Blame - profiles/internal/rpc/server.go - release.go.x.ref

blob: 3e9b57f892aaf51a172542ebb7e726ca6eb39039 [file] [log] [blame]

Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1	package rpc
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	2
				3	import (
Bogdan Caprita	9592d9f	2015-01-08 22:15:16 -0800	[diff] [blame]	4	"errors"
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	5	"fmt"
				6	"io"
Cosmos Nicolaou	bae615a	2014-08-27 23:32:31 -0700	[diff] [blame]	7	"net"
Asim Shankar	b54d764	2014-06-05 13:08:04 -0700	[diff] [blame]	8	"reflect"
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	9	"strings"
				10	"sync"
				11	"time"
				12
Jiri Simsa	6ac9522	2015-02-23 16:11:49 -0800	[diff] [blame]	13	"v.io/v23/config"
				14	"v.io/v23/context"
Jiri Simsa	6ac9522	2015-02-23 16:11:49 -0800	[diff] [blame]	15	"v.io/v23/naming"
David Why Use Two When One Will Do Presotto	d424c21	2015-02-25 11:05:26 -0800	[diff] [blame]	16	"v.io/v23/naming/ns"
Jiri Simsa	6ac9522	2015-02-23 16:11:49 -0800	[diff] [blame]	17	"v.io/v23/options"
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	18	"v.io/v23/rpc"
Jiri Simsa	6ac9522	2015-02-23 16:11:49 -0800	[diff] [blame]	19	"v.io/v23/security"
				20	"v.io/v23/services/security/access"
				21	"v.io/v23/vdl"
				22	"v.io/v23/verror"
Jiri Simsa	6ac9522	2015-02-23 16:11:49 -0800	[diff] [blame]	23	"v.io/v23/vom"
				24	"v.io/v23/vtrace"
Jiri Simsa	337af23	2015-02-27 14:36:46 -0800	[diff] [blame]	25	"v.io/x/lib/vlog"
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	26	"v.io/x/ref/profiles/internal/rpc/stream"
Cosmos Nicolaou	f889c73	2014-10-16 20:46:54 -0700	[diff] [blame]	27
Matt Rosencrantz	9d3278a	2015-03-11 14:58:34 -0700	[diff] [blame]	28	"v.io/x/lib/netstate"
Jiri Simsa	ffceefa	2015-02-28 11:03:34 -0800	[diff] [blame]	29	"v.io/x/ref/lib/stats"
Matt Rosencrantz	86ba1a1	2015-03-09 13:19:02 -0700	[diff] [blame]	30	"v.io/x/ref/profiles/internal/lib/publisher"
Matt Rosencrantz	dbc1be2	2015-02-28 15:15:49 -0800	[diff] [blame]	31	inaming "v.io/x/ref/profiles/internal/naming"
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	32	"v.io/x/ref/profiles/internal/rpc/stream/vc"
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	33
Todd Wang	ff73e1f	2015-02-10 21:45:52 -0800	[diff] [blame]	34	// TODO(cnicolaou): finish verror2 -> verror transition, in particular
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	35	// for communicating from server to client.
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	36	)
				37
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	38	// state for each requested listen address
				39	type listenState struct {
				40	protocol, address string
				41	ln stream.Listener
				42	lep naming.Endpoint
				43	lnerr, eperr error
				44	roaming bool
				45	// We keep track of all of the endpoints, the port and a copy of
				46	// the original listen endpoint for use with roaming network changes.
				47	ieps []*inaming.Endpoint // list of currently active eps
				48	port string // port to use for creating new eps
				49	protoIEP inaming.Endpoint // endpoint to use as template for new eps (includes rid, versions etc)
				50	}
				51
				52	// state for each requested proxy
				53	type proxyState struct {
				54	endpoint naming.Endpoint
Mike Burrows	dc6b360	2015-02-05 15:52:12 -0800	[diff] [blame]	55	err error
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	56	}
				57
				58	type dhcpState struct {
				59	name string
				60	publisher *config.Publisher
				61	stream *config.Stream
				62	ch chan config.Setting // channel to receive dhcp settings over
				63	err error // error status.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	64	watchers map[chan<- rpc.NetworkChange]struct{}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	65	}
				66
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	67	type server struct {
				68	sync.Mutex
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	69	// context used by the server to make internal RPCs, error messages etc.
				70	ctx *context.T
Matt Rosencrantz	1094d06	2015-01-30 06:43:12 -0800	[diff] [blame]	71	cancel context.CancelFunc // function to cancel the above context.
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	72	state serverState // track state of the server.
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	73	streamMgr stream.Manager // stream manager to listen for new flows.
				74	publisher publisher.Publisher // publisher to publish mounttable mounts.
				75	listenerOpts []stream.ListenerOpt // listener opts for Listen.
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	76	dhcpState *dhcpState // dhcpState, nil if not using dhcp
Suharsh Sivakumar	59c423c	2015-03-11 14:06:03 -0700	[diff] [blame]	77	principal security.Principal
Suharsh Sivakumar	e5e5dcc	2015-03-18 14:29:31 -0700	[diff] [blame]	78	blessings security.Blessings
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	79
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	80	// maps that contain state on listeners.
				81	listenState map[*listenState]struct{}
				82	listeners map[stream.Listener]struct{}
				83
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	84	// state of proxies keyed by the name of the proxy
				85	proxies map[string]proxyState
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	86
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	87	// all endpoints generated and returned by this server
				88	endpoints []naming.Endpoint
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	89
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	90	disp rpc.Dispatcher // dispatcher to serve RPCs
				91	dispReserved rpc.Dispatcher // dispatcher for reserved methods
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	92	active sync.WaitGroup // active goroutines we've spawned.
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	93	stoppedChan chan struct{} // closed when the server has been stopped.
				94	preferredProtocols []string // protocols to use when resolving proxy name to endpoint.
Jungho Ahn	25545d3	2015-01-26 15:14:14 -0800	[diff] [blame]	95	// We cache the IP networks on the device since it is not that cheap to read
				96	// network interfaces through os syscall.
				97	// TODO(jhahn): Add monitoring the network interface changes.
				98	ipNets []*net.IPNet
David Why Use Two When One Will Do Presotto	d424c21	2015-02-25 11:05:26 -0800	[diff] [blame]	99	ns ns.Namespace
Jungho Ahn	25545d3	2015-01-26 15:14:14 -0800	[diff] [blame]	100	servesMountTable bool
Robin Thellend	89e9523	2015-03-24 13:48:48 -0700	[diff] [blame^]	101	isLeaf bool
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	102
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	103	// TODO(cnicolaou): add roaming stats to rpcStats
				104	stats *rpcStats // stats for this server.
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	105	}
				106
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	107	type serverState int
				108
				109	const (
				110	initialized serverState = iota
				111	listening
				112	serving
				113	publishing
				114	stopping
				115	stopped
				116	)
				117
				118	// Simple state machine for the server implementation.
				119	type next map[serverState]bool
				120	type transitions map[serverState]next
				121
				122	var (
				123	states = transitions{
				124	initialized: next{listening: true, stopping: true},
				125	listening: next{listening: true, serving: true, stopping: true},
				126	serving: next{publishing: true, stopping: true},
				127	publishing: next{publishing: true, stopping: true},
				128	stopping: next{},
				129	stopped: next{},
				130	}
				131
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	132	externalStates = map[serverState]rpc.ServerState{
				133	initialized: rpc.ServerInit,
				134	listening: rpc.ServerActive,
				135	serving: rpc.ServerActive,
				136	publishing: rpc.ServerActive,
				137	stopping: rpc.ServerStopping,
				138	stopped: rpc.ServerStopped,
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	139	}
				140	)
				141
				142	func (s *server) allowed(next serverState, method string) error {
				143	if states[s.state][next] {
				144	s.state = next
				145	return nil
				146	}
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	147	return verror.New(verror.ErrBadState, s.ctx, fmt.Sprintf("%s called out of order or more than once", method))
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	148	}
				149
				150	func (s *server) isStopState() bool {
				151	return s.state == stopping \|\| s.state == stopped
				152	}
				153
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	154	var _ rpc.Server = (*server)(nil)
Benjamin Prosnitz	fdfbf7b	2014-10-08 09:47:21 -0700	[diff] [blame]	155
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	156	func InternalNewServer(ctx *context.T, streamMgr stream.Manager, ns ns.Namespace, client rpc.Client, principal security.Principal, opts ...rpc.ServerOpt) (rpc.Server, error) {
Matt Rosencrantz	1094d06	2015-01-30 06:43:12 -0800	[diff] [blame]	157	ctx, cancel := context.WithRootCancel(ctx)
Matt Rosencrantz	5f98d94	2015-01-08 13:48:30 -0800	[diff] [blame]	158	ctx, _ = vtrace.SetNewSpan(ctx, "NewServer")
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	159	statsPrefix := naming.Join("rpc", "server", "routing-id", streamMgr.RoutingID().String())
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	160	s := &server{
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	161	ctx: ctx,
				162	cancel: cancel,
				163	streamMgr: streamMgr,
Suharsh Sivakumar	59c423c	2015-03-11 14:06:03 -0700	[diff] [blame]	164	principal: principal,
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	165	publisher: publisher.New(ctx, ns, publishPeriod),
				166	listenState: make(map[*listenState]struct{}),
				167	listeners: make(map[stream.Listener]struct{}),
				168	proxies: make(map[string]proxyState),
				169	stoppedChan: make(chan struct{}),
				170	ipNets: ipNetworks(),
				171	ns: ns,
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	172	stats: newRPCStats(statsPrefix),
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	173	}
Suharsh Sivakumar	2c5d810	2015-03-23 08:49:12 -0700	[diff] [blame]	174	var (
				175	dischargeExpiryBuffer = vc.DefaultServerDischargeExpiryBuffer
				176	securityLevel options.SecurityLevel
				177	)
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	178	for _, opt := range opts {
Bogdan Caprita	187269b	2014-05-13 19:59:46 -0700	[diff] [blame]	179	switch opt := opt.(type) {
				180	case stream.ListenerOpt:
				181	// Collect all ServerOpts that are also ListenerOpts.
				182	s.listenerOpts = append(s.listenerOpts, opt)
Bogdan Caprita	e737631	2014-11-10 13:13:17 -0800	[diff] [blame]	183	switch opt := opt.(type) {
Suharsh Sivakumar	0891858	2015-03-03 15:16:36 -0800	[diff] [blame]	184	case vc.DischargeExpiryBuffer:
				185	dischargeExpiryBuffer = time.Duration(opt)
Bogdan Caprita	e737631	2014-11-10 13:13:17 -0800	[diff] [blame]	186	}
Suharsh Sivakumar	e5e5dcc	2015-03-18 14:29:31 -0700	[diff] [blame]	187	case options.ServerBlessings:
				188	s.blessings = opt.Blessings
Asim Shankar	cc04421	2014-10-15 23:25:26 -0700	[diff] [blame]	189	case options.ServesMountTable:
Cosmos Nicolaou	e6e87f1	2014-06-03 14:29:10 -0700	[diff] [blame]	190	s.servesMountTable = bool(opt)
Suharsh Sivakumar	d7a6519	2015-01-27 22:57:15 -0800	[diff] [blame]	191	case ReservedNameDispatcher:
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	192	s.dispReserved = opt.Dispatcher
Nicolas LaCasse	55a10f3	2014-11-26 13:25:53 -0800	[diff] [blame]	193	case PreferredServerResolveProtocols:
				194	s.preferredProtocols = []string(opt)
Suharsh Sivakumar	2c5d810	2015-03-23 08:49:12 -0700	[diff] [blame]	195	case options.SecurityLevel:
				196	securityLevel = opt
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	197	}
				198	}
Suharsh Sivakumar	e5e5dcc	2015-03-18 14:29:31 -0700	[diff] [blame]	199	if s.blessings.IsZero() && principal != nil {
				200	s.blessings = principal.BlessingStore().Default()
				201	}
Suharsh Sivakumar	2c5d810	2015-03-23 08:49:12 -0700	[diff] [blame]	202	if securityLevel == options.SecurityNone {
				203	s.principal = nil
				204	s.blessings = security.Blessings{}
				205	s.dispReserved = nil
				206	}
Suharsh Sivakumar	0891858	2015-03-03 15:16:36 -0800	[diff] [blame]	207	// Make dischargeExpiryBuffer shorter than the VC discharge buffer to ensure we have fetched
				208	// the discharges by the time the VC asks for them.`
				209	dc := InternalNewDischargeClient(ctx, client, dischargeExpiryBuffer-(5*time.Second))
Suharsh Sivakumar	1b6683e	2014-12-30 13:00:38 -0800	[diff] [blame]	210	s.listenerOpts = append(s.listenerOpts, dc)
Benjamin Prosnitz	9284a00	2015-02-23 14:57:25 -0800	[diff] [blame]	211	s.listenerOpts = append(s.listenerOpts, vc.DialContext{ctx})
Bogdan Caprita	e737631	2014-11-10 13:13:17 -0800	[diff] [blame]	212	blessingsStatsName := naming.Join(statsPrefix, "security", "blessings")
Asim Shankar	2bf7b1e	2015-02-27 00:45:12 -0800	[diff] [blame]	213	// TODO(caprita): revist printing the blessings with %s, and
				214	// instead expose them as a list.
Suharsh Sivakumar	e5e5dcc	2015-03-18 14:29:31 -0700	[diff] [blame]	215	stats.NewString(blessingsStatsName).Set(fmt.Sprintf("%s", s.blessings))
Suharsh Sivakumar	2c5d810	2015-03-23 08:49:12 -0700	[diff] [blame]	216	if principal != nil {
Bogdan Caprita	e737631	2014-11-10 13:13:17 -0800	[diff] [blame]	217	stats.NewStringFunc(blessingsStatsName, func() string {
				218	return fmt.Sprintf("%s (default)", principal.BlessingStore().Default())
				219	})
				220	}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	221	return s, nil
				222	}
				223
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	224	func (s *server) Status() rpc.ServerStatus {
				225	status := rpc.ServerStatus{}
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	226	defer vlog.LogCall()()
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	227	s.Lock()
				228	defer s.Unlock()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	229	status.State = externalStates[s.state]
				230	status.ServesMountTable = s.servesMountTable
				231	status.Mounts = s.publisher.Status()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	232	status.Endpoints = []naming.Endpoint{}
				233	for ls, _ := range s.listenState {
				234	if ls.eperr != nil {
				235	status.Errors = append(status.Errors, ls.eperr)
				236	}
				237	if ls.lnerr != nil {
				238	status.Errors = append(status.Errors, ls.lnerr)
				239	}
				240	for _, iep := range ls.ieps {
				241	status.Endpoints = append(status.Endpoints, iep)
				242	}
				243	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	244	status.Proxies = make([]rpc.ProxyStatus, 0, len(s.proxies))
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	245	for k, v := range s.proxies {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	246	status.Proxies = append(status.Proxies, rpc.ProxyStatus{k, v.endpoint, v.err})
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	247	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	248	return status
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	249	}
				250
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	251	func (s *server) WatchNetwork(ch chan<- rpc.NetworkChange) {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	252	defer vlog.LogCall()()
				253	s.Lock()
				254	defer s.Unlock()
				255	if s.dhcpState != nil {
				256	s.dhcpState.watchers[ch] = struct{}{}
				257	}
				258	}
				259
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	260	func (s *server) UnwatchNetwork(ch chan<- rpc.NetworkChange) {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	261	defer vlog.LogCall()()
				262	s.Lock()
				263	defer s.Unlock()
				264	if s.dhcpState != nil {
				265	delete(s.dhcpState.watchers, ch)
				266	}
				267	}
				268
Robin Thellend	92b65a4	2014-12-17 14:30:16 -0800	[diff] [blame]	269	// resolveToEndpoint resolves an object name or address to an endpoint.
				270	func (s *server) resolveToEndpoint(address string) (string, error) {
Asim Shankar	aae3180	2015-01-22 11:59:42 -0800	[diff] [blame]	271	var resolved *naming.MountEntry
				272	var err error
Asim Shankar	dee311d	2014-08-01 17:41:31 -0700	[diff] [blame]	273	if s.ns != nil {
Asim Shankar	aae3180	2015-01-22 11:59:42 -0800	[diff] [blame]	274	if resolved, err = s.ns.Resolve(s.ctx, address); err != nil {
Asim Shankar	dee311d	2014-08-01 17:41:31 -0700	[diff] [blame]	275	return "", err
				276	}
				277	} else {
Asim Shankar	aae3180	2015-01-22 11:59:42 -0800	[diff] [blame]	278	// Fake a namespace resolution
				279	resolved = &naming.MountEntry{Servers: []naming.MountedServer{
				280	{Server: address},
				281	}}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	282	}
Nicolas LaCasse	55a10f3	2014-11-26 13:25:53 -0800	[diff] [blame]	283	// An empty set of protocols means all protocols...
Jungho Ahn	25545d3	2015-01-26 15:14:14 -0800	[diff] [blame]	284	if resolved.Servers, err = filterAndOrderServers(resolved.Servers, s.preferredProtocols, s.ipNets); err != nil {
Nicolas LaCasse	55a10f3	2014-11-26 13:25:53 -0800	[diff] [blame]	285	return "", err
				286	}
Asim Shankar	aae3180	2015-01-22 11:59:42 -0800	[diff] [blame]	287	for _, n := range resolved.Names() {
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	288	address, suffix := naming.SplitAddressName(n)
David Why Use Two When One Will Do Presotto	adf0ca1	2014-11-13 10:49:01 -0800	[diff] [blame]	289	if suffix != "" {
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	290	continue
				291	}
Asim Shankar	aae3180	2015-01-22 11:59:42 -0800	[diff] [blame]	292	if ep, err := inaming.NewEndpoint(address); err == nil {
				293	return ep.String(), nil
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	294	}
				295	}
Asim Shankar	dee311d	2014-08-01 17:41:31 -0700	[diff] [blame]	296	return "", fmt.Errorf("unable to resolve %q to an endpoint", address)
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	297	}
				298
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	299	// getPossbileAddrs returns an appropriate set of addresses that could be used
				300	// to contact the supplied protocol, host, port parameters using the supplied
				301	// chooser function. It returns an indication of whether the supplied address
				302	// was fully specified or not, returning false if the address was fully
				303	// specified, and true if it was not.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	304	func getPossibleAddrs(protocol, host, port string, chooser rpc.AddressChooser) ([]rpc.Address, bool, error) {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	305
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	306	ip := net.ParseIP(host)
				307	if ip == nil {
				308	return nil, false, fmt.Errorf("failed to parse %q as an IP host", host)
				309	}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	310
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	311	addrFromIP := func(ip net.IP) rpc.Address {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	312	return &netstate.AddrIfc{
				313	Addr: &net.IPAddr{IP: ip},
				314	}
				315	}
				316
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	317	if ip.IsUnspecified() {
				318	if chooser != nil {
				319	// Need to find a usable IP address since the call to listen
				320	// didn't specify one.
				321	if addrs, err := netstate.GetAccessibleIPs(); err == nil {
Cosmos Nicolaou	d70e1fc	2014-12-16 14:20:39 -0800	[diff] [blame]	322	a, err := chooser(protocol, addrs)
				323	if err == nil && len(a) > 0 {
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	324	return a, true, nil
				325	}
				326	}
				327	}
				328	// We don't have a chooser, so we just return the address the
				329	// underlying system has chosen.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	330	return []rpc.Address{addrFromIP(ip)}, true, nil
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	331	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	332	return []rpc.Address{addrFromIP(ip)}, false, nil
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	333	}
				334
				335	// createEndpoints creates appropriate inaming.Endpoint instances for
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	336	// all of the externally accessible network addresses that can be used
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	337	// to reach this server.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	338	func (s server) createEndpoints(lep naming.Endpoint, chooser rpc.AddressChooser) ([]inaming.Endpoint, string, bool, error) {
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	339	iep, ok := lep.(*inaming.Endpoint)
				340	if !ok {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	341	return nil, "", false, fmt.Errorf("internal type conversion error for %T", lep)
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	342	}
				343	if !strings.HasPrefix(iep.Protocol, "tcp") &&
				344	!strings.HasPrefix(iep.Protocol, "ws") {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	345	// If not tcp, ws, or wsh, just return the endpoint we were given.
				346	return []*inaming.Endpoint{iep}, "", false, nil
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	347	}
				348
				349	host, port, err := net.SplitHostPort(iep.Address)
				350	if err != nil {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	351	return nil, "", false, err
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	352	}
Cosmos Nicolaou	d70e1fc	2014-12-16 14:20:39 -0800	[diff] [blame]	353	addrs, unspecified, err := getPossibleAddrs(iep.Protocol, host, port, chooser)
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	354	if err != nil {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	355	return nil, port, false, err
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	356	}
				357	ieps := make([]*inaming.Endpoint, 0, len(addrs))
				358	for _, addr := range addrs {
				359	n, err := inaming.NewEndpoint(lep.String())
				360	if err != nil {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	361	return nil, port, false, err
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	362	}
				363	n.IsMountTable = s.servesMountTable
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	364	n.Address = net.JoinHostPort(addr.Address().String(), port)
				365	ieps = append(ieps, n)
				366	}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	367	return ieps, port, unspecified, nil
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	368	}
				369
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	370	func (s *server) Listen(listenSpec rpc.ListenSpec) ([]naming.Endpoint, error) {
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	371	defer vlog.LogCall()()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	372	useProxy := len(listenSpec.Proxy) > 0
				373	if !useProxy && len(listenSpec.Addrs) == 0 {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	374	return nil, verror.New(verror.ErrBadArg, s.ctx, "ListenSpec contains no proxy or addresses to listen on")
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	375	}
				376
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	377	s.Lock()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	378	defer s.Unlock()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	379
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	380	if err := s.allowed(listening, "Listen"); err != nil {
				381	return nil, err
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	382	}
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	383
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	384	// Start the proxy as early as possible, ignore duplicate requests
				385	// for the same proxy.
				386	if _, inuse := s.proxies[listenSpec.Proxy]; useProxy && !inuse {
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	387	// We have a goroutine for listening on proxy connections.
Cosmos Nicolaou	eef1fab	2014-11-11 18:23:41 -0800	[diff] [blame]	388	s.active.Add(1)
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	389	go func() {
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	390	s.proxyListenLoop(listenSpec.Proxy)
				391	s.active.Done()
				392	}()
				393	}
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	394
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	395	roaming := false
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	396	lnState := make([]*listenState, 0, len(listenSpec.Addrs))
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	397	for _, addr := range listenSpec.Addrs {
				398	if len(addr.Address) > 0 {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	399	// Listen if we have a local address to listen on.
				400	ls := &listenState{
				401	protocol: addr.Protocol,
				402	address: addr.Address,
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	403	}
Suharsh Sivakumar	e5e5dcc	2015-03-18 14:29:31 -0700	[diff] [blame]	404	ls.ln, ls.lep, ls.lnerr = s.streamMgr.Listen(addr.Protocol, addr.Address, s.principal, s.blessings, s.listenerOpts...)
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	405	lnState = append(lnState, ls)
				406	if ls.lnerr != nil {
Asim Shankar	7171a25	2015-03-07 14:41:40 -0800	[diff] [blame]	407	vlog.VI(2).Infof("Listen(%q, %q, ...) failed: %v", addr.Protocol, addr.Address, ls.lnerr)
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	408	continue
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	409	}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	410	ls.ieps, ls.port, ls.roaming, ls.eperr = s.createEndpoints(ls.lep, listenSpec.AddressChooser)
				411	if ls.roaming && ls.eperr == nil {
				412	ls.protoIEP = ls.lep.(inaming.Endpoint)
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	413	roaming = true
				414	}
				415	}
				416	}
				417
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	418	found := false
				419	for _, ls := range lnState {
				420	if ls.ln != nil {
				421	found = true
				422	break
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	423	}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	424	}
				425	if !found && !useProxy {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	426	return nil, verror.New(verror.ErrBadArg, s.ctx, "failed to create any listeners")
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	427	}
				428
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	429	if roaming && s.dhcpState == nil && listenSpec.StreamPublisher != nil {
				430	// Create a dhcp listener if we haven't already done so.
				431	dhcp := &dhcpState{
				432	name: listenSpec.StreamName,
				433	publisher: listenSpec.StreamPublisher,
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	434	watchers: make(map[chan<- rpc.NetworkChange]struct{}),
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	435	}
				436	s.dhcpState = dhcp
				437	dhcp.ch = make(chan config.Setting, 10)
				438	dhcp.stream, dhcp.err = dhcp.publisher.ForkStream(dhcp.name, dhcp.ch)
				439	if dhcp.err == nil {
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	440	// We have a goroutine to listen for dhcp changes.
				441	s.active.Add(1)
				442	go func() {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	443	s.dhcpLoop(dhcp.ch)
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	444	s.active.Done()
				445	}()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	446	}
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	447	}
				448
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	449	eps := make([]naming.Endpoint, 0, 10)
				450	for _, ls := range lnState {
				451	s.listenState[ls] = struct{}{}
				452	if ls.ln != nil {
				453	// We have a goroutine per listener to accept new flows.
				454	// Each flow is served from its own goroutine.
				455	s.active.Add(1)
				456	go func(ln stream.Listener, ep naming.Endpoint) {
				457	s.listenLoop(ln, ep)
				458	s.active.Done()
				459	}(ls.ln, ls.lep)
				460	}
				461
				462	for _, iep := range ls.ieps {
Robin Thellend	89e9523	2015-03-24 13:48:48 -0700	[diff] [blame^]	463	s.publisher.AddServer(iep.String())
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	464	eps = append(eps, iep)
				465	}
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	466	}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	467
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	468	return eps, nil
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	469	}
				470
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	471	func (s server) reconnectAndPublishProxy(proxy string) (inaming.Endpoint, stream.Listener, error) {
Robin Thellend	92b65a4	2014-12-17 14:30:16 -0800	[diff] [blame]	472	resolved, err := s.resolveToEndpoint(proxy)
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	473	if err != nil {
				474	return nil, nil, fmt.Errorf("Failed to resolve proxy %q (%v)", proxy, err)
				475	}
Suharsh Sivakumar	e5e5dcc	2015-03-18 14:29:31 -0700	[diff] [blame]	476	ln, ep, err := s.streamMgr.Listen(inaming.Network, resolved, s.principal, s.blessings, s.listenerOpts...)
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	477	if err != nil {
				478	return nil, nil, fmt.Errorf("failed to listen on %q: %s", resolved, err)
				479	}
				480	iep, ok := ep.(*inaming.Endpoint)
				481	if !ok {
				482	ln.Close()
				483	return nil, nil, fmt.Errorf("internal type conversion error for %T", ep)
				484	}
				485	s.Lock()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	486	s.proxies[proxy] = proxyState{iep, nil}
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	487	s.Unlock()
Robin Thellend	e22920e	2015-02-05 17:15:50 -0800	[diff] [blame]	488	iep.IsMountTable = s.servesMountTable
Robin Thellend	89e9523	2015-03-24 13:48:48 -0700	[diff] [blame^]	489	s.publisher.AddServer(iep.String())
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	490	return iep, ln, nil
				491	}
				492
				493	func (s *server) proxyListenLoop(proxy string) {
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	494	const (
				495	min = 5 * time.Millisecond
				496	max = 5 * time.Minute
				497	)
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	498
				499	iep, ln, err := s.reconnectAndPublishProxy(proxy)
				500	if err != nil {
				501	vlog.VI(1).Infof("Failed to connect to proxy: %s", err)
				502	}
				503	// the initial connection maybe have failed, but we enter the retry
				504	// loop anyway so that we will continue to try and connect to the
				505	// proxy.
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	506	s.Lock()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	507	if s.isStopState() {
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	508	s.Unlock()
				509	return
				510	}
				511	s.Unlock()
				512
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	513	for {
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	514	if ln != nil && iep != nil {
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	515	err := s.listenLoop(ln, iep)
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	516	// The listener is done, so:
				517	// (1) Unpublish its name
Cosmos Nicolaou	8bd8e10	2015-01-13 21:52:53 -0800	[diff] [blame]	518	s.publisher.RemoveServer(iep.String())
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	519	s.Lock()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	520	if err != nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	521	s.proxies[proxy] = proxyState{iep, verror.New(verror.ErrNoServers, s.ctx, err)}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	522	} else {
Asim Shankar	7171a25	2015-03-07 14:41:40 -0800	[diff] [blame]	523	// err will be nil if we're stopping.
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	524	s.proxies[proxy] = proxyState{iep, nil}
				525	s.Unlock()
				526	return
				527	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	528	s.Unlock()
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	529	}
				530
				531	s.Lock()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	532	if s.isStopState() {
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	533	s.Unlock()
				534	return
				535	}
				536	s.Unlock()
				537
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	538	// (2) Reconnect to the proxy unless the server has been stopped
				539	backoff := min
				540	ln = nil
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	541	for {
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	542	select {
				543	case <-time.After(backoff):
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	544	if backoff = backoff * 2; backoff > max {
				545	backoff = max
				546	}
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	547	case <-s.stoppedChan:
				548	return
				549	}
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	550	// (3) reconnect, publish new address
				551	if iep, ln, err = s.reconnectAndPublishProxy(proxy); err != nil {
				552	vlog.VI(1).Infof("Failed to reconnect to proxy %q: %s", proxy, err)
				553	} else {
				554	vlog.VI(1).Infof("Reconnected to proxy %q, %s", proxy, iep)
				555	break
				556	}
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	557	}
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	558	}
				559	}
				560
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	561	// addListener adds the supplied listener taking care to
				562	// check to see if we're already stopping. It returns true
				563	// if the listener was added.
				564	func (s *server) addListener(ln stream.Listener) bool {
				565	s.Lock()
				566	defer s.Unlock()
				567	if s.isStopState() {
				568	return false
				569	}
				570	s.listeners[ln] = struct{}{}
				571	return true
				572	}
				573
				574	// rmListener removes the supplied listener taking care to
				575	// check if we're already stopping. It returns true if the
				576	// listener was removed.
				577	func (s *server) rmListener(ln stream.Listener) bool {
				578	s.Lock()
				579	defer s.Unlock()
				580	if s.isStopState() {
				581	return false
				582	}
				583	delete(s.listeners, ln)
				584	return true
				585	}
				586
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	587	func (s *server) listenLoop(ln stream.Listener, ep naming.Endpoint) error {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	588	defer vlog.VI(1).Infof("rpc: Stopped listening on %s", ep)
Cosmos Nicolaou	eef1fab	2014-11-11 18:23:41 -0800	[diff] [blame]	589	var calls sync.WaitGroup
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	590
				591	if !s.addListener(ln) {
				592	// We're stopping.
				593	return nil
				594	}
				595
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	596	defer func() {
Cosmos Nicolaou	eef1fab	2014-11-11 18:23:41 -0800	[diff] [blame]	597	calls.Wait()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	598	s.rmListener(ln)
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	599	}()
				600	for {
				601	flow, err := ln.Accept()
				602	if err != nil {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	603	vlog.VI(10).Infof("rpc: Accept on %v failed: %v", ep, err)
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	604	return err
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	605	}
Cosmos Nicolaou	eef1fab	2014-11-11 18:23:41 -0800	[diff] [blame]	606	calls.Add(1)
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	607	go func(flow stream.Flow) {
Todd Wang	34ed4c6	2014-11-26 15:15:52 -0800	[diff] [blame]	608	defer calls.Done()
				609	fs, err := newFlowServer(flow, s)
				610	if err != nil {
Todd Wang	03fee96	2014-12-08 19:33:10 -0800	[diff] [blame]	611	vlog.Errorf("newFlowServer on %v failed: %v", ep, err)
Todd Wang	34ed4c6	2014-11-26 15:15:52 -0800	[diff] [blame]	612	return
				613	}
				614	if err := fs.serve(); err != nil {
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	615	// TODO(caprita): Logging errors here is too spammy. For example, "not
				616	// authorized" errors shouldn't be logged as server errors.
Cosmos Nicolaou	93dd88b	2015-02-19 15:10:53 -0800	[diff] [blame]	617	// TODO(cnicolaou): revisit this when verror2 transition is
				618	// done.
Cosmos Nicolaou	1534b3f	2014-12-10 15:30:00 -0800	[diff] [blame]	619	if err != io.EOF {
Cosmos Nicolaou	93dd88b	2015-02-19 15:10:53 -0800	[diff] [blame]	620	vlog.VI(2).Infof("Flow serve on %v failed: %v", ep, err)
Cosmos Nicolaou	1534b3f	2014-12-10 15:30:00 -0800	[diff] [blame]	621	}
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	622	}
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	623	}(flow)
				624	}
				625	}
				626
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	627	func (s *server) dhcpLoop(ch chan config.Setting) {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	628	defer vlog.VI(1).Infof("rpc: Stopped listen for dhcp changes")
				629	vlog.VI(2).Infof("rpc: dhcp loop")
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	630	for setting := range ch {
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	631	if setting == nil {
				632	return
				633	}
				634	switch v := setting.Value().(type) {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	635	case []rpc.Address:
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	636	s.Lock()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	637	if s.isStopState() {
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	638	s.Unlock()
				639	return
				640	}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	641	var err error
				642	var changed []naming.Endpoint
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	643	switch setting.Name() {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	644	case rpc.NewAddrsSetting:
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	645	changed = s.addAddresses(v)
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	646	case rpc.RmAddrsSetting:
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	647	changed, err = s.removeAddresses(v)
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	648	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	649	change := rpc.NetworkChange{
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	650	Time: time.Now(),
				651	State: externalStates[s.state],
				652	Setting: setting,
				653	Changed: changed,
				654	Error: err,
				655	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	656	vlog.VI(2).Infof("rpc: dhcp: change %v", change)
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	657	for ch, _ := range s.dhcpState.watchers {
				658	select {
				659	case ch <- change:
				660	default:
				661	}
				662	}
				663	s.Unlock()
				664	default:
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	665	vlog.Errorf("rpc: dhcpLoop: unhandled setting type %T", v)
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	666	}
				667	}
				668	}
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	669
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	670	func getHost(address rpc.Address) string {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	671	host, _, err := net.SplitHostPort(address.Address().String())
				672	if err == nil {
				673	return host
				674	}
				675	return address.Address().String()
				676
				677	}
				678
				679	// Remove all endpoints that have the same host address as the supplied
				680	// address parameter.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	681	func (s *server) removeAddresses(addresses []rpc.Address) ([]naming.Endpoint, error) {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	682	var removed []naming.Endpoint
				683	for _, address := range addresses {
				684	host := getHost(address)
				685	for ls, _ := range s.listenState {
				686	if ls != nil && ls.roaming && len(ls.ieps) > 0 {
				687	remaining := make([]*inaming.Endpoint, 0, len(ls.ieps))
				688	for _, iep := range ls.ieps {
				689	lnHost, _, err := net.SplitHostPort(iep.Address)
				690	if err != nil {
				691	lnHost = iep.Address
				692	}
				693	if lnHost == host {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	694	vlog.VI(2).Infof("rpc: dhcp removing: %s", iep)
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	695	removed = append(removed, iep)
				696	s.publisher.RemoveServer(iep.String())
				697	continue
				698	}
				699	remaining = append(remaining, iep)
				700	}
				701	ls.ieps = remaining
				702	}
				703	}
				704	}
				705	return removed, nil
				706	}
				707
				708	// Add new endpoints for the new address. There is no way to know with
				709	// 100% confidence which new endpoints to publish without shutting down
				710	// all network connections and reinitializing everything from scratch.
				711	// Instead, we find all roaming listeners with at least one endpoint
				712	// and create a new endpoint with the same port as the existing ones
				713	// but with the new address supplied to us to by the dhcp code. As
				714	// an additional safeguard we reject the new address if it is not
				715	// externally accessible.
				716	// This places the onus on the dhcp/roaming code that sends us addresses
				717	// to ensure that those addresses are externally reachable.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	718	func (s *server) addAddresses(addresses []rpc.Address) []naming.Endpoint {
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	719	var added []naming.Endpoint
				720	for _, address := range addresses {
				721	if !netstate.IsAccessibleIP(address) {
				722	return added
				723	}
				724	host := getHost(address)
				725	for ls, _ := range s.listenState {
				726	if ls != nil && ls.roaming {
				727	niep := ls.protoIEP
				728	niep.Address = net.JoinHostPort(host, ls.port)
				729	ls.ieps = append(ls.ieps, &niep)
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	730	vlog.VI(2).Infof("rpc: dhcp adding: %s", niep)
Robin Thellend	89e9523	2015-03-24 13:48:48 -0700	[diff] [blame^]	731	s.publisher.AddServer(niep.String())
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	732	added = append(added, &niep)
				733	}
				734	}
				735	}
				736	return added
				737	}
Cosmos Nicolaou	ef323db	2014-09-07 22:13:28 -0700	[diff] [blame]	738
Bogdan Caprita	7590a6d	2015-01-08 13:43:40 -0800	[diff] [blame]	739	type leafDispatcher struct {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	740	invoker rpc.Invoker
Bogdan Caprita	7590a6d	2015-01-08 13:43:40 -0800	[diff] [blame]	741	auth security.Authorizer
				742	}
				743
				744	func (d leafDispatcher) Lookup(suffix string) (interface{}, security.Authorizer, error) {
				745	if suffix != "" {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	746	return nil, nil, rpc.NewErrUnknownSuffix(nil, suffix)
Bogdan Caprita	7590a6d	2015-01-08 13:43:40 -0800	[diff] [blame]	747	}
				748	return d.invoker, d.auth, nil
				749	}
				750
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	751	func (s *server) Serve(name string, obj interface{}, authorizer security.Authorizer) error {
Cosmos Nicolaou	8bd8e10	2015-01-13 21:52:53 -0800	[diff] [blame]	752	defer vlog.LogCall()()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	753	if obj == nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	754	return verror.New(verror.ErrBadArg, s.ctx, "nil object")
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	755	}
Bogdan Caprita	9592d9f	2015-01-08 22:15:16 -0800	[diff] [blame]	756	invoker, err := objectToInvoker(obj)
				757	if err != nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	758	return verror.New(verror.ErrBadArg, s.ctx, fmt.Sprintf("bad object: %v", err))
Cosmos Nicolaou	61c96c7	2014-11-03 11:57:56 -0800	[diff] [blame]	759	}
Robin Thellend	89e9523	2015-03-24 13:48:48 -0700	[diff] [blame^]	760	s.isLeaf = true
Bogdan Caprita	9592d9f	2015-01-08 22:15:16 -0800	[diff] [blame]	761	return s.ServeDispatcher(name, &leafDispatcher{invoker, authorizer})
Cosmos Nicolaou	61c96c7	2014-11-03 11:57:56 -0800	[diff] [blame]	762	}
				763
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	764	func (s *server) ServeDispatcher(name string, disp rpc.Dispatcher) error {
Cosmos Nicolaou	8bd8e10	2015-01-13 21:52:53 -0800	[diff] [blame]	765	defer vlog.LogCall()()
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	766	if disp == nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	767	return verror.New(verror.ErrBadArg, s.ctx, "nil dispatcher")
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	768	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	769	s.Lock()
				770	defer s.Unlock()
				771	if err := s.allowed(serving, "Serve or ServeDispatcher"); err != nil {
				772	return err
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	773	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	774	vtrace.GetSpan(s.ctx).Annotate("Serving under name: " + name)
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	775	s.disp = disp
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	776	if len(name) > 0 {
Robin Thellend	89e9523	2015-03-24 13:48:48 -0700	[diff] [blame^]	777	s.publisher.AddName(name, s.servesMountTable, s.isLeaf)
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	778	}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	779	return nil
				780	}
				781
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	782	func (s *server) AddName(name string) error {
Cosmos Nicolaou	8bd8e10	2015-01-13 21:52:53 -0800	[diff] [blame]	783	defer vlog.LogCall()()
Ali Ghassemi	3c6db7b	2014-11-10 17:20:26 -0800	[diff] [blame]	784	if len(name) == 0 {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	785	return verror.New(verror.ErrBadArg, s.ctx, "name is empty")
Ali Ghassemi	3c6db7b	2014-11-10 17:20:26 -0800	[diff] [blame]	786	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	787	s.Lock()
				788	defer s.Unlock()
				789	if err := s.allowed(publishing, "AddName"); err != nil {
				790	return err
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	791	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	792	vtrace.GetSpan(s.ctx).Annotate("Serving under name: " + name)
Robin Thellend	89e9523	2015-03-24 13:48:48 -0700	[diff] [blame^]	793	s.publisher.AddName(name, s.servesMountTable, s.isLeaf)
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	794	return nil
				795	}
				796
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	797	func (s *server) RemoveName(name string) {
Cosmos Nicolaou	8bd8e10	2015-01-13 21:52:53 -0800	[diff] [blame]	798	defer vlog.LogCall()()
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	799	s.Lock()
				800	defer s.Unlock()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	801	if err := s.allowed(publishing, "RemoveName"); err != nil {
				802	return
				803	}
Matt Rosencrantz	5f98d94	2015-01-08 13:48:30 -0800	[diff] [blame]	804	vtrace.GetSpan(s.ctx).Annotate("Removed name: " + name)
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	805	s.publisher.RemoveName(name)
Cosmos Nicolaou	92dba58	2014-11-05 17:24:10 -0800	[diff] [blame]	806	}
				807
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	808	func (s *server) Stop() error {
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	809	defer vlog.LogCall()()
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	810	s.Lock()
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	811	if s.isStopState() {
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	812	s.Unlock()
				813	return nil
				814	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	815	s.state = stopping
Asim Shankar	0ea02ab	2014-06-09 11:39:24 -0700	[diff] [blame]	816	close(s.stoppedChan)
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	817	s.Unlock()
				818
Robin Thellend	df42823	2014-10-06 12:50:44 -0700	[diff] [blame]	819	// Delete the stats object.
				820	s.stats.stop()
				821
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	822	// Note, It's safe to Stop/WaitForStop on the publisher outside of the
				823	// server lock, since publisher is safe for concurrent access.
				824
				825	// Stop the publisher, which triggers unmounting of published names.
				826	s.publisher.Stop()
				827	// Wait for the publisher to be done unmounting before we can proceed to
				828	// close the listeners (to minimize the number of mounted names pointing
				829	// to endpoint that are no longer serving).
				830	//
				831	// TODO(caprita): See if make sense to fail fast on rejecting
				832	// connections once listeners are closed, and parallelize the publisher
				833	// and listener shutdown.
				834	s.publisher.WaitForStop()
				835
				836	s.Lock()
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	837
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	838	// Close all listeners. No new flows will be accepted, while in-flight
				839	// flows will continue until they terminate naturally.
				840	nListeners := len(s.listeners)
				841	errCh := make(chan error, nListeners)
Cosmos Nicolaou	bc74314	2014-10-06 21:27:18 -0700	[diff] [blame]	842
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	843	for ln, _ := range s.listeners {
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	844	go func(ln stream.Listener) {
				845	errCh <- ln.Close()
				846	}(ln)
Cosmos Nicolaou	ae8dd21	2014-12-13 23:43:08 -0800	[diff] [blame]	847	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	848
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	849	drain := func(ch chan config.Setting) {
				850	for {
				851	select {
				852	case v := <-ch:
				853	if v == nil {
				854	return
				855	}
				856	default:
				857	close(ch)
				858	return
				859	}
				860	}
				861	}
				862
				863	if dhcp := s.dhcpState; dhcp != nil {
Cosmos Nicolaou	aceb8d9	2015-02-05 20:44:02 -0800	[diff] [blame]	864	// TODO(cnicolaou,caprita): investigate not having to close and drain
				865	// the channel here. It's a little awkward right now since we have to
				866	// be careful to not close the channel in two places, i.e. here and
				867	// and from the publisher's Shutdown method.
				868	if err := dhcp.publisher.CloseFork(dhcp.name, dhcp.ch); err == nil {
				869	drain(dhcp.ch)
				870	}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	871	}
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	872
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	873	s.Unlock()
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	874
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	875	var firstErr error
				876	for i := 0; i < nListeners; i++ {
				877	if err := <-errCh; err != nil && firstErr == nil {
				878	firstErr = err
				879	}
				880	}
				881	// At this point, we are guaranteed that no new requests are going to be
				882	// accepted.
				883
				884	// Wait for the publisher and active listener + flows to finish.
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	885	done := make(chan struct{}, 1)
				886	go func() { s.active.Wait(); done <- struct{}{} }()
				887
				888	select {
				889	case <-done:
				890	case <-time.After(5 * time.Minute):
				891	vlog.Errorf("Listener Close Error: %v", firstErr)
Bogdan Caprita	2d04f0e	2015-03-13 15:39:13 -0700	[diff] [blame]	892	vlog.Errorf("Timedout waiting for goroutines to stop: listeners: %d (currently: %d)", nListeners, len(s.listeners))
Cosmos Nicolaou	1b3594d	2015-02-01 10:05:03 -0800	[diff] [blame]	893	for ln, _ := range s.listeners {
				894	vlog.Errorf("Listener: %p", ln)
				895	}
				896	for ls, _ := range s.listenState {
				897	vlog.Errorf("ListenState: %v", ls)
				898	}
				899	<-done
				900	}
Cosmos Nicolaou	9388ae4	2014-11-10 10:57:15 -0800	[diff] [blame]	901
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	902	s.Lock()
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	903	defer s.Unlock()
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	904	s.disp = nil
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	905	if firstErr != nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	906	return verror.New(verror.ErrInternal, s.ctx, firstErr)
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	907	}
Cosmos Nicolaou	9fbe7d2	2015-01-25 22:13:13 -0800	[diff] [blame]	908	s.state = stopped
Matt Rosencrantz	1094d06	2015-01-30 06:43:12 -0800	[diff] [blame]	909	s.cancel()
Cosmos Nicolaou	28dabfc	2014-12-15 22:51:07 -0800	[diff] [blame]	910	return nil
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	911	}
				912
				913	// flowServer implements the RPC server-side protocol for a single RPC, over a
				914	// flow that's already connected to the client.
				915	type flowServer struct {
Matt Rosencrantz	4f8ac60	2014-12-29 14:42:48 -0800	[diff] [blame]	916	*context.T
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	917	server *server // rpc.Server that this flow server belongs to
				918	disp rpc.Dispatcher // rpc.Dispatcher that will serve RPCs on this flow
Todd Wang	3425a90	2015-01-21 18:43:59 -0800	[diff] [blame]	919	dec *vom.Decoder // to decode requests and args from the client
				920	enc *vom.Encoder // to encode responses and results to the client
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	921	flow stream.Flow // underlying flow
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	922
Asim Shankar	220a015	2014-10-30 21:21:09 -0700	[diff] [blame]	923	// Fields filled in during the server invocation.
Suharsh Sivakumar	380bf34	2015-02-27 15:38:27 -0800	[diff] [blame]	924	clientBlessings security.Blessings
				925	ackBlessings bool
				926	grantedBlessings security.Blessings
				927	method, suffix string
				928	tags []*vdl.Value
				929	discharges map[string]security.Discharge
				930	starttime time.Time
				931	endStreamArgs bool // are the stream args at EOF?
				932	allowDebug bool // true if the caller is permitted to view debug information.
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	933	}
				934
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	935	var _ rpc.Stream = (*flowServer)(nil)
Benjamin Prosnitz	fdfbf7b	2014-10-08 09:47:21 -0700	[diff] [blame]	936
Todd Wang	34ed4c6	2014-11-26 15:15:52 -0800	[diff] [blame]	937	func newFlowServer(flow stream.Flow, server server) (flowServer, error) {
Cosmos Nicolaou	dcba93d	2014-07-30 11:09:26 -0700	[diff] [blame]	938	server.Lock()
				939	disp := server.disp
				940	server.Unlock()
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	941
Todd Wang	34ed4c6	2014-11-26 15:15:52 -0800	[diff] [blame]	942	fs := &flowServer{
				943	T: server.ctx,
				944	server: server,
				945	disp: disp,
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	946	flow: flow,
				947	discharges: make(map[string]security.Discharge),
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	948	}
Matt Rosencrantz	232c1ba	2015-03-18 10:57:41 -0700	[diff] [blame]	949	// Attach the flow server to fs.T (the embedded *context.T) to act
				950	// as a security.Call.
Matt Rosencrantz	250558f	2015-03-17 11:37:31 -0700	[diff] [blame]	951	fs.T = security.SetCall(fs.T, fs)
Todd Wang	f519f8f	2015-01-21 10:07:41 -0800	[diff] [blame]	952	var err error
Todd Wang	3425a90	2015-01-21 18:43:59 -0800	[diff] [blame]	953	if fs.dec, err = vom.NewDecoder(flow); err != nil {
Todd Wang	f519f8f	2015-01-21 10:07:41 -0800	[diff] [blame]	954	flow.Close()
				955	return nil, err
				956	}
Todd Wang	8e17bff	2015-02-18 11:18:56 -0800	[diff] [blame]	957	if fs.enc, err = vom.NewEncoder(flow); err != nil {
Todd Wang	f519f8f	2015-01-21 10:07:41 -0800	[diff] [blame]	958	flow.Close()
				959	return nil, err
Todd Wang	34ed4c6	2014-11-26 15:15:52 -0800	[diff] [blame]	960	}
				961	return fs, nil
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	962	}
				963
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	964	func (fs *flowServer) serve() error {
				965	defer fs.flow.Close()
Matt Rosencrantz	8689793	2014-10-02 09:34:34 -0700	[diff] [blame]	966
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	967	results, err := fs.processRequest()
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	968
Matt Rosencrantz	5f98d94	2015-01-08 13:48:30 -0800	[diff] [blame]	969	vtrace.GetSpan(fs.T).Finish()
Matt Rosencrantz	1fa3277	2014-10-28 11:31:46 -0700	[diff] [blame]	970
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	971	var traceResponse vtrace.Response
				972	if fs.allowDebug {
Matt Rosencrantz	2803fe9	2015-03-09 15:26:32 -0700	[diff] [blame]	973	traceResponse = vtrace.GetResponse(fs.T)
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	974	}
				975
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	976	// Respond to the client with the response header and positional results.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	977	response := rpc.Response{
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	978	Error: err,
				979	EndStreamResults: true,
				980	NumPosResults: uint64(len(results)),
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	981	TraceResponse: traceResponse,
Suharsh Sivakumar	720b704	2014-12-22 17:33:23 -0800	[diff] [blame]	982	AckBlessings: fs.ackBlessings,
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	983	}
				984	if err := fs.enc.Encode(response); err != nil {
Cosmos Nicolaou	1534b3f	2014-12-10 15:30:00 -0800	[diff] [blame]	985	if err == io.EOF {
				986	return err
				987	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	988	return fmt.Errorf("rpc: response encoding failed: %v", err)
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	989	}
				990	if response.Error != nil {
				991	return response.Error
				992	}
				993	for ix, res := range results {
Todd Wang	f519f8f	2015-01-21 10:07:41 -0800	[diff] [blame]	994	if err := fs.enc.Encode(res); err != nil {
Cosmos Nicolaou	1534b3f	2014-12-10 15:30:00 -0800	[diff] [blame]	995	if err == io.EOF {
				996	return err
				997	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	998	return fmt.Errorf("rpc: result #%d [%T=%v] encoding failed: %v", ix, res, res, err)
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	999	}
				1000	}
				1001	// TODO(ashankar): Should unread data from the flow be drained?
				1002	//
				1003	// Reason to do so:
Suharsh Sivakumar	8646ba6	2015-03-18 15:22:28 -0700	[diff] [blame]	1004	// The common stream.Flow implementation (v.io/x/ref/profiles/internal/rpc/stream/vc/reader.go)
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1005	// uses iobuf.Slices backed by an iobuf.Pool. If the stream is not drained, these
				1006	// slices will not be returned to the pool leading to possibly increased memory usage.
				1007	//
				1008	// Reason to not do so:
				1009	// Draining here will conflict with any Reads on the flow in a separate goroutine
				1010	// (for example, see TestStreamReadTerminatedByServer in full_test.go).
				1011	//
				1012	// For now, go with the reason to not do so as having unread data in the stream
				1013	// should be a rare case.
				1014	return nil
				1015	}
				1016
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1017	func (fs flowServer) readRPCRequest() (rpc.Request, error) {
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1018	// Set a default timeout before reading from the flow. Without this timeout,
				1019	// a client that sends no request or a partial request will retain the flow
				1020	// indefinitely (and lock up server resources).
Matt Rosencrantz	8689793	2014-10-02 09:34:34 -0700	[diff] [blame]	1021	initTimer := newTimer(defaultCallTimeout)
				1022	defer initTimer.Stop()
				1023	fs.flow.SetDeadline(initTimer.C)
				1024
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1025	// Decode the initial request.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1026	var req rpc.Request
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1027	if err := fs.dec.Decode(&req); err != nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	1028	return nil, verror.New(verror.ErrBadProtocol, fs.T, newErrBadRequest(fs.T, err))
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1029	}
Matt Rosencrantz	8689793	2014-10-02 09:34:34 -0700	[diff] [blame]	1030	return &req, nil
				1031	}
				1032
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1033	func (fs *flowServer) processRequest() ([]interface{}, error) {
Asim Shankar	0cad083	2014-11-04 01:27:38 -0800	[diff] [blame]	1034	fs.starttime = time.Now()
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1035	req, err := fs.readRPCRequest()
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1036	if err != nil {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1037	// We don't know what the rpc call was supposed to be, but we'll create
Matt Rosencrantz	1fa3277	2014-10-28 11:31:46 -0700	[diff] [blame]	1038	// a placeholder span so we can capture annotations.
Matt Rosencrantz	5f98d94	2015-01-08 13:48:30 -0800	[diff] [blame]	1039	fs.T, _ = vtrace.SetNewSpan(fs.T, fmt.Sprintf("\"%s\".UNKNOWN", fs.Name()))
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1040	return nil, err
Matt Rosencrantz	8689793	2014-10-02 09:34:34 -0700	[diff] [blame]	1041	}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1042	fs.method = req.Method
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1043	fs.suffix = strings.TrimLeft(req.Suffix, "/")
Matt Rosencrantz	8689793	2014-10-02 09:34:34 -0700	[diff] [blame]	1044
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	1045	// TODO(mattr): Currently this allows users to trigger trace collection
				1046	// on the server even if they will not be allowed to collect the
Matt Rosencrantz	3197d6c	2014-11-06 09:53:22 -0800	[diff] [blame]	1047	// results later. This might be considered a DOS vector.
				1048	spanName := fmt.Sprintf("\"%s\".%s", fs.Name(), fs.Method())
Matt Rosencrantz	18da037	2015-02-12 16:04:56 -0800	[diff] [blame]	1049	fs.T, _ = vtrace.SetContinuedTrace(fs.T, spanName, req.TraceRequest)
Matt Rosencrantz	137b8d2	2014-08-18 09:56:15 -0700	[diff] [blame]	1050
Matt Rosencrantz	137b8d2	2014-08-18 09:56:15 -0700	[diff] [blame]	1051	var cancel context.CancelFunc
Todd Wang	f6a0688	2015-02-27 17:38:01 -0800	[diff] [blame]	1052	if !req.Deadline.IsZero() {
				1053	fs.T, cancel = context.WithDeadline(fs.T, req.Deadline.Time)
Matt Rosencrantz	137b8d2	2014-08-18 09:56:15 -0700	[diff] [blame]	1054	} else {
Matt Rosencrantz	89445a4	2015-01-05 13:32:37 -0800	[diff] [blame]	1055	fs.T, cancel = context.WithCancel(fs.T)
Matt Rosencrantz	137b8d2	2014-08-18 09:56:15 -0700	[diff] [blame]	1056	}
Matt Rosencrantz	8689793	2014-10-02 09:34:34 -0700	[diff] [blame]	1057	fs.flow.SetDeadline(fs.Done())
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1058	go fs.cancelContextOnClose(cancel)
Matt Rosencrantz	137b8d2	2014-08-18 09:56:15 -0700	[diff] [blame]	1059
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1060	// Initialize security: blessings, discharges, etc.
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1061	if err := fs.initSecurity(req); err != nil {
				1062	return nil, err
Andres Erbsen	b7f95f3	2014-07-07 12:07:56 -0700	[diff] [blame]	1063	}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1064	// Lookup the invoker.
Todd Wang	ebb3b01	2015-02-09 21:59:05 -0800	[diff] [blame]	1065	invoker, auth, err := fs.lookup(fs.suffix, &fs.method)
				1066	if err != nil {
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1067	return nil, err
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1068	}
				1069	// Prepare invoker and decode args.
				1070	numArgs := int(req.NumPosArgs)
Robin Thellend	b16d716	2014-11-07 13:47:26 -0800	[diff] [blame]	1071	argptrs, tags, err := invoker.Prepare(fs.method, numArgs)
Asim Shankar	0cad083	2014-11-04 01:27:38 -0800	[diff] [blame]	1072	fs.tags = tags
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1073	if err != nil {
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1074	return nil, err
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1075	}
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1076	if called, want := req.NumPosArgs, uint64(len(argptrs)); called != want {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	1077	return nil, verror.New(verror.ErrBadProtocol, fs.T, newErrBadNumInputArgs(fs.T, fs.suffix, fs.method, called, want))
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1078	}
				1079	for ix, argptr := range argptrs {
				1080	if err := fs.dec.Decode(argptr); err != nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	1081	return nil, verror.New(verror.ErrBadProtocol, fs.T, newErrBadInputArg(fs.T, fs.suffix, fs.method, uint64(ix), err))
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1082	}
				1083	}
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1084	// Check application's authorization policy.
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1085	if err := authorize(fs, auth); err != nil {
				1086	return nil, err
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1087	}
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1088	// Check if the caller is permitted to view debug information.
Asim Shankar	6888519	2014-11-26 12:48:35 -0800	[diff] [blame]	1089	// TODO(mattr): Is access.Debug the right thing to check?
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1090	fs.allowDebug = authorize(debugContext{fs}, auth) == nil
				1091	// Invoke the method.
Robin Thellend	b16d716	2014-11-07 13:47:26 -0800	[diff] [blame]	1092	results, err := invoker.Invoke(fs.method, fs, argptrs)
				1093	fs.server.stats.record(fs.method, time.Since(fs.starttime))
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1094	return results, err
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1095	}
				1096
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1097	func (fs *flowServer) cancelContextOnClose(cancel context.CancelFunc) {
				1098	// Ensure that the context gets cancelled if the flow is closed
				1099	// due to a network error, or client cancellation.
				1100	select {
				1101	case <-fs.flow.Closed():
				1102	// Here we remove the contexts channel as a deadline to the flow.
				1103	// We do this to ensure clients get a consistent error when they read/write
				1104	// after the flow is closed. Since the flow is already closed, it doesn't
				1105	// matter that the context is also cancelled.
				1106	fs.flow.SetDeadline(nil)
				1107	cancel()
				1108	case <-fs.Done():
Robin Thellend	c26c32e	2014-10-06 17:44:04 -0700	[diff] [blame]	1109	}
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1110	}
				1111
				1112	// lookup returns the invoker and authorizer responsible for serving the given
				1113	// name and method. The suffix is stripped of any leading slashes. If it begins
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1114	// with rpc.DebugKeyword, we use the internal debug dispatcher to look up the
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1115	// invoker. Otherwise, and we use the server's dispatcher. The suffix and method
				1116	// value may be modified to match the actual suffix and method to use.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1117	func (fs flowServer) lookup(suffix string, method string) (rpc.Invoker, security.Authorizer, error) {
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1118	if naming.IsReserved(*method) {
				1119	// All reserved methods are trapped and handled here, by removing the
				1120	// reserved prefix and invoking them on reservedMethods. E.g. "__Glob"
				1121	// invokes reservedMethods.Glob.
				1122	method = naming.StripReserved(method)
				1123	return reservedInvoker(fs.disp, fs.server.dispReserved), &acceptAllAuthorizer{}, nil
				1124	}
				1125	disp := fs.disp
				1126	if naming.IsReserved(suffix) {
				1127	disp = fs.server.dispReserved
Robin Thellend	d24f084	2014-09-23 10:27:29 -0700	[diff] [blame]	1128	}
				1129	if disp != nil {
Robin Thellend	a02fe8f	2014-11-19 09:58:29 -0800	[diff] [blame]	1130	obj, auth, err := disp.Lookup(suffix)
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1131	switch {
				1132	case err != nil:
Todd Wang	9548d85	2015-02-10 16:15:59 -0800	[diff] [blame]	1133	return nil, nil, err
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1134	case obj != nil:
Bogdan Caprita	9592d9f	2015-01-08 22:15:16 -0800	[diff] [blame]	1135	invoker, err := objectToInvoker(obj)
				1136	if err != nil {
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	1137	return nil, nil, verror.New(verror.ErrInternal, fs.T, "invalid received object", err)
Bogdan Caprita	9592d9f	2015-01-08 22:15:16 -0800	[diff] [blame]	1138	}
				1139	return invoker, auth, nil
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1140	}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1141	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1142	return nil, nil, rpc.NewErrUnknownSuffix(nil, suffix)
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1143	}
				1144
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1145	func objectToInvoker(obj interface{}) (rpc.Invoker, error) {
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1146	if obj == nil {
Bogdan Caprita	9592d9f	2015-01-08 22:15:16 -0800	[diff] [blame]	1147	return nil, errors.New("nil object")
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1148	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1149	if invoker, ok := obj.(rpc.Invoker); ok {
Bogdan Caprita	9592d9f	2015-01-08 22:15:16 -0800	[diff] [blame]	1150	return invoker, nil
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1151	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1152	return rpc.ReflectInvoker(obj)
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1153	}
				1154
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1155	func (fs flowServer) initSecurity(req rpc.Request) error {
Ankur	b905dae	2015-03-04 12:38:20 -0800	[diff] [blame]	1156	// LocalPrincipal is nil which means we are operating under
Suharsh Sivakumar	2c5d810	2015-03-23 08:49:12 -0700	[diff] [blame]	1157	// SecurityNone.
Ankur	b905dae	2015-03-04 12:38:20 -0800	[diff] [blame]	1158	if fs.flow.LocalPrincipal() == nil {
				1159	return nil
				1160	}
				1161
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1162	// If additional credentials are provided, make them available in the context
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1163	// Detect unusable blessings now, rather then discovering they are unusable on
				1164	// first use.
				1165	//
				1166	// TODO(ashankar,ataly): Potential confused deputy attack: The client provides
				1167	// the server's identity as the blessing. Figure out what we want to do about
				1168	// this - should servers be able to assume that a blessing is something that
				1169	// does not have the authorizations that the server's own identity has?
Ankur	b905dae	2015-03-04 12:38:20 -0800	[diff] [blame]	1170	if got, want := req.GrantedBlessings.PublicKey(), fs.flow.LocalPrincipal().PublicKey(); got != nil && !reflect.DeepEqual(got, want) {
				1171	return verror.New(verror.ErrNoAccess, fs.T, fmt.Sprintf("blessing granted not bound to this server(%v vs %v)", got, want))
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1172	}
Asim Shankar	b07ec69	2015-02-27 23:40:44 -0800	[diff] [blame]	1173	fs.grantedBlessings = req.GrantedBlessings
Ankur	b905dae	2015-03-04 12:38:20 -0800	[diff] [blame]	1174
Asim Shankar	b07ec69	2015-02-27 23:40:44 -0800	[diff] [blame]	1175	var err error
				1176	if fs.clientBlessings, err = serverDecodeBlessings(fs.flow.VCDataCache(), req.Blessings, fs.server.stats); err != nil {
Suharsh Sivakumar	720b704	2014-12-22 17:33:23 -0800	[diff] [blame]	1177	// When the server can't access the blessings cache, the client is not following
				1178	// protocol, so the server closes the VCs corresponding to the client endpoint.
				1179	// TODO(suharshs,toddw): Figure out a way to only shutdown the current VC, instead
				1180	// of all VCs connected to the RemoteEndpoint.
				1181	fs.server.streamMgr.ShutdownEndpoint(fs.RemoteEndpoint())
Jiri Simsa	074bf36	2015-02-17 09:29:45 -0800	[diff] [blame]	1182	return verror.New(verror.ErrBadProtocol, fs.T, newErrBadBlessingsCache(fs.T, err))
Suharsh Sivakumar	720b704	2014-12-22 17:33:23 -0800	[diff] [blame]	1183	}
Ankur	b905dae	2015-03-04 12:38:20 -0800	[diff] [blame]	1184	// Verify that the blessings sent by the client in the request have the same public
				1185	// key as those sent by the client during VC establishment.
				1186	if got, want := fs.clientBlessings.PublicKey(), fs.flow.RemoteBlessings().PublicKey(); got != nil && !reflect.DeepEqual(got, want) {
				1187	return verror.New(verror.ErrNoAccess, fs.T, fmt.Sprintf("blessings sent with the request are bound to a different public key (%v) from the blessing used during VC establishment (%v)", got, want))
				1188	}
Asim Shankar	2bf7b1e	2015-02-27 00:45:12 -0800	[diff] [blame]	1189	fs.ackBlessings = true
Suharsh Sivakumar	720b704	2014-12-22 17:33:23 -0800	[diff] [blame]	1190
Asim Shankar	3ad0b8a	2015-02-25 00:37:21 -0800	[diff] [blame]	1191	for _, d := range req.Discharges {
Asim Shankar	0864282	2015-03-02 21:21:09 -0800	[diff] [blame]	1192	fs.discharges[d.ID()] = d
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1193	}
				1194	return nil
Robin Thellend	c26c32e	2014-10-06 17:44:04 -0700	[diff] [blame]	1195	}
				1196
				1197	type acceptAllAuthorizer struct{}
				1198
Matt Rosencrantz	250558f	2015-03-17 11:37:31 -0700	[diff] [blame]	1199	func (acceptAllAuthorizer) Authorize(*context.T) error {
Robin Thellend	c26c32e	2014-10-06 17:44:04 -0700	[diff] [blame]	1200	return nil
				1201	}
				1202
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1203	func authorize(call rpc.ServerCall, auth security.Authorizer) error {
Matt Rosencrantz	9dce9b2	2015-03-02 10:48:37 -0800	[diff] [blame]	1204	if call.LocalPrincipal() == nil {
Todd Wang	5739dda	2014-11-16 22:44:02 -0800	[diff] [blame]	1205	// LocalPrincipal is nil means that the server wanted to avoid
				1206	// authentication, and thus wanted to skip authorization as well.
				1207	return nil
				1208	}
Asim Shankar	8f05c22	2014-10-06 22:08:19 -0700	[diff] [blame]	1209	if auth == nil {
Asim Shankar	0c73fbf	2014-10-31 15:34:02 -0700	[diff] [blame]	1210	auth = defaultAuthorizer{}
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1211	}
Matt Rosencrantz	250558f	2015-03-17 11:37:31 -0700	[diff] [blame]	1212	ctx := call.Context()
				1213	if err := auth.Authorize(ctx); err != nil {
Asim Shankar	a5457f0	2014-10-24 23:23:07 -0700	[diff] [blame]	1214	// TODO(ataly, ashankar): For privacy reasons, should we hide the authorizer error?
Matt Rosencrantz	250558f	2015-03-17 11:37:31 -0700	[diff] [blame]	1215	return verror.New(verror.ErrNoAccess, ctx, newErrBadAuth(ctx, call.Suffix(), call.Method(), err))
Asim Shankar	a5457f0	2014-10-24 23:23:07 -0700	[diff] [blame]	1216	}
				1217	return nil
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1218	}
				1219
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	1220	// debugContext is a context which wraps another context but always returns
Asim Shankar	6888519	2014-11-26 12:48:35 -0800	[diff] [blame]	1221	// the debug tag.
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	1222	type debugContext struct {
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1223	rpc.ServerCall
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	1224	}
				1225
Todd Wang	b31da59	2015-02-20 12:50:39 -0800	[diff] [blame]	1226	func (debugContext) MethodTags() []*vdl.Value {
				1227	return []*vdl.Value{vdl.ValueOf(access.Debug)}
Asim Shankar	6888519	2014-11-26 12:48:35 -0800	[diff] [blame]	1228	}
Matt Rosencrantz	9fe6082	2014-09-12 10:09:53 -0700	[diff] [blame]	1229
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1230	// Send implements the rpc.Stream method.
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1231	func (fs *flowServer) Send(item interface{}) error {
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1232	defer vlog.LogCall()()
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1233	// The empty response header indicates what follows is a streaming result.
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1234	if err := fs.enc.Encode(rpc.Response{}); err != nil {
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1235	return err
				1236	}
				1237	return fs.enc.Encode(item)
				1238	}
				1239
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1240	// Recv implements the rpc.Stream method.
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1241	func (fs *flowServer) Recv(itemptr interface{}) error {
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1242	defer vlog.LogCall()()
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1243	var req rpc.Request
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1244	if err := fs.dec.Decode(&req); err != nil {
				1245	return err
				1246	}
				1247	if req.EndStreamArgs {
				1248	fs.endStreamArgs = true
				1249	return io.EOF
				1250	}
				1251	return fs.dec.Decode(itemptr)
				1252	}
				1253
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1254	// Implementations of rpc.ServerCall methods.
Jiri Simsa	5293dcb	2014-05-10 09:56:38 -0700	[diff] [blame]	1255
Ankur	edd74ee	2015-03-04 16:38:45 -0800	[diff] [blame]	1256	func (fs *flowServer) LocalDischarges() map[string]security.Discharge {
				1257	//nologcall
				1258	return fs.flow.LocalDischarges()
				1259	}
Asim Shankar	2519cc1	2014-11-10 21:16:53 -0800	[diff] [blame]	1260	func (fs *flowServer) RemoteDischarges() map[string]security.Discharge {
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1261	//nologcall
				1262	return fs.discharges
				1263	}
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1264	func (fs *flowServer) Server() rpc.Server {
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1265	//nologcall
				1266	return fs.server
				1267	}
Asim Shankar	0cad083	2014-11-04 01:27:38 -0800	[diff] [blame]	1268	func (fs *flowServer) Timestamp() time.Time {
				1269	//nologcall
				1270	return fs.starttime
				1271	}
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1272	func (fs *flowServer) Method() string {
				1273	//nologcall
				1274	return fs.method
				1275	}
Todd Wang	b31da59	2015-02-20 12:50:39 -0800	[diff] [blame]	1276	func (fs flowServer) MethodTags() []vdl.Value {
Asim Shankar	0cad083	2014-11-04 01:27:38 -0800	[diff] [blame]	1277	//nologcall
				1278	return fs.tags
				1279	}
Matt Rosencrantz	4f8ac60	2014-12-29 14:42:48 -0800	[diff] [blame]	1280	func (fs flowServer) Context() context.T {
Matt Rosencrantz	04d197c	2014-12-12 08:39:25 -0800	[diff] [blame]	1281	return fs.T
				1282	}
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	1283
Benjamin Prosnitz	9284a00	2015-02-23 14:57:25 -0800	[diff] [blame]	1284	func (fs flowServer) VanadiumContext() context.T {
				1285	return fs.T
				1286	}
				1287
Matt Rosencrantz	94502cf	2015-03-18 09:43:44 -0700	[diff] [blame]	1288	// TODO(cnicolaou): remove Name from rpc.ServerCall and all of
Cosmos Nicolaou	fdc838b	2014-06-30 21:44:27 -0700	[diff] [blame]	1289	// its implementations
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1290	func (fs *flowServer) Name() string {
				1291	//nologcall
				1292	return fs.suffix
				1293	}
				1294	func (fs *flowServer) Suffix() string {
				1295	//nologcall
				1296	return fs.suffix
				1297	}
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1298	func (fs *flowServer) LocalPrincipal() security.Principal {
				1299	//nologcall
Asim Shankar	8f05c22	2014-10-06 22:08:19 -0700	[diff] [blame]	1300	return fs.flow.LocalPrincipal()
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1301	}
				1302	func (fs *flowServer) LocalBlessings() security.Blessings {
				1303	//nologcall
Asim Shankar	8f05c22	2014-10-06 22:08:19 -0700	[diff] [blame]	1304	return fs.flow.LocalBlessings()
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1305	}
				1306	func (fs *flowServer) RemoteBlessings() security.Blessings {
				1307	//nologcall
Asim Shankar	2bf7b1e	2015-02-27 00:45:12 -0800	[diff] [blame]	1308	if !fs.clientBlessings.IsZero() {
Suharsh Sivakumar	720b704	2014-12-22 17:33:23 -0800	[diff] [blame]	1309	return fs.clientBlessings
				1310	}
Asim Shankar	8f05c22	2014-10-06 22:08:19 -0700	[diff] [blame]	1311	return fs.flow.RemoteBlessings()
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1312	}
Suharsh Sivakumar	380bf34	2015-02-27 15:38:27 -0800	[diff] [blame]	1313	func (fs *flowServer) GrantedBlessings() security.Blessings {
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1314	//nologcall
Suharsh Sivakumar	380bf34	2015-02-27 15:38:27 -0800	[diff] [blame]	1315	return fs.grantedBlessings
Mehrdad Afshari	cd9852b	2014-09-26 11:07:35 -0700	[diff] [blame]	1316	}
				1317	func (fs *flowServer) LocalEndpoint() naming.Endpoint {
				1318	//nologcall
				1319	return fs.flow.LocalEndpoint()
				1320	}
				1321	func (fs *flowServer) RemoteEndpoint() naming.Endpoint {
				1322	//nologcall
				1323	return fs.flow.RemoteEndpoint()
				1324	}