mirror of https://github.com/grpc/grpc.git
The C based gRPC (C++, Python, Ruby, Objective-C, PHP, C#)
https://grpc.io/
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
207 lines
6.7 KiB
207 lines
6.7 KiB
// |
|
// Copyright 2020 gRPC authors. |
|
// |
|
// Licensed under the Apache License, Version 2.0 (the "License"); |
|
// you may not use this file except in compliance with the License. |
|
// You may obtain a copy of the License at |
|
// |
|
// http://www.apache.org/licenses/LICENSE-2.0 |
|
// |
|
// Unless required by applicable law or agreed to in writing, software |
|
// distributed under the License is distributed on an "AS IS" BASIS, |
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
|
// See the License for the specific language governing permissions and |
|
// limitations under the License. |
|
// |
|
|
|
#include "test/core/util/tls_utils.h" |
|
|
|
#include <stdio.h> |
|
|
|
#include <grpc/slice.h> |
|
#include <grpc/support/alloc.h> |
|
#include <grpc/support/log.h> |
|
#include <grpc/support/string_util.h> |
|
#include <grpc/support/time.h> |
|
|
|
#include "src/core/lib/gpr/tmpfile.h" |
|
#include "src/core/lib/iomgr/error.h" |
|
#include "src/core/lib/iomgr/load_file.h" |
|
#include "src/core/lib/slice/slice_internal.h" |
|
#include "test/core/util/test_config.h" |
|
|
|
namespace grpc_core { |
|
|
|
namespace testing { |
|
|
|
TmpFile::TmpFile(absl::string_view data) { |
|
name_ = CreateTmpFileAndWriteData(data); |
|
GPR_ASSERT(!name_.empty()); |
|
} |
|
|
|
TmpFile::~TmpFile() { GPR_ASSERT(remove(name_.c_str()) == 0); } |
|
|
|
void TmpFile::RewriteFile(absl::string_view data) { |
|
// Create a new file containing new data. |
|
std::string new_name = CreateTmpFileAndWriteData(data); |
|
GPR_ASSERT(!new_name.empty()); |
|
#ifdef GPR_WINDOWS |
|
// Remove the old file. |
|
// On Windows rename requires that the new name not exist, whereas |
|
// on posix systems rename does an atomic replacement of the new |
|
// name. |
|
GPR_ASSERT(remove(name_.c_str()) == 0); |
|
#endif |
|
// Rename the new file to the original name. |
|
GPR_ASSERT(rename(new_name.c_str(), name_.c_str()) == 0); |
|
} |
|
|
|
std::string TmpFile::CreateTmpFileAndWriteData(absl::string_view data) { |
|
char* name = nullptr; |
|
FILE* file_descriptor = gpr_tmpfile("test", &name); |
|
GPR_ASSERT(fwrite(data.data(), 1, data.size(), file_descriptor) == |
|
data.size()); |
|
GPR_ASSERT(fclose(file_descriptor) == 0); |
|
GPR_ASSERT(file_descriptor != nullptr); |
|
GPR_ASSERT(name != nullptr); |
|
std::string name_to_return = name; |
|
gpr_free(name); |
|
return name_to_return; |
|
} |
|
|
|
PemKeyCertPairList MakeCertKeyPairs(absl::string_view private_key, |
|
absl::string_view certs) { |
|
if (private_key.empty() && certs.empty()) { |
|
return {}; |
|
} |
|
return PemKeyCertPairList{PemKeyCertPair(private_key, certs)}; |
|
} |
|
|
|
std::string GetFileContents(const char* path) { |
|
grpc_slice slice = grpc_empty_slice(); |
|
GPR_ASSERT(GRPC_LOG_IF_ERROR("load_file", grpc_load_file(path, 0, &slice))); |
|
std::string data = std::string(StringViewFromSlice(slice)); |
|
grpc_slice_unref(slice); |
|
return data; |
|
} |
|
|
|
int SyncExternalVerifier::Verify(void* user_data, |
|
grpc_tls_custom_verification_check_request*, |
|
grpc_tls_on_custom_verification_check_done_cb, |
|
void*, grpc_status_code* sync_status, |
|
char** sync_error_details) { |
|
auto* self = static_cast<SyncExternalVerifier*>(user_data); |
|
if (self->success_) { |
|
*sync_status = GRPC_STATUS_OK; |
|
return true; // Synchronous call |
|
} |
|
*sync_status = GRPC_STATUS_UNAUTHENTICATED; |
|
*sync_error_details = gpr_strdup("SyncExternalVerifier failed"); |
|
return true; // Synchronous call |
|
} |
|
|
|
void SyncExternalVerifier::Destruct(void* user_data) { |
|
auto* self = static_cast<SyncExternalVerifier*>(user_data); |
|
delete self; |
|
} |
|
|
|
AsyncExternalVerifier::~AsyncExternalVerifier() { |
|
// Tell the thread to shut down. |
|
{ |
|
MutexLock lock(&mu_); |
|
queue_.push_back(Request{nullptr, nullptr, nullptr, true}); |
|
} |
|
// Wait for thread to exit. |
|
thread_.Join(); |
|
grpc_shutdown(); |
|
} |
|
|
|
int AsyncExternalVerifier::Verify( |
|
void* user_data, grpc_tls_custom_verification_check_request* request, |
|
grpc_tls_on_custom_verification_check_done_cb callback, void* callback_arg, |
|
grpc_status_code*, char**) { |
|
auto* self = static_cast<AsyncExternalVerifier*>(user_data); |
|
// Add request to queue to be picked up by worker thread. |
|
MutexLock lock(&self->mu_); |
|
self->queue_.push_back(Request{request, callback, callback_arg, false}); |
|
return false; // Asynchronous call |
|
} |
|
|
|
namespace { |
|
|
|
void DestroyExternalVerifier(void* arg) { |
|
auto* verifier = static_cast<AsyncExternalVerifier*>(arg); |
|
delete verifier; |
|
} |
|
|
|
} // namespace |
|
|
|
void AsyncExternalVerifier::Destruct(void* user_data) { |
|
auto* self = static_cast<AsyncExternalVerifier*>(user_data); |
|
// Spawn a detached thread to destroy the verifier, to make sure that we don't |
|
// try to join the worker thread from within the worker thread. |
|
Thread destroy_thread("DestroyExternalVerifier", DestroyExternalVerifier, |
|
self, nullptr, Thread::Options().set_joinable(false)); |
|
destroy_thread.Start(); |
|
} |
|
|
|
void AsyncExternalVerifier::WorkerThread(void* arg) { |
|
auto* self = static_cast<AsyncExternalVerifier*>(arg); |
|
while (true) { |
|
// Check queue for work. |
|
bool got_request = false; |
|
Request request; |
|
{ |
|
MutexLock lock(&self->mu_); |
|
if (!self->queue_.empty()) { |
|
got_request = true; |
|
request = self->queue_.front(); |
|
self->queue_.pop_front(); |
|
} |
|
} |
|
// If nothing found in the queue, sleep for a bit and try again. |
|
if (!got_request) { |
|
gpr_sleep_until(grpc_timeout_milliseconds_to_deadline(100)); |
|
continue; |
|
} |
|
// If we're being told to shut down, return. |
|
if (request.shutdown) { |
|
return; |
|
} |
|
// Process the request. |
|
if (self->success_) { |
|
request.callback(request.request, request.callback_arg, GRPC_STATUS_OK, |
|
""); |
|
} else { |
|
request.callback(request.request, request.callback_arg, |
|
GRPC_STATUS_UNAUTHENTICATED, |
|
"AsyncExternalVerifier failed"); |
|
} |
|
} |
|
} |
|
|
|
int PeerPropertyExternalVerifier::Verify( |
|
void* user_data, grpc_tls_custom_verification_check_request* request, |
|
grpc_tls_on_custom_verification_check_done_cb, void*, |
|
grpc_status_code* sync_status, char** sync_error_details) { |
|
auto* self = static_cast<PeerPropertyExternalVerifier*>(user_data); |
|
if (request->peer_info.verified_root_cert_subject != |
|
self->expected_verified_root_cert_subject_) { |
|
*sync_status = GRPC_STATUS_UNAUTHENTICATED; |
|
*sync_error_details = gpr_strdup("PeerPropertyExternalVerifier failed"); |
|
return true; |
|
} else { |
|
*sync_status = GRPC_STATUS_OK; |
|
return true; // Synchronous call |
|
} |
|
return true; // Synchronous call |
|
} |
|
|
|
void PeerPropertyExternalVerifier::Destruct(void* user_data) { |
|
auto* self = static_cast<PeerPropertyExternalVerifier*>(user_data); |
|
delete self; |
|
} |
|
|
|
} // namespace testing |
|
|
|
} // namespace grpc_core
|
|
|