Google Git
Sign in
vanadium / release.go.x.ref / fa230ebb8a103e568e33bb096ce219314bda06ce / . / lib / security / blessingroots.go
blob: a0b60eec2a70604073654725f95a335625aee80d [file] [log] [blame]
Jiri Simsad7616c92015-03-24 23:44:30 -0700[diff] [blame]1// Copyright 2015 The Vanadium Authors. All rights reserved.
2// Use of this source code is governed by a BSD-style
3// license that can be found in the LICENSE file.
4
Asim Shankarae8d4c52014-10-08 13:03:31 -0700[diff] [blame]5package security
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]6
7import (
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]8 "bytes"
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]9 "fmt"
Asim Shankarf11b1bc2014-11-12 17:18:45 -0800[diff] [blame]10 "sort"
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]11 "sync"
12
Jiri Simsa6ac95222015-02-23 16:11:49 -0800[diff] [blame]13 "v.io/v23/security"
Mike Burrows7f7088d2015-03-25 13:05:00 -0700[diff] [blame]14 "v.io/v23/verror"
Ankur9e5b7722015-04-28 15:00:25 -0700[diff] [blame]15 "v.io/x/lib/vlog"
Todd Wangb3511492015-04-07 23:32:34 -0700[diff] [blame]16 "v.io/x/ref/lib/security/serialization"
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]17)
18
Ankur344bbdf2015-05-07 18:26:15 -0700[diff] [blame]19var errRootsAddPattern = verror.Register(pkgPath+".errRootsAddPattern", verror.NoRetry, "{1:}{2:} a root cannot be recognized for all blessing names (i.e., the pattern '...')")
20
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]21// blessingRoots implements security.BlessingRoots.
22type blessingRoots struct {
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]23 persistedData SerializerReaderWriter
24 signer serialization.Signer
25 mu sync.RWMutex
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]26 state blessingRootsState // GUARDED_BY(mu)
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]27}
28
Asim Shankar6eba9862015-09-03 01:07:14 -0400[diff] [blame]29func (br *blessingRoots) Add(root []byte, pattern security.BlessingPattern) error {
Ankur344bbdf2015-05-07 18:26:15 -0700[diff] [blame]30 if pattern == security.AllPrincipals {
31 return verror.New(errRootsAddPattern, nil)
32 }
Asim Shankar6eba9862015-09-03 01:07:14 -0400[diff] [blame]33 // Sanity check to avoid invalid keys being added.
34 if _, err := security.UnmarshalPublicKey(root); err != nil {
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]35 return err
36 }
Asim Shankar6eba9862015-09-03 01:07:14 -0400[diff] [blame]37 key := string(root)
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]38 br.mu.Lock()
39 defer br.mu.Unlock()
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]40 patterns := br.state[key]
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]41 for _, p := range patterns {
42 if p == pattern {
43 return nil
44 }
45 }
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]46 br.state[key] = append(patterns, pattern)
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]47
48 if err := br.save(); err != nil {
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]49 br.state[key] = patterns[:len(patterns)-1]
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]50 return err
51 }
Ankur9e5b7722015-04-28 15:00:25 -0700[diff] [blame]52
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]53 return nil
54}
55
Asim Shankar6eba9862015-09-03 01:07:14 -0400[diff] [blame]56func (br *blessingRoots) Recognized(root []byte, blessing string) error {
57 key := string(root)
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]58 br.mu.RLock()
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]59 for _, p := range br.state[key] {
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]60 if p.MatchedBy(blessing) {
Asim Shankar6eba9862015-09-03 01:07:14 -0400[diff] [blame]61 br.mu.RUnlock()
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]62 return nil
63 }
64 }
Asim Shankar6eba9862015-09-03 01:07:14 -0400[diff] [blame]65 br.mu.RUnlock()
66 // Silly to have to unmarshal the public key on an error.
67 // Change the error message to not require that?
68 obj, err := security.UnmarshalPublicKey(root)
69 if err != nil {
70 return err
71 }
72 return security.NewErrUnrecognizedRoot(nil, obj.String(), nil)
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]73}
74
Ankur9e5b7722015-04-28 15:00:25 -0700[diff] [blame]75func (br *blessingRoots) Dump() map[security.BlessingPattern][]security.PublicKey {
76 dump := make(map[security.BlessingPattern][]security.PublicKey)
77 br.mu.RLock()
78 defer br.mu.RUnlock()
79 for keyStr, patterns := range br.state {
80 key, err := security.UnmarshalPublicKey([]byte(keyStr))
81 if err != nil {
82 vlog.Errorf("security.UnmarshalPublicKey(%v) returned error: %v", []byte(keyStr), err)
83 return nil
84 }
85 for _, p := range patterns {
86 dump[p] = append(dump[p], key)
87 }
88 }
89 return dump
90}
91
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]92// DebugString return a human-readable string encoding of the roots
93// DebugString encodes all roots into a string in the following
94// format
95//
Suharsh Sivakumar4bbe8ed2015-04-09 14:21:44 -0700[diff] [blame]96// Public key Pattern
97// <public key> <patterns>
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]98// ...
Suharsh Sivakumar4bbe8ed2015-04-09 14:21:44 -0700[diff] [blame]99// <public key> <patterns>
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]100func (br *blessingRoots) DebugString() string {
Suharsh Sivakumar4bbe8ed2015-04-09 14:21:44 -0700[diff] [blame]101 const format = "%-47s %s\n"
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]102 b := bytes.NewBufferString(fmt.Sprintf(format, "Public key", "Pattern"))
Asim Shankarf11b1bc2014-11-12 17:18:45 -0800[diff] [blame]103 var s rootSorter
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]104 for keyBytes, patterns := range br.state {
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]105 key, err := security.UnmarshalPublicKey([]byte(keyBytes))
106 if err != nil {
107 return fmt.Sprintf("failed to decode public key: %v", err)
108 }
Asim Shankarf11b1bc2014-11-12 17:18:45 -0800[diff] [blame]109 s = append(s, &root{key, fmt.Sprintf("%v", patterns)})
110 }
111 sort.Sort(s)
112 for _, r := range s {
113 b.WriteString(fmt.Sprintf(format, r.key, r.patterns))
Ankur1615a7d2014-10-09 11:58:02 -0700[diff] [blame]114 }
115 return b.String()
116}
117
Asim Shankarf11b1bc2014-11-12 17:18:45 -0800[diff] [blame]118type root struct {
119 key security.PublicKey
120 patterns string
121}
122
123type rootSorter []*root
124
125func (s rootSorter) Len() int { return len(s) }
126func (s rootSorter) Less(i, j int) bool { return s[i].patterns < s[j].patterns }
127func (s rootSorter) Swap(i, j int) { s[i], s[j] = s[j], s[i] }
128
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]129func (br *blessingRoots) save() error {
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]130 if (br.signer == nil) && (br.persistedData == nil) {
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]131 return nil
132 }
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]133 data, signature, err := br.persistedData.Writers()
134 if err != nil {
135 return err
136 }
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]137 return encodeAndStore(br.state, data, signature, br.signer)
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]138}
139
Ankur7c890592014-10-02 11:36:28 -0700[diff] [blame]140// newInMemoryBlessingRoots returns an in-memory security.BlessingRoots.
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]141//
142// The returned BlessingRoots is initialized with an empty set of keys.
Ankur7c890592014-10-02 11:36:28 -0700[diff] [blame]143func newInMemoryBlessingRoots() security.BlessingRoots {
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]144 return &blessingRoots{
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]145 state: make(blessingRootsState),
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]146 }
147}
148
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]149// newPersistingBlessingRoots returns a security.BlessingRoots for a principal
150// that is initialized with the persisted data. The returned security.BlessingRoots
151// also persists any updates to its state.
152func newPersistingBlessingRoots(persistedData SerializerReaderWriter, signer serialization.Signer) (security.BlessingRoots, error) {
153 if persistedData == nil || signer == nil {
Mike Burrows7f7088d2015-03-25 13:05:00 -0700[diff] [blame]154 return nil, verror.New(errDataOrSignerUnspecified, nil)
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]155 }
156 br := &blessingRoots{
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]157 state: make(blessingRootsState),
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]158 persistedData: persistedData,
159 signer: signer,
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]160 }
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]161 data, signature, err := br.persistedData.Readers()
162 if err != nil {
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]163 return nil, err
164 }
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]165 if (data != nil) && (signature != nil) {
Ankurcc043852015-04-14 13:10:28 -0700[diff] [blame]166 if err := decodeFromStorage(&br.state, data, signature, br.signer.PublicKey()); err != nil {
gauthamt1e313bc2014-11-10 15:45:56 -0800[diff] [blame]167 return nil, err
168 }
169 }
Ankur100eb272014-09-15 16:48:12 -0700[diff] [blame]170 return br, nil
171}