src/core/lib/security/credentials/credentials.cc - third_party/grpc - Git at Google

 /*
  *
  * Copyright 2015 gRPC authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  *
  */

 #include "src/core/lib/security/credentials/credentials.h"

 #include <stdio.h>
 #include <string.h>

 #include "src/core/lib/channel/channel_args.h"
 #include "src/core/lib/http/httpcli.h"
 #include "src/core/lib/http/parser.h"
 #include "src/core/lib/iomgr/executor.h"
 #include "src/core/lib/json/json.h"
 #include "src/core/lib/support/string.h"
 #include "src/core/lib/surface/api_trace.h"

 #include <grpc/support/alloc.h>
 #include <grpc/support/log.h>
 #include <grpc/support/string_util.h>
 #include <grpc/support/sync.h>
 #include <grpc/support/time.h>

 /* -- Common. -- */

 grpc_credentials_metadata_request* grpc_credentials_metadata_request_create(
     grpc_call_credentials* creds) {
   grpc_credentials_metadata_request* r =
       (grpc_credentials_metadata_request*)gpr_zalloc(
           sizeof(grpc_credentials_metadata_request));
   r->creds = grpc_call_credentials_ref(creds);
   return r;
 }

 void grpc_credentials_metadata_request_destroy(
     grpc_credentials_metadata_request* r) {
   grpc_call_credentials_unref(r->creds);
   grpc_http_response_destroy(&r->response);
   gpr_free(r);
 }

 grpc_channel_credentials* grpc_channel_credentials_ref(
     grpc_channel_credentials* creds) {
   if (creds == nullptr) return nullptr;
   gpr_ref(&creds->refcount);
   return creds;
 }

 void grpc_channel_credentials_unref(grpc_channel_credentials* creds) {
   if (creds == nullptr) return;
   if (gpr_unref(&creds->refcount)) {
     if (creds->vtable->destruct != nullptr) {
       creds->vtable->destruct(creds);
     }
     gpr_free(creds);
   }
 }

 void grpc_channel_credentials_release(grpc_channel_credentials* creds) {
   GRPC_API_TRACE("grpc_channel_credentials_release(creds=%p)", 1, (creds));
   grpc_core::ExecCtx exec_ctx;
   grpc_channel_credentials_unref(creds);
 }

 grpc_call_credentials* grpc_call_credentials_ref(grpc_call_credentials* creds) {
   if (creds == nullptr) return nullptr;
   gpr_ref(&creds->refcount);
   return creds;
 }

 void grpc_call_credentials_unref(grpc_call_credentials* creds) {
   if (creds == nullptr) return;
   if (gpr_unref(&creds->refcount)) {
     if (creds->vtable->destruct != nullptr) {
       creds->vtable->destruct(creds);
     }
     gpr_free(creds);
   }
 }

 void grpc_call_credentials_release(grpc_call_credentials* creds) {
   GRPC_API_TRACE("grpc_call_credentials_release(creds=%p)", 1, (creds));
   grpc_core::ExecCtx exec_ctx;
   grpc_call_credentials_unref(creds);
 }

 bool grpc_call_credentials_get_request_metadata(
     grpc_call_credentials* creds, grpc_polling_entity* pollent,
     grpc_auth_metadata_context context, grpc_credentials_mdelem_array* md_array,
     grpc_closure* on_request_metadata, grpc_error** error) {
   if (creds == nullptr || creds->vtable->get_request_metadata == nullptr) {
     return true;
   }
   return creds->vtable->get_request_metadata(creds, pollent, context, md_array,
                                              on_request_metadata, error);
 }

 void grpc_call_credentials_cancel_get_request_metadata(
     grpc_call_credentials* creds, grpc_credentials_mdelem_array* md_array,
     grpc_error* error) {
   if (creds == nullptr ||
       creds->vtable->cancel_get_request_metadata == nullptr) {
     return;
   }
   creds->vtable->cancel_get_request_metadata(creds, md_array, error);
 }

 grpc_security_status grpc_channel_credentials_create_security_connector(
     grpc_channel_credentials* channel_creds, const char* target,
     const grpc_channel_args* args, grpc_channel_security_connector** sc,
     grpc_channel_args** new_args) {
   *new_args = nullptr;
   if (channel_creds == nullptr) {
     return GRPC_SECURITY_ERROR;
   }
   GPR_ASSERT(channel_creds->vtable->create_security_connector != nullptr);
   return channel_creds->vtable->create_security_connector(
       channel_creds, nullptr, target, args, sc, new_args);
 }

 grpc_channel_credentials*
 grpc_channel_credentials_duplicate_without_call_credentials(
     grpc_channel_credentials* channel_creds) {
   if (channel_creds != nullptr && channel_creds->vtable != nullptr &&
       channel_creds->vtable->duplicate_without_call_credentials != nullptr) {
     return channel_creds->vtable->duplicate_without_call_credentials(
         channel_creds);
   } else {
     return grpc_channel_credentials_ref(channel_creds);
   }
 }

 static void credentials_pointer_arg_destroy(void* p) {
   grpc_channel_credentials_unref((grpc_channel_credentials*)p);
 }

 static void* credentials_pointer_arg_copy(void* p) {
   return grpc_channel_credentials_ref((grpc_channel_credentials*)p);
 }

 static int credentials_pointer_cmp(void* a, void* b) { return GPR_ICMP(a, b); }

 static const grpc_arg_pointer_vtable credentials_pointer_vtable = {
     credentials_pointer_arg_copy, credentials_pointer_arg_destroy,
     credentials_pointer_cmp};

 grpc_arg grpc_channel_credentials_to_arg(
     grpc_channel_credentials* credentials) {
   return grpc_channel_arg_pointer_create((char*)GRPC_ARG_CHANNEL_CREDENTIALS,
                                          credentials,
                                          &credentials_pointer_vtable);
 }

 grpc_channel_credentials* grpc_channel_credentials_from_arg(
     const grpc_arg* arg) {
   if (strcmp(arg->key, GRPC_ARG_CHANNEL_CREDENTIALS)) return nullptr;
   if (arg->type != GRPC_ARG_POINTER) {
     gpr_log(GPR_ERROR, "Invalid type %d for arg %s", arg->type,
             GRPC_ARG_CHANNEL_CREDENTIALS);
     return nullptr;
   }
   return (grpc_channel_credentials*)arg->value.pointer.p;
 }

 grpc_channel_credentials* grpc_channel_credentials_find_in_args(
     const grpc_channel_args* args) {
   size_t i;
   if (args == nullptr) return nullptr;
   for (i = 0; i < args->num_args; i++) {
     grpc_channel_credentials* credentials =
         grpc_channel_credentials_from_arg(&args->args[i]);
     if (credentials != nullptr) return credentials;
   }
   return nullptr;
 }

 grpc_server_credentials* grpc_server_credentials_ref(
     grpc_server_credentials* creds) {
   if (creds == nullptr) return nullptr;
   gpr_ref(&creds->refcount);
   return creds;
 }

 void grpc_server_credentials_unref(grpc_server_credentials* creds) {
   if (creds == nullptr) return;
   if (gpr_unref(&creds->refcount)) {
     if (creds->vtable->destruct != nullptr) {
       creds->vtable->destruct(creds);
     }
     if (creds->processor.destroy != nullptr &&
         creds->processor.state != nullptr) {
       creds->processor.destroy(creds->processor.state);
     }
     gpr_free(creds);
   }
 }

 void grpc_server_credentials_release(grpc_server_credentials* creds) {
   GRPC_API_TRACE("grpc_server_credentials_release(creds=%p)", 1, (creds));
   grpc_core::ExecCtx exec_ctx;
   grpc_server_credentials_unref(creds);
 }

 grpc_security_status grpc_server_credentials_create_security_connector(
     grpc_server_credentials* creds, grpc_server_security_connector** sc) {
   if (creds == nullptr || creds->vtable->create_security_connector == nullptr) {
     gpr_log(GPR_ERROR, "Server credentials cannot create security context.");
     return GRPC_SECURITY_ERROR;
   }
   return creds->vtable->create_security_connector(creds, sc);
 }

 void grpc_server_credentials_set_auth_metadata_processor(
     grpc_server_credentials* creds, grpc_auth_metadata_processor processor) {
   GRPC_API_TRACE(
       "grpc_server_credentials_set_auth_metadata_processor("
       "creds=%p, "
       "processor=grpc_auth_metadata_processor { process: %p, state: %p })",
       3, (creds, (void*)(intptr_t)processor.process, processor.state));
   if (creds == nullptr) return;
   if (creds->processor.destroy != nullptr &&
       creds->processor.state != nullptr) {
     creds->processor.destroy(creds->processor.state);
   }
   creds->processor = processor;
 }

 static void server_credentials_pointer_arg_destroy(void* p) {
   grpc_server_credentials_unref((grpc_server_credentials*)p);
 }

 static void* server_credentials_pointer_arg_copy(void* p) {
   return grpc_server_credentials_ref((grpc_server_credentials*)p);
 }

 static int server_credentials_pointer_cmp(void* a, void* b) {
   return GPR_ICMP(a, b);
 }

 static const grpc_arg_pointer_vtable cred_ptr_vtable = {
     server_credentials_pointer_arg_copy, server_credentials_pointer_arg_destroy,
     server_credentials_pointer_cmp};

 grpc_arg grpc_server_credentials_to_arg(grpc_server_credentials* p) {
   return grpc_channel_arg_pointer_create((char*)GRPC_SERVER_CREDENTIALS_ARG, p,
                                          &cred_ptr_vtable);
 }

 grpc_server_credentials* grpc_server_credentials_from_arg(const grpc_arg* arg) {
   if (strcmp(arg->key, GRPC_SERVER_CREDENTIALS_ARG) != 0) return nullptr;
   if (arg->type != GRPC_ARG_POINTER) {
     gpr_log(GPR_ERROR, "Invalid type %d for arg %s", arg->type,
             GRPC_SERVER_CREDENTIALS_ARG);
     return nullptr;
   }
   return (grpc_server_credentials*)arg->value.pointer.p;
 }

 grpc_server_credentials* grpc_find_server_credentials_in_args(
     const grpc_channel_args* args) {
   size_t i;
   if (args == nullptr) return nullptr;
   for (i = 0; i < args->num_args; i++) {
     grpc_server_credentials* p =
         grpc_server_credentials_from_arg(&args->args[i]);
     if (p != nullptr) return p;
   }
   return nullptr;
 }
	/*
	*
	* Copyright 2015 gRPC authors.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*
	*/

	#include "src/core/lib/security/credentials/credentials.h"

	#include <stdio.h>
	#include <string.h>

	#include "src/core/lib/channel/channel_args.h"
	#include "src/core/lib/http/httpcli.h"
	#include "src/core/lib/http/parser.h"
	#include "src/core/lib/iomgr/executor.h"
	#include "src/core/lib/json/json.h"
	#include "src/core/lib/support/string.h"
	#include "src/core/lib/surface/api_trace.h"

	#include <grpc/support/alloc.h>
	#include <grpc/support/log.h>
	#include <grpc/support/string_util.h>
	#include <grpc/support/sync.h>
	#include <grpc/support/time.h>

	/* -- Common. -- */

	grpc_credentials_metadata_request* grpc_credentials_metadata_request_create(
	grpc_call_credentials* creds) {
	grpc_credentials_metadata_request* r =
	(grpc_credentials_metadata_request*)gpr_zalloc(
	sizeof(grpc_credentials_metadata_request));
	r->creds = grpc_call_credentials_ref(creds);
	return r;
	}

	void grpc_credentials_metadata_request_destroy(
	grpc_credentials_metadata_request* r) {
	grpc_call_credentials_unref(r->creds);
	grpc_http_response_destroy(&r->response);
	gpr_free(r);
	}

	grpc_channel_credentials* grpc_channel_credentials_ref(
	grpc_channel_credentials* creds) {
	if (creds == nullptr) return nullptr;
	gpr_ref(&creds->refcount);
	return creds;
	}

	void grpc_channel_credentials_unref(grpc_channel_credentials* creds) {
	if (creds == nullptr) return;
	if (gpr_unref(&creds->refcount)) {
	if (creds->vtable->destruct != nullptr) {
	creds->vtable->destruct(creds);
	}
	gpr_free(creds);
	}
	}

	void grpc_channel_credentials_release(grpc_channel_credentials* creds) {
	GRPC_API_TRACE("grpc_channel_credentials_release(creds=%p)", 1, (creds));
	grpc_core::ExecCtx exec_ctx;
	grpc_channel_credentials_unref(creds);
	}

	grpc_call_credentials* grpc_call_credentials_ref(grpc_call_credentials* creds) {
	if (creds == nullptr) return nullptr;
	gpr_ref(&creds->refcount);
	return creds;
	}

	void grpc_call_credentials_unref(grpc_call_credentials* creds) {
	if (creds == nullptr) return;
	if (gpr_unref(&creds->refcount)) {
	if (creds->vtable->destruct != nullptr) {
	creds->vtable->destruct(creds);
	}
	gpr_free(creds);
	}
	}

	void grpc_call_credentials_release(grpc_call_credentials* creds) {
	GRPC_API_TRACE("grpc_call_credentials_release(creds=%p)", 1, (creds));
	grpc_core::ExecCtx exec_ctx;
	grpc_call_credentials_unref(creds);
	}

	bool grpc_call_credentials_get_request_metadata(
	grpc_call_credentials* creds, grpc_polling_entity* pollent,
	grpc_auth_metadata_context context, grpc_credentials_mdelem_array* md_array,
	grpc_closure* on_request_metadata, grpc_error** error) {
	if (creds == nullptr \|\| creds->vtable->get_request_metadata == nullptr) {
	return true;
	}
	return creds->vtable->get_request_metadata(creds, pollent, context, md_array,
	on_request_metadata, error);
	}

	void grpc_call_credentials_cancel_get_request_metadata(
	grpc_call_credentials* creds, grpc_credentials_mdelem_array* md_array,
	grpc_error* error) {
	if (creds == nullptr \|\|
	creds->vtable->cancel_get_request_metadata == nullptr) {
	return;
	}
	creds->vtable->cancel_get_request_metadata(creds, md_array, error);
	}

	grpc_security_status grpc_channel_credentials_create_security_connector(
	grpc_channel_credentials* channel_creds, const char* target,
	const grpc_channel_args* args, grpc_channel_security_connector** sc,
	grpc_channel_args** new_args) {
	*new_args = nullptr;
	if (channel_creds == nullptr) {
	return GRPC_SECURITY_ERROR;
	}
	GPR_ASSERT(channel_creds->vtable->create_security_connector != nullptr);
	return channel_creds->vtable->create_security_connector(
	channel_creds, nullptr, target, args, sc, new_args);
	}

	grpc_channel_credentials*
	grpc_channel_credentials_duplicate_without_call_credentials(
	grpc_channel_credentials* channel_creds) {
	if (channel_creds != nullptr && channel_creds->vtable != nullptr &&
	channel_creds->vtable->duplicate_without_call_credentials != nullptr) {
	return channel_creds->vtable->duplicate_without_call_credentials(
	channel_creds);
	} else {
	return grpc_channel_credentials_ref(channel_creds);
	}
	}

	static void credentials_pointer_arg_destroy(void* p) {
	grpc_channel_credentials_unref((grpc_channel_credentials*)p);
	}

	static void* credentials_pointer_arg_copy(void* p) {
	return grpc_channel_credentials_ref((grpc_channel_credentials*)p);
	}

	static int credentials_pointer_cmp(void* a, void* b) { return GPR_ICMP(a, b); }

	static const grpc_arg_pointer_vtable credentials_pointer_vtable = {
	credentials_pointer_arg_copy, credentials_pointer_arg_destroy,
	credentials_pointer_cmp};

	grpc_arg grpc_channel_credentials_to_arg(
	grpc_channel_credentials* credentials) {
	return grpc_channel_arg_pointer_create((char*)GRPC_ARG_CHANNEL_CREDENTIALS,
	credentials,
	&credentials_pointer_vtable);
	}

	grpc_channel_credentials* grpc_channel_credentials_from_arg(
	const grpc_arg* arg) {
	if (strcmp(arg->key, GRPC_ARG_CHANNEL_CREDENTIALS)) return nullptr;
	if (arg->type != GRPC_ARG_POINTER) {
	gpr_log(GPR_ERROR, "Invalid type %d for arg %s", arg->type,
	GRPC_ARG_CHANNEL_CREDENTIALS);
	return nullptr;
	}
	return (grpc_channel_credentials*)arg->value.pointer.p;
	}

	grpc_channel_credentials* grpc_channel_credentials_find_in_args(
	const grpc_channel_args* args) {
	size_t i;
	if (args == nullptr) return nullptr;
	for (i = 0; i < args->num_args; i++) {
	grpc_channel_credentials* credentials =
	grpc_channel_credentials_from_arg(&args->args[i]);
	if (credentials != nullptr) return credentials;
	}
	return nullptr;
	}

	grpc_server_credentials* grpc_server_credentials_ref(
	grpc_server_credentials* creds) {
	if (creds == nullptr) return nullptr;
	gpr_ref(&creds->refcount);
	return creds;
	}

	void grpc_server_credentials_unref(grpc_server_credentials* creds) {
	if (creds == nullptr) return;
	if (gpr_unref(&creds->refcount)) {
	if (creds->vtable->destruct != nullptr) {
	creds->vtable->destruct(creds);
	}
	if (creds->processor.destroy != nullptr &&
	creds->processor.state != nullptr) {
	creds->processor.destroy(creds->processor.state);
	}
	gpr_free(creds);
	}
	}

	void grpc_server_credentials_release(grpc_server_credentials* creds) {
	GRPC_API_TRACE("grpc_server_credentials_release(creds=%p)", 1, (creds));
	grpc_core::ExecCtx exec_ctx;
	grpc_server_credentials_unref(creds);
	}

	grpc_security_status grpc_server_credentials_create_security_connector(
	grpc_server_credentials* creds, grpc_server_security_connector** sc) {
	if (creds == nullptr \|\| creds->vtable->create_security_connector == nullptr) {
	gpr_log(GPR_ERROR, "Server credentials cannot create security context.");
	return GRPC_SECURITY_ERROR;
	}
	return creds->vtable->create_security_connector(creds, sc);
	}

	void grpc_server_credentials_set_auth_metadata_processor(
	grpc_server_credentials* creds, grpc_auth_metadata_processor processor) {
	GRPC_API_TRACE(
	"grpc_server_credentials_set_auth_metadata_processor("
	"creds=%p, "
	"processor=grpc_auth_metadata_processor { process: %p, state: %p })",
	3, (creds, (void*)(intptr_t)processor.process, processor.state));
	if (creds == nullptr) return;
	if (creds->processor.destroy != nullptr &&
	creds->processor.state != nullptr) {
	creds->processor.destroy(creds->processor.state);
	}
	creds->processor = processor;
	}

	static void server_credentials_pointer_arg_destroy(void* p) {
	grpc_server_credentials_unref((grpc_server_credentials*)p);
	}

	static void* server_credentials_pointer_arg_copy(void* p) {
	return grpc_server_credentials_ref((grpc_server_credentials*)p);
	}

	static int server_credentials_pointer_cmp(void* a, void* b) {
	return GPR_ICMP(a, b);
	}

	static const grpc_arg_pointer_vtable cred_ptr_vtable = {
	server_credentials_pointer_arg_copy, server_credentials_pointer_arg_destroy,
	server_credentials_pointer_cmp};

	grpc_arg grpc_server_credentials_to_arg(grpc_server_credentials* p) {
	return grpc_channel_arg_pointer_create((char*)GRPC_SERVER_CREDENTIALS_ARG, p,
	&cred_ptr_vtable);
	}

	grpc_server_credentials* grpc_server_credentials_from_arg(const grpc_arg* arg) {
	if (strcmp(arg->key, GRPC_SERVER_CREDENTIALS_ARG) != 0) return nullptr;
	if (arg->type != GRPC_ARG_POINTER) {
	gpr_log(GPR_ERROR, "Invalid type %d for arg %s", arg->type,
	GRPC_SERVER_CREDENTIALS_ARG);
	return nullptr;
	}
	return (grpc_server_credentials*)arg->value.pointer.p;
	}

	grpc_server_credentials* grpc_find_server_credentials_in_args(
	const grpc_channel_args* args) {
	size_t i;
	if (args == nullptr) return nullptr;
	for (i = 0; i < args->num_args; i++) {
	grpc_server_credentials* p =
	grpc_server_credentials_from_arg(&args->args[i]);
	if (p != nullptr) return p;
	}
	return nullptr;
	}