Google Git
Sign in
vanadium / release.go.x.ref / 1ce95c7a3d37fac663a4089114ff8c326a79e529 / . / runtimes / google / ipc / discharges.go
blob: 99cba3e4822f3064dc08df17f82674593fbd1c75 [file] [log] [blame]
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]1package ipc
2
3import (
4 "sync"
Mehrdad Afsharicd9852b2014-09-26 11:07:35 -0700[diff] [blame]5
Jiri Simsa764efb72014-12-25 20:57:03 -0800[diff] [blame]6 "v.io/core/veyron/runtimes/google/ipc/stream/vc"
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]7
Jiri Simsa764efb72014-12-25 20:57:03 -0800[diff] [blame]8 "v.io/core/veyron2/context"
9 "v.io/core/veyron2/ipc"
Jiri Simsa764efb72014-12-25 20:57:03 -0800[diff] [blame]10 "v.io/core/veyron2/security"
Todd Wangb86b3522015-01-22 13:34:20 -0800[diff] [blame]11 "v.io/core/veyron2/vdl"
Jiri Simsa764efb72014-12-25 20:57:03 -0800[diff] [blame]12 "v.io/core/veyron2/vlog"
13 "v.io/core/veyron2/vtrace"
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]14)
15
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]16// discharger implements vc.DischargeClient.
17type dischargeClient struct {
Asim Shankarf4864f42014-11-25 18:53:05 -0800[diff] [blame]18 c ipc.Client
Matt Rosencrantz4f8ac602014-12-29 14:42:48 -0800[diff] [blame]19 defaultCtx *context.T
Asim Shankarf4864f42014-11-25 18:53:05 -0800[diff] [blame]20 cache dischargeCache
Asim Shankar8f05c222014-10-06 22:08:19 -0700[diff] [blame]21}
22
Asim Shankarf4864f42014-11-25 18:53:05 -0800[diff] [blame]23// InternalNewDischargeClient creates a vc.DischargeClient that will be used to
24// fetch discharges to support blessings presented to a remote process.
25//
26// defaultCtx is the context used when none (nil) is explicitly provided to the
27// PrepareDischarges call. This typically happens when fetching discharges on
28// behalf of a server accepting connections, i.e., before any notion of the
29// "context" of an API call has been established.
Suharsh Sivakumar1b6683e2014-12-30 13:00:38 -0800[diff] [blame]30func InternalNewDischargeClient(defaultCtx *context.T, client ipc.Client) vc.DischargeClient {
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]31 return &dischargeClient{
Suharsh Sivakumar1b6683e2014-12-30 13:00:38 -0800[diff] [blame]32 c: client,
Asim Shankarf4864f42014-11-25 18:53:05 -0800[diff] [blame]33 defaultCtx: defaultCtx,
34 cache: dischargeCache{cache: make(map[string]security.Discharge)},
Suharsh Sivakumar1b6683e2014-12-30 13:00:38 -0800[diff] [blame]35 }
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]36}
37
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]38func (*dischargeClient) IPCStreamListenerOpt() {}
39func (*dischargeClient) IPCStreamVCOpt() {}
40
41// PrepareDischarges retrieves the caveat discharges required for using blessings
42// at server. The discharges are either found in the dischargeCache, in the call
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]43// options, or requested from the discharge issuer indicated on the caveat.
44// Note that requesting a discharge is an ipc call, so one copy of this
45// function must be able to successfully terminate while another is blocked.
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]46func (d *dischargeClient) PrepareDischarges(ctx *context.T, forcaveats []security.Caveat, impetus security.DischargeImpetus) (ret []security.Discharge) {
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]47 if len(forcaveats) == 0 {
48 return
49 }
Asim Shankar8f05c222014-10-06 22:08:19 -0700[diff] [blame]50 // Make a copy since this copy will be mutated.
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]51 var caveats []security.Caveat
Asim Shankar8f05c222014-10-06 22:08:19 -0700[diff] [blame]52 for _, cav := range forcaveats {
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]53 // It shouldn't happen, but in case there are non-third-party
54 // caveats, drop them.
55 if tp := cav.ThirdPartyDetails(); tp != nil {
56 caveats = append(caveats, cav)
57 }
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]58 }
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]59
60 // Gather discharges from cache.
Ankurf044a8d2014-09-05 17:05:24 -0700[diff] [blame]61 discharges := make([]security.Discharge, len(caveats))
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]62 if d.cache.Discharges(caveats, discharges) > 0 {
63 // Fetch discharges for caveats for which no discharges were found
64 // in the cache.
65 if ctx == nil {
66 ctx = d.defaultCtx
67 }
68 if ctx != nil {
69 var span vtrace.Span
70 ctx, span = vtrace.SetNewSpan(ctx, "Fetching Discharges")
71 defer span.Finish()
72 }
73 d.fetchDischarges(ctx, caveats, impetus, discharges)
Asim Shankarf4864f42014-11-25 18:53:05 -0800[diff] [blame]74 }
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]75 for _, d := range discharges {
76 if d != nil {
77 ret = append(ret, d)
78 }
79 }
80 return
81}
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]82func (d *dischargeClient) Invalidate(discharges ...security.Discharge) {
83 d.cache.invalidate(discharges...)
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]84}
85
86// fetchDischarges fills in out by fetching discharges for caveats from the
87// appropriate discharge service. Since there may be dependencies in the
88// caveats, fetchDischarges keeps retrying until either all discharges can be
89// fetched or no new discharges are fetched.
90// REQUIRES: len(caveats) == len(out)
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]91// REQUIRES: caveats[i].ThirdPartyDetails() != nil for 0 <= i < len(caveats)
92func (d *dischargeClient) fetchDischarges(ctx *context.T, caveats []security.Caveat, impetus security.DischargeImpetus, out []security.Discharge) {
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]93 var wg sync.WaitGroup
94 for {
95 type fetched struct {
96 idx int
Ankurf044a8d2014-09-05 17:05:24 -0700[diff] [blame]97 discharge security.Discharge
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]98 }
99 discharges := make(chan fetched, len(caveats))
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]100 want := 0
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]101 for i := range caveats {
102 if out[i] != nil {
103 continue
104 }
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]105 want++
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]106 wg.Add(1)
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]107 go func(i int, ctx *context.T, cav security.Caveat) {
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]108 defer wg.Done()
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]109 tp := cav.ThirdPartyDetails()
110 vlog.VI(3).Infof("Fetching discharge for %v", tp)
111 call, err := d.c.StartCall(ctx, tp.Location(), "Discharge", []interface{}{cav, filteredImpetus(tp.Requirements(), impetus)}, vc.NoDischarges{})
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]112 if err != nil {
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]113 vlog.VI(3).Infof("Discharge fetch for %v failed: %v", tp, err)
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]114 return
115 }
Todd Wangb86b3522015-01-22 13:34:20 -0800[diff] [blame]116 var dAny vdl.AnyRep
Asim Shankar5a82d352014-10-31 11:36:44 -0700[diff] [blame]117 if ierr := call.Finish(&dAny, &err); ierr != nil || err != nil {
Asim Shankarc8cfcf12014-11-20 12:26:58 -0800[diff] [blame]118 vlog.VI(3).Infof("Discharge fetch for %v failed: (%v, %v)", cav, err, ierr)
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]119 return
120 }
Ankurf044a8d2014-09-05 17:05:24 -0700[diff] [blame]121 d, ok := dAny.(security.Discharge)
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]122 if !ok {
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]123 vlog.Errorf("fetchDischarges: server at %s sent a %T (%v) instead of a Discharge", tp.Location(), dAny, dAny)
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]124 } else {
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]125 vlog.VI(3).Infof("Fetched discharge for %v: %v", tp, d)
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]126 }
127 discharges <- fetched{i, d}
Asim Shankarf4864f42014-11-25 18:53:05 -0800[diff] [blame]128 }(i, ctx, caveats[i])
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]129 }
130 wg.Wait()
131 close(discharges)
132 var got int
133 for fetched := range discharges {
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]134 d.cache.Add(fetched.discharge)
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]135 out[fetched.idx] = fetched.discharge
136 got++
137 }
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]138 if want > 0 {
139 vlog.VI(3).Infof("fetchDischarges: got %d of %d discharge(s) (total %d caveats)", got, want, len(caveats))
140 }
141 if got == 0 || got == want {
Andres Erbsenb7f95f32014-07-07 12:07:56 -0700[diff] [blame]142 return
143 }
144 }
145}
146
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]147// dischargeCache is a concurrency-safe cache for third party caveat discharges.
148type dischargeCache struct {
149 mu sync.RWMutex
150 cache map[string]security.Discharge // GUARDED_BY(RWMutex)
151}
152
153// Add inserts the argument to the cache, possibly overwriting previous
154// discharges for the same caveat.
155func (dcc *dischargeCache) Add(discharges ...security.Discharge) {
156 dcc.mu.Lock()
157 for _, d := range discharges {
158 dcc.cache[d.ID()] = d
159 }
160 dcc.mu.Unlock()
161}
162
163// Discharges takes a slice of caveats and a slice of discharges of the same
164// length and fills in nil entries in the discharges slice with discharges
165// from the cache (if there are any).
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]166//
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]167// REQUIRES: len(caveats) == len(out)
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]168// REQUIRES: caveats[i].ThirdPartyDetails() != nil, for all 0 <= i < len(caveats)
169func (dcc *dischargeCache) Discharges(caveats []security.Caveat, out []security.Discharge) (remaining int) {
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]170 dcc.mu.Lock()
171 for i, d := range out {
172 if d != nil {
173 continue
174 }
Asim Shankar19da8182015-02-06 01:41:16 -0800[diff] [blame]175 if out[i] = dcc.cache[caveats[i].ThirdPartyDetails().ID()]; out[i] == nil {
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]176 remaining++
177 }
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]178 }
179 dcc.mu.Unlock()
Asim Shankar77befba2015-01-09 12:49:04 -0800[diff] [blame]180 return
Ankure49a86a2014-11-11 18:52:43 -0800[diff] [blame]181}
182
183func (dcc *dischargeCache) invalidate(discharges ...security.Discharge) {
184 dcc.mu.Lock()
185 for _, d := range discharges {
186 if dcc.cache[d.ID()] == d {
187 delete(dcc.cache, d.ID())
188 }
189 }
190 dcc.mu.Unlock()
191}
192
Asim Shankar8f05c222014-10-06 22:08:19 -0700[diff] [blame]193// filteredImpetus returns a copy of 'before' after removing any values that are not required as per 'r'.
194func filteredImpetus(r security.ThirdPartyRequirements, before security.DischargeImpetus) (after security.DischargeImpetus) {
195 if r.ReportServer && len(before.Server) > 0 {
196 after.Server = make([]security.BlessingPattern, len(before.Server))
197 for i := range before.Server {
198 after.Server[i] = before.Server[i]
Asim Shankar1fecbcc2014-09-15 00:39:13 -0700[diff] [blame]199 }
Asim Shankara94e5072014-08-19 18:18:36 -0700[diff] [blame]200 }
201 if r.ReportMethod {
Asim Shankar8f05c222014-10-06 22:08:19 -0700[diff] [blame]202 after.Method = before.Method
Asim Shankara94e5072014-08-19 18:18:36 -0700[diff] [blame]203 }
Asim Shankar8f05c222014-10-06 22:08:19 -0700[diff] [blame]204 if r.ReportArguments && len(before.Arguments) > 0 {
Todd Wangb86b3522015-01-22 13:34:20 -0800[diff] [blame]205 after.Arguments = make([]vdl.AnyRep, len(before.Arguments))
Asim Shankar8f05c222014-10-06 22:08:19 -0700[diff] [blame]206 for i := range before.Arguments {
207 after.Arguments[i] = before.Arguments[i]
Asim Shankara94e5072014-08-19 18:18:36 -0700[diff] [blame]208 }
209 }
210 return
211}