Google Git
Sign in
vanadium / release.go.x.ref / 305626ae594890298131eb4893d9b9957e56aea2 / . / services / identity / auditor / blessing_auditor.go
blob: a76bc89dbd5b32f28ea5b5f1cc0da91a61a2d520 [file] [log] [blame]
package auditor
import (
"bytes"
"fmt"
_ "github.com/go-sql-driver/mysql"
"strings"
"time"
vsecurity "veyron.io/veyron/veyron/security"
"veyron.io/veyron/veyron/security/audit"
"veyron.io/veyron/veyron2/security"
"veyron.io/veyron/veyron2/vlog"
"veyron.io/veyron/veyron2/vom"
)
// BlessingLogReader provides the Read method to read audit logs.
// Read returns a channel of BlessingEntrys whose extension matches the provided email.
type BlessingLogReader interface {
Read(email string) <-chan BlessingEntry
}
// BlessingEntry contains important logged information about a blessed principal.
type BlessingEntry struct {
Email string
Caveats []security.Caveat
Timestamp time.Time // Time when the blesings were created.
RevocationCaveatID string
Blessings security.Blessings
}
// NewSQLBlessingAuditor returns an auditor for wrapping a principal with, and a BlessingLogReader
// for reading the audits made by that auditor. The config is used to construct the connection
// to the SQL database that the auditor and BlessingLogReader use.
func NewSQLBlessingAuditor(config SQLConfig) (audit.Auditor, BlessingLogReader, error) {
db, err := newSQLDatabase(config)
if err != nil {
return nil, nil, fmt.Errorf("failed to create sql db: %v", err)
}
auditor, reader := &blessingAuditor{db}, &blessingLogReader{db}
return auditor, reader, nil
}
type blessingAuditor struct {
db database
}
func (a *blessingAuditor) Audit(entry audit.Entry) error {
if entry.Method != "Bless" {
return nil
}
dbentry, err := newDatabaseEntry(entry)
if err != nil {
return err
}
return a.db.Insert(dbentry)
}
type blessingLogReader struct {
db database
}
func (r *blessingLogReader) Read(email string) <-chan BlessingEntry {
c := make(chan BlessingEntry)
go r.sendAuditEvents(c, email)
return c
}
func (r *blessingLogReader) sendAuditEvents(dst chan<- BlessingEntry, email string) {
defer close(dst)
dbch := r.db.Query(email)
for dbentry := range dbch {
var entry BlessingEntry
if err := entry.fromDatabaseEntry(dbentry); err != nil {
vlog.Errorf("Corrupt database data? %#v, %v", dbentry, err)
continue
}
dst <- entry
}
}
func newDatabaseEntry(entry audit.Entry) (databaseEntry, error) {
d := databaseEntry{timestamp: entry.Timestamp}
extension, ok := entry.Arguments[2].(string)
if !ok {
return d, fmt.Errorf("failed to extract extension")
}
d.email = strings.Split(extension, "/")[0]
var caveats []security.Caveat
for _, arg := range entry.Arguments[3:] {
if cav, ok := arg.(security.Caveat); !ok {
return d, fmt.Errorf("failed to extract Caveat")
} else {
caveats = append(caveats, cav)
}
}
var blessings security.Blessings
if blessings, ok = entry.Results[0].(security.Blessings); !ok {
return d, fmt.Errorf("failed to extract result blessing")
}
{
var buf bytes.Buffer
if err := vom.NewEncoder(&buf).Encode(security.MarshalBlessings(blessings)); err != nil {
return d, err
}
d.blessings = buf.Bytes()
}
{
var buf bytes.Buffer
if err := vom.NewEncoder(&buf).Encode(caveats); err != nil {
return d, err
}
d.caveats = buf.Bytes()
}
return d, nil
}
func (b *BlessingEntry) fromDatabaseEntry(dbentry databaseEntry) error {
b.Email = dbentry.email
b.Timestamp = dbentry.timestamp
var wireBlessings security.WireBlessings
var err error
if err := vom.NewDecoder(bytes.NewBuffer(dbentry.blessings)).Decode(&wireBlessings); err != nil {
return err
}
if b.Blessings, err = security.NewBlessings(wireBlessings); err != nil {
return err
}
if err := vom.NewDecoder(bytes.NewBuffer(dbentry.caveats)).Decode(&b.Caveats); err != nil {
return err
}
b.RevocationCaveatID, err = revocationCaveatID(b.Caveats)
return err
}
func revocationCaveatID(caveats []security.Caveat) (string, error) {
validators, err := vsecurity.CaveatValidators(caveats...)
if err != nil {
return "", err
}
for _, cav := range validators {
if tpcav, ok := cav.(security.ThirdPartyCaveat); ok {
return tpcav.ID(), nil
}
}
return "", nil
}