net.spy.memcached.auth.AuthThread Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of spymemcached Show documentation
Show all versions of spymemcached Show documentation
A client library for memcached.
/**
* Copyright (C) 2006-2009 Dustin Sallings
* Copyright (C) 2009-2013 Couchbase, Inc.
*
* Permission is hereby granted, free of charge, to any person obtaining a copy
* of this software and associated documentation files (the "Software"), to deal
* in the Software without restriction, including without limitation the rights
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
* copies of the Software, and to permit persons to whom the Software is
* furnished to do so, subject to the following conditions:
*
* The above copyright notice and this permission notice shall be included in
* all copies or substantial portions of the Software.
*
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
* FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALING
* IN THE SOFTWARE.
*/
package net.spy.memcached.auth;
import java.util.concurrent.CountDownLatch;
import java.util.concurrent.TimeUnit;
import java.util.concurrent.atomic.AtomicBoolean;
import java.util.concurrent.atomic.AtomicReference;
import net.spy.memcached.KeyUtil;
import net.spy.memcached.MemcachedConnection;
import net.spy.memcached.MemcachedNode;
import net.spy.memcached.OperationFactory;
import net.spy.memcached.compat.SpyThread;
import net.spy.memcached.ops.Operation;
import net.spy.memcached.ops.OperationCallback;
import net.spy.memcached.ops.OperationStatus;
/**
* A thread that does SASL authentication.
*/
public class AuthThread extends SpyThread {
public static final String MECH_SEPARATOR = " ";
private final MemcachedConnection conn;
private final AuthDescriptor authDescriptor;
private final OperationFactory opFact;
private final MemcachedNode node;
public AuthThread(MemcachedConnection c, OperationFactory o,
AuthDescriptor a, MemcachedNode n) {
conn = c;
opFact = o;
authDescriptor = a;
node = n;
start();
}
private String[] listSupportedSASLMechanisms(AtomicBoolean done) {
final CountDownLatch listMechsLatch = new CountDownLatch(1);
final AtomicReference supportedMechs =
new AtomicReference();
Operation listMechsOp = opFact.saslMechs(new OperationCallback() {
@Override
public void receivedStatus(OperationStatus status) {
if(status.isSuccess()) {
supportedMechs.set(status.getMessage());
getLogger().debug("Received SASL supported mechs: "
+ status.getMessage());
}
}
@Override
public void complete() {
listMechsLatch.countDown();
}
});
conn.insertOperation(node, listMechsOp);
try {
listMechsLatch.await(10, TimeUnit.SECONDS);
} catch(InterruptedException ex) {
// we can be interrupted if we were in the
// process of auth'ing and the connection is
// lost or dropped due to bad auth
Thread.currentThread().interrupt();
if (listMechsOp != null) {
listMechsOp.cancel();
}
done.set(true); // If we were interrupted, tear down.
}
String supported = supportedMechs.get();
if (supported == null || supported.isEmpty()) {
throw new IllegalStateException("Got empty SASL auth mech list.");
}
return supported.split(MECH_SEPARATOR);
}
@Override
public void run() {
final AtomicBoolean done = new AtomicBoolean();
String[] supportedMechs;
if (authDescriptor.getMechs() == null
|| authDescriptor.getMechs().length == 0) {
supportedMechs = listSupportedSASLMechanisms(done);
} else {
supportedMechs = authDescriptor.getMechs();
}
OperationStatus priorStatus = null;
while (!done.get()) {
final CountDownLatch latch = new CountDownLatch(1);
final AtomicReference foundStatus =
new AtomicReference();
final OperationCallback cb = new OperationCallback() {
@Override
public void receivedStatus(OperationStatus val) {
// If the status we found was null, we're done.
if (val.getMessage().length() == 0) {
done.set(true);
node.authComplete();
getLogger().info("Authenticated to " + node.getSocketAddress());
} else {
foundStatus.set(val);
}
}
@Override
public void complete() {
latch.countDown();
}
};
// Get the prior status to create the correct operation.
final Operation op = buildOperation(priorStatus, cb, supportedMechs);
conn.insertOperation(node, op);
try {
latch.await();
Thread.sleep(100);
} catch (InterruptedException e) {
// we can be interrupted if we were in the
// process of auth'ing and the connection is
// lost or dropped due to bad auth
Thread.currentThread().interrupt();
if (op != null) {
op.cancel();
}
done.set(true); // If we were interrupted, tear down.
}
// Get the new status to inspect it.
priorStatus = foundStatus.get();
if (priorStatus != null) {
if (!priorStatus.isSuccess()) {
getLogger().warn(
"Authentication failed to " + node.getSocketAddress());
}
}
}
}
private Operation buildOperation(OperationStatus st, OperationCallback cb,
final String [] supportedMechs) {
if (st == null) {
return opFact.saslAuth(supportedMechs,
node.getSocketAddress().toString(), null,
authDescriptor.getCallback(), cb);
} else {
return opFact.saslStep(supportedMechs, KeyUtil.getKeyBytes(
st.getMessage()), node.getSocketAddress().toString(), null,
authDescriptor.getCallback(), cb);
}
}
}