d8/dac/swissknife__lease__curl_8cc_source.html

 #include "swissknife_lease_curl.h"


 #include "cvmfs_config.h"


 #include "crypto/hash.h"

 #include "gateway_util.h"

 #include "json_document.h"

 #include "ssl.h"

 #include "util/logging.h"

 #include "util/pointer.h"

 #include "util/string.h"


 namespace {


 CURL* PrepareCurl(const std::string& method) {

   const char* user_agent_string = "cvmfs/" VERSION;


   CURL* h_curl = curl_easy_init();


   if (h_curl) {

     curl_easy_setopt(h_curl, CURLOPT_NOPROGRESS, 1L);

     curl_easy_setopt(h_curl, CURLOPT_USERAGENT, user_agent_string);

     curl_easy_setopt(h_curl, CURLOPT_MAXREDIRS, 50L);

     curl_easy_setopt(h_curl, CURLOPT_CUSTOMREQUEST, method.c_str());

   }


   return h_curl;

 }


 size_t RecvCB(void* buffer, size_t size, size_t nmemb, void* userp) {

   CurlBuffer* my_buffer = static_cast<CurlBuffer*>(userp);


   if (size * nmemb < 1) {

     return 0;

   }


   my_buffer->data = static_cast<char*>(buffer);


   return my_buffer->data.size();

 }


 }  // namespace


 bool MakeAcquireRequest(const std::string& key_id, const std::string& secret,

                         const std::string& repo_path,

                         const std::string& repo_service_url,

                         CurlBuffer* buffer) {

   CURLcode ret = static_cast<CURLcode>(0);


   CURL* h_curl = PrepareCurl("POST");

   if (!h_curl) {

     return false;

   }


   const std::string payload = "{\"path\" : \"" + repo_path +

                               "\", \"api_version\" : \"" +

                               StringifyInt(gateway::APIVersion()) + "\"}";


   shash::Any hmac(shash::kSha1);

   shash::HmacString(secret, payload, &hmac);


   SslCertificateStore cs;

   cs.UseSystemCertificatePath();

   cs.ApplySslCertificatePath(h_curl);


   const std::string header_str = std::string("Authorization: ") + key_id + " " +

                                  Base64(hmac.ToString(false));

   struct curl_slist* auth_header = NULL;

   auth_header = curl_slist_append(auth_header, header_str.c_str());

   curl_easy_setopt(h_curl, CURLOPT_HTTPHEADER, auth_header);


   // Make request to acquire lease from repo services

   curl_easy_setopt(h_curl, CURLOPT_URL, (repo_service_url + "/leases").c_str());

   curl_easy_setopt(h_curl, CURLOPT_POSTFIELDSIZE_LARGE,

                    static_cast<curl_off_t>(payload.length()));

   curl_easy_setopt(h_curl, CURLOPT_POSTFIELDS, payload.c_str());

   curl_easy_setopt(h_curl, CURLOPT_WRITEFUNCTION, RecvCB);

   curl_easy_setopt(h_curl, CURLOPT_WRITEDATA, buffer);


   ret = curl_easy_perform(h_curl);

   if (ret) {

     LogCvmfs(kLogUploadGateway, kLogStderr,

              "Make lease acquire request failed: %d. Reply: %s", ret,

              buffer->data.c_str());

   }


   curl_easy_cleanup(h_curl);

   h_curl = NULL;


   return !ret;

 }


 bool MakeEndRequest(const std::string& method, const std::string& key_id,

                     const std::string& secret, const std::string& session_token,

                     const std::string& repo_service_url,

                     const std::string& request_payload, CurlBuffer* reply) {

   CURLcode ret = static_cast<CURLcode>(0);


   CURL* h_curl = PrepareCurl(method);

   if (!h_curl) {

     return false;

   }


   shash::Any hmac(shash::kSha1);

   shash::HmacString(secret, session_token, &hmac);


   SslCertificateStore cs;

   cs.UseSystemCertificatePath();

   cs.ApplySslCertificatePath(h_curl);


   const std::string header_str = std::string("Authorization: ") + key_id + " " +

                                  Base64(hmac.ToString(false));

   struct curl_slist* auth_header = NULL;

   auth_header = curl_slist_append(auth_header, header_str.c_str());

   curl_easy_setopt(h_curl, CURLOPT_HTTPHEADER, auth_header);


   curl_easy_setopt(h_curl, CURLOPT_URL,

                    (repo_service_url + "/leases/" + session_token).c_str());

   if (request_payload != "") {

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDSIZE_LARGE,

                      static_cast<curl_off_t>(request_payload.length()));

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDS, request_payload.c_str());

   } else {

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDSIZE_LARGE,

                      static_cast<curl_off_t>(0));

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDS, NULL);

   }

   curl_easy_setopt(h_curl, CURLOPT_WRITEFUNCTION, RecvCB);

   curl_easy_setopt(h_curl, CURLOPT_WRITEDATA, reply);


   ret = curl_easy_perform(h_curl);

   if (ret) {

     LogCvmfs(kLogUploadGateway, kLogStderr,

              "Lease end request - curl_easy_perform failed: %d", ret);

   }


   UniquePtr<JsonDocument> reply_json(JsonDocument::Create(reply->data));

   const JSON *reply_status =

     JsonDocument::SearchInObject(reply_json->root(), "status", JSON_STRING);

   const bool ok = (reply_status != NULL &&

                    std::string(reply_status->string_value) == "ok");

   if (!ok) {

     LogCvmfs(kLogUploadGateway, kLogStderr,

              "Lease end request - error reply: %s",

              reply->data.c_str());

   }


   curl_easy_cleanup(h_curl);

   h_curl = NULL;


   return ok && !ret;

 }

LogCvmfs
#define LogCvmfs(source, mask,...)
Definition: logging.h:22

gateway::APIVersion
int APIVersion()
Definition: gateway_util.cc:26

MakeEndRequest
bool MakeEndRequest(const std::string &method, const std::string &key_id, const std::string &secret, const std::string &session_token, const std::string &repo_service_url, const std::string &request_payload, CurlBuffer *reply)
Definition: swissknife_lease_curl.cc:97

string.h

JsonDocument::SearchInObject
static JSON * SearchInObject(const JSON *json_object, const std::string &name, const json_type type)
Definition: json_document.cc:190

shash::Any
Definition: hash.h:467

json_document.h

shash::Digest::ToString
std::string ToString(const bool with_suffix=false) const
Definition: hash.h:249

UniquePtr
Definition: pointer.h:56

hash.h

shash::kSha1
Definition: hash.h:43

logging.h

SslCertificateStore
Definition: ssl.h:21

anonymous_namespace{repository_session.cc}::PrepareCurl
static CURL * PrepareCurl(const std::string &method)
Definition: repository_session.cc:41

kLogStderr
Definition: logging_internal.h:24

CurlBuffer::data
std::string data
Definition: swissknife_lease_curl.h:13

JsonDocument::Create
static JsonDocument * Create(const std::string &text)
Definition: json_document.cc:18

SslCertificateStore::ApplySslCertificatePath
bool ApplySslCertificatePath(CURL *handle) const
Definition: ssl.cc:58

SslCertificateStore::UseSystemCertificatePath
void UseSystemCertificatePath()
Definition: ssl.cc:68

anonymous_namespace{publisher_http.cc}::RecvCB
size_t RecvCB(void *buffer, size_t size, size_t nmemb, void *userp)
Definition: publisher_http.cc:22

StringifyInt
string StringifyInt(const int64_t value)
Definition: string.cc:78

Base64
string Base64(const string &data)
Definition: string.cc:504

anonymous_namespace{repository_session.cc}::MakeAcquireRequest
static void MakeAcquireRequest(const gateway::GatewayKey &key, const std::string &repo_path, const std::string &repo_service_url, int llvl, CurlBuffer *buffer)
Definition: repository_session.cc:67

swissknife_lease_curl.h

shash::HmacString
void HmacString(const std::string &key, const std::string &content, Any *any_digest)
Definition: hash.h:527

CurlBuffer
Definition: swissknife_lease_curl.h:12

ssl.h

gateway_util.h

pointer.h

JSON
struct json_value JSON
Definition: helper_allow.cc:11

size
static void size_t size
Definition: smalloc.h:47

JsonDocument::root
const JSON * root() const
Definition: json_document.h:25

kLogUploadGateway
Definition: logging_internal.h:103