.util.EnvironmentEdgeManager;<a name="line.71"></a> -<span class="sourceLineNo">072</span>import org.apache.hadoop.hbase.util.ExceptionUtil;<a name="line.72"></a> -<span class="sourceLineNo">073</span>import org.apache.hadoop.io.IOUtils;<a name="line.73"></a> -<span class="sourceLineNo">074</span>import org.apache.hadoop.ipc.RemoteException;<a name="line.74"></a> -<span class="sourceLineNo">075</span>import org.apache.hadoop.net.NetUtils;<a name="line.75"></a> -<span class="sourceLineNo">076</span>import org.apache.hadoop.security.UserGroupInformation;<a name="line.76"></a> -<span class="sourceLineNo">077</span>import org.apache.htrace.core.TraceScope;<a name="line.77"></a> -<span class="sourceLineNo">078</span>import org.apache.yetus.audience.InterfaceAudience;<a name="line.78"></a> +<span class="sourceLineNo">046</span>import javax.security.sasl.SaslException;<a name="line.46"></a> +<span class="sourceLineNo">047</span>import org.apache.commons.logging.Log;<a name="line.47"></a> +<span class="sourceLineNo">048</span>import org.apache.commons.logging.LogFactory;<a name="line.48"></a> +<span class="sourceLineNo">049</span>import org.apache.hadoop.conf.Configuration;<a name="line.49"></a> +<span class="sourceLineNo">050</span>import org.apache.hadoop.hbase.CellScanner;<a name="line.50"></a> +<span class="sourceLineNo">051</span>import org.apache.hadoop.hbase.DoNotRetryIOException;<a name="line.51"></a> +<span class="sourceLineNo">052</span>import org.apache.hadoop.hbase.exceptions.ConnectionClosingException;<a name="line.52"></a> +<span class="sourceLineNo">053</span>import org.apache.hadoop.hbase.io.ByteArrayOutputStream;<a name="line.53"></a> +<span class="sourceLineNo">054</span>import org.apache.hadoop.hbase.ipc.HBaseRpcController.CancellationCallback;<a name="line.54"></a> +<span class="sourceLineNo">055</span>import org.apache.hadoop.hbase.security.HBaseSaslRpcClient;<a name="line.55"></a> +<span class="sourceLineNo">056</span>import org.apache.hadoop.hbase.security.SaslUtil;<a name="line.56"></a> +<span class="sourceLineNo">057</span>import org.apache.hadoop.hbase.security.SaslUtil.QualityOfProtection;<a name="line.57"></a> +<span class="sourceLineNo">058</span>import org.apache.hadoop.hbase.trace.TraceUtil;<a name="line.58"></a> +<span class="sourceLineNo">059</span>import org.apache.hadoop.hbase.util.EnvironmentEdgeManager;<a name="line.59"></a> +<span class="sourceLineNo">060</span>import org.apache.hadoop.hbase.util.ExceptionUtil;<a name="line.60"></a> +<span class="sourceLineNo">061</span>import org.apache.hadoop.io.IOUtils;<a name="line.61"></a> +<span class="sourceLineNo">062</span>import org.apache.hadoop.ipc.RemoteException;<a name="line.62"></a> +<span class="sourceLineNo">063</span>import org.apache.hadoop.net.NetUtils;<a name="line.63"></a> +<span class="sourceLineNo">064</span>import org.apache.hadoop.security.UserGroupInformation;<a name="line.64"></a> +<span class="sourceLineNo">065</span>import org.apache.hadoop.util.StringUtils;<a name="line.65"></a> +<span class="sourceLineNo">066</span>import org.apache.htrace.core.TraceScope;<a name="line.66"></a> +<span class="sourceLineNo">067</span>import org.apache.yetus.audience.InterfaceAudience;<a name="line.67"></a> +<span class="sourceLineNo">068</span><a name="line.68"></a> +<span class="sourceLineNo">069</span>import org.apache.hadoop.hbase.shaded.com.google.protobuf.Message;<a name="line.69"></a> +<span class="sourceLineNo">070</span>import org.apache.hadoop.hbase.shaded.com.google.protobuf.Message.Builder;<a name="line.70"></a> +<span class="sourceLineNo">071</span>import org.apache.hadoop.hbase.shaded.com.google.protobuf.RpcCallback;<a name="line.71"></a> +<span class="sourceLineNo">072</span>import org.apache.hadoop.hbase.shaded.protobuf.ProtobufUtil;<a name="line.72"></a> +<span class="sourceLineNo">073</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos;<a name="line.73"></a> +<span class="sourceLineNo">074</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.CellBlockMeta;<a name="line.74"></a> +<span class="sourceLineNo">075</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.ConnectionHeader;<a name="line.75"></a> +<span class="sourceLineNo">076</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.ExceptionResponse;<a name="line.76"></a> +<span class="sourceLineNo">077</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.RequestHeader;<a name="line.77"></a> +<span class="sourceLineNo">078</span>import org.apache.hadoop.hbase.shaded.protobuf.generated.RPCProtos.ResponseHeader;<a name="line.78"></a> <span class="sourceLineNo">079</span><a name="line.79"></a> <span class="sourceLineNo">080</span>/**<a name="line.80"></a> <span class="sourceLineNo">081</span> * Thread that reads responses and notifies callers. Each connection owns a socket connected to a<a name="line.81"></a> @@ -271,533 +271,545 @@ <span class="sourceLineNo">263</span> /*<a name="line.263"></a> <span class="sourceLineNo">264</span> * The max number of retries is 45, which amounts to 20s*45 = 15 minutes retries.<a name="line.264"></a> <span class="sourceLineNo">265</span> */<a name="line.265"></a> -<span class="sourceLineNo">266</span> handleConnectionFailure(timeoutFailures++, this.rpcClient.maxRetries, toe);<a name="line.266"></a> -<span class="sourceLineNo">267</span> } catch (IOException ie) {<a name="line.267"></a> -<span class="sourceLineNo">268</span> handleConnectionFailure(ioFailures++, this.rpcClient.maxRetries, ie);<a name="line.268"></a> -<span class="sourceLineNo">269</span> }<a name="line.269"></a> -<span class="sourceLineNo">270</span> }<a name="line.270"></a> -<span class="sourceLineNo">271</span> }<a name="line.271"></a> -<span class="sourceLineNo">272</span><a name="line.272"></a> -<span class="sourceLineNo">273</span> /**<a name="line.273"></a> -<span class="sourceLineNo">274</span> * Handle connection failures If the current number of retries is equal to the max number of<a name="line.274"></a> -<span class="sourceLineNo">275</span> * retries, stop retrying and throw the exception; Otherwise backoff N seconds and try connecting<a name="line.275"></a> -<span class="sourceLineNo">276</span> * again. This Method is only called from inside setupIOstreams(), which is synchronized. Hence<a name="line.276"></a> -<span class="sourceLineNo">277</span> * the sleep is synchronized; the locks will be retained.<a name="line.277"></a> -<span class="sourceLineNo">278</span> * @param curRetries current number of retries<a name="line.278"></a> -<span class="sourceLineNo">279</span> * @param maxRetries max number of retries allowed<a name="line.279"></a> -<span class="sourceLineNo">280</span> * @param ioe failure reason<a name="line.280"></a> -<span class="sourceLineNo">281</span> * @throws IOException if max number of retries is reached<a name="line.281"></a> -<span class="sourceLineNo">282</span> */<a name="line.282"></a> -<span class="sourceLineNo">283</span> private void handleConnectionFailure(int curRetries, int maxRetries, IOException ioe)<a name="line.283"></a> -<span class="sourceLineNo">284</span> throws IOException {<a name="line.284"></a> -<span class="sourceLineNo">285</span> closeSocket();<a name="line.285"></a> -<span class="sourceLineNo">286</span><a name="line.286"></a> -<span class="sourceLineNo">287</span> // throw the exception if the maximum number of retries is reached<a name="line.287"></a> -<span class="sourceLineNo">288</span> if (curRetries >= maxRetries || ExceptionUtil.isInterrupt(ioe)) {<a name="line.288"></a> -<span class="sourceLineNo">289</span> throw ioe;<a name="line.289"></a> -<span class="sourceLineNo">290</span> }<a name="line.290"></a> -<span class="sourceLineNo">291</span><a name="line.291"></a> -<span class="sourceLineNo">292</span> // otherwise back off and retry<a name="line.292"></a> -<span class="sourceLineNo">293</span> try {<a name="line.293"></a> -<span class="sourceLineNo">294</span> Thread.sleep(this.rpcClient.failureSleep);<a name="line.294"></a> -<span class="sourceLineNo">295</span> } catch (InterruptedException ie) {<a name="line.295"></a> -<span class="sourceLineNo">296</span> ExceptionUtil.rethrowIfInterrupt(ie);<a name="line.296"></a> -<span class="sourceLineNo">297</span> }<a name="line.297"></a> -<span class="sourceLineNo">298</span><a name="line.298"></a> -<span class="sourceLineNo">299</span> LOG.info("Retrying connect to server: " + remoteId.getAddress() + " after sleeping "<a name="line.299"></a> -<span class="sourceLineNo">300</span> + this.rpcClient.failureSleep + "ms. Already tried " + curRetries + " time(s).");<a name="line.300"></a> -<span class="sourceLineNo">301</span> }<a name="line.301"></a> -<span class="sourceLineNo">302</span><a name="line.302"></a> -<span class="sourceLineNo">303</span> /*<a name="line.303"></a> -<span class="sourceLineNo">304</span> * wait till someone signals us to start reading RPC response or it is idle too long, it is marked<a name="line.304"></a> -<span class="sourceLineNo">305</span> * as to be closed, or the client is marked as not running.<a name="line.305"></a> -<span class="sourceLineNo">306</span> * @return true if it is time to read a response; false otherwise.<a name="line.306"></a> -<span class="sourceLineNo">307</span> */<a name="line.307"></a> -<span class="sourceLineNo">308</span> private synchronized boolean waitForWork() {<a name="line.308"></a> -<span class="sourceLineNo">309</span> // beware of the concurrent access to the calls list: we can add calls, but as well<a name="line.309"></a> -<span class="sourceLineNo">310</span> // remove them.<a name="line.310"></a> -<span class="sourceLineNo">311</span> long waitUntil = EnvironmentEdgeManager.currentTime() + this.rpcClient.minIdleTimeBeforeClose;<a name="line.311"></a> -<span class="sourceLineNo">312</span> for (;;) {<a name="line.312"></a> -<span class="sourceLineNo">313</span> if (thread == null) {<a name="line.313"></a> -<span class="sourceLineNo">314</span> return false;<a name="line.314"></a> -<span class="sourceLineNo">315</span> }<a name="line.315"></a> -<span class="sourceLineNo">316</span> if (!calls.isEmpty()) {<a name="line.316"></a> -<span class="sourceLineNo">317</span> return true;<a name="line.317"></a> -<span class="sourceLineNo">318</span> }<a name="line.318"></a> -<span class="sourceLineNo">319</span> if (EnvironmentEdgeManager.currentTime() >= waitUntil) {<a name="line.319"></a> -<span class="sourceLineNo">320</span> closeConn(<a name="line.320"></a> -<span class="sourceLineNo">321</span> new IOException("idle connection closed with " + calls.size() + " pending request(s)"));<a name="line.321"></a> -<span class="sourceLineNo">322</span> return false;<a name="line.322"></a> -<span class="sourceLineNo">323</span> }<a name="line.323"></a> -<span class="sourceLineNo">324</span> try {<a name="line.324"></a> -<span class="sourceLineNo">325</span> wait(Math.min(this.rpcClient.minIdleTimeBeforeClose, 1000));<a name="line.325"></a> -<span class="sourceLineNo">326</span> } catch (InterruptedException e) {<a name="line.326"></a> -<span class="sourceLineNo">327</span> }<a name="line.327"></a> -<span class="sourceLineNo">328</span> }<a name="line.328"></a> -<span class="sourceLineNo">329</span> }<a name="line.329"></a> -<span class="sourceLineNo">330</span><a name="line.330"></a> -<span class="sourceLineNo">331</span> @Override<a name="line.331"></a> -<span class="sourceLineNo">332</span> public void run() {<a name="line.332"></a> -<span class="sourceLineNo">333</span> if (LOG.isTraceEnabled()) {<a name="line.333"></a> -<span class="sourceLineNo">334</span> LOG.trace(threadName + ": starting, connections " + this.rpcClient.connections.size());<a name="line.334"></a> -<span class="sourceLineNo">335</span> }<a name="line.335"></a> -<span class="sourceLineNo">336</span> while (waitForWork()) {<a name="line.336"></a> -<span class="sourceLineNo">337</span> readResponse();<a name="line.337"></a> -<span class="sourceLineNo">338</span> }<a name="line.338"></a> -<span class="sourceLineNo">339</span> if (LOG.isTraceEnabled()) {<a name="line.339"></a> -<span class="sourceLineNo">340</span> LOG.trace(threadName + ": stopped, connections " + this.rpcClient.connections.size());<a name="line.340"></a> -<span class="sourceLineNo">341</span> }<a name="line.341"></a> -<span class="sourceLineNo">342</span> }<a name="line.342"></a> -<span class="sourceLineNo">343</span><a name="line.343"></a> -<span class="sourceLineNo">344</span> private void disposeSasl() {<a name="line.344"></a> -<span class="sourceLineNo">345</span> if (saslRpcClient != null) {<a name="line.345"></a> -<span class="sourceLineNo">346</span> saslRpcClient.dispose();<a name="line.346"></a> -<span class="sourceLineNo">347</span> saslRpcClient = null;<a name="line.347"></a> -<span class="sourceLineNo">348</span> }<a name="line.348"></a> -<span class="sourceLineNo">349</span> }<a name="line.349"></a> -<span class="sourceLineNo">350</span><a name="line.350"></a> -<span class="sourceLineNo">351</span> private boolean setupSaslConnection(final InputStream in2, final OutputStream out2)<a name="line.351"></a> -<span class="sourceLineNo">352</span> throws IOException {<a name="line.352"></a> -<span class="sourceLineNo">353</span> saslRpcClient = new HBaseSaslRpcClient(authMethod, token, serverPrincipal,<a name="line.353"></a> -<span class="sourceLineNo">354</span> this.rpcClient.fallbackAllowed, this.rpcClient.conf.get("hbase.rpc.protection",<a name="line.354"></a> -<span class="sourceLineNo">355</span> QualityOfProtection.AUTHENTICATION.name().toLowerCase(Locale.ROOT)),<a name="line.355"></a> -<span class="sourceLineNo">356</span> this.rpcClient.conf.getBoolean(CRYPTO_AES_ENABLED_KEY, CRYPTO_AES_ENABLED_DEFAULT));<a name="line.356"></a> -<span class="sourceLineNo">357</span> return saslRpcClient.saslConnect(in2, out2);<a name="line.357"></a> -<span class="sourceLineNo">358</span> }<a name="line.358"></a> -<span class="sourceLineNo">359</span><a name="line.359"></a> -<span class="sourceLineNo">360</span> /**<a name="line.360"></a> -<span class="sourceLineNo">361</span> * If multiple clients with the same principal try to connect to the same server at the same time,<a name="line.361"></a> -<span class="sourceLineNo">362</span> * the server assumes a replay attack is in progress. This is a feature of kerberos. In order to<a name="line.362"></a> -<span class="sourceLineNo">363</span> * work around this, what is done is that the client backs off randomly and tries to initiate the<a name="line.363"></a> -<span class="sourceLineNo">364</span> * connection again. The other problem is to do with ticket expiry. To handle that, a relogin is<a name="line.364"></a> -<span class="sourceLineNo">365</span> * attempted.<a name="line.365"></a> -<span class="sourceLineNo">366</span> * <p><a name="line.366"></a> -<span class="sourceLineNo">367</span> * The retry logic is governed by the {@link #shouldAuthenticateOverKrb} method. In case when the<a name="line.367"></a> -<span class="sourceLineNo">368</span> * user doesn't have valid credentials, we don't need to retry (from cache or ticket). In such<a name="line.368"></a> -<span class="sourceLineNo">369</span> * cases, it is prudent to throw a runtime exception when we receive a SaslException from the<a name="line.369"></a> -<span class="sourceLineNo">370</span> * underlying authentication implementation, so there is no retry from other high level (for eg,<a name="line.370"></a> -<span class="sourceLineNo">371</span> * HCM or HBaseAdmin).<a name="line.371"></a> -<span class="sourceLineNo">372</span> * </p><a name="line.372"></a> -<span class="sourceLineNo">373</span> */<a name="line.373"></a> -<span class="sourceLineNo">374</span> private void handleSaslConnectionFailure(final int currRetries, final int maxRetries,<a name="line.374"></a> -<span class="sourceLineNo">375</span> final Exception ex, final UserGroupInformation user)<a name="line.375"></a> -<span class="sourceLineNo">376</span> throws IOException, InterruptedException {<a name="line.376"></a> -<span class="sourceLineNo">377</span> closeSocket();<a name="line.377"></a> -<span class="sourceLineNo">378</span> user.doAs(new PrivilegedExceptionAction<Object>() {<a name="line.378"></a> -<span class="sourceLineNo">379</span> @Override<a name="line.379"></a> -<span class="sourceLineNo">380</span> public Object run() throws IOException, InterruptedException {<a name="line.380"></a> -<span class="sourceLineNo">381</span> if (shouldAuthenticateOverKrb()) {<a name="line.381"></a> -<span class="sourceLineNo">382</span> if (currRetries < maxRetries) {<a name="line.382"></a> -<span class="sourceLineNo">383</span> if (LOG.isDebugEnabled()) {<a name="line.383"></a> -<span class="sourceLineNo">384</span> LOG.debug("Exception encountered while connecting to " + "the server : " + ex);<a name="line.384"></a> -<span class="sourceLineNo">385</span> }<a name="line.385"></a> -<span class="sourceLineNo">386</span> // try re-login<a name="line.386"></a> -<span class="sourceLineNo">387</span> relogin();<a name="line.387"></a> -<span class="sourceLineNo">388</span> disposeSasl();<a name="line.388"></a> -<span class="sourceLineNo">389</span> // have granularity of milliseconds<a name="line.389"></a> -<span class="sourceLineNo">390</span> // we are sleeping with the Connection lock held but since this<a name="line.390"></a> -<span class="sourceLineNo">391</span> // connection instance is being used for connecting to the server<a name="line.391"></a> -<span class="sourceLineNo">392</span> // in question, it is okay<a name="line.392"></a> -<span class="sourceLineNo">393</span> Thread.sleep(ThreadLocalRandom.current().nextInt(reloginMaxBackoff) + 1);<a name="line.393"></a> -<span class="sourceLineNo">394</span> return null;<a name="line.394"></a> -<span class="sourceLineNo">395</span> } else {<a name="line.395"></a> -<span class="sourceLineNo">396</span> String msg = "Couldn't setup connection for "<a name="line.396"></a> -<span class="sourceLineNo">397</span> + UserGroupInformation.getLoginUser().getUserName() + " to " + serverPrincipal;<a name="line.397"></a> -<span class="sourceLineNo">398</span> LOG.warn(msg, ex);<a name="line.398"></a> -<span class="sourceLineNo">399</span> throw (IOException) new IOException(msg).initCause(ex);<a name="line.399"></a> -<span class="sourceLineNo">400</span> }<a name="line.400"></a> -<span class="sourceLineNo">401</span> } else {<a name="line.401"></a> -<span class="sourceLineNo">402</span> LOG.warn("Exception encountered while connecting to " + "the server : " + ex);<a name="line.402"></a> -<span class="sourceLineNo">403</span> }<a name="line.403"></a> -<span class="sourceLineNo">404</span> if (ex instanceof RemoteException) {<a name="line.404"></a> -<span class="sourceLineNo">405</span> throw (RemoteException) ex;<a name="line.405"></a> -<span class="sourceLineNo">406</span> }<a name="line.406"></a> -<span class="sourceLineNo">407</span> if (ex instanceof SaslException) {<a name="line.407"></a> -<span class="sourceLineNo">408</span> String msg = "SASL authentication failed."<a name="line.408"></a> -<span class="sourceLineNo">409</span> + " The most likely cause is missing or invalid credentials." + " Consider 'kinit'.";<a name="line.409"></a> -<span class="sourceLineNo">410</span> LOG.fatal(msg, ex);<a name="line.410"></a> -<span class="sourceLineNo">411</span> throw new RuntimeException(msg, ex);<a name="line.411"></a> -<span class="sourceLineNo">412</span> }<a name="line.412"></a> -<span class="sourceLineNo">413</span> throw new IOException(ex);<a name="line.413"></a> -<span class="sourceLineNo">414</span> }<a name="line.414"></a> -<span class="sourceLineNo">415</span> });<a name="line.415"></a> -<span class="sourceLineNo">416</span> }<a name="line.416"></a> -<span class="sourceLineNo">417</span><a name="line.417"></a> -<span class="sourceLineNo">418</span> private void setupIOstreams() throws IOException {<a name="line.418"></a> -<span class="sourceLineNo">419</span> if (socket != null) {<a name="line.419"></a> -<span class="sourceLineNo">420</span> // The connection is already available. Perfect.<a name="line.420"></a> -<span class="sourceLineNo">421</span> return;<a name="line.421"></a> -<span class="sourceLineNo">422</span> }<a name="line.422"></a> -<span class="sourceLineNo">423</span><a name="line.423"></a> -<span class="sourceLineNo">424</span> if (this.rpcClient.failedServers.isFailedServer(remoteId.getAddress())) {<a name="line.424"></a> -<span class="sourceLineNo">425</span> if (LOG.isDebugEnabled()) {<a name="line.425"></a> -<span class="sourceLineNo">426</span> LOG.debug("Not trying to connect to " + remoteId.address<a name="line.426"></a> -<span class="sourceLineNo">427</span> + " this server is in the failed servers list");<a name="line.427"></a> -<span class="sourceLineNo">428</span> }<a name="line.428"></a> -<span class="sourceLineNo">429</span> throw new FailedServerException(<a name="line.429"></a> -<span class="sourceLineNo">430</span> "This server is in the failed servers list: " + remoteId.address);<a name="line.430"></a> -<span class="sourceLineNo">431</span> }<a name="line.431"></a> -<span class="sourceLineNo">432</span><a name="line.432"></a> -<span class="sourceLineNo">433</span> try {<a name="line.433"></a> -<span class="sourceLineNo">434</span> if (LOG.isDebugEnabled()) {<a name="line.434"></a> -<span class="sourceLineNo">435</span> LOG.debug("Connecting to " + remoteId.address);<a name="line.435"></a> -<span class="sourceLineNo">436</span> }<a name="line.436"></a> -<span class="sourceLineNo">437</span><a name="line.437"></a> -<span class="sourceLineNo">438</span> short numRetries = 0;<a name="line.438"></a> -<span class="sourceLineNo">439</span> final short MAX_RETRIES = 5;<a name="line.439"></a> -<span class="sourceLineNo">440</span> while (true) {<a name="line.440"></a> -<span class="sourceLineNo">441</span> setupConnection();<a name="line.441"></a> -<span class="sourceLineNo">442</span> InputStream inStream = NetUtils.getInputStream(socket);<a name="line.442"></a> -<span class="sourceLineNo">443</span> // This creates a socket with a write timeout. This timeout cannot be changed.<a name="line.443"></a> -<span class="sourceLineNo">444</span> OutputStream outStream = NetUtils.getOutputStream(socket, this.rpcClient.writeTO);<a name="line.444"></a> -<span class="sourceLineNo">445</span> // Write out the preamble -- MAGIC, version, and auth to use.<a name="line.445"></a> -<span class="sourceLineNo">446</span> writeConnectionHeaderPreamble(outStream);<a name="line.446"></a> -<span class="sourceLineNo">447</span> if (useSasl) {<a name="line.447"></a> -<span class="sourceLineNo">448</span> final InputStream in2 = inStream;<a name="line.448"></a> -<span class="sourceLineNo">449</span> final OutputStream out2 = outStream;<a name="line.449"></a> -<span class="sourceLineNo">450</span> UserGroupInformation ticket = getUGI();<a name="line.450"></a> -<span class="sourceLineNo">451</span> boolean continueSasl;<a name="line.451"></a> -<span class="sourceLineNo">452</span> if (ticket == null) {<a name="line.452"></a> -<span class="sourceLineNo">453</span> throw new FatalConnectionException("ticket/user is null");<a name="line.453"></a> -<span class="sourceLineNo">454</span> }<a name="line.454"></a> -<span class="sourceLineNo">455</span> try {<a name="line.455"></a> -<span class="sourceLineNo">456</span> continueSasl = ticket.doAs(new PrivilegedExceptionAction<Boolean>() {<a name="line.456"></a> -<span class="sourceLineNo">457</span> @Override<a name="line.457"></a> -<span class="sourceLineNo">458</span> public Boolean run() throws IOException {<a name="line.458"></a> -<span class="sourceLineNo">459</span> return setupSaslConnection(in2, out2);<a name="line.459"></a> -<span class="sourceLineNo">460</span> }<a name="line.460"></a> -<span class="sourceLineNo">461</span> });<a name="line.461"></a> -<span class="sourceLineNo">462</span> } catch (Exception ex) {<a name="line.462"></a> -<span class="sourceLineNo">463</span> ExceptionUtil.rethrowIfInterrupt(ex);<a name="line.463"></a> -<span class="sourceLineNo">464</span> handleSaslConnectionFailure(numRetries++, MAX_RETRIES, ex, ticket);<a name="line.464"></a> -<span class="sourceLineNo">465</span> continue;<a name="line.465"></a> +<span class="sourceLineNo">266</span> if (LOG.isDebugEnabled()) {<a name="line.266"></a> +<span class="sourceLineNo">267</span> LOG.debug("Received exception in connection setup.\n" +<a name="line.267"></a> +<span class="sourceLineNo">268</span> StringUtils.stringifyException(toe));<a name="line.268"></a> +<span class="sourceLineNo">269</span> }<a name="line.269"></a> +<span class="sourceLineNo">270</span> handleConnectionFailure(timeoutFailures++, this.rpcClient.maxRetries, toe);<a name="line.270"></a> +<span class="sourceLineNo">271</span> } catch (IOException ie) {<a name="line.271"></a> +<span class="sourceLineNo">272</span> if (LOG.isDebugEnabled()) {<a name="line.272"></a> +<span class="sourceLineNo">273</span> LOG.debug("Received exception in connection setup.\n" +<a name="line.273"></a> +<span class="sourceLineNo">274</span> StringUtils.stringifyException(ie));<a name="line.274"></a> +<span class="sourceLineNo">275</span> }<a name="line.275"></a> +<span class="sourceLineNo">276</span> handleConnectionFailure(ioFailures++, this.rpcClient.maxRetries, ie);<a name="line.276"></a> +<span class="sourceLineNo">277</span> }<a name="line.277"></a> +<span class="sourceLineNo">278</span> }<a name="line.278"></a> +<span class="sourceLineNo">279</span> }<a name="line.279"></a> +<span class="sourceLineNo">280</span><a name="line.280"></a> +<span class="sourceLineNo">281</span> /**<a name="line.281"></a> +<span class="sourceLineNo">282</span> * Handle connection failures If the current number of retries is equal to the max number of<a name="line.282"></a> +<span class="sourceLineNo">283</span> * retries, stop retrying and throw the exception; Otherwise backoff N seconds and try connecting<a name="line.283"></a> +<span class="sourceLineNo">284</span> * again. This Method is only called from inside setupIOstreams(), which is synchronized. Hence<a name="line.284"></a> +<span class="sourceLineNo">285</span> * the sleep is synchronized; the locks will be retained.<a name="line.285"></a> +<span class="sourceLineNo">286</span> * @param curRetries current number of retries<a name="line.286"></a> +<span class="sourceLineNo">287</span> * @param maxRetries max number of retries allowed<a name="line.287"></a> +<span class="sourceLineNo">288</span> * @param ioe failure reason<a name="line.288"></a> +<span class="sourceLineNo">289</span> * @throws IOException if max number of retries is reached<a name="line.289"></a> +<span class="sourceLineNo">290</span> */<a name="line.290"></a> +<span class="sourceLineNo">291</span> private void handleConnectionFailure(int curRetries, int maxRetries, IOException ioe)<a name="line.291"></a> +<span class="sourceLineNo">292</span> throws IOException {<a name="line.292"></a> +<span class="sourceLineNo">293</span> closeSocket();<a name="line.293"></a> +<span class="sourceLineNo">294</span><a name="line.294"></a> +<span class="sourceLineNo">295</span> // throw the exception if the maximum number of retries is reached<a name="line.295"></a> +<span class="sourceLineNo">296</span> if (curRetries >= maxRetries || ExceptionUtil.isInterrupt(ioe)) {<a name="line.296"></a> +<span class="sourceLineNo">297</span> throw ioe;<a name="line.297"></a> +<span class="sourceLineNo">298</span> }<a name="line.298"></a> +<span class="sourceLineNo">299</span><a name="line.299"></a> +<span class="sourceLineNo">300</span> // otherwise back off and retry<a name="line.300"></a> +<span class="sourceLineNo">301</span> try {<a name="line.301"></a> +<span class="sourceLineNo">302</span> Thread.sleep(this.rpcClient.failureSleep);<a name="line.302"></a> +<span class="sourceLineNo">303</span> } catch (InterruptedException ie) {<a name="line.303"></a> +<span class="sourceLineNo">304</span> ExceptionUtil.rethrowIfInterrupt(ie);<a name="line.304"></a> +<span class="sourceLineNo">305</span> }<a name="line.305"></a> +<span class="sourceLineNo">306</span><a name="line.306"></a> +<span class="sourceLineNo">307</span> if (LOG.isInfoEnabled()) {<a name="line.307"></a> +<span class="sourceLineNo">308</span> LOG.info("Retrying connect to server: " + remoteId.getAddress() +<a name="line.308"></a> +<span class="sourceLineNo">309</span> " after sleeping " + this.rpcClient.failureSleep + "ms. Already tried " + curRetries +<a name="line.309"></a> +<span class="sourceLineNo">310</span> " time(s).");<a name="line.310"></a> +<span class="sourceLineNo">311</span> }<a name="line.311"></a> +<span class="sourceLineNo">312</span> }<a name="line.312"></a> +<span class="sourceLineNo">313</span><a name="line.313"></a> +<span class="sourceLineNo">314</span> /*<a name="line.314"></a> +<span class="sourceLineNo">315</span> * wait till someone signals us to start reading RPC response or it is idle too long, it is marked<a name="line.315"></a> +<span class="sourceLineNo">316</span> * as to be closed, or the client is marked as not running.<a name="line.316"></a> +<span class="sourceLineNo">317</span> * @return true if it is time to read a response; false otherwise.<a name="line.317"></a> +<span class="sourceLineNo">318</span> */<a name="line.318"></a> +<span class="sourceLineNo">319</span> private synchronized boolean waitForWork() {<a name="line.319"></a> +<span class="sourceLineNo">320</span> // beware of the concurrent access to the calls list: we can add calls, but as well<a name="line.320"></a> +<span class="sourceLineNo">321</span> // remove them.<a name="line.321"></a> +<span class="sourceLineNo">322</span> long waitUntil = EnvironmentEdgeManager.currentTime() + this.rpcClient.minIdleTimeBeforeClose;<a name="line.322"></a> +<span class="sourceLineNo">323</span> for (;;) {<a name="line.323"></a> +<span class="sourceLineNo">324</span> if (thread == null) {<a name="line.324"></a> +<span class="sourceLineNo">325</span> return false;<a name="line.325"></a> +<span class="sourceLineNo">326</span> }<a name="line.326"></a> +<span class="sourceLineNo">327</span> if (!calls.isEmpty()) {<a name="line.327"></a> +<span class="sourceLineNo">328</span> return true;<a name="line.328"></a> +<span class="sourceLineNo">329</span> }<a name="line.329"></a> +<span class="sourceLineNo">330</span> if (EnvironmentEdgeManager.currentTime() >= waitUntil) {<a name="line.330"></a> +<span class="sourceLineNo">331</span> closeConn(<a name="line.331"></a> +<span class="sourceLineNo">332</span> new IOException("idle connection closed with " + calls.size() + " pending request(s)"));<a name="line.332"></a> +<span class="sourceLineNo">333</span> return false;<a name="line.333"></a> +<span class="sourceLineNo">334</span> }<a name="line.334"></a> +<span class="sourceLineNo">335</span> try {<a name="line.335"></a> +<span class="sourceLineNo">336</span> wait(Math.min(this.rpcClient.minIdleTimeBeforeClose, 1000));<a name="line.336"></a> +<span class="sourceLineNo">337</span> } catch (InterruptedException e) {<a name="line.337"></a> +<span class="sourceLineNo">338</span> }<a name="line.338"></a> +<span class="sourceLineNo">339</span> }<a name="line.339"></a> +<span class="sourceLineNo">340</span> }<a name="line.340"></a> +<span class="sourceLineNo">341</span><a name="line.341"></a> +<span class="sourceLineNo">342</span> @Override<a name="line.342"></a> +<span class="sourceLineNo">343</span> public void run() {<a name="line.343"></a> +<span class="sourceLineNo">344</span> if (LOG.isTraceEnabled()) {<a name="line.344"></a> +<span class="sourceLineNo">345</span> LOG.trace(threadName + ": starting, connections " + this.rpcClient.connections.size());<a name="line.345"></a> +<span class="sourceLineNo">346</span> }<a name="line.346"></a> +<span class="sourceLineNo">347</span> while (waitForWork()) {<a name="line.347"></a> +<span class="sourceLineNo">348</span> readResponse();<a name="line.348"></a> +<span class="sourceLineNo">349</span> }<a name="line.349"></a> +<span class="sourceLineNo">350</span> if (LOG.isTraceEnabled()) {<a name="line.350"></a> +<span class="sourceLineNo">351</span> LOG.trace(threadName + ": stopped, connections " + this.rpcClient.connections.size());<a name="line.351"></a> +<span class="sourceLineNo">352</span> }<a name="line.352"></a> +<span class="sourceLineNo">353</span> }<a name="line.353"></a> +<span class="sourceLineNo">354</span><a name="line.354"></a> +<span class="sourceLineNo">355</span> private void disposeSasl() {<a name="line.355"></a> +<span class="sourceLineNo">356</span> if (saslRpcClient != null) {<a name="line.356"></a> +<span class="sourceLineNo">357</span> saslRpcClient.dispose();<a name="line.357"></a> +<span class="sourceLineNo">358</span> saslRpcClient = null;<a name="line.358"></a> +<span class="sourceLineNo">359</span> }<a name="line.359"></a> +<span class="sourceLineNo">360</span> }<a name="line.360"></a> +<span class="sourceLineNo">361</span><a name="line.361"></a> +<span class="sourceLineNo">362</span> private boolean setupSaslConnection(final InputStream in2, final OutputStream out2)<a name="line.362"></a> +<span class="sourceLineNo">363</span> throws IOException {<a name="line.363"></a> +<span class="sourceLineNo">364</span> saslRpcClient = new HBaseSaslRpcClient(authMethod, token, serverPrincipal,<a name="line.364"></a> +<span class="sourceLineNo">365</span> this.rpcClient.fallbackAllowed, this.rpcClient.conf.get("hbase.rpc.protection",<a name="line.365"></a> +<span class="sourceLineNo">366</span> QualityOfProtection.AUTHENTICATION.name().toLowerCase(Locale.ROOT)),<a name="line.366"></a> +<span class="sourceLineNo">367</span> this.rpcClient.conf.getBoolean(CRYPTO_AES_ENABLED_KEY, CRYPTO_AES_ENABLED_DEFAULT));<a name="line.367"></a> +<span class="sourceLineNo">368</span> return saslRpcClient.saslConnect(in2, out2);<a name="line.368"></a> +<span class="sourceLineNo">369</span> }<a name="line.369"></a> +<span class="sourceLineNo">370</span><a name="line.370"></a> +<span class="sourceLineNo">371</span> /**<a name="line.371"></a> +<span class="sourceLineNo">372</span> * If multiple clients with the same principal try to connect to the same server at the same time,<a name="line.372"></a> +<span class="sourceLineNo">373</span> * the server assumes a replay attack is in progress. This is a feature of kerberos. In order to<a name="line.373"></a> +<span class="sourceLineNo">374</span> * work around this, what is done is that the client backs off randomly and tries to initiate the<a name="line.374"></a> +<span class="sourceLineNo">375</span> * connection again. The other problem is to do with ticket expiry. To handle that, a relogin is<a name="line.375"></a> +<span class="sourceLineNo">376</span> * attempted.<a name="line.376"></a> +<span class="sourceLineNo">377</span> * <p><a name="line.377"></a> +<span class="sourceLineNo">378</span> * The retry logic is governed by the {@link #shouldAuthenticateOverKrb} method. In case when the<a name="line.378"></a> +<span class="sourceLineNo">379</span> * user doesn't have valid credentials, we don't need to retry (from cache or ticket). In such<a name="line.379"></a> +<span class="sourceLineNo">380</span> * cases, it is prudent to throw a runtime exception when we receive a SaslException from the<a name="line.380"></a> +<span class="sourceLineNo">381</span> * underlying authentication implementation, so there is no retry from other high level (for eg,<a name="line.381"></a> +<span class="sourceLineNo">382</span> * HCM or HBaseAdmin).<a name="line.382"></a> +<span class="sourceLineNo">383</span> * </p><a name="line.383"></a> +<span class="sourceLineNo">384</span> */<a name="line.384"></a> +<span class="sourceLineNo">385</span> private void handleSaslConnectionFailure(final int currRetries, final int maxRetries,<a name="line.385"></a> +<span class="sourceLineNo">386</span> final Exception ex, final UserGroupInformation user)<a name="line.386"></a> +<span class="sourceLineNo">387</span> throws IOException, InterruptedException {<a name="line.387"></a> +<span class="sourceLineNo">388</span> closeSocket();<a name="line.388"></a> +<span class="sourceLineNo">389</span> user.doAs(new PrivilegedExceptionAction<Object>() {<a name="line.389"></a> +<span class="sourceLineNo">390</span> @Override<a name="line.390"></a> +<span class="sourceLineNo">391</span> public Object run() throws IOException, InterruptedException {<a name="line.391"></a> +<span class="sourceLineNo">392</span> if (shouldAuthenticateOverKrb()) {<a name="line.392"></a> +<span class="sourceLineNo">393</span> if (currRetries < maxRetries) {<a name="line.393"></a> +<span class="sourceLineNo">394</span> if (LOG.isDebugEnabled()) {<a name="line.394"></a> +<span class="sourceLineNo">395</span> LOG.debug("Exception encountered while connecting to " +<a name="line.395"></a> +<span class="sourceLineNo">396</span> "the server : " + StringUtils.stringifyException(ex));<a name="line.396"></a> +<span class="sourceLineNo">397</span> }<a name="line.397"></a> +<span class="sourceLineNo">398</span> // try re-login<a name="line.398"></a> +<span class="sourceLineNo">399</span> relogin();<a name="line.399"></a> +<span class="sourceLineNo">400</span> disposeSasl();<a name="line.400"></a> +<span class="sourceLineNo">401</span> // have granularity of milliseconds<a name="line.401"></a> +<span class="sourceLineNo">402</span> // we are sleeping with the Connection lock held but since this<a name="line.402"></a> +<span class="sourceLineNo">403</span> // connection instance is being used for connecting to the server<a name="line.403"></a> +<span class="sourceLineNo">404</span> // in question, it is okay<a name="line.404"></a> +<span class="sourceLineNo">405</span> Thread.sleep(ThreadLocalRandom.current().nextInt(reloginMaxBackoff) + 1);<a name="line.405"></a> +<span class="sourceLineNo">406</span> return null;<a name="line.406"></a> +<span class="sourceLineNo">407</span> } else {<a name="line.407"></a> +<span class="sourceLineNo">408</span> String msg = "Couldn't setup connection for "<a name="line.408"></a> +<span class="sourceLineNo">409</span> + UserGroupInformation.getLoginUser().getUserName() + " to " + serverPrincipal;<a name="line.409"></a> +<span class="sourceLineNo">410</span> LOG.warn(msg, ex);<a name="line.410"></a> +<span class="sourceLineNo">411</span> throw (IOException) new IOException(msg).initCause(ex);<a name="line.411"></a> +<span class="sourceLineNo">412</span> }<a name="line.412"></a> +<span class="sourceLineNo">413</span> } else {<a name="line.413"></a> +<span class="sourceLineNo">414</span> LOG.warn("Exception encountered while connecting to " + "the server : " + ex);<a name="line.414"></a> +<span class="sourceLineNo">415</span> }<a name="line.415"></a> +<span class="sourceLineNo">416</span> if (ex instanceof RemoteException) {<a name="line.416"></a> +<span class="sourceLineNo">417</span> throw (RemoteException) ex;<a name="line.417"></a> +<span class="sourceLineNo">418</span> }<a name="line.418"></a> +<span class="sourceLineNo">419</span> if (ex instanceof SaslException) {<a name="line.419"></a> +<span class="sourceLineNo">420</span> String msg = "SASL authentication failed."<a name="line.420"></a> +<span class="sourceLineNo">421</span> + " The most likely cause is missing or invalid credentials." + " Consider 'kinit'.";<a name="line.421"></a> +<span class="sourceLineNo">422</span> LOG.fatal(msg, ex);<a name="line.422"></a> +<span class="sourceLineNo">423</span> throw new RuntimeException(msg, ex);<a name="line.423"></a> +<span class="sourceLineNo">424</span> }<a name="line.424"></a> +<span class="sourceLineNo">425</span> throw new IOException(ex);<a name="line.425"></a> +<span class="sourceLineNo">426</span> }<a name="line.426"></a> +<span class="sourceLineNo">427</span> });<a name="line.427"></a> +<span class="sourceLineNo">428</span> }<a name="line.428"></a> +<span class="sourceLineNo">429</span><a name="line.429"></a> +<span class="sourceLineNo">430</span> private void setupIOstreams() throws IOException {<a name="line.430"></a> +<span class="sourceLineNo">431</span> if (socket != null) {<a name="line.431"></a> +<span class="sourceLineNo">432</span> // The connection is already available. Perfect.<a name="line.432"></a> +<span class="sourceLineNo">433</span> return;<a name="line.433"></a> +<span class="sourceLineNo">434</span> }<a name="line.434"></a> +<span class="sourceLineNo">435</span><a name="line.435"></a> +<span class="sourceLineNo">436</span> if (this.rpcClient.failedServers.isFailedServer(remoteId.getAddress())) {<a name="line.436"></a> +<span class="sourceLineNo">437</span> if (LOG.isDebugEnabled()) {<a name="line.437"></a> +<span class="sourceLineNo">438</span> LOG.debug("Not trying to connect to " + remoteId.address<a name="line.438"></a> +<span class="sourceLineNo">439</span> + " this server is in the failed servers list");<a name="line.439"></a> +<span class="sourceLineNo">440</span> }<a name="line.440"></a> +<span class="sourceLineNo">441</span> throw new FailedServerException(<a name="line.441"></a> +<span class="sourceLineNo">442</span> "This server is in the failed servers list: " + remoteId.address);<a name="line.442"></a> +<span class="sourceLineNo">443</span> }<a name="line.443"></a> +<span class="sourceLineNo">444</span><a name="line.444"></a> +<span class="sourceLineNo">445</span> try {<a name="line.445"></a> +<span class="sourceLineNo">446</span> if (LOG.isDebugEnabled()) {<a name="line.446"></a> +<span class="sourceLineNo">447</span> LOG.debug("Connecting to " + remoteId.address);<a name="line.447"></a> +<span class="sourceLineNo">448</span> }<a name="line.448"></a> +<span class="sourceLineNo">449</span><a name="line.449"></a> +<span class="sourceLineNo">450</span> short numRetries = 0;<a name="line.450"></a> +<span class="sourceLineNo">451</span> final short MAX_RETRIES = 5;<a name="line.451"></a> +<span class="sourceLineNo">452</span> while (true) {<a name="line.452"></a> +<span class="sourceLineNo">453</span> setupConnection();<a name="line.453"></a> +<span class="sourceLineNo">454</span> InputStream inStream = NetUtils.getInputStream(socket);<a name="line.454"></a> +<span class="sourceLineNo">455</span> // This creates a socket with a write timeout. This timeout cannot be changed.<a name="line.455"></a> +<span class="sourceLineNo">456</span> OutputStream outStream = NetUtils.getOutputStream(socket, this.rpcClient.writeTO);<a name="line.456"></a> +<span class="sourceLineNo">457</span> // Write out the preamble -- MAGIC, version, and auth to use.<a name="line.457"></a> +<span class="sourceLineNo">458</span> writeConnectionHeaderPreamble(outStream);<a name="line.458"></a> +<span class="sourceLineNo">459</span> if (useSasl) {<a name="line.459"></a> +<span class="sourceLineNo">460</span> final InputStream in2 = inStream;<a name="line.460"></a> +<span class="sourceLineNo">461</span> final OutputStream out2 = outStream;<a name="line.461"></a> +<span class="sourceLineNo">462</span> UserGroupInformation ticket = getUGI();<a name="line.462"></a> +<span class="sourceLineNo">463</span> boolean continueSasl;<a name="line.463"></a> +<span class="sourceLineNo">464</span> if (ticket == null) {<a name="line.464"></a> +<span class="sourceLineNo">465</span> throw new FatalConnectionException("ticket/user is null");<a name="line.465"></a> <span class="sourceLineNo">466</span> }<a name="line.466"></a> -<span class="sourceLineNo">467</span> if (continueSasl) {<a name="line.467"></a> -<span class="sourceLineNo">468</span> // Sasl connect is successful. Let's set up Sasl i/o streams.<a name="line.468"></a> -<span class="sourceLineNo">469</span> inStream = saslRpcClient.getInputStream();<a name="line.469"></a> -<span class="sourceLineNo">470</span> outStream = saslRpcClient.getOutputStream();<a name="line.470"></a> -<span class="sourceLineNo">471</span> } else {<a name="line.471"></a> -<span class="sourceLineNo">472</span> // fall back to simple auth because server told us so.<a name="line.472"></a> -<span class="sourceLineNo">473</span> // do not change authMethod and useSasl here, we should start from secure when<a name="line.473"></a> -<span class="sourceLineNo">474</span> // reconnecting because regionserver may change its sasl config after restart.<a name="line.474"></a> -<span class="sourceLineNo">475</span> }<a name="line.475"></a> -<span class="sourceLineNo">476</span> }<a name="line.476"></a> -<span class="sourceLineNo">477</span> this.in = new DataInputStream(new BufferedInputStream(inStream));<a name="line.477"></a> -<span class="sourceLineNo">478</span> this.out = new DataOutputStream(new BufferedOutputStream(outStream));<a name="line.478"></a> -<span class="sourceLineNo">479</span> // Now write out the connection header<a name="line.479"></a> -<span class="sourceLineNo">480</span> writeConnectionHeader();<a name="line.480"></a> -<span class="sourceLineNo">481</span> // process the response from server for connection header if necessary<a name="line.481"></a> -<span class="sourceLineNo">482</span> processResponseForConnectionHeader();<a name="line.482"></a> -<span class="sourceLineNo">483</span><a name="line.483"></a> -<span class="sourceLineNo">484</span> break;<a name="line.484"></a> -<span class="sourceLineNo">485</span> }<a name="line.485"></a> -<span class="sourceLineNo">486</span> } catch (Throwable t) {<a name="line.486"></a> -<span class="sourceLineNo">487</span> closeSocket();<a name="line.487"></a> -<span class="sourceLineNo">488</span> IOException e = ExceptionUtil.asInterrupt(t);<a name="line.488"></a> -<span class="sourceLineNo">489</span> if (e == null) {<a name="line.489"></a> -<span class="sourceLineNo">490</span> this.rpcClient.failedServers.addToFailedServers(remoteId.address, t);<a name="line.490"></a> -<span class="sourceLineNo">491</span> if (t instanceof LinkageError) {<a name="line.491"></a> -<span class="sourceLineNo">492</span> // probably the hbase hadoop version does not match the running hadoop version<a name="line.492"></a> -<span class="sourceLineNo">493</span> e = new DoNotRetryIOException(t);<a name="line.493"></a> -<span class="sourceLineNo">494</span> } else if (t instanceof IOException) {<a name="line.494"></a> -<span class="sourceLineNo">495</span> e = (IOException) t;<a name="line.495"></a> -<span class="sourceLineNo">496</span> } else {<a name="line.496"></a> -<span class="sourceLineNo">497</span> e = new IOException("Could not set up IO Streams to " + remoteId.address, t);<a name="line.497"></a> -<span class="sourceLineNo">498</span> }<a name="line.498"></a> -<span class="sourceLineNo">499</span> }<a name="line.499"></a> -<span class="sourceLineNo">500</span> throw e;<a name="line.500"></a> -<span class="sourceLineNo">501</span> }<a name="line.501"></a> -<span class="sourceLineNo">502</span><a name="line.502"></a> -<span class="sourceLineNo">503</span> // start the receiver thread after the socket connection has been set up<a name="line.503"></a> -<span class="sourceLineNo">504</span> thread = new Thread(this, threadName);<a name="line.504"></a> -<span class="sourceLineNo">505</span> thread.setDaemon(true);<a name="line.505"></a> -<span class="sourceLineNo">506</span> thread.start();<a name="line.506"></a> -<span class="sourceLineNo">507</span> }<a name="line.507"></a> -<span class="sourceLineNo">508</span><a name="line.508"></a> -<span class="sourceLineNo">509</span> /**<a name="line.509"></a> -<span class="sourceLineNo">510</span> * Write the RPC header: {@code <MAGIC WORD -- 'HBas'> <ONEBYTE_VERSION> <ONEBYTE_AUTH_TYPE>}<a name="line.510"></a> -<span class="sourceLineNo">511</span> */<a name="line.511"></a> -<span class="sourceLineNo">512</span> private void writeConnectionHeaderPreamble(OutputStream out) throws IOException {<a name="line.512"></a> -<span class="sourceLineNo">513</span> out.write(connectionHeaderPreamble);<a name="line.513"></a> -<span class="sourceLineNo">514</span> out.flush();<a name="line.514"></a> -<span class="sourceLineNo">515</span> }<a name="line.515"></a> -<span class="sourceLineNo">516</span><a name="line.516"></a> -<span class="sourceLineNo">517</span> /**<a name="line.517"></a> -<span class="sourceLineNo">518</span> * Write the connection header.<a name="line.518"></a> -<span class="sourceLineNo">519</span> */<a name="line.519"></a> -<span class="sourceLineNo">520</span> private void writeConnectionHeader() throws IOException {<a name="line.520"></a> -<span class="sourceLineNo">521</span> boolean isCryptoAesEnable = false;<a name="line.521"></a> -<span class="sourceLineNo">522</span> // check if Crypto AES is enabled<a name="line.522"></a> -<span class="sourceLineNo">523</span> if (saslRpcClient != null) {<a name="line.523"></a> -<span class="sourceLineNo">524</span> boolean saslEncryptionEnabled = SaslUtil.QualityOfProtection.PRIVACY.<a name="line.524"></a> -<span class="sourceLineNo">525</span> getSaslQop().equalsIgnoreCase(saslRpcClient.getSaslQOP());<a name="line.525"></a> -<span class="sourceLineNo">526</span> isCryptoAesEnable = saslEncryptionEnabled && conf.getBoolean(<a name="line.526"></a> -<span class="sourceLineNo">527</span> CRYPTO_AES_ENABLED_KEY, CRYPTO_AES_ENABLED_DEFAULT);<a name="line.527"></a> -<span class="sourceLineNo">528</span> }<a name="line.528"></a> -<span class="sourceLineNo">529</span><a name="line.529"></a> -<span class="sourceLineNo">530</span> // if Crypto AES is enabled, set transformation and negotiate with server<a name="line.530"></a> -<span class="sourceLineNo">531</span> if (isCryptoAesEnable) {<a name="line.531"></a> -<span class="sourceLineNo">532</span> waitingConnectionHeaderResponse = true;<a name="line.532"></a> -<span class="sourceLineNo">533</span> }<a name="line.533"></a> -<span class="sourceLineNo">534</span> this.out.write(connectionHeaderWithLength);<a name="line.534"></a> -<span class="sourceLineNo">535</span> this.out.flush();<a name="line.535"></a> -<span class="sourceLineNo">536</span> }<a name="line.536"></a> -<span class="sourceLineNo">537</span><a name="line.537"></a> -<span class="sourceLineNo">538</span> private void processResponseForConnectionHeader() throws IOException {<a name="line.538"></a> -<span class="sourceLineNo">539</span> // if no response excepted, return<a name="line.539"></a> -<span class="sourceLineNo">540</span> if (!waitingConnectionHeaderResponse) return;<a name="line.540"></a> -<span class="sourceLineNo">541</span> try {<a name="line.541"></a> -<span class="sourceLineNo">542</span> // read the ConnectionHeaderResponse from server<a name="line.542"></a> -<span class="sourceLineNo">543</span> int len = this.in.readInt();<a name="line.543"></a> -<span class="sourceLineNo">544</span> byte[] buff = new byte[len];<a name="line.544"></a> -<span class="sourceLineNo">545</span> int readSize = this.in.read(buff);<a name="line.545"></a> -<span class="sourceLineNo">546</span> if (LOG.isDebugEnabled()) {<a name="line.546"></a> -<span class="sourceLineNo">547</span> LOG.debug("Length of response for connection header:" + readSize);<a name="line.547"></a> -<span class="sourceLineNo">548</span> }<a name="line.548"></a> +<span class="sourceLineNo">467</span> try {<a name="line.467"></a> +<span class="sourceLineNo">468</span> continueSasl = ticket.doAs(new PrivilegedExceptionAction<Boolean>() {<a name="line.468"></a> +<span class="sourceLineNo">469</span> @Override<a name="line.469"></a> +<span class="sourceLineNo">470</span> public Boolean run() throws IOException {<a name="line.470"></a> +<span class="sourceLineNo">471</span> return setupSaslConnection(in2, out2);<a name="line.471"></a> +<span class="sourceLineNo">472</span> }<a name="line.472"></a> +<span class="sourceLineNo">473</span> });<a name="line.473"></a> +<span class="sourceLineNo">474</span> } catch (Exception ex) {<a name="line.474"></a> +<span class="sourceLineNo">475</span> ExceptionUtil.rethrowIfInterrupt(ex);<a name="line.475"></a> +<span class="sourceLineNo">476</span> handleSaslConnectionFailure(numRetries++, MAX_RETRIES, ex, ticket);<a name="line.476"></a> +<span class="sourceLineNo">477</span> continue;<a name="line.477"></a> +<span class="sourceLineNo">478</span> }<a name="line.478"></a> +<span class="sourceLineNo">479</span> if (continueSasl) {<a name="line.479"></a> +<span class="sourceLineNo">480</span> // Sasl connect is successful. Let's set up Sasl i/o streams.<a name="line.480"></a> +<span class="sourceLineNo">481</span> inStream = saslRpcClient.getInputStream();<a name="line.481"></a> +<span class="sourceLineNo">482</span> outStream = saslRpcClient.getOutputStream();<a name="line.482"></a> +<span class="sourceLineNo">483</span> } else {<a name="line.483"></a> +<span class="sourceLineNo">484</span> // fall back to simple auth because server told us so.<a name="line.484"></a> +<span class="sourceLineNo">485</span> // do not change authMethod and useSasl here, we should start from secure when<a name="line.485"></a> +<span class="sourceLineNo">486</span> // reconnecting because regionserver may change its sasl config after restart.<a name="line.486"></a> +<span class="sourceLineNo">487</span> }<a name="line.487"></a> +<span class="sourceLineNo">488</span> }<a name="line.488"></a> +<span class="sourceLineNo">489</span> this.in = new DataInputStream(new BufferedInputStream(inStream));<a name="line.489"></a> +<span class="sourceLineNo">490</span> this.out = new DataOutputStream(new BufferedOutputStream(outStream));<a name="line.490"></a> +<span class="sourceLineNo">491</span> // Now write out the connection header<a name="line.491"></a> +<span class="sourceLineNo">492</span> writeConnectionHeader();<a name="line.492"></a> +<span class="sourceLineNo">493</span> // process the response from server for connection header if necessary<a name="line.493"></a> +<span class="sourceLineNo">494</span> processResponseForConnectionHeader();<a name="line.494"></a> +<span class="sourceLineNo">495</span><a name="line.495"></a> +<span class="sourceLineNo">496</span> break;<a name="line.496"></a> +<span class="sourceLineNo">497</span> }<a name="line.497"></a> +<span class="sourceLineNo">498</span> } catch (Throwable t) {<a name="line.498"></a> +<span class="sourceLineNo">499</span> closeSocket();<a name="line.499"></a> +<span class="sourceLineNo">500</span> IOException e = ExceptionUtil.asInterrupt(t);<a name="line.500"></a> +<span class="sourceLineNo">501</span> if (e == null) {<a name="line.501"></a> +<span class="sourceLineNo">502</span> this.rpcClient.failedServers.addToFailedServers(remoteId.address, t);<a name="line.502"></a> +<span class="sourceLineNo">503</span> if (t instanceof LinkageError) {<a name="line.503"></a> +<span class="sourceLineNo">504</span> // probably the hbase hadoop version does not match the running hadoop version<a name="line.504"></a> +<span class="sourceLineNo">505</span> e = new DoNotRetryIOException(t);<a name="line.505"></a> +<span class="sourceLineNo">506</span> } else if (t instanceof IOException) {<a name="line.506"></a> +<span class="sourceLineNo">507</span> e = (IOException) t;<a name="line.507"></a> +<span class="sourceLineNo">508</span> } else {<a name="line.508"></a> +<span class="sourceLineNo">509</span> e = new IOException("Could not set up IO Streams to " + remoteId.address, t);<a name="line.509"></a> +<span class="sourceLineNo">510</span> }<a name="line.510"></a> +<span class="sourceLineNo">511</span> }<a name="line.511"></a> +<span class="sourceLineNo">512</span> throw e;<a name="line.512"></a> +<span class="sourceLineNo">513</span> }<a name="line.513"></a> +<span class="sourceLineNo">514</span><a name="line.514"></a> +<span class="sourceLineNo">515</span> // start the receiver thread after the socket connection has been set up<a name="line.515"></a> +<span class="sourceLineNo">516</span> thread = new Thread(this, threadName);<a name="line.516"></a> +<span class="sourceLineNo">517</span> thread.setDaemon(true);<a name="line.517"></a> +<span class="sourceLineNo">518</span> thread.start();<a name="line.518"></a> +<span class="sourceLineNo">519</span> }<a name="line.519"></a> +<span class="sourceLineNo">520</span><a name="line.520"></a> +<span class="sourceLineNo">521</span> /**<a name="line.521"></a> +<span class="sourceLineNo">522</span> * Write the RPC header: {@code <MAGIC WORD -- 'HBas'> <ONEBYTE_VERSION> <ONEBYTE_AUTH_TYPE>}<a name="line.522"></a> +<span class="sourceLineNo">523</span> */<a name="line.523"></a> +<span class="sourceLineNo">524</span> private void writeConnectionHeaderPreamble(OutputStream out) throws IOException {<a name="line.524"></a> +<span class="sourceLineNo">525</span> out.write(connectionHeaderPreamble);<a name="line.525"></a> +<span class="sourceLineNo">526</span> out.flush();<a name="line.526"></a> +<span class="sourceLineNo">527</span> }<a name="line.527"></a> +<span class="sourceLineNo">528</span><a name="line.528"></a> +<span class="sourceLineNo">529</span> /**<a name="line.529"></a> +<span class="sourceLineNo">530</span> * Write the connection header.<a name="line.530"></a> +<span class="sourceLineNo">531</span> */<a name="line.531"></a> +<span class="sourceLineNo">532</span> private void writeConnectionHeader() throws IOException {<a name="line.532"></a> +<span class="sourceLineNo">533</span> boolean isCryptoAesEnable = false;<a name="line.533"></a> +<span class="sourceLineNo">534</span> // check if Crypto AES is enabled<a name="line.534"></a> +<span class="sourceLineNo">535</span> if (saslRpcClient != null) {<a name="line.535"></a> +<span class="sourceLineNo">536</span> boolean saslEncryptionEnabled = SaslUtil.QualityOfProtection.PRIVACY.<a name="line.536"></a> +<span class="sourceLineNo">537</span> getSaslQop().equalsIgnoreCase(saslRpcClient.getSaslQOP());<a name="line.537"></a> +<span class="sourceLineNo">538</span> isCryptoAesEnable = saslEncryptionEnabled && conf.getBoolean(<a name="line.538"></a> +<span class="sourceLineNo">539</span> CRYPTO_AES_ENABLED_KEY, CRYPTO_AES_ENABLED_DEFAULT);<a name="line.539"></a> +<span class="sourceLineNo">540</span> }<a name="line.540"></a> +<span class="sourceLineNo">541</span><a name="line.541"></a> +<span class="sourceLineNo">542</span> // if Crypto AES is enabled, set transformation and negotiate with server<a name="line.542"></a> +<span class="sourceLineNo">543</span> if (isCryptoAesEnable) {<a name="line.543"></a> +<span class="sourceLineNo">544</span> waitingConnectionHeaderResponse = true;<a name="line.544"></a> +<span class="sourceLineNo">545</span> }<a name="line.545"></a> +<span class="sourceLineNo">546</span> this.out.write(connectionHeaderWithLength);<a name="line.546"></a> +<span class="sourceLineNo">547</span> this.out.flush();<a name="line.547"></a> +<span class="sourceLineNo">548</span> }<a name="line.548"></a> <span class="sourceLineNo">549</span><a name="line.549"></a> -<span class="sourceLineNo">550</span> RPCProtos.ConnectionHeaderResponse connectionHeaderResponse =<a name="line.550"></a> -<span class="sourceLineNo">551</span> RPCProtos.ConnectionHeaderResponse.parseFrom(buff);<a name="line.551"></a> -<span class="sourceLineNo">552</span><a name="line.552"></a> -<span class="sourceLineNo">553</span> // Get the CryptoCipherMeta, update the HBaseSaslRpcClient for Crypto Cipher<a name="line.553"></a> -<span class="sourceLineNo">554</span> if (connectionHeaderResponse.hasCryptoCipherMeta()) {<a name="line.554"></a> -<span class="sourceLineNo">555</span> negotiateCryptoAes(connectionHeaderResponse.getCryptoCipherMeta());<a name="line.555"></a> -<span class="sourceLineNo">556</span> }<a name="line.556"></a> -<span class="sourceLineNo">557</span> waitingConnectionHeaderResponse = false;<a name="line.557"></a> -<span class="sourceLineNo">558</span> } catch (SocketTimeoutException ste) {<a name="line.558"></a> -<span class="sourceLineNo">559</span> LOG.fatal("Can't get the connection header response for rpc timeout, please check if" +<a name="line.559"></a> -<span class="sourceLineNo">560</span> " server has the correct configuration to support the additional function.", ste);<a name="line.560"></a> -<span class="sourceLineNo">561</span> // timeout when waiting the connection header response, ignore the additional function<a name="line.561"></a> -<span class="sourceLineNo">562</span> throw new IOException("Timeout while waiting connection header response", ste);<a name="line.562"></a> -<span class="sourceLineNo">563</span> }<a name="line.563"></a> -<span class="sourceLineNo">564</span> }<a name="line.564"></a> -<span class="sourceLineNo">565</span><a name="line.565"></a> -<span class="sourceLineNo">566</span> private void negotiateCryptoAes(RPCProtos.CryptoCipherMeta cryptoCipherMeta)<a name="line.566"></a> -<span class="sourceLineNo">567</span> throws IOException {<a name="line.567"></a> -<span class="sourceLineNo">568</span> // initilize the Crypto AES with CryptoCipherMeta<a name="line.568"></a> -<span class="sourceLineNo">569</span> saslRpcClient.initCryptoCipher(cryptoCipherMeta, this.rpcClient.conf);<a name="line.569"></a> -<span class="sourceLineNo">570</span> // reset the inputStream/outputStream for Crypto AES encryption<a name="line.570"></a> -<span class="sourceLineNo">571</span> this.in = new DataInputStream(new BufferedInputStream(saslRpcClient.getInputStream()));<a name="line.571"></a> -<span class="sourceLineNo">572</span> this.out = new DataOutputStream(new BufferedOutputStream(saslRpcClient.getOutputStream()));<a name="line.572"></a> -<span class="sourceLineNo">573</span> }<a name="line.573"></a> -<span class="sourceLineNo">574</span><a name="line.574"></a> -<span class="sourceLineNo">575</span> private void tracedWriteRequest(Call call) throws IOException {<a name="line.575"></a> -<span class="sourceLineNo">576</span> try (TraceScope ignored = TraceUtil.createTrace("RpcClientImpl.tracedWriteRequest",<a name="line.576"></a> -<span class="sourceLineNo">577</span> call.span)) {<a name="line.577"></a> -<span class="sourceLineNo">578</span> writeRequest(call);<a name="line.578"></a> -<span class="sourceLineNo">579</span> }<a name="line.579"></a> -<span class="sourceLineNo">580</span> }<a name="line.580"></a> -<span class="sourceLineNo">581</span><a name="line.581"></a> -<span class="sourceLineNo">582</span> /**<a name="line.582"></a> -<span class="sourceLineNo">583</span> * Initiates a call by sending the parameter to the remote server. Note: this is not called from<a name="line.583"></a> -<span class="sourceLineNo">584</span> * the Connection thread, but by other threads.<a name="line.584"></a> -<span class="sourceLineNo">585</span> * @see #readResponse()<a name="line.585"></a> -<span class="sourceLineNo">586</span> */<a name="line.586"></a> -<span class="sourceLineNo">587</span> private void writeRequest(Call call) throws IOException {<a name="line.587"></a> -<span class="sourceLineNo">588</span> ByteBuffer cellBlock = this.rpcClient.cellBlockBuilder.buildCellBlock(this.codec,<a name="line.588"></a> -<span class="sourceLineNo">589</span> this.compressor, call.cells);<a name="line.589"></a> -<span class="sourceLineNo">590</span> CellBlockMeta cellBlockMeta;<a name="line.590"></a> -<span class="sourceLineNo">591</span> if (cellBlock != null) {<a name="line.591"></a> -<span class="sourceLineNo">592</span> cellBlockMeta = CellBlockMeta.newBuilder().setLength(cellBlock.limit()).build();<a name="line.592"></a> -<span class="sourceLineNo">593</span> } else {<a name="line.593"></a> -<span class="sourceLineNo">594</span> cellBlockMeta = null;<a name="line.594"></a> -<span class="sourceLineNo">595</span> }<a name="line.595"></a> -<span class="sourceLineNo">596</span> RequestHeader requestHeader = buildRequestHeader(call, cellBlockMeta);<a name="line.596"></a> -<span class="sourceLineNo">597</span><a name="line.597"></a> -<span class="sourceLineNo">598</span> setupIOstreams();<a name="line.598"></a> -<span class="sourceLineNo">599</span><a name="line.599"></a> -<span class="sourceLineNo">600</span> // Now we're going to write the call. We take the lock, then check that the connection<a name="line.600"></a> -<span class="sourceLineNo">601</span> // is still valid, and, if so we do the write to the socket. If the write fails, we don't<a name="line.601"></a> -<span class="sourceLineNo">602</span> // know where we stand, we have to close the connection.<a name="line.602"></a> -<span class="sourceLineNo">603</span> if (Thread.interrupted()) {<a name="line.603"></a> -<span class="sourceLineNo">604</span> throw new InterruptedIOException();<a name="line.604"></a> -<span class="sourceLineNo">605</span> }<a name="line.605"></a> -<span class="sourceLineNo">606</span><a name="line.606"></a> -<span class="sourceLineNo">607</span> calls.put(call.id, call); // We put first as we don't want the connection to become idle.<a name="line.607"></a> -<span class="sourceLineNo">608</span> // from here, we do not throw any exception to upper layer as the call has been tracked in the<a name="line.608"></a> -<span class="sourceLineNo">609</span> // pending calls map.<a name="line.609"></a> -<span class="sourceLineNo">610</span> try {<a name="line.610"></a> -<span class="sourceLineNo">611</span> call.callStats.setRequestSizeBytes(write(this.out, requestHeader, call.param, cellBlock));<a name="line.611"></a> -<span class="sourceLineNo">612</span> } catch (Throwable t) {<a name="line.612"></a> -<span class="sourceLineNo">613</span> if(LOG.isTraceEnabled()) {<a name="line.613"></a> -<span class="sourceLineNo">614</span> LOG.trace("Error while writing call, call_id:" + call.id, t);<a name="line.614"></a> -<span class="sourceLineNo">615</span> }<a name="line.615"></a> -<span class="sourceLineNo">616</span> IOException e = IPCUtil.toIOE(t);<a name="line.616"></a> -<span class="sourceLineNo">617</span> closeConn(e);<a name="line.617"></a> -<span class="sourceLineNo">618</span> return;<a name="line.618"></a> -<span class="sourceLineNo">619</span> }<a name="line.619"></a> -<span class="sourceLineNo">620</span> notifyAll();<a name="line.620"></a> -<span class="sourceLineNo">621</span> }<a name="line.621"></a> -<span class="sourceLineNo">622</span><a name="line.622"></a> -<span class="sourceLineNo">623</span> /*<a name="line.623"></a> -<span class="sourceLineNo">624</span> * Receive a response. Because only one receiver, so no synchronization on in.<a name="line.624"></a> -<span class="sourceLineNo">625</span> */<a name="line.625"></a> -<span class="sourceLineNo">626</span> private void readResponse() {<a name="line.626"></a> -<span class="sourceLineNo">627</span> Call call = null;<a name="line.627"></a> -<span class="sourceLineNo">628</span> boolean expectedCall = false;<a name="line.628"></a> -<span class="sourceLineNo">629</span> try {<a name="line.629"></a> -<span class="sourceLineNo">630</span> // See HBaseServer.Call.setResponse for where we write out the response.<a name="line.630"></a> -<span class="sourceLineNo">631</span> // Total size of the response. Unused. But have to read it in anyways.<a name="line.631"></a> -<span class="sourceLineNo">632</span> int totalSize = in.readInt();<a name="line.632"></a> -<span class="sourceLineNo">633</span><a name="line.633"></a> -<span class="sourceLineNo">634</span> // Read the header<a name="line.634"></a> -<span class="sourceLineNo">635</span> ResponseHeader responseHeader = ResponseHeader.parseDelimitedFrom(in);<a name="line.635"></a> -<span class="sourceLineNo">636</span> int id = responseHeader.getCallId();<a name="line.636"></a> -<span class="sourceLineNo">637</span> call = calls.remove(id); // call.done have to be set before leaving this method<a name="line.637"></a> -<span class="sourceLineNo">638</span> expectedCall = (call != null && !call.isDone());<a name="line.638"></a> -<span class="sourceLineNo">639</span> if (!expectedCall) {<a name="line.639"></a> -<span class="sourceLineNo">640</span> // So we got a response for which we have no corresponding 'call' here on the client-side.<a name="line.640"></a> -<span class="sourceLineNo">641</span> // We probably timed out waiting, cleaned up all references, and now the server decides<a name="line.641"></a> -<span class="sourceLineNo">642</span> // to return a response. There is nothing we can do w/ the response at this stage. Clean<a name="line.642"></a> -<span class="sourceLineNo">643</span> // out the wire of the response so its out of the way and we can get other responses on<a name="line.643"></a> -<span class="sourceLineNo">644</span> // this connection.<a name="line.644"></a> -<span class="sourceLineNo">645</span> int readSoFar = getTotalSizeWhenWrittenDelimited(responseHeader);<a name="line.645"></a> -<span class="sourceLineNo">646</span> int whatIsLeftToRead = totalSize - readSoFar;<a name="line.646"></a> -<span class="sourceLineNo">647</span> IOUtils.skipFully(in, whatIsLeftToRead);<a name="line.647"></a> -<span class="sourceLineNo">648</span> if (call != null) {<a name="line.648"></a> -<span class="sourceLineNo">649</span> call.callStats.setResponseSizeBytes(totalSize);<a name="line.649"></a> -<span class="sourceLineNo">650</span> call.callStats<a name="line.650"></a> -<span class="sourceLineNo">651</span> .setCallTimeMs(EnvironmentEdgeManager.currentTime() - call.callStats.getStartTime());<a name="line.651"></a> -<span class="sourceLineNo">652</span> }<a name="line.652"></a> -<span class="sourceLineNo">653</span> return;<a name="line.653"></a> -<span class="sourceLineNo">654</span> }<a name="line.654"></a> -<span class="sourceLineNo">655</span> if (responseHeader.hasException()) {<a name="line.655"></a> -<span class="sourceLineNo">656</span> ExceptionResponse exceptionResponse = responseHeader.getException();<a name="line.656"></a> -<span class="sourceLineNo">657</span> RemoteException re = createRemoteException(exceptionResponse);<a name="line.657"></a> -<span class="sourceLineNo">658</span> call.setException(re);<a name="line.658"></a> -<span class="sourceLineNo">659</span> call.callStats.setResponseSizeBytes(totalSize);<a name="line.659"></a> -<span class="sourceLineNo">660</span> call.callStats<a name="line.660"></a> -<span class="sourceLineNo">661</span> .setCallTimeMs(EnvironmentEdgeManager.currentTime() - call.callStats.getStartTime());<a name="line.661"></a> -<span class="sourceLineNo">662</span> if (isFatalConnectionException(exceptionResponse)) {<a name="line.662"></a> -<span class="sourceLineNo">663</span> synchronized (this) {<a name="line.663"></a> -<span class="sourceLineNo">664</span> closeConn(re);<a name="line.664"></a> -<span class="sourceLineNo">665</span> }<a name="line.665"></a> -<span class="sourceLineNo">666</span> }<a name="line.666"></a> -<span class="sourceLineNo">667</span> } else {<a name="line.667"></a> -<span class="sourceLineNo">668</span> Message value = null;<a name="line.668"></a> -<span class="sourceLineNo">669</span> if (call.responseDefaultType != null) {<a name="line.669"></a> -<span class="sourceLineNo">670</span> Builder builder = call.responseDefaultType.newBuilderForType();<a name="line.670"></a> -<span class="sourceLineNo">671</span> ProtobufUtil.mergeDelimitedFrom(builder, in);<a name="line.671"></a> -<span class="sourceLineNo">672</span> value = builder.build();<a name="line.672"></a> -<span class="sourceLineNo">673</span> }<a name="line.673"></a> -<span class="sourceLineNo">674</span> CellScanner cellBlockScanner = null;<a name="line.674"></a> -<span class="sourceLineNo">675</span> if (responseHeader.hasCellBlockMeta()) {<a name="line.675"></a> -<span class="sourceLineNo">676</span> int size = responseHeader.getCellBlockMeta().getLength();<a name="line.676"></a> -<span class="sourceLineNo">677</span> byte[] cellBlock = new byte[size];<a name="line.677"></a> -<span class="sourceLineNo">678</span> IOUtils.readFully(this.in, cellBlock, 0, cellBlock.length);<a name="line.678"></a> -<span class="sourceLineNo">679</span> cellBlockScanner = this.rpcClient.cellBlockBuilder.createCellScanner(this.codec,<a name="line.679"></a> -<span class="sourceLineNo">680</span> this.compressor, cellBlock);<a name="line.680"></a> -<span class="sourceLineNo">681</span> }<a name="line.681"></a> -<span class="sourceLineNo">682</span> call.setResponse(value, cellBlockScanner);<a name="line.682"></a> -<span class="sourceLineNo">683</span> call.callStats.setResponseSizeBytes(totalSize);<a name="line.683"></a> -<span class="sourceLineNo">684</span> call.callStats<a name="line.684"></a> -<span class="sourceLineNo">685</span> .setCallTimeMs(EnvironmentEdgeManager.currentTime() - call.callStats.getStartTime());<a name="line.685"></a> -<span class="sourceLineNo">686</span> }<a name="line.686"></a> -<span class="sourceLineNo">687</span> } catch (IOException e) {<a name="line.687"></a> -<span class="sourceLineNo">688</span> if (expectedCall) {<a name="line.688"></a> -<span class="sourceLineNo">689</span> call.setException(e);<a name="line.689"></a> -<span class="sourceLineNo">690</span> }<a name="line.690"></a> -<span class="sourceLineNo">691</span> if (e instanceof SocketTimeoutException) {<a name="line.691"></a> -<span class="sourceLineNo">692</span> // Clean up open calls but don't treat this as a fatal condition,<a name="line.692"></a> -<span class="sourceLineNo">693</span> // since we expect certain responses to not make it by the specified<a name="line.693"></a> -<span class="sourceLineNo">694</span> // {@link ConnectionId#rpcTimeout}.<a name="line.694"></a> -<span class="sourceLineNo">695</span> if (LOG.isTraceEnabled()) {<a name="line.695"></a> -<span class="sourceLineNo">696</span> LOG.trace("ignored", e);<a name="line.696"></a> -<span class="sourceLineNo">697</span> }<a name="line.697"></a> -<span class="sourceLineNo">698</span> } else {<a name="line.698"></a> -<span class="sourceLineNo">699</span> synchronized (this) {<a name="line.699"></a> -<span class="sourceLineNo">700</span> closeConn(e);<a name="line.700"></a> -<span class="sourceLineNo">701</span> }<a name="line.701"></a> +<span class="sourceLineNo">550</span> private void processResponseForConnectionHeader() throws IOException {<a name="line.550"></a> +<span class="sourceLineNo">551</span> // if no response excepted, return<a name="line.551"></a> +<span class="sourceLineNo">552</span> if (!waitingConnectionHeaderResponse) return;<a name="line.552"></a> +<span class="sourceLineNo">553</span> try {<a name="line.553"></a> +<span class="sourceLineNo">554</span> // read the ConnectionHeaderResponse from server<a name="line.554"></a> +<span class="sourceLineNo">555</span> int len = this.in.readInt();<a name="line.555"></a> +<span class="sourceLineNo">556</span> byte[] buff = new byte[len];<a name="line.556"></a> +<span class="sourceLineNo">557</span> int readSize = this.in.read(buff);<a name="line.557"></a> +<span class="sourceLineNo">558</span> if (LOG.isDebugEnabled()) {<a name="line.558"></a> +<span class="sourceLineNo">559</span> LOG.debug("Length of response for connection header:" + readSize);<a name="line.559"></a> +<span class="sourceLineNo">560</span> }<a name="line.560"></a> +<span class="sourceLineNo">561</span><a name="line.561"></a> +<span class="sourceLineNo">562</span> RPCProtos.ConnectionHeaderResponse connectionHeaderResponse =<a name="line.562"></a> +<span class="sourceLineNo">563</span> RPCProtos.ConnectionHeaderResponse.parseFrom(buff);<a name="line.563"></a> +<span class="sourceLineNo">564</span><a name="line.564"></a> +<span class="sourceLineNo">565</span> // Get the CryptoCipherMeta, update the HBaseSaslRpcClient for Crypto Cipher<a name="line.565"></a> +<span class="sourceLineNo">566</span> if (connectionHeaderResponse.hasCryptoCipherMeta()) {<a name="line.566"></a> +<span class="sourceLineNo">567</span> negotiateCryptoAes(connectionHeaderResponse.getCryptoCipherMeta());<a name="line.567"></a> +<span class="sourceLineNo">568</span> }<a name="line.568"></a> +<span class="sourceLineNo">569</span> waitingConnectionHeaderResponse = false;<a name="line.569"></a> +<span class="sourceLineNo">570</span> } catch (SocketTimeoutException ste) {<a name="line.570"></a> +<span class="sourceLineNo">571</span> LOG.fatal("Can't get the connection header response for rpc timeout, please check if" +<a name="line.571"></a> +<span class="sourceLineNo">572</span> " server has the correct configuration to support the additional function.", ste);<a name="line.572"></a> +<span class="sourceLineNo">573</span> // timeout when waiting the connection header response, ignore the additional function<a name="line.573"></a> +<span class="sourceLineNo">574</span> throw new IOException("Timeout while waiting connection header response", ste);<a name="line.574"></a> +<span class="sourceLineNo">575</span> }<a name="line.575"></a> +<span class="sourceLineNo">576</span> }<a name="line.576"></a> +<span class="sourceLineNo">577</span><a name="line.577"></a> +<span class="sourceLineNo">578</span> private void negotiateCryptoAes(RPCProtos.CryptoCipherMeta cryptoCipherMeta)<a name="line.578"></a> +<span class="sourceLineNo">579</span> throws IOException {<a name="line.579"></a> +<span class="sourceLineNo">580</span> // initilize the Crypto AES with CryptoCipherMeta<a name="line.580"></a> +<span class="sourceLineNo">581</span> saslRpcClient.initCryptoCipher(cryptoCipherMeta, this.rpcClient.conf);<a name="line.581"></a> +<span class="sourceLineNo">582</span> // reset the inputStream/outputStream for Crypto AES encryption<a name="line.582"></a> +<span class="sourceLineNo">583</span> this.in = new DataInputStream(new BufferedInputStream(saslRpcClient.getInputStream()));<a name="line.583"></a> +<span class="sourceLineNo">584</span> this.out = new DataOutputStream(new BufferedOutputStream(saslRpcClient.getOutputStream()));<a name="line.584"></a> +<span class="sourceLineNo">585</span> }<a name="line.585"></a> +<span class="sourceLineNo">586</span><a name="line.586"></a> +<span class="sourceLineNo">587</span> private void tracedWriteRequest(Call call) throws IOException {<a name="line.587"></a> +<span class="sourceLineNo">588</span> try (TraceScope ignored = TraceUtil.createTrace("RpcClientImpl.tracedWriteRequest",<a name="line.588"></a> +<span class="sourceLineNo">589</span> call.span)) {<a name="line.589"></a> +<span class="sourceLineNo">590</span> writeRequest(call);<a name="line.590"></a> +<span class="sourceLineNo">591</span> }<a name="line.591"></a> +<span class="sourceLineNo">592</span> }<a name="line.592"></a> +<span class="sourceLineNo">593</span><a name="line.593"></a> +<span class="sourceLineNo">594</span> /**<a name="line.594"></a> +<span class="sourceLineNo">595</span> * Initiates a call by sending the parameter to the remote server. Note: this is not called from<a name="line.595"></a> +<span class="sourceLineNo">596</span> * the Connection thread, but by other threads.<a name="line.596"></a> +<span class="sourceLineNo">597</span> * @see #readResponse()<a name="line.597"></a> +<span class="sourceLineNo">598</span> */<a name="line.598"></a> +<span class="sourceLineNo">599</span> private void writeRequest(Call call) throws IOException {<a name="line.599"></a> +<span class="sourceLineNo">600</span> ByteBuffer cellBlock = this.rpcClient.cellBlockBuilder.buildCellBlock(this.codec,<a name="line.600"></a> +<span class="sourceLineNo">601</span> this.compressor, call.cells);<a name="line.601"></a> +<span class="sourceLineNo">602</span> CellBlockMeta cellBlockMeta;<a name="line.602"></a> +<span class="sourceLineNo">603</span> if (cellBlock != null) {<a name="line.603"></a> +<span class="sourceLineNo">604</span> cellBlockMeta = CellBlockMeta.newBuilder().setLength(cellBlock.limit()).build();<a name="line.604"></a> +<span class="sourceLineNo">605</span> } else {<a name="line.605"></a> +<span class="sourceLineNo">606</span> cellBlockMeta = null;<a name="line.606"></a> +<span class="sourceLineNo">607</span> }<a name="line.607"></a> +<span class="sourceLineNo">608</span> RequestHeader requestHeader = buildRequestHeader(call, cellBlockMeta);<a name="line.608"></a> +<span class="sourceLineNo">609</span><a name="line.609"></a> +<span class="sourceLineNo">610</span> setupIOstreams();<a name="line.610"></a> +<span class="sourceLineNo">611</span><a name="line.611"></a> +<span class="sourceLineNo">612</span> // Now we're going to write the call. We take the lock, then check that the connection<a name="line.612"></a> +<span class="sourceLineNo">613</span> // is still valid, and, if so we do the write to the socket. If the write fails, we don't<a name="line.613"></a> +<span class="sourceLineNo">614</span> // know where we stand, we have to close the connection.<a name="line.614"></a> +<span class="sourceLineNo">615</span> if (Thread.interrupted()) {<a name="line.615"></a> +<span class="sourceLineNo">616</span> throw new InterruptedIOException();<a name="line.616"></a> +<span class="sourceLineNo">617</span> }<a name="line.617"></a> +<span class="sourceLineNo">618</span><a name="line.618"></a> +<span class="sourceLineNo">619</span> calls.put(call.id, call); // We put first as we don't want the connection to become idle.<a name="line.619"></a> +<span class="sourceLineNo">620</span> // from here, we do not throw any exception to upper layer as the call has been tracked in the<a name="line.620"></a> +<span class="sour
<TRUNCATED>
