mirror of
https://github.com/mainflux/mainflux.git
synced 2025-05-04 22:17:59 +08:00
55e09c1921
* Move Things and Users to Clients Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Update Add and Delete Policies (#1792) * Remove Policy Action Ranks Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Rebase Issues Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix CI Test Errors Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Adding Check on Subject For Clients Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Remove Check Client Exists Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Check When Sharing Clients Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Only Add User to Group When Sharing Things Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Remove clientType Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Minor Fix on ShareClient and Fix Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Policies Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Clean Up Things Authorization Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Tests on RetrieveAll Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Test ShareThing Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Merge Conflicts Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Remove Adding Policies. Only Use Ownership Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Check If Subject is same as Object Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Move Back To Union As Sometimes Policy is Empty and Fails to Evaluate on Ownership Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Entity Type For Failing Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix BUG in policy evaluation Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Comments Regarding checkAdmin Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Tests On Rebase Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Combine Authorize For Things and Users Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Tests On Rebase Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Error on Things SVC `unsupported protocol scheme` Signed-off-by: rodneyosodo <blackd0t@protonmail.com> --------- Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * Fix Bug on Things Authorization Cache (#1810) Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * Use Password instead of username in MQTT handler Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * Simplify MQTT authorization Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * Fix MQTT tests Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Add More Functions to SDK (#1811) * Add More Functions to SDK Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Examples to GoDoc Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Update Unassign Interface Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Pass Subject as ID and Not Token on List Channels By Thing Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Bootstrap Errors For Element Check Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add empty line Before Return Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Reorder URLS in things mux Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Listing Things Policies Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Share Thing Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Examples to CLI Docs Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Update Identity To Update Another User Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Identify an Update Policies on Things Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Update Things Policies Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix GoDocs on Disconnect Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Change Authorize To Use AccessRequest Signed-off-by: rodneyosodo <blackd0t@protonmail.com> --------- Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * For Evaluate Policy Use AccessRequest (#1814) Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Add SDK Tests (#1812) * Add Things Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Channel Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Certs Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Consumer Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Enrich Group Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Tests For Health Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Tests For Tokens Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Rename SDK for Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Policies Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Linter Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Fix Tests Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Make Variable Defination Inline Signed-off-by: rodneyosodo <blackd0t@protonmail.com> --------- Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Make Cache Key Duration Configurable (#1815) * Make Cache Key Duration Configurable Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Rename ENV Var Signed-off-by: rodneyosodo <blackd0t@protonmail.com> --------- Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Update GoDocs (#1816) * Add GoDocs Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add Missing GoDoc Files Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Enable godot Signed-off-by: rodneyosodo <blackd0t@protonmail.com> * Add License Information Signed-off-by: rodneyosodo <blackd0t@protonmail.com> --------- Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> * NOISSUE - Add Call Home Client to Mainflux services (#1751) * Move Things and Users to Clients Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: SammyOina <sammyoina@gmail.com> * collect and send data package Signed-off-by: SammyOina <sammyoina@gmail.com> * create telemetry migrations Signed-off-by: SammyOina <sammyoina@gmail.com> * add telemetry endpoints Signed-off-by: SammyOina <sammyoina@gmail.com> * add transport Signed-off-by: SammyOina <sammyoina@gmail.com> * create service Signed-off-by: SammyOina <sammyoina@gmail.com> * remove homing server Signed-off-by: SammyOina <sammyoina@gmail.com> * add call home to adapters Signed-off-by: SammyOina <sammyoina@gmail.com> * add last seen Signed-off-by: SammyOina <sammyoina@gmail.com> * rename logger Signed-off-by: SammyOina <sammyoina@gmail.com> * remove homing client Signed-off-by: SammyOina <sammyoina@gmail.com> * use unmerged repo Signed-off-by: SammyOina <sammyoina@gmail.com> * use renamed module Signed-off-by: SammyOina <sammyoina@gmail.com> * update call home version Signed-off-by: SammyOina <sammyoina@gmail.com> * edit documentation Signed-off-by: SammyOina <sammyoina@gmail.com> * align table Signed-off-by: SammyOina <sammyoina@gmail.com> * use alias for call home client Signed-off-by: SammyOina <sammyoina@gmail.com> * update callhome Signed-off-by: SammyOina <sammyoina@gmail.com> * update call home pkg Signed-off-by: SammyOina <sammyoina@gmail.com> * update call home Signed-off-by: SammyOina <sammyoina@gmail.com> * fix modules Signed-off-by: SammyOina <sammyoina@gmail.com> * use mf build version Signed-off-by: SammyOina <sammyoina@gmail.com> * use mf build version Signed-off-by: SammyOina <sammyoina@gmail.com> * restore default Signed-off-by: SammyOina <sammyoina@gmail.com> * add call home for users and things Signed-off-by: SammyOina <sammyoina@gmail.com> * enable opting on call home Signed-off-by: SammyOina <sammyoina@gmail.com> * remove full stops Signed-off-by: SammyOina <sammyoina@gmail.com> * update callhome client Signed-off-by: SammyOina <sammyoina@gmail.com> * add call home to all services Signed-off-by: SammyOina <sammyoina@gmail.com> * fix build Signed-off-by: SammyOina <sammyoina@gmail.com> * restore sdk tests Signed-off-by: SammyOina <sammyoina@gmail.com> * remove unnecessary changes Signed-off-by: SammyOina <sammyoina@gmail.com> * restore health_test.go Signed-off-by: SammyOina <sammyoina@gmail.com> --------- Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: SammyOina <sammyoina@gmail.com> Co-authored-by: b1ackd0t <blackd0t@protonmail.com> Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> --------- Signed-off-by: dusanb94 <dusan.borovcanin@mainflux.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com> Signed-off-by: SammyOina <sammyoina@gmail.com> Co-authored-by: b1ackd0t <blackd0t@protonmail.com> Co-authored-by: Sammy Kerata Oina <44265300+SammyOina@users.noreply.github.com>
263 lines
6.2 KiB
Go
263 lines
6.2 KiB
Go
package pgproto3
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/binary"
|
|
"fmt"
|
|
"io"
|
|
)
|
|
|
|
// Backend acts as a server for the PostgreSQL wire protocol version 3.
|
|
type Backend struct {
|
|
cr *chunkReader
|
|
w io.Writer
|
|
|
|
// tracer is used to trace messages when Send or Receive is called. This means an outbound message is traced
|
|
// before it is actually transmitted (i.e. before Flush).
|
|
tracer *tracer
|
|
|
|
wbuf []byte
|
|
|
|
// Frontend message flyweights
|
|
bind Bind
|
|
cancelRequest CancelRequest
|
|
_close Close
|
|
copyFail CopyFail
|
|
copyData CopyData
|
|
copyDone CopyDone
|
|
describe Describe
|
|
execute Execute
|
|
flush Flush
|
|
functionCall FunctionCall
|
|
gssEncRequest GSSEncRequest
|
|
parse Parse
|
|
query Query
|
|
sslRequest SSLRequest
|
|
startupMessage StartupMessage
|
|
sync Sync
|
|
terminate Terminate
|
|
|
|
bodyLen int
|
|
msgType byte
|
|
partialMsg bool
|
|
authType uint32
|
|
}
|
|
|
|
const (
|
|
minStartupPacketLen = 4 // minStartupPacketLen is a single 32-bit int version or code.
|
|
maxStartupPacketLen = 10000 // maxStartupPacketLen is MAX_STARTUP_PACKET_LENGTH from PG source.
|
|
)
|
|
|
|
// NewBackend creates a new Backend.
|
|
func NewBackend(r io.Reader, w io.Writer) *Backend {
|
|
cr := newChunkReader(r, 0)
|
|
return &Backend{cr: cr, w: w}
|
|
}
|
|
|
|
// Send sends a message to the frontend (i.e. the client). The message is not guaranteed to be written until Flush is
|
|
// called.
|
|
func (b *Backend) Send(msg BackendMessage) {
|
|
prevLen := len(b.wbuf)
|
|
b.wbuf = msg.Encode(b.wbuf)
|
|
if b.tracer != nil {
|
|
b.tracer.traceMessage('B', int32(len(b.wbuf)-prevLen), msg)
|
|
}
|
|
}
|
|
|
|
// Flush writes any pending messages to the frontend (i.e. the client).
|
|
func (b *Backend) Flush() error {
|
|
n, err := b.w.Write(b.wbuf)
|
|
|
|
const maxLen = 1024
|
|
if len(b.wbuf) > maxLen {
|
|
b.wbuf = make([]byte, 0, maxLen)
|
|
} else {
|
|
b.wbuf = b.wbuf[:0]
|
|
}
|
|
|
|
if err != nil {
|
|
return &writeError{err: err, safeToRetry: n == 0}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// Trace starts tracing the message traffic to w. It writes in a similar format to that produced by the libpq function
|
|
// PQtrace.
|
|
func (b *Backend) Trace(w io.Writer, options TracerOptions) {
|
|
b.tracer = &tracer{
|
|
w: w,
|
|
buf: &bytes.Buffer{},
|
|
TracerOptions: options,
|
|
}
|
|
}
|
|
|
|
// Untrace stops tracing.
|
|
func (b *Backend) Untrace() {
|
|
b.tracer = nil
|
|
}
|
|
|
|
// ReceiveStartupMessage receives the initial connection message. This method is used of the normal Receive method
|
|
// because the initial connection message is "special" and does not include the message type as the first byte. This
|
|
// will return either a StartupMessage, SSLRequest, GSSEncRequest, or CancelRequest.
|
|
func (b *Backend) ReceiveStartupMessage() (FrontendMessage, error) {
|
|
buf, err := b.cr.Next(4)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
msgSize := int(binary.BigEndian.Uint32(buf) - 4)
|
|
|
|
if msgSize < minStartupPacketLen || msgSize > maxStartupPacketLen {
|
|
return nil, fmt.Errorf("invalid length of startup packet: %d", msgSize)
|
|
}
|
|
|
|
buf, err = b.cr.Next(msgSize)
|
|
if err != nil {
|
|
return nil, translateEOFtoErrUnexpectedEOF(err)
|
|
}
|
|
|
|
code := binary.BigEndian.Uint32(buf)
|
|
|
|
switch code {
|
|
case ProtocolVersionNumber:
|
|
err = b.startupMessage.Decode(buf)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &b.startupMessage, nil
|
|
case sslRequestNumber:
|
|
err = b.sslRequest.Decode(buf)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &b.sslRequest, nil
|
|
case cancelRequestCode:
|
|
err = b.cancelRequest.Decode(buf)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &b.cancelRequest, nil
|
|
case gssEncReqNumber:
|
|
err = b.gssEncRequest.Decode(buf)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &b.gssEncRequest, nil
|
|
default:
|
|
return nil, fmt.Errorf("unknown startup message code: %d", code)
|
|
}
|
|
}
|
|
|
|
// Receive receives a message from the frontend. The returned message is only valid until the next call to Receive.
|
|
func (b *Backend) Receive() (FrontendMessage, error) {
|
|
if !b.partialMsg {
|
|
header, err := b.cr.Next(5)
|
|
if err != nil {
|
|
return nil, translateEOFtoErrUnexpectedEOF(err)
|
|
}
|
|
|
|
b.msgType = header[0]
|
|
b.bodyLen = int(binary.BigEndian.Uint32(header[1:])) - 4
|
|
b.partialMsg = true
|
|
}
|
|
|
|
var msg FrontendMessage
|
|
switch b.msgType {
|
|
case 'B':
|
|
msg = &b.bind
|
|
case 'C':
|
|
msg = &b._close
|
|
case 'D':
|
|
msg = &b.describe
|
|
case 'E':
|
|
msg = &b.execute
|
|
case 'F':
|
|
msg = &b.functionCall
|
|
case 'f':
|
|
msg = &b.copyFail
|
|
case 'd':
|
|
msg = &b.copyData
|
|
case 'c':
|
|
msg = &b.copyDone
|
|
case 'H':
|
|
msg = &b.flush
|
|
case 'P':
|
|
msg = &b.parse
|
|
case 'p':
|
|
switch b.authType {
|
|
case AuthTypeSASL:
|
|
msg = &SASLInitialResponse{}
|
|
case AuthTypeSASLContinue:
|
|
msg = &SASLResponse{}
|
|
case AuthTypeSASLFinal:
|
|
msg = &SASLResponse{}
|
|
case AuthTypeGSS, AuthTypeGSSCont:
|
|
msg = &GSSResponse{}
|
|
case AuthTypeCleartextPassword, AuthTypeMD5Password:
|
|
fallthrough
|
|
default:
|
|
// to maintain backwards compatibility
|
|
msg = &PasswordMessage{}
|
|
}
|
|
case 'Q':
|
|
msg = &b.query
|
|
case 'S':
|
|
msg = &b.sync
|
|
case 'X':
|
|
msg = &b.terminate
|
|
default:
|
|
return nil, fmt.Errorf("unknown message type: %c", b.msgType)
|
|
}
|
|
|
|
msgBody, err := b.cr.Next(b.bodyLen)
|
|
if err != nil {
|
|
return nil, translateEOFtoErrUnexpectedEOF(err)
|
|
}
|
|
|
|
b.partialMsg = false
|
|
|
|
err = msg.Decode(msgBody)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if b.tracer != nil {
|
|
b.tracer.traceMessage('F', int32(5+len(msgBody)), msg)
|
|
}
|
|
|
|
return msg, nil
|
|
}
|
|
|
|
// SetAuthType sets the authentication type in the backend.
|
|
// Since multiple message types can start with 'p', SetAuthType allows
|
|
// contextual identification of FrontendMessages. For example, in the
|
|
// PG message flow documentation for PasswordMessage:
|
|
//
|
|
// Byte1('p')
|
|
//
|
|
// Identifies the message as a password response. Note that this is also used for
|
|
// GSSAPI, SSPI and SASL response messages. The exact message type can be deduced from
|
|
// the context.
|
|
//
|
|
// Since the Frontend does not know about the state of a backend, it is important
|
|
// to call SetAuthType() after an authentication request is received by the Frontend.
|
|
func (b *Backend) SetAuthType(authType uint32) error {
|
|
switch authType {
|
|
case AuthTypeOk,
|
|
AuthTypeCleartextPassword,
|
|
AuthTypeMD5Password,
|
|
AuthTypeSCMCreds,
|
|
AuthTypeGSS,
|
|
AuthTypeGSSCont,
|
|
AuthTypeSSPI,
|
|
AuthTypeSASL,
|
|
AuthTypeSASLContinue,
|
|
AuthTypeSASLFinal:
|
|
b.authType = authType
|
|
default:
|
|
return fmt.Errorf("authType not recognized: %d", authType)
|
|
}
|
|
|
|
return nil
|
|
}
|