frostfs-node

Author	SHA1	Message	Date
Leonard Lyubich	44466f4a29	[#80 ] storagegroup: Implement search query generator Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-25 16:49:27 +03:00
Leonard Lyubich	6245e58d1f	[#80 ] services/object: Implement iterators over split-tree leaves Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-25 16:49:27 +03:00
Leonard Lyubich	e53bf574b5	[#279 ] container: Use new methods to work with container format Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-24 13:38:20 +03:00
Leonard Lyubich	bbe8f34ffd	[#253 ] object/eacl: Process only CID/OID object headers in RANGEHASH/DELETE Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-18 18:31:20 +03:00
Leonard Lyubich	9e27263df3	[#253 ] object/put: Fix loss of session token Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-18 18:31:20 +03:00
Leonard Lyubich	8e661d5c37	[#264 ] object/get: Prevent receiving payloads through GETRANGE when GET Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-18 16:42:17 +03:00
Leonard Lyubich	66f9532857	[#264 ] object/get: Check parent address in linking/last child Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-18 16:42:17 +03:00
Leonard Lyubich	ec21040542	[#264 ] transformer: Finalize parent header once In previous implementation parent object header finalized twice in size limiter + formatter. On the one hand, this added redundant action, on the other hand, it could provoke a difference in the headers of the linking and the last part. Change formatter to finalize parent header if it does not container the signature. Change size limiter to reuse parent header after last child finalization in linking child. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-18 16:42:17 +03:00
Leonard Lyubich	49131f1bc7	[#247 ] object/eacl: Use address from session token in request validation Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-15 13:21:13 +03:00
Leonard Lyubich	dba88c79b4	[#247 ] object/range: Process only object_id and container_id headers Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-15 13:21:13 +03:00
Leonard Lyubich	8654458b19	[#247 ] object/eacl: Use object ID from session token context Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-15 13:21:13 +03:00
Leonard Lyubich	168dcbdccd	[#247 ] object/eacl: Process object address from request In previous implementation eACL validator didn't take into account container and object ID fields of request bodies. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-15 13:21:13 +03:00
Alex Vanin	bbe700fa37	[#250 ] service/policer: Don't shrink node list at unknown error Every unknown error must not decrease shortage counter and must not exclude faulty node from the node list, because this list will be used later for replication. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-12-14 21:49:50 +03:00
Leonard Lyubich	fb50362dcc	[#243 ] services/object: Share common parameters across services Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Alex Vanin	a01262d8bd	[#243 ] service/object: Fix object chain assembly for tombstone body Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	9265e31e65	[#243 ] services/object: Fix lost tokens when generating requests Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	fe3906c295	[#243 ] object/delete: Implement new service processing Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	510e9ff2ec	[#243 ] core/object: Replace test content of tombstone with an API structure Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	627012e4fe	[#241 ] object/search: Set container ID parameter of storage engine call Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	611a29f682	[#241 ] object/search: Refactor service processing Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	3bfb18386b	object/get: Replace code with function call Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Alex Vanin	9fb7190358	[#242 ] service/object: Support ContainerID field in local search Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	0e1f05ff45	[#239 ] object/head: Implement new service processing Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	173d34a8a2	[#235 ] object/get: Set common operation parameters Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	7e56427534	[#235 ] object/getrangehash: Implement new service processing Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	0fc5ea674c	[#235 ] object/getrange: Fix incorrect processing of range from last child Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	397d912e19	[#235 ] object/head: Support raw flag in service Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	1d23483828	[#235 ] services/object: Implement new GetRange algorithm Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	869d9e571c	[#233 ] object/head: Remove getting the right child header With the update of the local storage engine, the headers of virtual objects are directly given. In this regard, the step with obtaining the the right child header is removed. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	f24daa10ff	[#233 ] services/object: Implement new Get algorithm Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Alex Vanin	e0350efe00	[#231 ] services/policer: Use engine.List method Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-12-11 17:19:37 +03:00
Alex Vanin	351e4b4592	[#222 ] Support Inhume and Delete in object service Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	953387a1e5	[#186 ] object/acl: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	046206f670	[#186 ] object/head: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	2be8f154a0	[#186 ] object/put: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	14442a0801	[#186 ] object/range: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	9b32f131c0	[#186 ] object/rangehash: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	1bce2a4e55	[#186 ] object/search: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	aa9eb2eaf2	[#186 ] policer: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	1b867e53d7	[#186 ] replicator: Use new storage engine for work Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-11 17:19:37 +03:00
Leonard Lyubich	6cddc91cbf	[#227 ] transformer: Inherit parent header in linking object In previous implementation linking object inherited only ID of the parent object. From now it inherits full header like last child. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-02 14:53:04 +03:00
Leonard Lyubich	b8e8e1e80d	[#227 ] transformer: Do not inherit attribute in generated objects In previous implementation child objects inherited parent attributes after split-transformation, which was redundant. From now attributes are not inherited. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-02 14:53:04 +03:00
Leonard Lyubich	5470d94416	[#223 ] placement: Fix local and single-success placement traversal In previous implementation placement traverser processed incorrectly with local placement build. Also entity incorrectly traversed the placement vectors for fixed number read operations until success. The erroneous behavior was due to the use of a vector number of successes instead of a scalar number in these scenarios. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-01 19:36:46 +03:00
Leonard Lyubich	d94a0eb25e	[#221 ] eacl: Get rid of deprecated methods usage Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-12-01 11:08:47 +03:00
Alex Vanin	f96630581a	[#208 ] Set unique splitID in children Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-30 10:44:15 +03:00
Alex Vanin	6280d075b9	[#208 ] Remove `childfree` search attribute With updated specification of object related operation we don't have this search attribute any more and we should not use functions related to this attribute. This commit breaks object service logic, however it will be fixed later. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-30 10:44:15 +03:00
Leonard Lyubich	706bdf736e	[#209 ] eacl: Support object ID filter in eACL mechanism Add object ID header to the list of processing object headers in eACL validation. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-25 11:59:15 +03:00
Leonard Lyubich	fddc50fd85	[#203 ] Replace ErrEACLNotFound to core library ErrEACLNotFound error was defined in implementation package. EACL validator checked this error after the call of eACL storage interface method. Replace ErrEACLNotFound to core container library. in order to: on the one hand not use an implementation error, on the other hand, to be able to reuse a generic type error (404). Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 20:19:20 +03:00
Leonard Lyubich	9148980bd0	[#193 ] services/object: Support client options in all Object services Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 15:34:30 +03:00
Alex Vanin	cf1ea983e5	[#203 ] Do not fail eACL check on EACLNotFound error Now morph library returns error if there is not eACL in sidechain storage. However in this case eACL check should be passed since it is the same as having empty eACL table. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-24 15:32:26 +03:00
Leonard Lyubich	46dab77705	[#195 ] services/object: Write debug log messages on worker pool errors Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Leonard Lyubich	fa6e4a3ca4	[#195 ] services/object: Write debug log messages on internal service errors Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Leonard Lyubich	6a5c37d592	[#195 ] object/search: Add option to set logger Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Leonard Lyubich	cb46e4b154	[#195 ] object/rangehash: Add option to set logger Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Leonard Lyubich	af6484e3b1	[#195 ] object/range: Add option to set logger Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Leonard Lyubich	cf2dc37a42	[#195 ] object/put: Add option to set logger Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Leonard Lyubich	9fbfc0b5e4	[#195 ] object/head: Add option to set logger Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Leonard Lyubich	e1e5a590e9	[#195 ] object/delete: Add option to set logger Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-24 13:38:06 +03:00
Alex Vanin	dbf6c9efef	[#190 ] Use request sender owner in sticky bit check Sticky bit checks if object owner and request owner are the same. Container owner should not used in this check. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-19 19:07:16 +03:00
Alex Vanin	2148e282ec	[#190 ] Rename owner to cnrOwner in object request info `owner` field may be misused as request sender owner, however it is a owner of a container for that request. New naming should be clear. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-19 19:07:16 +03:00
Alex Vanin	f0537b35c1	[#190 ] Add isOwnerFromKey helper function in ACL This function takes public key and returns true if owner id was produced by this key. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-19 19:07:16 +03:00
Alex Vanin	a14bb6292b	[#182 ] Reuse search filter in policer Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-19 17:59:46 +03:00
Alex Vanin	2e605b2435	[#182 ] Limit policer object filter to physical stored objects Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-19 17:59:46 +03:00
Alex Vanin	cf85fa9fab	[#180 ] Return isInnerRing flag in request classifier Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-19 15:17:18 +03:00
Alex Vanin	6f841e319d	[#180 ] Make separate basic ACL check for inner ring requests Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-19 15:17:18 +03:00
Alex Vanin	e8fe07edd0	[#184 ] Use SDK client cache in object.Rangehash Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-18 18:18:07 +03:00
Alex Vanin	f85e88c4f8	[#184 ] Use SDK client cache in object.Range Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-18 18:18:07 +03:00
Alex Vanin	d485a5967d	[#184 ] Use SDK client cache in object.Search Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-18 18:18:07 +03:00
Alex Vanin	7ba95dd5fc	[#184 ] Use SDK client cache in object.Put Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-18 18:18:07 +03:00
Alex Vanin	e9a6365333	[#184 ] Use SDK client cache in object.Head Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-18 18:18:07 +03:00
Leonard Lyubich	1caf15463e	[#174 ] Update to neofs-api-go v1.20.0 Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-17 11:56:00 +03:00
Leonard Lyubich	58fcb35fb0	[#174 ] Use Marshal(JSON)/Unmarshal(JSON) methods for encoding/decoding Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-17 11:56:00 +03:00
Leonard Lyubich	3de8febe57	[#174 ] Update to latest neofs-api-go changes Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-17 11:56:00 +03:00
Alex Vanin	32219bb294	[#160 ] Remove query match function This function duplicates query processing that is done in meta-storage now. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-16 10:02:12 +03:00
Leonard Lyubich	3c42f5b452	[#161 ] object/head: Inherit common parameters in HeadRelation Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-09 17:19:34 +03:00
Leonard Lyubich	d38633e047	[#161 ] object/delete: Add address from request body to tombstone content Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-09 15:53:58 +03:00
Leonard Lyubich	5ad013c10b	[#149 ] object/search: Return fixed error if relation not found Define ErrRelationNotFound error in searchsvc package. Return ErrRelationNotFound from RelationSearcher.SearchRelation method if search result is empty. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-06 14:01:01 +03:00
Alex Vanin	65be09d3db	[#155 ] Update neofs-api-go with refactored pkg/netmap Refactored pkg/netmap package provides JSON converters for NodeInfo and PlacementPolicy structures, that has been used by client applications. It also updates Node structure itself so it is a part of grpc <-> v2 <-> pkg conversion chain. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-11-06 09:55:05 +03:00
Leonard Lyubich	c0aa892161	[#136 ] localstorage: Make local storage to use new metabase Replace meta Bucket with meta.DB instance in local storage implementation. Adopt all dependent components to new local storage. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-03 18:42:32 +03:00
Leonard Lyubich	766eea4c8c	[#85 ] services/container: Check container format in Put Call CheckFormat function in container.Put handler for conducting initial checks of the structure that are not performed by the smart contract. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-11-03 14:14:38 +03:00
Leonard Lyubich	b48a4ede02	[#125 ] services/eacl: Use latest object header keys Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-29 19:25:54 +03:00
Leonard Lyubich	8d931b81a6	[#125 ] object/search: Use latest search filter keys Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-29 19:25:54 +03:00
Leonard Lyubich	f34ad9e730	[#125 ] services/eacl: Fix undefined method usage Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-29 19:25:54 +03:00
Alex Vanin	d08c1c76c1	[#122 ] Reduce precision from balance contract to Fixed8. Fixed8 won't overflow int64 for values less than 92 billion that is suitable for GAS. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-10-29 10:14:59 +03:00
Leonard Lyubich	f66c7958e7	[#109 ] services/policer: Assign tasks to Replicator Make Policer to call AddTask method of Replicator when an insufficient number of copies of an object is detected in the container. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 15:23:22 +03:00
Leonard Lyubich	2d46baa4a5	[#109 ] services: Implement Replicator service Implement Replicator service that performs background work to replicate local object to remote nodes in the container. Replicator is going to be used by Policer. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 15:23:22 +03:00
Leonard Lyubich	53efa18e14	[#109 ] object/put: Implement remote object sender Define RemoteSender structure with PutObject method that puts object to a remote node locally. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 15:23:22 +03:00
Leonard Lyubich	968033deed	[#40 ] object/put: Assign zero return of MaxObjectSize invalid Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 14:03:25 +03:00
Leonard Lyubich	7fdb14cf8a	[#83 ] services/response: Set epoch number from network state Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 10:54:48 +03:00
Leonard Lyubich	19f9c7eacb	[#83 ] services: Remove setting of meta header from executing services Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 10:54:48 +03:00
Leonard Lyubich	0341773318	[#83 ] services: Implement response sub-service for each service Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 10:54:48 +03:00
Leonard Lyubich	6bede7d836	[#83 ] services/util: Implement response service Create response package. Implement response Service that sets values of response meta header. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 10:54:48 +03:00
Leonard Lyubich	1cc7983c4e	[#83 ] services/util: Add meta header methods to ResponseMessage Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 10:54:48 +03:00
Leonard Lyubich	71a06f9e01	[#83 ] services/util: Define type of response message interface Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>	2020-10-23 10:54:48 +03:00
Alex Vanin	7464254680	[#106 ] Put simplest bearer token check first Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-10-22 18:02:11 +03:00
Alex Vanin	23ec33e821	[#106 ] Check bearer token lifetime Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-10-22 18:02:11 +03:00
Alex Vanin	bb455af05f	[#106 ] Ignore bearer token if basic ACL restrict it There is a bit to allow or deny bearer token check for each object service method. If this bit is not set then ignore bearer token and use extended ACL table from sidechain. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-10-22 18:02:11 +03:00
Alex Vanin	89cd2ad463	[#106 ] Process bearer token in ACL service If bearer token is presented in the request then check if it is a valid one and then use it to process extended ACL checks. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-10-22 18:02:11 +03:00
Alex Vanin	094248690b	[#115 ] Make ACL classifier errors transparent for client Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-10-22 11:55:28 +03:00
Alex Vanin	ca552f53c6	[#115 ] Check session token validity Malicious user can stole public session key and use it by sending request from it's own scope. To prevent this each session token is signed and signature private key must be corresponded with owner id in token. Therefore malicious node cannot impersonate request without private key to sign token. Signed-off-by: Alex Vanin <alexey@nspcc.ru>	2020-10-22 11:55:28 +03:00

1 2 3 4 5 ...

275 commits