d8/dac/swissknife__lease__curl_8cc_source.html

 #include "swissknife_lease_curl.h"


 #include "crypto/hash.h"

 #include "gateway_util.h"

 #include "json_document.h"

 #include "ssl.h"

 #include "util/logging.h"

 #include "util/pointer.h"

 #include "util/posix.h"

 #include "util/string.h"


 namespace {


 CURL *PrepareCurl(const std::string &method) {

   const char *user_agent_string = "cvmfs/" CVMFS_VERSION;


   CURL *h_curl = curl_easy_init();


   if (h_curl) {

     curl_easy_setopt(h_curl, CURLOPT_NOPROGRESS, 1L);

     curl_easy_setopt(h_curl, CURLOPT_USERAGENT, user_agent_string);

     curl_easy_setopt(h_curl, CURLOPT_MAXREDIRS, 50L);

     curl_easy_setopt(h_curl, CURLOPT_CUSTOMREQUEST, method.c_str());

   }


   return h_curl;

 }


 size_t RecvCB(void *buffer, size_t size, size_t nmemb, void *userp) {

   CurlBuffer *my_buffer = static_cast<CurlBuffer *>(userp);


   if (size * nmemb < 1) {

     return 0;

   }


   my_buffer->data = my_buffer->data

                     + std::string(static_cast<char *>(buffer), nmemb);


   return nmemb;

 }


 }  // namespace


 bool MakeAcquireRequest(const std::string &key_id, const std::string &secret,

                         const std::string &repo_path,

                         const std::string &repo_service_url,

                         CurlBuffer *buffer) {

   CURLcode ret = static_cast<CURLcode>(0);


   CURL *h_curl = PrepareCurl("POST");

   if (!h_curl) {

     return false;

   }


   const std::string payload = "{\"path\" : \"" + repo_path

                               + "\", \"api_version\" : \""

                               + StringifyInt(gateway::APIVersion()) + "\""

                               + ", \"hostname\" : \"" + GetHostname() + "\"}";


   shash::Any hmac(shash::kSha1);

   shash::HmacString(secret, payload, &hmac);


   SslCertificateStore cs;

   cs.UseSystemCertificatePath();

   cs.ApplySslCertificatePath(h_curl);


   const std::string header_str = std::string("Authorization: ") + key_id + " "

                                  + Base64(hmac.ToString(false));

   struct curl_slist *auth_header = NULL;

   auth_header = curl_slist_append(auth_header, header_str.c_str());

   curl_easy_setopt(h_curl, CURLOPT_HTTPHEADER, auth_header);


   // Make request to acquire lease from repo services

   curl_easy_setopt(h_curl, CURLOPT_URL, (repo_service_url + "/leases").c_str());

   curl_easy_setopt(h_curl, CURLOPT_POSTFIELDSIZE_LARGE,

                    static_cast<curl_off_t>(payload.length()));

   curl_easy_setopt(h_curl, CURLOPT_POSTFIELDS, payload.c_str());

   curl_easy_setopt(h_curl, CURLOPT_WRITEFUNCTION, RecvCB);

   curl_easy_setopt(h_curl, CURLOPT_WRITEDATA, buffer);


   ret = curl_easy_perform(h_curl);

   if (ret) {

     LogCvmfs(kLogUploadGateway, kLogStderr,

              "Make lease acquire request failed: %d. Reply: %s", ret,

              buffer->data.c_str());

   }


   curl_easy_cleanup(h_curl);

   h_curl = NULL;


   return !ret;

 }


 bool MakeEndRequest(const std::string &method, const std::string &key_id,

                     const std::string &secret, const std::string &session_token,

                     const std::string &repo_service_url,

                     const std::string &request_payload, CurlBuffer *reply) {

   CURLcode ret = static_cast<CURLcode>(0);


   CURL *h_curl = PrepareCurl(method);

   if (!h_curl) {

     return false;

   }


   shash::Any hmac(shash::kSha1);

   shash::HmacString(secret, session_token, &hmac);


   SslCertificateStore cs;

   cs.UseSystemCertificatePath();

   cs.ApplySslCertificatePath(h_curl);


   const std::string header_str = std::string("Authorization: ") + key_id + " "

                                  + Base64(hmac.ToString(false));

   struct curl_slist *auth_header = NULL;

   auth_header = curl_slist_append(auth_header, header_str.c_str());

   curl_easy_setopt(h_curl, CURLOPT_HTTPHEADER, auth_header);


   curl_easy_setopt(h_curl, CURLOPT_URL,

                    (repo_service_url + "/leases/" + session_token).c_str());

   if (request_payload != "") {

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDSIZE_LARGE,

                      static_cast<curl_off_t>(request_payload.length()));

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDS, request_payload.c_str());

   } else {

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDSIZE_LARGE,

                      static_cast<curl_off_t>(0));

     curl_easy_setopt(h_curl, CURLOPT_POSTFIELDS, NULL);

   }

   curl_easy_setopt(h_curl, CURLOPT_WRITEFUNCTION, RecvCB);

   curl_easy_setopt(h_curl, CURLOPT_WRITEDATA, reply);


   ret = curl_easy_perform(h_curl);

   if (ret) {

     LogCvmfs(kLogUploadGateway, kLogStderr,

              "Lease end request - curl_easy_perform failed: %d", ret);

   }


   UniquePtr<JsonDocument> reply_json(JsonDocument::Create(reply->data));

   const JSON *reply_status = JsonDocument::SearchInObject(

       reply_json->root(), "status", JSON_STRING);

   const bool ok = (reply_status != NULL

                    && std::string(reply_status->string_value) == "ok");

   if (!ok) {

     LogCvmfs(kLogUploadGateway, kLogStderr,

              "Lease end request - error reply: %s", reply->data.c_str());

   }


   curl_easy_cleanup(h_curl);

   h_curl = NULL;


   return ok && !ret;

 }

gateway::APIVersion
int APIVersion()
Definition: gateway_util.cc:26

MakeEndRequest
bool MakeEndRequest(const std::string &method, const std::string &key_id, const std::string &secret, const std::string &session_token, const std::string &repo_service_url, const std::string &request_payload, CurlBuffer *reply)
Definition: swissknife_lease_curl.cc:98

string.h

JsonDocument::SearchInObject
static JSON * SearchInObject(const JSON *json_object, const std::string &name, const json_type type)
Definition: json_document.cc:196

shash::Any
Definition: hash.h:453

json_document.h

shash::Digest::ToString
std::string ToString(const bool with_suffix=false) const
Definition: hash.h:241

UniquePtr
Definition: pointer.h:65

hash.h

shash::kSha1
Definition: hash.h:43

logging.h

SslCertificateStore
Definition: ssl.h:21

anonymous_namespace{repository_session.cc}::PrepareCurl
static CURL * PrepareCurl(const std::string &method)
Definition: repository_session.cc:40

kLogStderr
Definition: logging_internal.h:24

GetHostname
std::string GetHostname()
Definition: posix.cc:762

JsonDocument::Create
static JsonDocument * Create(const std::string &text)
Definition: json_document.cc:18

SslCertificateStore::ApplySslCertificatePath
bool ApplySslCertificatePath(CURL *handle) const
Definition: ssl.cc:61

SslCertificateStore::UseSystemCertificatePath
void UseSystemCertificatePath()
Definition: ssl.cc:71

CurlBuffer
Definition: swissknife_lease_curl.h:12

anonymous_namespace{publisher_http.cc}::RecvCB
size_t RecvCB(void *buffer, size_t size, size_t nmemb, void *userp)
Definition: publisher_http.cc:19

CurlBuffer::data
std::string data
Definition: swissknife_lease_curl.h:14

StringifyInt
string StringifyInt(const int64_t value)
Definition: string.cc:77

Base64
string Base64(const string &data)
Definition: string.cc:537

anonymous_namespace{repository_session.cc}::MakeAcquireRequest
static void MakeAcquireRequest(const gateway::GatewayKey &key, const std::string &repo_path, const std::string &repo_service_url, int llvl, CurlBuffer *buffer)
Definition: repository_session.cc:66

swissknife_lease_curl.h

shash::HmacString
void HmacString(const std::string &key, const std::string &content, Any *any_digest)
Definition: hash.h:515

ssl.h

gateway_util.h

posix.h

pointer.h

JSON
struct json_value JSON
Definition: helper_allow.cc:11

size
static void size_t size
Definition: smalloc.h:54

JsonDocument::root
const JSON * root() const
Definition: json_document.h:25

kLogUploadGateway
Definition: logging_internal.h:103

LogCvmfs
CVMFS_EXPORT void LogCvmfs(const LogSource source, const int mask, const char *format,...)
Definition: logging.cc:545