Chiebot-Mirror
/
grpc
mirror of https://github.com/grpc/grpc.git
8
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request #24635 from markdroth/xds_channel_creds_registry

Browse Source 
Add XdsChannelCredsRegistry
pull/24642/head
Mark D. Roth 4 years ago committed by GitHub
parent b3be57db6b 23618d9ddd
commit 12fbb6c789
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
5 changed files with 63 additions and 28 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 65
      src/core/ext/xds/xds_bootstrap.cc
  2. 9
      src/core/ext/xds/xds_bootstrap.h
  3. 6
      src/core/ext/xds/xds_client.cc
  4. 4
      src/core/lib/gprpp/ref_counted_ptr.h
  5. 7
      test/core/xds/xds_bootstrap_test.cc

65
src/core/ext/xds/xds_bootstrap.cc
Unescape View File

@ -38,10 +38,48 @@
namespace grpc_core { namespace grpc_core {
//
// XdsChannelCredsRegistry
//
bool XdsChannelCredsRegistry::IsSupported(const std::string& creds_type) {
return creds_type == "google_default" || creds_type == "insecure" ||
creds_type == "fake";
}
bool XdsChannelCredsRegistry::IsValidConfig(const std::string& creds_type,
const Json& config) {
// Currently, none of the creds types actually take a config, but we
// ignore whatever might be specified in the bootstrap file for
// forward compatibility reasons.
return true;
}
RefCountedPtr<grpc_channel_credentials>
XdsChannelCredsRegistry::MakeChannelCreds(const std::string& creds_type,
const Json& config) {
if (creds_type == "google_default") {
return grpc_google_default_credentials_create(nullptr);
} else if (creds_type == "insecure") {
return grpc_insecure_credentials_create();
} else if (creds_type == "fake") {
return grpc_fake_transport_security_credentials_create();
}
return nullptr;
}
//
// XdsBootstrap::XdsServer
//
bool XdsBootstrap::XdsServer::ShouldUseV3() const { bool XdsBootstrap::XdsServer::ShouldUseV3() const {
return server_features.find("xds_v3") != server_features.end(); return server_features.find("xds_v3") != server_features.end();
} }
//
// XdsBootstrap
//
namespace { namespace {
std::string BootstrapString(const XdsBootstrap& bootstrap) { std::string BootstrapString(const XdsBootstrap& bootstrap) {
@ -66,8 +104,8 @@ std::string BootstrapString(const XdsBootstrap& bootstrap) {
"servers=[\n" "servers=[\n"
" {\n" " {\n"
" uri=\"%s\",\n" " uri=\"%s\",\n"
" creds=<%s>,\n", " creds_type=%s,\n",
bootstrap.server().server_uri, bootstrap.server().channel_creds->type())); bootstrap.server().server_uri, bootstrap.server().channel_creds_type));
if (bootstrap.server().channel_creds_config.type() != Json::Type::JSON_NULL) { if (bootstrap.server().channel_creds_config.type() != Json::Type::JSON_NULL) {
parts.push_back( parts.push_back(
absl::StrFormat(" creds_config=%s,", absl::StrFormat(" creds_config=%s,",
@ -244,7 +282,7 @@ grpc_error* XdsBootstrap::ParseChannelCredsArray(Json* json,
if (parse_error != GRPC_ERROR_NONE) error_list.push_back(parse_error); if (parse_error != GRPC_ERROR_NONE) error_list.push_back(parse_error);
} }
} }
if (server->channel_creds == nullptr) { if (server->channel_creds_type.empty()) {
error_list.push_back(GRPC_ERROR_CREATE_FROM_STATIC_STRING( error_list.push_back(GRPC_ERROR_CREATE_FROM_STATIC_STRING(
"no known creds type found in \"channel_creds\"")); "no known creds type found in \"channel_creds\""));
} }
@ -277,20 +315,15 @@ grpc_error* XdsBootstrap::ParseChannelCreds(Json* json, size_t idx,
} }
} }
// Select the first channel creds type that we support. // Select the first channel creds type that we support.
if (server->channel_creds == nullptr) { if (server->channel_creds_type.empty() &&
if (type == "google_default") { XdsChannelCredsRegistry::IsSupported(type)) {
server->channel_creds.reset( if (!XdsChannelCredsRegistry::IsValidConfig(type, config)) {
grpc_google_default_credentials_create(nullptr)); error_list.push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
} else if (type == "insecure") { absl::StrCat("invalid config for channel creds type \"", type, "\"")
server->channel_creds.reset(grpc_insecure_credentials_create()); .c_str()));
} else if (type == "fake") {
server->channel_creds.reset(
grpc_fake_transport_security_credentials_create());
}
if (server->channel_creds != nullptr) {
server->channel_creds_type = std::move(type);
server->channel_creds_config = std::move(config);
} }
server->channel_creds_type = std::move(type);
server->channel_creds_config = std::move(config);
} }
// Can't use GRPC_ERROR_CREATE_FROM_VECTOR() here, because the error // Can't use GRPC_ERROR_CREATE_FROM_VECTOR() here, because the error
// string is not static in this case. // string is not static in this case.

9
src/core/ext/xds/xds_bootstrap.h
Unescape View File

@ -40,6 +40,14 @@ namespace grpc_core {
class XdsClient; class XdsClient;
class XdsChannelCredsRegistry {
public:
static bool IsSupported(const std::string& creds_type);
static bool IsValidConfig(const std::string& creds_type, const Json& config);
static RefCountedPtr<grpc_channel_credentials> MakeChannelCreds(
const std::string& creds_type, const Json& config);
};
class XdsBootstrap { class XdsBootstrap {
public: public:
struct Node { struct Node {
@ -55,7 +63,6 @@ class XdsBootstrap {
std::string server_uri; std::string server_uri;
std::string channel_creds_type; std::string channel_creds_type;
Json channel_creds_config; Json channel_creds_config;
RefCountedPtr<grpc_channel_credentials> channel_creds;
std::set<std::string> server_features; std::set<std::string> server_features;
bool ShouldUseV3() const; bool ShouldUseV3() const;

6
src/core/ext/xds/xds_client.cc
Unescape View File

@ -444,9 +444,13 @@ grpc_channel* CreateXdsChannel(const XdsBootstrap::XdsServer& server) {
}; };
grpc_channel_args* new_args = grpc_channel_args_copy_and_add( grpc_channel_args* new_args = grpc_channel_args_copy_and_add(
g_channel_args, args_to_add.data(), args_to_add.size()); g_channel_args, args_to_add.data(), args_to_add.size());
// Create channel creds.
RefCountedPtr<grpc_channel_credentials> channel_creds =
XdsChannelCredsRegistry::MakeChannelCreds(server.channel_creds_type,
server.channel_creds_config);
// Create channel. // Create channel.
grpc_channel* channel = grpc_secure_channel_create( grpc_channel* channel = grpc_secure_channel_create(
server.channel_creds.get(), server.server_uri.c_str(), new_args, nullptr); channel_creds.get(), server.server_uri.c_str(), new_args, nullptr);
grpc_channel_args_destroy(new_args); grpc_channel_args_destroy(new_args);
return channel; return channel;
} }

4
src/core/lib/gprpp/ref_counted_ptr.h
Unescape View File

@ -39,9 +39,7 @@ class RefCountedPtr {
// If value is non-null, we take ownership of a ref to it. // If value is non-null, we take ownership of a ref to it.
template <typename Y> template <typename Y>
explicit RefCountedPtr(Y* value) { RefCountedPtr(Y* value) : value_(value) {}
value_ = value;
}
// Move ctors. // Move ctors.
RefCountedPtr(RefCountedPtr&& other) noexcept { RefCountedPtr(RefCountedPtr&& other) noexcept {

7
test/core/xds/xds_bootstrap_test.cc
Unescape View File

@ -94,9 +94,6 @@ TEST_F(XdsBootstrapTest, Basic) {
EXPECT_EQ(bootstrap.server().channel_creds_type, "fake"); EXPECT_EQ(bootstrap.server().channel_creds_type, "fake");
EXPECT_EQ(bootstrap.server().channel_creds_config.type(), EXPECT_EQ(bootstrap.server().channel_creds_config.type(),
Json::Type::JSON_NULL); Json::Type::JSON_NULL);
ASSERT_NE(bootstrap.server().channel_creds, nullptr);
EXPECT_STREQ(bootstrap.server().channel_creds->type(),
"FakeTransportSecurity");
ASSERT_NE(bootstrap.node(), nullptr); ASSERT_NE(bootstrap.node(), nullptr);
EXPECT_EQ(bootstrap.node()->id, "foo"); EXPECT_EQ(bootstrap.node()->id, "foo");
EXPECT_EQ(bootstrap.node()->cluster, "bar"); EXPECT_EQ(bootstrap.node()->cluster, "bar");
@ -155,8 +152,6 @@ TEST_F(XdsBootstrapTest, InsecureCreds) {
EXPECT_EQ(error, GRPC_ERROR_NONE) << grpc_error_string(error); EXPECT_EQ(error, GRPC_ERROR_NONE) << grpc_error_string(error);
EXPECT_EQ(bootstrap.server().server_uri, "fake:///lb"); EXPECT_EQ(bootstrap.server().server_uri, "fake:///lb");
EXPECT_EQ(bootstrap.server().channel_creds_type, "insecure"); EXPECT_EQ(bootstrap.server().channel_creds_type, "insecure");
ASSERT_NE(bootstrap.server().channel_creds, nullptr);
EXPECT_STREQ(bootstrap.server().channel_creds->type(), "insecure");
EXPECT_EQ(bootstrap.node(), nullptr); EXPECT_EQ(bootstrap.node(), nullptr);
} }
@ -193,8 +188,6 @@ TEST_F(XdsBootstrapTest, GoogleDefaultCreds) {
EXPECT_EQ(error, GRPC_ERROR_NONE) << grpc_error_string(error); EXPECT_EQ(error, GRPC_ERROR_NONE) << grpc_error_string(error);
EXPECT_EQ(bootstrap.server().server_uri, "fake:///lb"); EXPECT_EQ(bootstrap.server().server_uri, "fake:///lb");
EXPECT_EQ(bootstrap.server().channel_creds_type, "google_default"); EXPECT_EQ(bootstrap.server().channel_creds_type, "google_default");
ASSERT_NE(bootstrap.server().channel_creds, nullptr);
EXPECT_STREQ(bootstrap.server().channel_creds->type(), "GoogleDefault");
EXPECT_EQ(bootstrap.node(), nullptr); EXPECT_EQ(bootstrap.node(), nullptr);
} }

Write Preview
Loading…
Cancel
Save