CernVM-FS  2.13.0
 All Classes Namespaces Files Functions Variables Typedefs Enumerations Enumerator Friends Macros Pages
repository.cc
Go to the documentation of this file.
1 
6 #include "publish/repository.h"
7 
8 #include <cassert>
9 #include <cstddef>
10 #include <cstdlib>
11 
12 #include "catalog_mgr_ro.h"
13 #include "catalog_mgr_rw.h"
14 #include "crypto/hash.h"
15 #include "crypto/signature.h"
16 #include "gateway_util.h"
17 #include "history_sqlite.h"
18 #include "ingestion/ingestion_source.h"
19 #include "manifest.h"
20 #include "manifest_fetch.h"
21 #include "network/download.h"
22 #include "publish/except.h"
23 #include "publish/repository_util.h"
24 #include "publish/settings.h"
25 #include "reflog.h"
26 #include "statistics.h"
27 #include "sync_mediator.h"
28 #include "sync_union_aufs.h"
29 #include "sync_union_overlayfs.h"
30 #include "sync_union_tarball.h"
31 #include "upload.h"
32 #include "upload_spooler_definition.h"
33 #include "util/logging.h"
34 #include "util/pointer.h"
35 #include "whitelist.h"
36 
37 // TODO(jblomer): Remove Me
38 namespace swissknife {
39 class CommandTag {
40  static const std::string kHeadTag;
41  static const std::string kPreviousHeadTag;
42 };
43 const std::string CommandTag::kHeadTag = "trunk";
44 const std::string CommandTag::kPreviousHeadTag = "trunk-previous";
45 } // namespace swissknife
46 
47 namespace publish {
48 
49 Repository::Repository(const SettingsRepository &settings, const bool exists)
50  : settings_(settings)
51  , statistics_(new perf::Statistics())
52  , signature_mgr_(new signature::SignatureManager())
53  , download_mgr_(NULL)
54  , simple_catalog_mgr_(NULL)
55  , whitelist_(NULL)
56  , reflog_(NULL)
57  , manifest_(NULL)
58  , history_(NULL) {
59  signature_mgr_->Init();
60 
61  if (exists) {
62  int rvb;
63  std::string keys = JoinStrings(
64  FindFilesBySuffix(settings.keychain().keychain_dir(), ".pub"), ":");
65  rvb = signature_mgr_->LoadPublicRsaKeys(keys);
66  if (!rvb) {
67  signature_mgr_->Fini();
68  delete signature_mgr_;
69  delete statistics_;
70  throw EPublish("cannot load public rsa key");
71  }
72  }
73 
74  if (!settings.cert_bundle().empty()) {
75  int rvi = setenv("X509_CERT_BUNDLE", settings.cert_bundle().c_str(),
76  1 /* overwrite */);
77  if (rvi != 0)
78  throw EPublish("cannot set X509_CERT_BUNDLE environment variable");
79  }
80  download_mgr_ = new download::DownloadManager(
81  16, perf::StatisticsTemplate("download", statistics_));
82  download_mgr_->UseSystemCertificatePath();
83 
84  if (settings.proxy() != "") {
85  download_mgr_->SetProxyChain(settings.proxy(), "",
86  download::DownloadManager::kSetProxyBoth);
87  }
88 
89  if (exists) {
90  try {
91  DownloadRootObjects(settings.url(), settings.fqrn(), settings.tmp_dir());
92  } catch (const EPublish &e) {
93  signature_mgr_->Fini();
94  delete signature_mgr_;
95  delete download_mgr_;
96  delete statistics_;
97  throw;
98  }
99  }
100 }
101 
102 Repository::~Repository() {
103  if (signature_mgr_ != NULL)
104  signature_mgr_->Fini();
105 
106  delete history_;
107  delete manifest_;
108  delete reflog_;
109  delete whitelist_;
110  delete signature_mgr_;
111  delete download_mgr_;
112  delete simple_catalog_mgr_;
113  delete statistics_;
114 }
115 
116 const history::History *Repository::history() const { return history_; }
117 
118 catalog::SimpleCatalogManager *Repository::GetSimpleCatalogManager() {
119  if (simple_catalog_mgr_ != NULL)
120  return simple_catalog_mgr_;
121 
122  simple_catalog_mgr_ = new catalog::SimpleCatalogManager(
123  manifest_->catalog_hash(),
124  settings_.url(),
125  settings_.tmp_dir(),
126  download_mgr_,
127  statistics_,
128  true /* manage_catalog_files */);
129  simple_catalog_mgr_->Init();
130  return simple_catalog_mgr_;
131 }
132 
133 
134 void Repository::DownloadRootObjects(const std::string &url,
135  const std::string &fqrn,
136  const std::string &tmp_dir) {
137  delete whitelist_;
138  whitelist_ = new whitelist::Whitelist(fqrn, download_mgr_, signature_mgr_);
139  whitelist::Failures rv_whitelist = whitelist_->LoadUrl(url);
140  if (whitelist_->status() != whitelist::Whitelist::kStAvailable) {
141  throw EPublish(std::string("cannot load whitelist [")
142  + whitelist::Code2Ascii(rv_whitelist) + "]");
143  }
144 
145  manifest::ManifestEnsemble ensemble;
146  const uint64_t minimum_timestamp = 0;
147  const shash::Any *base_catalog = NULL;
148  manifest::Failures rv_manifest = manifest::Fetch(url, fqrn, minimum_timestamp,
149  base_catalog, signature_mgr_,
150  download_mgr_, &ensemble);
151  if (rv_manifest != manifest::kFailOk)
152  throw EPublish("cannot load manifest");
153  delete manifest_;
154  manifest_ = new manifest::Manifest(*ensemble.manifest);
155 
156  std::string reflog_path;
157  FILE *reflog_fd = CreateTempFile(tmp_dir + "/reflog", kPrivateFileMode, "w",
158  &reflog_path);
159  std::string reflog_url = url + "/.cvmfsreflog";
160  // TODO(jblomer): verify reflog hash
161  // shash::Any reflog_hash(manifest_->GetHashAlgorithm());
162  cvmfs::FileSink filesink(reflog_fd);
163  download::JobInfo download_reflog(&reflog_url, false /* compressed */,
164  false /* probe hosts */, NULL, &filesink);
165  download::Failures rv_dl = download_mgr_->Fetch(&download_reflog);
166  fclose(reflog_fd);
167  if (rv_dl == download::kFailOk) {
168  delete reflog_;
169  reflog_ = manifest::Reflog::Open(reflog_path);
170  if (reflog_ == NULL)
171  throw EPublish("cannot open reflog");
172  reflog_->TakeDatabaseFileOwnership();
173  } else {
174  if (!download_reflog.IsFileNotFound()) {
175  throw EPublish(std::string("cannot load reflog [")
176  + download::Code2Ascii(rv_dl) + "]");
177  }
178  assert(reflog_ == NULL);
179  }
180 
181  std::string tags_path;
182  FILE *tags_fd = CreateTempFile(tmp_dir + "/tags", kPrivateFileMode, "w",
183  &tags_path);
184  if (!manifest_->history().IsNull()) {
185  std::string tags_url = url + "/data/" + manifest_->history().MakePath();
186  shash::Any tags_hash(manifest_->history());
187  cvmfs::FileSink filesink(tags_fd);
188  download::JobInfo download_tags(&tags_url, true /* compressed */,
189  true /* probe hosts */, &tags_hash,
190  &filesink);
191  rv_dl = download_mgr_->Fetch(&download_tags);
192  fclose(tags_fd);
193  if (rv_dl != download::kFailOk)
194  throw EPublish("cannot load tag database");
195  delete history_;
196  history_ = history::SqliteHistory::OpenWritable(tags_path);
197  if (history_ == NULL)
198  throw EPublish("cannot open tag database");
199  } else {
200  fclose(tags_fd);
201  delete history_;
202  history_ = history::SqliteHistory::Create(tags_path, fqrn);
203  if (history_ == NULL)
204  throw EPublish("cannot create tag database");
205  }
206  history_->TakeDatabaseFileOwnership();
207 
208  if (!manifest_->meta_info().IsNull()) {
209  shash::Any info_hash(manifest_->meta_info());
210  std::string info_url = url + "/data/" + info_hash.MakePath();
211  cvmfs::MemSink metainfo_memsink;
212  download::JobInfo download_info(&info_url, true /* compressed */,
213  true /* probe_hosts */, &info_hash,
214  &metainfo_memsink);
215  download::Failures rv_info = download_mgr_->Fetch(&download_info);
216  if (rv_info != download::kFailOk) {
217  throw EPublish(std::string("cannot load meta info [")
218  + download::Code2Ascii(rv_info) + "]");
219  }
220  meta_info_ = std::string(reinterpret_cast<char *>(metainfo_memsink.data()),
221  metainfo_memsink.pos());
222  } else {
223  meta_info_ = "n/a";
224  }
225 }
226 
227 
228 std::string Repository::GetFqrnFromUrl(const std::string &url) {
229  return GetFileName(MakeCanonicalPath(url));
230 }
231 
232 
233 bool Repository::IsMasterReplica() {
234  std::string url = settings_.url() + "/.cvmfs_master_replica";
235  download::JobInfo head(&url, false /* probe_hosts */);
236  download::Failures retval = download_mgr_->Fetch(&head);
237  if (retval == download::kFailOk) {
238  return true;
239  }
240  if (head.IsFileNotFound()) {
241  return false;
242  }
243 
244  throw EPublish(std::string("error looking for .cvmfs_master_replica [")
245  + download::Code2Ascii(retval) + "]");
246 }
247 
248 
249 //------------------------------------------------------------------------------
250 
251 
252 void Publisher::ConstructSpoolers() {
253  if ((spooler_files_ != NULL) && (spooler_catalogs_ != NULL))
254  return;
255  assert((spooler_files_ == NULL) && (spooler_catalogs_ == NULL));
256 
257  upload::SpoolerDefinition sd(settings_.storage().GetLocator(),
258  settings_.transaction().hash_algorithm(),
259  settings_.transaction().compression_algorithm());
260  sd.session_token_file = settings_.transaction()
261  .spool_area()
262  .gw_session_token();
263  sd.key_file = settings_.keychain().gw_key_path();
264 
265  spooler_files_ = upload::Spooler::Construct(sd,
266  statistics_publish_.weak_ref());
267  if (spooler_files_ == NULL)
268  throw EPublish("could not initialize file spooler");
269 
270  upload::SpoolerDefinition sd_catalogs(sd.Dup2DefaultCompression());
271  spooler_catalogs_ = upload::Spooler::Construct(
272  sd_catalogs, statistics_publish_.weak_ref());
273  if (spooler_catalogs_ == NULL) {
274  delete spooler_files_;
275  throw EPublish("could not initialize catalog spooler");
276  }
277 }
278 
279 
280 void Publisher::CreateKeychain() {
281  if (settings_.keychain().HasDanglingMasterKeys()) {
282  throw EPublish("dangling master key pair");
283  }
284  if (settings_.keychain().HasDanglingRepositoryKeys()) {
285  throw EPublish("dangling repository keys");
286  }
287  if (!settings_.keychain().HasMasterKeys())
288  signature_mgr_->GenerateMasterKeyPair();
289  if (!settings_.keychain().HasRepositoryKeys())
290  signature_mgr_->GenerateCertificate(settings_.fqrn());
291 
292  whitelist_ = new whitelist::Whitelist(settings_.fqrn(), NULL, signature_mgr_);
293  std::string whitelist_str = whitelist::Whitelist::CreateString(
294  settings_.fqrn(),
295  settings_.whitelist_validity_days(),
296  settings_.transaction().hash_algorithm(),
297  signature_mgr_);
298  whitelist::Failures rv_wl = whitelist_->LoadMem(whitelist_str);
299  if (rv_wl != whitelist::kFailOk)
300  throw EPublish("whitelist generation failed");
301 }
302 
303 
304 void Publisher::CreateRootObjects() {
305  // Reflog
306  const std::string reflog_path = CreateTempPath(
307  settings_.transaction().spool_area().tmp_dir() + "/cvmfs_reflog", 0600);
308  reflog_ = manifest::Reflog::Create(reflog_path, settings_.fqrn());
309  if (reflog_ == NULL)
310  throw EPublish("could not create reflog");
311  reflog_->TakeDatabaseFileOwnership();
312 
313  // Root file catalog and initial manifest
314  manifest_ = catalog::WritableCatalogManager::CreateRepository(
315  settings_.transaction().spool_area().tmp_dir(),
316  settings_.transaction().is_volatile(),
317  settings_.transaction().voms_authz(),
318  spooler_catalogs_);
319  spooler_catalogs_->WaitForUpload();
320  if (manifest_ == NULL)
321  throw EPublish("could not create initial file catalog");
322  reflog_->AddCatalog(manifest_->catalog_hash());
323 
324  manifest_->set_repository_name(settings_.fqrn());
325  manifest_->set_ttl(settings_.transaction().ttl_second());
326  const bool
327  needs_bootstrap_shortcuts = !settings_.transaction().voms_authz().empty();
328  manifest_->set_has_alt_catalog_path(needs_bootstrap_shortcuts);
329  manifest_->set_garbage_collectability(
330  settings_.transaction().is_garbage_collectable());
331 
332  // Tag database
333  const std::string tags_path = CreateTempPath(
334  settings_.transaction().spool_area().tmp_dir() + "/cvmfs_tags", 0600);
335  history_ = history::SqliteHistory::Create(tags_path, settings_.fqrn());
336  if (history_ == NULL)
337  throw EPublish("could not create tag database");
338  history_->TakeDatabaseFileOwnership();
339  history::History::Tag tag_trunk(
340  "trunk", manifest_->catalog_hash(), manifest_->catalog_size(),
341  manifest_->revision(), manifest_->publish_timestamp(), "empty repository",
342  "" /* branch */);
343  history_->Insert(tag_trunk);
344 
345  // Meta information, TODO(jblomer)
346  meta_info_ = "{}";
347 }
348 
349 
350 void Publisher::CreateStorage() {
351  ConstructSpoolers();
352  if (!spooler_files_->Create())
353  throw EPublish("could not initialize repository storage area");
354 }
355 
356 
357 void Publisher::PushCertificate() {
358  upload::Spooler::CallbackPtr callback = spooler_files_->RegisterListener(
359  &Publisher::OnProcessCertificate, this);
360  spooler_files_->ProcessCertificate(
361  new StringIngestionSource(signature_mgr_->GetCertificate()));
362  spooler_files_->WaitForUpload();
363  spooler_files_->UnregisterListener(callback);
364 }
365 
366 
367 void Publisher::PushHistory() {
368  assert(history_ != NULL);
369  history_->SetPreviousRevision(manifest_->history());
370  const string history_path = history_->filename();
371  history_->DropDatabaseFileOwnership();
372  delete history_;
373 
374  upload::Spooler::CallbackPtr callback = spooler_files_->RegisterListener(
375  &Publisher::OnProcessHistory, this);
376  spooler_files_->ProcessHistory(history_path);
377  spooler_files_->WaitForUpload();
378  spooler_files_->UnregisterListener(callback);
379 
380  history_ = history::SqliteHistory::OpenWritable(history_path);
381  assert(history_ != NULL);
382  history_->TakeDatabaseFileOwnership();
383 }
384 
385 
386 void Publisher::PushMetainfo() {
387  upload::Spooler::CallbackPtr callback = spooler_files_->RegisterListener(
388  &Publisher::OnProcessMetainfo, this);
389  spooler_files_->ProcessMetainfo(new StringIngestionSource(meta_info_));
390  spooler_files_->WaitForUpload();
391  spooler_files_->UnregisterListener(callback);
392 }
393 
394 
395 void Publisher::PushManifest() {
396  std::string signed_manifest = manifest_->ExportString();
397  shash::Any manifest_hash(settings_.transaction().hash_algorithm());
398  shash::HashMem(
399  reinterpret_cast<const unsigned char *>(signed_manifest.data()),
400  signed_manifest.length(), &manifest_hash);
401  signed_manifest += "--\n" + manifest_hash.ToString() + "\n";
402  unsigned char *signature;
403  unsigned sig_size;
404  bool rvb = signature_mgr_->Sign(
405  reinterpret_cast<const unsigned char *>(manifest_hash.ToString().data()),
406  manifest_hash.GetHexSize(), &signature, &sig_size);
407  if (!rvb)
408  throw EPublish("cannot sign manifest");
409  signed_manifest += std::string(reinterpret_cast<char *>(signature), sig_size);
410  free(signature);
411 
412  // Create alternative bootstrapping symlinks for VOMS secured repos
413  if (manifest_->has_alt_catalog_path()) {
414  rvb = spooler_files_->PlaceBootstrappingShortcut(manifest_->certificate())
415  && spooler_files_->PlaceBootstrappingShortcut(
416  manifest_->catalog_hash())
417  && (manifest_->history().IsNull()
418  || spooler_files_->PlaceBootstrappingShortcut(
419  manifest_->history()))
420  && (manifest_->meta_info().IsNull()
421  || spooler_files_->PlaceBootstrappingShortcut(
422  manifest_->meta_info()));
423  if (!rvb)
424  EPublish("cannot place VOMS bootstrapping symlinks");
425  }
426 
427  upload::Spooler::CallbackPtr callback = spooler_files_->RegisterListener(
428  &Publisher::OnUploadManifest, this);
429  spooler_files_->Upload(".cvmfspublished",
430  new StringIngestionSource(signed_manifest));
431  spooler_files_->WaitForUpload();
432  spooler_files_->UnregisterListener(callback);
433 }
434 
435 
436 void Publisher::PushReflog() {
437  const string reflog_path = reflog_->database_file();
438  reflog_->DropDatabaseFileOwnership();
439  delete reflog_;
440 
441  shash::Any hash_reflog(settings_.transaction().hash_algorithm());
442  manifest::Reflog::HashDatabase(reflog_path, &hash_reflog);
443 
444  upload::Spooler::CallbackPtr callback = spooler_files_->RegisterListener(
445  &Publisher::OnUploadReflog, this);
446  spooler_files_->UploadReflog(reflog_path);
447  spooler_files_->WaitForUpload();
448  spooler_files_->UnregisterListener(callback);
449 
450  manifest_->set_reflog_hash(hash_reflog);
451 
452  reflog_ = manifest::Reflog::Open(reflog_path);
453  assert(reflog_ != NULL);
454  reflog_->TakeDatabaseFileOwnership();
455 }
456 
457 
458 void Publisher::PushWhitelist() {
459  // TODO(jblomer): PKCS7 handling
460  upload::Spooler::CallbackPtr callback = spooler_files_->RegisterListener(
461  &Publisher::OnUploadWhitelist, this);
462  spooler_files_->Upload(".cvmfswhitelist",
463  new StringIngestionSource(whitelist_->ExportString()));
464  spooler_files_->WaitForUpload();
465  spooler_files_->UnregisterListener(callback);
466 }
467 
468 
469 Publisher *Publisher::Create(const SettingsPublisher &settings) {
470  UniquePtr<Publisher> publisher(new Publisher(settings, false));
471 
472  LogCvmfs(kLogCvmfs, publisher->llvl_ | kLogStdout | kLogNoLinebreak,
473  "Creating Key Chain... ");
474  publisher->CreateKeychain();
475  publisher->ExportKeychain();
476  LogCvmfs(kLogCvmfs, publisher->llvl_ | kLogStdout, "done");
477 
478  LogCvmfs(kLogCvmfs, publisher->llvl_ | kLogStdout | kLogNoLinebreak,
479  "Creating Backend Storage... ");
480  publisher->CreateStorage();
481  publisher->PushWhitelist();
482  LogCvmfs(kLogCvmfs, publisher->llvl_ | kLogStdout, "done");
483 
484  LogCvmfs(kLogCvmfs, publisher->llvl_ | kLogStdout | kLogNoLinebreak,
485  "Creating Initial Repository... ");
486  publisher->InitSpoolArea();
487  publisher->CreateRootObjects();
488  publisher->PushHistory();
489  publisher->PushCertificate();
490  publisher->PushMetainfo();
491  publisher->PushReflog();
492  publisher->PushManifest();
493  // TODO(jblomer): meta-info
494 
495  // Re-create from empty repository in order to properly initialize
496  // parent Repository object
497  publisher = new Publisher(settings);
498 
499  LogCvmfs(kLogCvmfs, publisher->llvl_ | kLogStdout, "done");
500 
501  return publisher.Release();
502 }
503 
504 void Publisher::ExportKeychain() {
505  CreateDirectoryAsOwner(settings_.keychain().keychain_dir(), kDefaultDirMode);
506 
507  bool rvb;
508  rvb = SafeWriteToFile(signature_mgr_->GetActivePubkeys(),
509  settings_.keychain().master_public_key_path(), 0644);
510  if (!rvb)
511  throw EPublish("cannot export public master key");
512  rvb = SafeWriteToFile(signature_mgr_->GetCertificate(),
513  settings_.keychain().certificate_path(), 0644);
514  if (!rvb)
515  throw EPublish("cannot export certificate");
516 
517  rvb = SafeWriteToFile(signature_mgr_->GetPrivateKey(),
518  settings_.keychain().private_key_path(), 0600);
519  if (!rvb)
520  throw EPublish("cannot export private certificate key");
521  rvb = SafeWriteToFile(signature_mgr_->GetPrivateMasterKey(),
522  settings_.keychain().master_private_key_path(), 0600);
523  if (!rvb)
524  throw EPublish("cannot export private master key");
525 
526  int rvi;
527  rvi = chown(settings_.keychain().master_public_key_path().c_str(),
528  settings_.owner_uid(), settings_.owner_gid());
529  if (rvi != 0)
530  throw EPublish("cannot set key file ownership");
531  rvi = chown(settings_.keychain().certificate_path().c_str(),
532  settings_.owner_uid(), settings_.owner_gid());
533  if (rvi != 0)
534  throw EPublish("cannot set key file ownership");
535  rvi = chown(settings_.keychain().private_key_path().c_str(),
536  settings_.owner_uid(), settings_.owner_gid());
537  if (rvi != 0)
538  throw EPublish("cannot set key file ownership");
539  rvi = chown(settings_.keychain().master_private_key_path().c_str(),
540  settings_.owner_uid(), settings_.owner_gid());
541  if (rvi != 0)
542  throw EPublish("cannot set key file ownership");
543 }
544 
545 void Publisher::OnProcessCertificate(const upload::SpoolerResult &result) {
546  if (result.return_code != 0) {
547  throw EPublish("cannot write certificate to storage");
548  }
549  manifest_->set_certificate(result.content_hash);
550  reflog_->AddCertificate(result.content_hash);
551 }
552 
553 void Publisher::OnProcessHistory(const upload::SpoolerResult &result) {
554  if (result.return_code != 0) {
555  throw EPublish("cannot write tag database to storage");
556  }
557  manifest_->set_history(result.content_hash);
558  reflog_->AddHistory(result.content_hash);
559 }
560 
561 void Publisher::OnProcessMetainfo(const upload::SpoolerResult &result) {
562  if (result.return_code != 0) {
563  throw EPublish("cannot write repository meta info to storage");
564  }
565  manifest_->set_meta_info(result.content_hash);
566  reflog_->AddMetainfo(result.content_hash);
567 }
568 
569 void Publisher::OnUploadManifest(const upload::SpoolerResult &result) {
570  if (result.return_code != 0) {
571  throw EPublish("cannot write manifest to storage");
572  }
573 }
574 
575 void Publisher::OnUploadReflog(const upload::SpoolerResult &result) {
576  if (result.return_code != 0) {
577  throw EPublish("cannot write reflog to storage");
578  }
579 }
580 
581 void Publisher::OnUploadWhitelist(const upload::SpoolerResult &result) {
582  if (result.return_code != 0) {
583  throw EPublish("cannot write whitelist to storage");
584  }
585 }
586 
587 void Publisher::CreateDirectoryAsOwner(const std::string &path, int mode) {
588  const bool rvb = MkdirDeep(path, mode);
589  if (!rvb)
590  throw EPublish("cannot create directory " + path);
591  int rvi = chown(path.c_str(), settings_.owner_uid(), settings_.owner_gid());
592  if (rvi != 0)
593  throw EPublish("cannot set ownership on directory " + path);
594 }
595 
596 void Publisher::InitSpoolArea() {
597  CreateDirectoryAsOwner(settings_.transaction().spool_area().workspace(),
598  kPrivateDirMode);
599  CreateDirectoryAsOwner(settings_.transaction().spool_area().tmp_dir(),
600  kPrivateDirMode);
601  CreateDirectoryAsOwner(settings_.transaction().spool_area().cache_dir(),
602  kPrivateDirMode);
603  CreateDirectoryAsOwner(settings_.transaction().spool_area().scratch_dir(),
604  kDefaultDirMode);
605  CreateDirectoryAsOwner(settings_.transaction().spool_area().ovl_work_dir(),
606  kPrivateDirMode);
607 
608  // On a managed node, the mount points are already mounted
609  if (!DirectoryExists(settings_.transaction().spool_area().readonly_mnt())) {
610  CreateDirectoryAsOwner(settings_.transaction().spool_area().readonly_mnt(),
611  kDefaultDirMode);
612  }
613  if (!DirectoryExists(settings_.transaction().spool_area().union_mnt())) {
614  CreateDirectoryAsOwner(settings_.transaction().spool_area().union_mnt(),
615  kDefaultDirMode);
616  }
617 }
618 
619 Publisher::Publisher(const SettingsPublisher &settings, const bool exists)
620  : Repository(SettingsRepository(settings), exists)
621  , settings_(settings)
622  , statistics_publish_(new perf::StatisticsTemplate("publish", statistics_))
623  , llvl_(settings.is_silent() ? kLogNone : kLogNormal)
624  , in_transaction_(settings.transaction().spool_area().transaction_lock())
625  , is_publishing_(settings.transaction().spool_area().publishing_lock())
626  , spooler_files_(NULL)
627  , spooler_catalogs_(NULL)
628  , catalog_mgr_(NULL)
629  , sync_parameters_(NULL)
630  , sync_mediator_(NULL)
631  , sync_union_(NULL) {
632  if (settings.transaction().layout_revision() != kRequiredLayoutRevision) {
633  unsigned layout_revision = settings.transaction().layout_revision();
634  throw EPublish("This repository uses layout revision "
635  + StringifyInt(layout_revision)
636  + ".\n"
637  "This version of CernVM-FS requires layout revision "
638  + StringifyInt(kRequiredLayoutRevision)
639  + ", which is\n"
640  "incompatible to "
641  + StringifyInt(layout_revision)
642  + ".\n\n"
643  "Please run `cvmfs_server migrate` to update your "
644  "repository before "
645  "proceeding.",
646  EPublish::kFailLayoutRevision);
647  }
648 
649  if (!exists)
650  return;
651 
652  CreateDirectoryAsOwner(settings_.transaction().spool_area().tmp_dir(),
653  kPrivateDirMode);
654 
655  if (settings.storage().type() == upload::SpoolerDefinition::Gateway) {
656  if (!settings.keychain().HasGatewayKey()) {
657  throw EPublish("gateway key missing: "
658  + settings.keychain().gw_key_path());
659  }
660  gw_key_ = gateway::ReadGatewayKey(settings.keychain().gw_key_path());
661  if (!gw_key_.IsValid()) {
662  throw EPublish("cannot read gateway key: "
663  + settings.keychain().gw_key_path());
664  }
665  }
666 
667  if ((settings.storage().type() != upload::SpoolerDefinition::Gateway)
668  && !settings.transaction().in_enter_session()) {
669  int rvb = signature_mgr_->LoadCertificatePath(
670  settings.keychain().certificate_path());
671  if (!rvb)
672  throw EPublish("cannot load certificate, thus cannot commit changes");
673  rvb = signature_mgr_->LoadPrivateKeyPath(
674  settings.keychain().private_key_path(), "");
675  if (!rvb)
676  throw EPublish("cannot load private key, thus cannot commit changes");
677  // The private master key might be on a key card instead
678  if (FileExists(settings.keychain().master_private_key_path())) {
679  rvb = signature_mgr_->LoadPrivateMasterKeyPath(
680  settings.keychain().master_private_key_path());
681  if (!rvb)
682  throw EPublish("cannot load private master key");
683  }
684  if (!signature_mgr_->KeysMatch())
685  throw EPublish("corrupted keychain");
686  }
687 
688  if (settings.is_managed())
689  managed_node_ = new ManagedNode(this);
690  session_ = new Session(settings_, llvl_);
691  if (in_transaction_.IsSet())
692  ConstructSpoolers();
693 }
694 
695 Publisher::~Publisher() {
696  delete sync_union_;
697  delete sync_mediator_;
698  delete sync_parameters_;
699  delete catalog_mgr_;
700  delete spooler_catalogs_;
701  delete spooler_files_;
702 }
703 
704 
705 void Publisher::ConstructSyncManagers() {
706  ConstructSpoolers();
707 
708  if (catalog_mgr_ == NULL) {
709  catalog_mgr_ = new catalog::WritableCatalogManager(
710  settings_.transaction().base_hash(),
711  settings_.url(),
712  settings_.transaction().spool_area().tmp_dir(),
713  spooler_catalogs_,
714  download_mgr_,
715  settings_.transaction().enforce_limits(),
716  settings_.transaction().limit_nested_catalog_kentries(),
717  settings_.transaction().limit_root_catalog_kentries(),
718  settings_.transaction().limit_file_size_mb(),
719  statistics_,
720  settings_.transaction().use_catalog_autobalance(),
721  settings_.transaction().autobalance_max_weight(),
722  settings_.transaction().autobalance_min_weight(),
723  "");
724  catalog_mgr_->Init();
725  }
726 
727  if (sync_parameters_ == NULL) {
728  SyncParameters *p = new SyncParameters();
729  p->spooler = spooler_files_;
730  p->repo_name = settings_.fqrn();
731  p->dir_union = settings_.transaction().spool_area().union_mnt();
732  p->dir_scratch = settings_.transaction().spool_area().scratch_dir();
733  p->dir_rdonly = settings_.transaction().spool_area().readonly_mnt();
734  p->dir_temp = settings_.transaction().spool_area().tmp_dir();
735  p->base_hash = settings_.transaction().base_hash();
736  p->stratum0 = settings_.url();
737  // p->manifest_path = SHOULD NOT BE NEEDED
738  // p->spooler_definition = SHOULD NOT BE NEEDED;
739  // p->union_fs_type = SHOULD NOT BE NEEDED
740  p->print_changeset = settings_.transaction().print_changeset();
741  p->dry_run = settings_.transaction().dry_run();
742  sync_parameters_ = p;
743  }
744 
745  if (sync_mediator_ == NULL) {
746  sync_mediator_ = new SyncMediator(catalog_mgr_, sync_parameters_,
747  *statistics_publish_);
748  }
749 
750  if (sync_union_ == NULL) {
751  switch (settings_.transaction().union_fs()) {
752  case kUnionFsAufs:
753  sync_union_ = new publish::SyncUnionAufs(
754  sync_mediator_,
755  settings_.transaction().spool_area().readonly_mnt(),
756  settings_.transaction().spool_area().union_mnt(),
757  settings_.transaction().spool_area().scratch_dir());
758  break;
759  case kUnionFsOverlay:
760  sync_union_ = new publish::SyncUnionOverlayfs(
761  sync_mediator_,
762  settings_.transaction().spool_area().readonly_mnt(),
763  settings_.transaction().spool_area().union_mnt(),
764  settings_.transaction().spool_area().scratch_dir());
765  break;
766  case kUnionFsTarball:
767  sync_union_ = new publish::SyncUnionTarball(
768  sync_mediator_,
769  settings_.transaction().spool_area().readonly_mnt(),
770  // TODO(jblomer): get from settings
771  "tar_file",
772  "base_directory",
773  -1u,
774  -1u,
775  "to_delete",
776  false /* create_catalog */);
777  break;
778  default:
779  throw EPublish("unknown union file system");
780  }
781  bool rvb = sync_union_->Initialize();
782  if (!rvb) {
783  delete sync_union_;
784  sync_union_ = NULL;
785  throw EPublish("cannot initialize union file system engine");
786  }
787  }
788 }
789 
790 void Publisher::ExitShell() {
791  std::string session_dir = Env::GetEnterSessionDir();
792  std::string session_pid_tmp = session_dir + "/session_pid";
793  std::string session_pid;
794  int fd_session_pid = open(session_pid_tmp.c_str(), O_RDONLY);
795  if (fd_session_pid < 0)
796  throw EPublish("Session pid cannot be retrieved");
797  SafeReadToString(fd_session_pid, &session_pid);
798 
799  pid_t pid_child = String2Uint64(session_pid);
800  kill(pid_child, SIGUSR1);
801 }
802 
803 void Publisher::Sync() {
804  ServerLockFileGuard g(is_publishing_);
805 
806  ConstructSyncManagers();
807 
808  sync_union_->Traverse();
809  bool rvb = sync_mediator_->Commit(manifest_);
810  if (!rvb)
811  throw EPublish("cannot write change set to storage");
812 
813  if (!settings_.transaction().dry_run()) {
814  spooler_files_->WaitForUpload();
815  spooler_catalogs_->WaitForUpload();
816  spooler_files_->FinalizeSession(false /* commit */);
817 
818  const std::string old_root_hash = settings_.transaction()
819  .base_hash()
820  .ToString(true /* with_suffix */);
821  const std::string new_root_hash = manifest_->catalog_hash().ToString(
822  true /* with_suffix */);
823  rvb = spooler_catalogs_->FinalizeSession(
824  true /* commit */, old_root_hash, new_root_hash,
825  /* TODO(jblomer) */ sync_parameters_->repo_tag);
826  if (!rvb)
827  throw EPublish("failed to commit transaction");
828 
829  // Reset to the new catalog root hash
830  settings_.GetTransaction()->SetBaseHash(manifest_->catalog_hash());
831  // TODO(jblomer): think about how to deal with the scratch area at
832  // this point
833  // WipeScratchArea();
834  }
835 
836  delete sync_union_;
837  delete sync_mediator_;
838  delete sync_parameters_;
839  delete catalog_mgr_;
840  sync_union_ = NULL;
841  sync_mediator_ = NULL;
842  sync_parameters_ = NULL;
843  catalog_mgr_ = NULL;
844 
845  if (!settings_.transaction().dry_run()) {
846  LogCvmfs(kLogCvmfs, kLogStdout, "New revision: %" PRIu64,
847  manifest_->revision());
848  reflog_->AddCatalog(manifest_->catalog_hash());
849  }
850 }
851 
852 void Publisher::Publish() {
853  if (!in_transaction_.IsSet())
854  throw EPublish("cannot publish outside transaction");
855 
856  PushReflog();
857  PushManifest();
858  in_transaction_.Clear();
859 }
860 
861 
862 void Publisher::MarkReplicatible(bool value) {
863  ConstructSpoolers();
864 
865  if (value) {
866  spooler_files_->Upload("/dev/null", "/.cvmfs_master_replica");
867  } else {
868  spooler_files_->RemoveAsync("/.cvmfs_master_replica");
869  }
870  spooler_files_->WaitForUpload();
871  if (spooler_files_->GetNumberOfErrors() > 0)
872  throw EPublish("cannot set replication mode");
873 }
874 
875 void Publisher::Ingest() { }
876 void Publisher::Migrate() { }
877 void Publisher::Resign() { }
878 void Publisher::Rollback() { }
879 void Publisher::UpdateMetaInfo() { }
880 
881 void Publisher::Transaction() {
882  TransactionRetry();
883  session()->SetKeepAlive(true);
884 }
885 
886 //------------------------------------------------------------------------------
887 
888 
889 Replica::Replica(const SettingsReplica &settings)
890  : Repository(SettingsRepository(settings)) { }
891 
892 
893 Replica::~Replica() { }
894 
895 } // namespace publish
publish::SyncMediator::Commit
bool Commit(manifest::Manifest *manifest)
Definition: sync_mediator.cc:295
upload::SpoolerResult::return_code
int return_code
the return value of the spooler operation
Definition: upload_spooler_result.h:38
manifest::Manifest::set_repository_name
void set_repository_name(const std::string &repository_name)
Definition: manifest.h:98
manifest::Reflog::TakeDatabaseFileOwnership
void TakeDatabaseFileOwnership()
Definition: reflog.cc:293
publish::settings_
const SettingsRepository settings_
Definition: repository.h:136
manifest::Reflog::database_file
std::string database_file() const
Definition: reflog.cc:321
publish::CreateRootObjects
void CreateRootObjects()
Definition: repository.cc:304
publish::reflog_
manifest::Reflog * reflog_
Definition: repository.h:146
sync_mediator.h
shash::Digest::IsNull
bool IsNull() const
Definition: hash.h:371
publish::download_mgr_
download::DownloadManager * download_mgr_
Definition: repository.h:140
publish::SettingsKeychain::HasGatewayKey
bool HasGatewayKey() const
Definition: settings.cc:264
upload_spooler_definition.h
SyncParameters::stratum0
std::string stratum0
Definition: swissknife_sync.h:74
manifest::Reflog::AddHistory
bool AddHistory(const shash::Any &history)
Definition: reflog.cc:134
publish::ConstructSyncManagers
void ConstructSyncManagers()
Definition: repository.cc:705
publish::OnUploadReflog
void OnUploadReflog(const upload::SpoolerResult &result)
Definition: repository.cc:575
publish::GetSimpleCatalogManager
catalog::SimpleCatalogManager * GetSimpleCatalogManager()
Definition: repository.cc:118
publish::managed_node_
UniquePtr< ManagedNode > managed_node_
Definition: repository.h:380
publish::session
Session * session() const
Definition: repository.h:319
GetFileName
NameString GetFileName(const PathString &path)
Definition: shortstring.cc:28
kPrivateDirMode
const int kPrivateDirMode
Definition: posix.h:36
UniquePtrBase::weak_ref
T * weak_ref() const
Definition: pointer.h:46
publish::Ingest
void Ingest()
Definition: repository.cc:875
publish::statistics_publish_
UniquePtr< perf::StatisticsTemplate > statistics_publish_
Definition: repository.h:364
publish::Create
static Publisher * Create(const SettingsPublisher &settings)
ingestion_source.h
cvmfs::MemSink::data
unsigned char * data()
Definition: sink_mem.h:115
publish::SettingsKeychain::keychain_dir
std::string keychain_dir() const
Definition: settings.h:322
signature::SignatureManager::GetCertificate
std::string GetCertificate() const
Definition: signature.cc:417
swissknife::CommandTag::kPreviousHeadTag
static const std::string kPreviousHeadTag
Definition: repository.cc:41
whitelist::Whitelist::LoadUrl
Failures LoadUrl(const std::string &base_url)
Definition: whitelist.cc:216
publish::SettingsKeychain::gw_key_path
std::string gw_key_path() const
Definition: settings.h:331
CreateTempFile
FILE * CreateTempFile(const std::string &path_prefix, const int mode, const char *open_flags, std::string *final_path)
Definition: posix.cc:1013
sync_union_aufs.h
JoinStrings
string JoinStrings(const vector< string > &strings, const string &joint)
Definition: string.cc:356
shash::Digest::ToString
std::string ToString(const bool with_suffix=false) const
Definition: hash.h:241
publish::OnProcessCertificate
void OnProcessCertificate(const upload::SpoolerResult &result)
Definition: repository.cc:545
publish::SyncUnion::Initialize
virtual bool Initialize()
Definition: sync_union.cc:24
manifest::Manifest::set_certificate
void set_certificate(const shash::Any &certificate)
Definition: manifest.h:94
publish::history
const history::History * history() const
publish::CreateDirectoryAsOwner
void CreateDirectoryAsOwner(const std::string &path, int mode)
Definition: repository.cc:587
publish::PushCertificate
void PushCertificate()
Definition: repository.cc:357
publish::SettingsTransaction::layout_revision
unsigned layout_revision() const
Definition: settings.h:186
download::DownloadManager::SetProxyChain
void SetProxyChain(const std::string &proxy_list, const std::string &fallback_proxy_list, const ProxySetModes set_mode)
Definition: download.cc:2791
publish::OnUploadWhitelist
void OnUploadWhitelist(const upload::SpoolerResult &result)
Definition: repository.cc:581
publish::CreateStorage
void CreateStorage()
Definition: repository.cc:350
publish::IsMasterReplica
bool IsMasterReplica()
Definition: repository.cc:233
publish::SettingsKeychain::private_key_path
std::string private_key_path() const
Definition: settings.h:329
publish::settings
const SettingsPublisher & settings() const
Definition: repository.h:316
publish::statistics_
perf::Statistics * statistics_
Definition: repository.h:138
whitelist::Whitelist::status
Status status() const
Definition: whitelist.h:103
CreateTempPath
std::string CreateTempPath(const std::string &path_prefix, const int mode)
Definition: posix.cc:1041
manifest::Manifest::set_meta_info
void set_meta_info(const shash::Any &meta_info)
Definition: manifest.h:116
signature::SignatureManager::GetPrivateKey
std::string GetPrivateKey()
Definition: signature.cc:434
manifest::Manifest::ExportString
std::string ExportString() const
Definition: manifest.cc:185
publish::~Replica
virtual ~Replica()
Definition: repository.cc:893
SyncParameters::repo_name
std::string repo_name
Definition: swissknife_sync.h:68
catalog_mgr_ro.h
assert
assert((mem||(size==0))&&"Out Of Memory")
manifest::Manifest::has_alt_catalog_path
bool has_alt_catalog_path() const
Definition: manifest.h:131
publish::spooler_catalogs_
upload::Spooler * spooler_catalogs_
Definition: repository.h:383
publish::gw_key_
gateway::GatewayKey gw_key_
Definition: repository.h:371
kLogNoLinebreak
Definition: logging_internal.h:59
SafeWriteToFile
bool SafeWriteToFile(const std::string &content, const std::string &path, int mode)
Definition: posix.cc:2136
publish::PushMetainfo
void PushMetainfo()
Definition: repository.cc:386
signature::SignatureManager::LoadPrivateKeyPath
bool LoadPrivateKeyPath(const std::string &file_pem, const std::string &password)
Definition: signature.cc:185
publish::ManagedNode
class __attribute__((visibility("default"))) Publisher ManagedNode(Publisher *p)
Definition: repository.h:173
publish::PushReflog
void PushReflog()
Definition: repository.cc:436
manifest::Manifest::catalog_size
uint64_t catalog_size() const
Definition: manifest.h:126
publish::ExitShell
void ExitShell()
Definition: repository.cc:790
manifest::Reflog::AddCatalog
bool AddCatalog(const shash::Any &catalog)
Definition: reflog.cc:128
manifest::Reflog::Create
static Reflog * Create(const std::string &database_path, const std::string &repo_name)
Definition: reflog.cc:32
publish::SettingsRepository::cert_bundle
std::string cert_bundle() const
Definition: settings.h:370
publish::catalog_mgr_
catalog::WritableCatalogManager * catalog_mgr_
Definition: repository.h:384
SyncParameters::dir_scratch
std::string dir_scratch
Definition: swissknife_sync.h:70
download::JobInfo::IsFileNotFound
bool IsFileNotFound()
Definition: jobinfo.cc:33
publish::SettingsKeychain::HasMasterKeys
bool HasMasterKeys() const
Definition: settings.cc:247
signature::SignatureManager::GenerateCertificate
void GenerateCertificate(const std::string &cn)
Definition: signature.cc:502
manifest::Manifest::revision
uint64_t revision() const
Definition: manifest.h:122
publish::Repository
Repository(const SettingsRepository &settings, const bool exists=true)
Definition: repository.cc:49
manifest::Reflog::Open
static Reflog * Open(const std::string &database_path)
Definition: reflog.cc:17
history::SqliteHistory::OpenWritable
static SqliteHistory * OpenWritable(const std::string &file_name)
Definition: history_sqlite.cc:20
publish::SettingsKeychain::master_public_key_path
std::string master_public_key_path() const
Definition: settings.h:326
FileExists
bool FileExists(const std::string &path)
Definition: posix.cc:803
kLogStdout
Definition: logging_internal.h:23
signature::SignatureManager::GetActivePubkeys
std::string GetActivePubkeys() const
Definition: signature.cc:393
SyncParameters::dir_temp
std::string dir_temp
Definition: swissknife_sync.h:72
kPrivateFileMode
const int kPrivateFileMode
Definition: posix.h:35
publish::OnProcessMetainfo
void OnProcessMetainfo(const upload::SpoolerResult &result)
Definition: repository.cc:561
download::Code2Ascii
const char * Code2Ascii(const Failures error)
Definition: network_errors.h:65
catalog::WritableCatalogManager::CreateRepository
static manifest::Manifest * CreateRepository(const std::string &dir_temp, const bool volatile_content, const std::string &voms_authz, upload::Spooler *spooler)
Definition: catalog_mgr_rw.cc:105
publish::SettingsKeychain::HasRepositoryKeys
bool HasRepositoryKeys() const
Definition: settings.cc:260
publish::SettingsRepository::proxy
std::string proxy() const
Definition: settings.h:368
publish::meta_info_
std::string meta_info_
Definition: repository.h:150
manifest_fetch.h
publish::PushHistory
void PushHistory()
Definition: repository.cc:367
publish::SettingsPublisher::keychain
const SettingsKeychain & keychain() const
Definition: settings.h:434
publish::sync_union_
publish::SyncUnion * sync_union_
Definition: repository.h:387
manifest::Manifest::publish_timestamp
uint64_t publish_timestamp() const
Definition: manifest.h:129
catalog_mgr_rw.h
manifest::Reflog::AddMetainfo
bool AddMetainfo(const shash::Any &metainfo)
Definition: reflog.cc:140
publish::Transaction
void Transaction()
kDefaultDirMode
const int kDefaultDirMode
Definition: posix.h:33
signature::SignatureManager::Sign
bool Sign(const unsigned char *buffer, const unsigned buffer_size, unsigned char **signature, unsigned *signature_size)
Definition: signature.cc:780
publish::OnUploadManifest
void OnUploadManifest(const upload::SpoolerResult &result)
Definition: repository.cc:569
SyncParameters::dir_rdonly
std::string dir_rdonly
Definition: swissknife_sync.h:71
publish::signature_mgr_
signature::SignatureManager * signature_mgr_
Definition: repository.h:139
sync_union_overlayfs.h
publish::Session::SetKeepAlive
void SetKeepAlive(bool value)
manifest::Fetch
Failures Fetch(const std::string &base_url, const std::string &repository_name, const uint64_t minimum_timestamp, const shash::Any *base_catalog, signature::SignatureManager *signature_manager, download::DownloadManager *download_manager, ManifestEnsemble *ensemble)
Definition: manifest_fetch.cc:198
publish::UpdateMetaInfo
void UpdateMetaInfo()
Definition: repository.cc:879
publish::SettingsKeychain::master_private_key_path
std::string master_private_key_path() const
Definition: settings.h:323
publish::DownloadRootObjects
void DownloadRootObjects(const std::string &url, const std::string &fqrn, const std::string &tmp_dir)
Definition: repository.cc:134
SyncParameters::base_hash
shash::Any base_hash
Definition: swissknife_sync.h:73
swissknife::CommandTag::kHeadTag
static const std::string kHeadTag
Definition: repository.cc:40
manifest::Manifest::certificate
shash::Any certificate() const
Definition: manifest.h:127
publish::~Publisher
virtual ~Publisher()
SyncParameters::spooler
upload::Spooler * spooler
Definition: swissknife_sync.h:67
MkdirDeep
bool MkdirDeep(const std::string &path, const mode_t mode, bool verify_writable)
Definition: posix.cc:855
signature::SignatureManager::LoadCertificatePath
bool LoadCertificatePath(const std::string &file_pem)
Definition: signature.cc:246
publish::SettingsPublisher::transaction
const SettingsTransaction & transaction() const
Definition: settings.h:433
gateway::GatewayKey::IsValid
bool IsValid() const
Definition: gateway_util.h:18
whitelist::Code2Ascii
const char * Code2Ascii(const Failures error)
Definition: whitelist.h:49
publish::is_publishing_
ServerLockFile is_publishing_
Definition: repository.h:370
SyncParameters::dir_union
std::string dir_union
Definition: swissknife_sync.h:69
publish::Sync
void Sync()
Definition: repository.cc:803
publish::InitSpoolArea
void InitSpoolArea()
Definition: repository.cc:596
manifest::Reflog::HashDatabase
static void HashDatabase(const std::string &database_path, shash::Any *hash_reflog)
Definition: reflog.cc:308
publish::PushManifest
void PushManifest()
Definition: repository.cc:395
manifest::Manifest::catalog_hash
shash::Any catalog_hash() const
Definition: manifest.h:125
StringifyInt
string StringifyInt(const int64_t value)
Definition: string.cc:77
publish::SettingsKeychain::certificate_path
std::string certificate_path() const
Definition: settings.h:330
publish::simple_catalog_mgr_
catalog::SimpleCatalogManager * simple_catalog_mgr_
Definition: repository.h:144
publish::history_
history::SqliteHistory * history_
Definition: repository.h:148
publish::Resign
void Resign()
Definition: repository.cc:877
publish::SettingsPublisher::is_managed
bool is_managed() const
Definition: settings.h:429
publish::Publish
void Publish()
kLogNormal
Definition: logging_internal.h:66
publish::SettingsPublisher::storage
const SettingsStorage & storage() const
Definition: settings.h:432
manifest::Reflog::DropDatabaseFileOwnership
void DropDatabaseFileOwnership()
Definition: reflog.cc:299
history::SqliteHistory::SetPreviousRevision
bool SetPreviousRevision(const shash::Any &history_hash)
Definition: history_sqlite.cc:138
signature::SignatureManager::LoadPrivateMasterKeyPath
bool LoadPrivateMasterKeyPath(const std::string &file_pem)
Definition: signature.cc:155
DirectoryExists
bool DirectoryExists(const std::string &path)
Definition: posix.cc:824
publish::session_
UniquePtr< Session > session_
Definition: repository.h:379
manifest::Manifest::set_history
void set_history(const shash::Any &history_db)
Definition: manifest.h:97
manifest::Manifest::set_garbage_collectability
void set_garbage_collectability(const bool garbage_collectable)
Definition: manifest.h:110
manifest::Reflog::AddCertificate
bool AddCertificate(const shash::Any &certificate)
Definition: reflog.cc:121
history::SqliteHistory::filename
std::string filename() const
Definition: history_sqlite.h:148
SafeReadToString
bool SafeReadToString(int fd, std::string *final_result)
Definition: posix.cc:2116
publish::manifest_
manifest::Manifest * manifest_
Definition: repository.h:147
publish::OnProcessHistory
void OnProcessHistory(const upload::SpoolerResult &result)
Definition: repository.cc:553
manifest::Manifest::set_ttl
void set_ttl(const uint32_t ttl)
Definition: manifest.h:92
shash::HashMem
void HashMem(const unsigned char *buffer, const unsigned buffer_size, Any *any_digest)
Definition: hash.cc:257
publish::spooler_files_
upload::Spooler * spooler_files_
Definition: repository.h:382
publish::MarkReplicatible
void MarkReplicatible(bool value)
Definition: repository.cc:862
cvmfs::MemSink::pos
size_t pos()
Definition: sink_mem.h:114
publish::Replica
class __attribute__((visibility("default"))) Replica Replica(const SettingsReplica &settings)
Definition: repository.cc:889
publish::SettingsRepository::keychain
const SettingsKeychain & keychain() const
Definition: settings.h:372
whitelist::Whitelist::ExportString
std::string ExportString() const
Definition: whitelist.cc:77
publish::SyncUnion::Traverse
virtual void Traverse()=0
String2Uint64
uint64_t String2Uint64(const string &value)
Definition: string.cc:240
repository_util.h
signature::SignatureManager::GetPrivateMasterKey
std::string GetPrivateMasterKey()
Definition: signature.cc:451
kLogCvmfs
Definition: logging_internal.h:80
compat::inode_tracker::Migrate
void Migrate(InodeTracker *old_tracker, glue::InodeTracker *new_tracker)
Definition: compat.cc:79
download::DownloadManager::Fetch
Failures Fetch(JobInfo *info)
Definition: download.cc:1982
sync_union_tarball.h
kLogNone
Definition: logging_internal.h:69
manifest::Manifest::history
shash::Any history() const
Definition: manifest.h:128
publish::in_transaction_
ServerFlagFile in_transaction_
Definition: repository.h:369
whitelist::Whitelist::CreateString
static std::string CreateString(const std::string &fqrn, int validity_days, shash::Algorithms hash_algorithm, signature::SignatureManager *signature_manager)
Definition: whitelist.cc:46
signature::SignatureManager::LoadPublicRsaKeys
bool LoadPublicRsaKeys(const std::string &path_list)
Definition: signature.cc:306
publish::whitelist_
whitelist::Whitelist * whitelist_
Definition: repository.h:145
gateway::ReadGatewayKey
GatewayKey ReadGatewayKey(const std::string &key_file_name)
Definition: gateway_util.cc:28
history::SqliteHistory::Create
static SqliteHistory * Create(const std::string &file_name, const std::string &fqrn)
Definition: history_sqlite.cc:43
publish::SettingsKeychain::HasDanglingRepositoryKeys
bool HasDanglingRepositoryKeys() const
Definition: settings.cc:253
whitelist::Whitelist::LoadMem
Failures LoadMem(const std::string &whitelist)
Definition: whitelist.cc:196
SyncParameters::repo_tag
RepositoryTag repo_tag
Definition: swissknife_sync.h:120
publish::sync_mediator_
SyncMediator * sync_mediator_
Definition: repository.h:386
publish::SettingsRepository::fqrn
std::string fqrn() const
Definition: settings.h:366
gateway_util.h
publish::ExportKeychain
void ExportKeychain()
Definition: repository.cc:504
manifest::Manifest::set_has_alt_catalog_path
void set_has_alt_catalog_path(const bool &has_alt_path)
Definition: manifest.h:113
publish::llvl_
int llvl_
Definition: repository.h:368
publish::SettingsStorage::type
upload::SpoolerDefinition::DriverType type() const
Definition: settings.h:292
publish::Publisher
Publisher(const SettingsPublisher &settings, const bool exists=true)
Definition: repository.cc:619
shash::Digest::MakePath
std::string MakePath() const
Definition: hash.h:306
MakeCanonicalPath
std::string MakeCanonicalPath(const std::string &path)
Definition: posix.cc:98
publish::SettingsTransaction::in_enter_session
bool in_enter_session() const
Definition: settings.h:187
publish::~Repository
virtual ~Repository()
Definition: repository.cc:102
manifest::Manifest::set_reflog_hash
void set_reflog_hash(const shash::Any &checksum)
Definition: manifest.h:120
publish::SettingsRepository::url
std::string url() const
Definition: settings.h:367
publish::ConstructSpoolers
void ConstructSpoolers()
Definition: repository.cc:252
publish::Rollback
void Rollback()
history_sqlite.h
publish::CreateKeychain
void CreateKeychain()
Definition: repository.cc:280
publish::PushWhitelist
void PushWhitelist()
Definition: repository.cc:458
FindFilesBySuffix
std::vector< std::string > FindFilesBySuffix(const std::string &dir, const std::string &suffix)
Definition: posix.cc:1128
manifest::Manifest::meta_info
shash::Any meta_info() const
Definition: manifest.h:132
publish::SettingsRepository::tmp_dir
std::string tmp_dir() const
Definition: settings.h:369
publish::kRequiredLayoutRevision
static const unsigned kRequiredLayoutRevision
Definition: repository.h:277
publish::sync_parameters_
SyncParameters * sync_parameters_
Definition: repository.h:385
publish::GetFqrnFromUrl
class static __attribute__((visibility("default"))) Repository std::string GetFqrnFromUrl(const std::string &url)
Definition: repository.cc:228
publish::SettingsKeychain::HasDanglingMasterKeys
bool HasDanglingMasterKeys() const
Definition: settings.cc:239
LogCvmfs
CVMFS_EXPORT void LogCvmfs(const LogSource source, const int mask, const char *format,...)
Definition: logging.cc:545