[MINOR] fix API And add host check

Author: jlfsdtc

src/common-server/pom.xml

@@ -38,6 +38,12 @@
             <groupId>org.apache.kylin</groupId>
             <artifactId>kylin-core-common</artifactId>
         </dependency>
+        <dependency>
+            <groupId>org.apache.kylin</groupId>
+            <artifactId>kylin-core-metadata</artifactId>
+            <type>test-jar</type>
+            <scope>test</scope>
+        </dependency>
         <dependency>
             <groupId>org.apache.kylin</groupId>
             <artifactId>kylin-core-metadata</artifactId>

src/common-server/src/main/java/org/apache/kylin/rest/controller/NBasicController.java

@@ -79,6 +79,7 @@
 import org.apache.kylin.common.KylinConfig;
 import org.apache.kylin.common.KylinConfigBase;
 import org.apache.kylin.common.exception.KylinException;
+import org.apache.kylin.common.exception.KylinRuntimeException;
 import org.apache.kylin.common.exception.ServerErrorCode;
 import org.apache.kylin.common.msg.Message;
 import org.apache.kylin.common.msg.MsgPicker;
@@ -96,7 +97,9 @@
 import org.apache.kylin.metadata.model.TableDesc;
 import org.apache.kylin.metadata.project.NProjectManager;
 import org.apache.kylin.metadata.project.ProjectInstance;
+import org.apache.kylin.metadata.resourcegroup.ResourceGroupManager;
 import org.apache.kylin.metadata.streaming.KafkaConfigManager;
+import org.apache.kylin.rest.cluster.ClusterManager;
 import org.apache.kylin.rest.constant.Constant;
 import org.apache.kylin.rest.exception.ForbiddenException;
 import org.apache.kylin.rest.exception.NotFoundException;
@@ -160,6 +163,9 @@ public class NBasicController {
     @Autowired
     protected UserService userService;
 
+    @Autowired
+    protected ClusterManager clusterManager;
+
     protected Logger getLogger() {
         return logger;
     }
@@ -701,4 +707,24 @@ private void initBinder(WebDataBinder binder) {
         int autoGrowCollectionLimit = KylinConfig.getInstanceFromEnv().getDataBinderAutoGrowCollectionLimit();
         binder.setAutoGrowCollectionLimit(autoGrowCollectionLimit);
     }
+
+    public void checkServer(String host) {
+        if (StringUtils.isBlank(host)) {
+            throw new KylinRuntimeException("Server cannot be null or empty");
+        }
+
+        val rgManager = ResourceGroupManager.getInstance(KylinConfig.getInstanceFromEnv());
+        val serverNotFoundInCluster = clusterManager.checkServer(host);
+
+        if (rgManager.isResourceGroupEnabled()) {
+            val serverNotFoundInResourceGroup = rgManager.checkServer(host);
+            if (serverNotFoundInCluster && serverNotFoundInResourceGroup) {
+                throw new KylinRuntimeException(String.format(Locale.ROOT, "Server <%s> not found", host));
+            }
+        } else {
+            if (serverNotFoundInCluster) {
+                throw new KylinRuntimeException(String.format(Locale.ROOT, "Server <%s> not found", host));
+            }
+        }
+    }
 }

src/common-server/src/main/java/org/apache/kylin/rest/controller/NSystemController.java

@@ -190,6 +190,7 @@ public EnvelopeResponse<String> simulateInsertMeta(
     public EnvelopeResponse<String> broadcastMetadataBackup(@RequestBody MetadataBackupRequest request) {
         log.info("ResourceGroup[{}] broadcastMetadataBackup tmpFilePath : {}", request.getResourceGroupId(),
                 request.getTmpFilePath());
+        checkServer(request.getFromHost());
         fileService.saveBroadcastMetadataBackup(request.getBackupDir(), request.getTmpFilePath(),
                 request.getTmpFileSize(), request.getResourceGroupId(), request.getFromHost());
         return new EnvelopeResponse<>(CODE_SUCCESS, "", "");

src/common-server/src/test/java/org/apache/kylin/rest/controller/NBasicControllerTest.java

@@ -40,12 +40,17 @@
 
 import org.apache.commons.lang3.StringUtils;
 import org.apache.kylin.common.exception.KylinException;
+import org.apache.kylin.common.exception.KylinRuntimeException;
 import org.apache.kylin.common.extension.KylinInfoExtension;
 import org.apache.kylin.common.msg.MsgPicker;
+import org.apache.kylin.common.util.AddressUtil;
 import org.apache.kylin.common.util.NLocalFileMetadataTestCase;
 import org.apache.kylin.common.util.Pair;
 import org.apache.kylin.metadata.model.PartitionDesc;
 import org.apache.kylin.metadata.model.TableDesc;
+import org.apache.kylin.metadata.resourcegroup.ResourceGroupManagerTest;
+import org.apache.kylin.rest.cluster.ClusterManager;
+import org.apache.kylin.rest.cluster.MockClusterManager;
 import org.apache.kylin.rest.controller.fixture.FixtureController;
 import org.apache.kylin.rest.exception.ForbiddenException;
 import org.apache.kylin.rest.exception.NotFoundException;
@@ -56,6 +61,7 @@
 import org.junit.Before;
 import org.junit.Rule;
 import org.junit.Test;
+import org.junit.jupiter.api.Assertions;
 import org.junit.rules.ExpectedException;
 import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;
@@ -64,6 +70,7 @@
 import org.powermock.core.classloader.annotations.PrepareForTest;
 import org.powermock.modules.junit4.PowerMockRunner;
 import org.springframework.security.access.AccessDeniedException;
+import org.springframework.test.util.ReflectionTestUtils;
 import org.springframework.test.web.servlet.MockMvc;
 import org.springframework.test.web.servlet.request.MockMvcRequestBuilders;
 import org.springframework.test.web.servlet.result.MockMvcResultMatchers;
@@ -333,4 +340,68 @@ public void testEncodeAndDecodeHost() {
         Assert.assertEquals("ip", nBasicController.decodeHost("ip"));
     }
 
+    @Test
+    public void testCheckServerWithResourceGroupEnable() {
+        ClusterManager clusterManager = new MockClusterManager();
+
+        String project = "default";
+        ResourceGroupManagerTest.mockResourceGroup(AddressUtil.getLocalInstance(), project);
+        ReflectionTestUtils.setField(nBasicController, "clusterManager", clusterManager);
+
+        // Test valid server - should not throw exception
+        Assertions.assertDoesNotThrow(() -> nBasicController.checkServer(AddressUtil.getLocalInstance()));
+        Assertions.assertDoesNotThrow(() -> nBasicController.checkServer("127.0.0.1:7070"));
+
+        // Test null host - should throw KylinRuntimeException
+        KylinRuntimeException nullException = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer(null));
+        Assertions.assertEquals("Server cannot be null or empty", nullException.getMessage());
+
+        // Test empty host - should throw KylinRuntimeException
+        KylinRuntimeException emptyException = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer(""));
+        Assertions.assertEquals("Server cannot be null or empty", emptyException.getMessage());
+        KylinRuntimeException emptyException2 = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer(" "));
+        Assertions.assertEquals("Server cannot be null or empty", emptyException2.getMessage());
+
+        // Test host not found in servers - should throw KylinRuntimeException
+        KylinRuntimeException notFoundException = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer("192.168.1.1:8080"));
+        Assertions.assertEquals("Server <192.168.1.1:8080> not found", notFoundException.getMessage());
+    }
+
+    @Test
+    public void testCheckServerWithoutResourceGroupEnable() {
+        ClusterManager clusterManager = new MockClusterManager();
+
+        ReflectionTestUtils.setField(nBasicController, "clusterManager", clusterManager);
+
+        // Test valid server - should not throw exception
+        Assertions.assertDoesNotThrow(() -> nBasicController.checkServer("127.0.0.1:7070"));
+
+        // Test null host - should throw KylinRuntimeException
+        KylinRuntimeException nullException = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer(null));
+        Assertions.assertEquals("Server cannot be null or empty", nullException.getMessage());
+
+        // Test empty host - should throw KylinRuntimeException
+        KylinRuntimeException emptyException = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer(""));
+        Assertions.assertEquals("Server cannot be null or empty", emptyException.getMessage());
+        KylinRuntimeException emptyException2 = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer(" "));
+        Assertions.assertEquals("Server cannot be null or empty", emptyException2.getMessage());
+
+        // Test host not found in servers - should throw KylinRuntimeException
+        KylinRuntimeException notFoundException = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer("192.168.1.1:8080"));
+        Assertions.assertEquals("Server <192.168.1.1:8080> not found", notFoundException.getMessage());
+
+        // Test current host not found in servers - should throw KylinRuntimeException
+        KylinRuntimeException notFoundException2 = Assertions.assertThrows(KylinRuntimeException.class,
+                () -> nBasicController.checkServer(AddressUtil.getLocalInstance()));
+        Assertions.assertEquals("Server <" + AddressUtil.getLocalInstance() + "> not found",
+                notFoundException2.getMessage());
+    }
 }

src/common-service/src/main/java/org/apache/kylin/rest/service/FileService.java

@@ -20,6 +20,7 @@
 
 import static org.apache.kylin.common.constant.Constants.BACKSLASH;
 import static org.apache.kylin.common.constant.Constants.METADATA_FILE;
+import static org.apache.kylin.common.constant.Constants.SYSTEM_TMP_DIR;
 import static org.apache.kylin.common.constant.HttpConstant.HTTP_VND_APACHE_KYLIN_V4_PUBLIC_JSON;
 
 import java.io.File;
@@ -28,6 +29,7 @@
 import java.io.IOException;
 import java.io.InputStream;
 import java.nio.file.Files;
+import java.nio.file.Paths;
 import java.util.Arrays;
 import java.util.Locale;
 
@@ -60,12 +62,31 @@
 @Slf4j
 @Service
 public class FileService extends BasicService {
+    protected static final String METADATA_TMP_PREFIX = "KylinMetadataBackupTmp-";
+
     @Autowired
     @Qualifier("normalRestTemplate")
     private RestTemplate restTemplate;
 
+    public static String getSafeAbsolutePath(String filePath) {
+        val basePath = Paths.get(SYSTEM_TMP_DIR).toAbsolutePath().normalize();
+        val targetPath = Paths.get(filePath).toAbsolutePath().normalize();
+
+        if (!targetPath.startsWith(basePath)) {
+            throw new SecurityException("Path outside base directory: " + filePath);
+        }
+
+        val metadataTmpPrefix = Paths.get(basePath.toString(), METADATA_TMP_PREFIX).toAbsolutePath().normalize();
+        if (!StringUtils.startsWith(targetPath.toString(), metadataTmpPrefix.toString())) {
+            throw new SecurityException("Path not kylin metadata tmp directory: " + filePath);
+        }
+
+        return targetPath.toString();
+    }
+
     public InputStream getMetadataBackupFromTmpPath(String tmpFilePath, Long fileSize) throws IOException {
-        val metadataBackupTmp = new File(tmpFilePath);
+        val realTempPath = getSafeAbsolutePath(tmpFilePath);
+        val metadataBackupTmp = new File(realTempPath);
         if (metadataBackupTmp.isFile()) {
             if (metadataBackupTmp.length() != fileSize) {
                 throw new FileNotFoundException("Metadata backup temp file length does not right: " + tmpFilePath
@@ -84,7 +105,7 @@ public Pair<String, Long> saveMetadataBackupInTmpPath(String path) throws IOExce
         val filePath = new Path(path);
         if (fileSystem.isFile(filePath)) {
             val fileStatus = fileSystem.getFileStatus(filePath);
-            val tempDirectory = Files.createTempDirectory("MetadataBackupTmp-").toFile();
+            val tempDirectory = Files.createTempDirectory(Paths.get(SYSTEM_TMP_DIR), METADATA_TMP_PREFIX).toFile();
             fileSystem.copyToLocalFile(false, filePath, new Path(tempDirectory.getAbsolutePath()), true);
             val tmpFile = new File(tempDirectory, METADATA_FILE);
             if (fileStatus.getLen() != tmpFile.length()) {
@@ -99,7 +120,7 @@ public Pair<String, Long> saveMetadataBackupInTmpPath(String path) throws IOExce
     }
 
     public String saveMetadataBackupTmpFromRequest(Long fileSize, InputStream inputStream) throws IOException {
-        val tmpDirectory = Files.createTempDirectory("MetadataBackupTmp-").toFile();
+        val tmpDirectory = Files.createTempDirectory(METADATA_TMP_PREFIX).toFile();
         val tmpFile = new File(tmpDirectory, METADATA_FILE);
         try (val os = new FileOutputStream(tmpFile)) {
             IOUtils.copy(inputStream, os);

src/common-service/src/main/java/org/apache/kylin/rest/service/ProjectService.java

@@ -26,13 +26,15 @@
 import static org.apache.kylin.common.constant.Constants.KYLIN_SOURCE_JDBC_SOURCE_ENABLE_KEY;
 import static org.apache.kylin.common.constant.Constants.KYLIN_SOURCE_JDBC_SOURCE_NAME_KEY;
 import static org.apache.kylin.common.constant.Constants.KYLIN_SOURCE_JDBC_USER_KEY;
+import static org.apache.kylin.common.constant.Constants.MAX_FILENAME_LENGTH;
 import static org.apache.kylin.common.constant.NonCustomProjectLevelConfig.DATASOURCE_TYPE;
 import static org.apache.kylin.common.exception.ServerErrorCode.DATABASE_NOT_EXIST;
 import static org.apache.kylin.common.exception.ServerErrorCode.DUPLICATE_PROJECT_NAME;
 import static org.apache.kylin.common.exception.ServerErrorCode.EMPTY_EMAIL;
 import static org.apache.kylin.common.exception.ServerErrorCode.EMPTY_PARAMETER;
 import static org.apache.kylin.common.exception.ServerErrorCode.FILE_TYPE_MISMATCH;
 import static org.apache.kylin.common.exception.ServerErrorCode.INVALID_JDBC_SOURCE_CONFIG;
+import static org.apache.kylin.common.exception.ServerErrorCode.INVALID_KERBEROS_FILE;
 import static org.apache.kylin.common.exception.ServerErrorCode.INVALID_PARAMETER;
 import static org.apache.kylin.common.exception.ServerErrorCode.PERMISSION_DENIED;
 import static org.apache.kylin.common.exception.ServerErrorCode.PROJECT_DROP_FAILED;
@@ -172,6 +174,8 @@ public class ProjectService extends BasicService {
     private static final String SNAPSHOT_AUTO_REFRESH_TIME_MODES = "DAY, HOURS, MINUTE";
     private static final String KYLIN_QUERY_PUSHDOWN_RUNNER_CLASS_NAME = "kylin.query.pushdown.runner-class-name";
     private static final String DEFAULT_VAL = "default";
+    private static final Pattern INVALID_FILENAME_CHARS = Pattern.compile("[\\\\/:*?\"'<>|\\u0000-\\u001F\\s]|^[.]+$|[.]$");
+
     @Autowired
     UserService userService;
     @Autowired
@@ -1242,11 +1246,26 @@ public File backupAndDeleteKeytab(String principal) throws IOException {
         return kFile;
     }
 
-    public File generateTempKeytab(String principal, MultipartFile keytabFile) throws IOException {
-        Message msg = MsgPicker.getMsg();
+    public static void checkPrincipal(String principal, Message msg) {
         if (null == principal || principal.isEmpty()) {
             throw new KylinException(EMPTY_PARAMETER, msg.getPrincipalEmpty());
         }
+
+        // principal length
+        if (principal.length() > MAX_FILENAME_LENGTH - KerberosLoginManager.TMP_KEYTAB_SUFFIX.length()) {
+            throw new KylinException(INVALID_KERBEROS_FILE, msg.getKerberosInfoError());
+        }
+
+        // invalid characters
+        if (INVALID_FILENAME_CHARS.matcher(principal).find()) {
+            throw new KylinException(INVALID_KERBEROS_FILE, msg.getKerberosInfoError());
+        }
+    }
+
+    public File generateTempKeytab(String principal, MultipartFile keytabFile) throws IOException {
+        Message msg = MsgPicker.getMsg();
+        checkPrincipal(principal, msg);
+
         val originalFilename = keytabFile.getOriginalFilename();
         if (originalFilename == null || !originalFilename.endsWith(".keytab")) {
             throw new KylinException(FILE_TYPE_MISMATCH, msg.getKeytabFileTypeMismatch());