258 lines
5 KiB
Go
258 lines
5 KiB
Go
package physical
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"io"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"sync"
|
|
|
|
log "github.com/mgutz/logxi/v1"
|
|
|
|
"github.com/hashicorp/vault/helper/jsonutil"
|
|
)
|
|
|
|
// FileBackend is a physical backend that stores data on disk
|
|
// at a given file path. It can be used for durable single server
|
|
// situations, or to develop locally where durability is not critical.
|
|
//
|
|
// WARNING: the file backend implementation is currently extremely unsafe
|
|
// and non-performant. It is meant mostly for local testing and development.
|
|
// It can be improved in the future.
|
|
type FileBackend struct {
|
|
sync.RWMutex
|
|
path string
|
|
logger log.Logger
|
|
permitPool *PermitPool
|
|
}
|
|
|
|
type TransactionalFileBackend struct {
|
|
FileBackend
|
|
}
|
|
|
|
// newFileBackend constructs a FileBackend using the given directory
|
|
func newFileBackend(conf map[string]string, logger log.Logger) (Backend, error) {
|
|
path, ok := conf["path"]
|
|
if !ok {
|
|
return nil, fmt.Errorf("'path' must be set")
|
|
}
|
|
|
|
return &FileBackend{
|
|
path: path,
|
|
logger: logger,
|
|
permitPool: NewPermitPool(DefaultParallelOperations),
|
|
}, nil
|
|
}
|
|
|
|
func newTransactionalFileBackend(conf map[string]string, logger log.Logger) (Backend, error) {
|
|
path, ok := conf["path"]
|
|
if !ok {
|
|
return nil, fmt.Errorf("'path' must be set")
|
|
}
|
|
|
|
// Create a pool of size 1 so only one operation runs at a time
|
|
return &TransactionalFileBackend{
|
|
FileBackend: FileBackend{
|
|
path: path,
|
|
logger: logger,
|
|
permitPool: NewPermitPool(1),
|
|
},
|
|
}, nil
|
|
}
|
|
|
|
func (b *FileBackend) Delete(path string) error {
|
|
b.permitPool.Acquire()
|
|
defer b.permitPool.Release()
|
|
|
|
b.Lock()
|
|
defer b.Unlock()
|
|
|
|
return b.DeleteInternal(path)
|
|
}
|
|
|
|
func (b *FileBackend) DeleteInternal(path string) error {
|
|
if path == "" {
|
|
return nil
|
|
}
|
|
|
|
basePath, key := b.expandPath(path)
|
|
fullPath := filepath.Join(basePath, key)
|
|
|
|
err := os.Remove(fullPath)
|
|
if err != nil && !os.IsNotExist(err) {
|
|
return fmt.Errorf("Failed to remove %q: %v", fullPath, err)
|
|
}
|
|
|
|
err = b.cleanupLogicalPath(path)
|
|
|
|
return err
|
|
}
|
|
|
|
// cleanupLogicalPath is used to remove all empty nodes, begining with deepest
|
|
// one, aborting on first non-empty one, up to top-level node.
|
|
func (b *FileBackend) cleanupLogicalPath(path string) error {
|
|
nodes := strings.Split(path, fmt.Sprintf("%c", os.PathSeparator))
|
|
for i := len(nodes) - 1; i > 0; i-- {
|
|
fullPath := filepath.Join(b.path, filepath.Join(nodes[:i]...))
|
|
|
|
dir, err := os.Open(fullPath)
|
|
if err != nil {
|
|
if dir != nil {
|
|
dir.Close()
|
|
}
|
|
if os.IsNotExist(err) {
|
|
return nil
|
|
} else {
|
|
return err
|
|
}
|
|
}
|
|
|
|
list, err := dir.Readdir(1)
|
|
dir.Close()
|
|
if err != nil && err != io.EOF {
|
|
return err
|
|
}
|
|
|
|
// If we have no entries, it's an empty directory; remove it
|
|
if err == io.EOF || list == nil || len(list) == 0 {
|
|
err = os.Remove(fullPath)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (b *FileBackend) Get(k string) (*Entry, error) {
|
|
b.permitPool.Acquire()
|
|
defer b.permitPool.Release()
|
|
|
|
b.RLock()
|
|
defer b.RUnlock()
|
|
|
|
return b.GetInternal(k)
|
|
}
|
|
|
|
func (b *FileBackend) GetInternal(k string) (*Entry, error) {
|
|
path, key := b.expandPath(k)
|
|
path = filepath.Join(path, key)
|
|
|
|
f, err := os.Open(path)
|
|
if f != nil {
|
|
defer f.Close()
|
|
}
|
|
if err != nil {
|
|
if os.IsNotExist(err) {
|
|
return nil, nil
|
|
}
|
|
|
|
return nil, err
|
|
}
|
|
|
|
var entry Entry
|
|
if err := jsonutil.DecodeJSONFromReader(f, &entry); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &entry, nil
|
|
}
|
|
|
|
func (b *FileBackend) Put(entry *Entry) error {
|
|
b.permitPool.Acquire()
|
|
defer b.permitPool.Release()
|
|
|
|
b.Lock()
|
|
defer b.Unlock()
|
|
|
|
return b.PutInternal(entry)
|
|
}
|
|
|
|
func (b *FileBackend) PutInternal(entry *Entry) error {
|
|
path, key := b.expandPath(entry.Key)
|
|
|
|
// Make the parent tree
|
|
if err := os.MkdirAll(path, 0755); err != nil {
|
|
return err
|
|
}
|
|
|
|
// JSON encode the entry and write it
|
|
f, err := os.OpenFile(
|
|
filepath.Join(path, key),
|
|
os.O_CREATE|os.O_TRUNC|os.O_WRONLY,
|
|
0600)
|
|
if f != nil {
|
|
defer f.Close()
|
|
}
|
|
if err != nil {
|
|
return err
|
|
}
|
|
enc := json.NewEncoder(f)
|
|
return enc.Encode(entry)
|
|
}
|
|
|
|
func (b *FileBackend) List(prefix string) ([]string, error) {
|
|
b.permitPool.Acquire()
|
|
defer b.permitPool.Release()
|
|
|
|
b.RLock()
|
|
defer b.RUnlock()
|
|
|
|
return b.ListInternal(prefix)
|
|
}
|
|
|
|
func (b *FileBackend) ListInternal(prefix string) ([]string, error) {
|
|
path := b.path
|
|
if prefix != "" {
|
|
path = filepath.Join(path, prefix)
|
|
}
|
|
|
|
// Read the directory contents
|
|
f, err := os.Open(path)
|
|
if f != nil {
|
|
defer f.Close()
|
|
}
|
|
if err != nil {
|
|
if os.IsNotExist(err) {
|
|
return nil, nil
|
|
}
|
|
|
|
return nil, err
|
|
}
|
|
|
|
names, err := f.Readdirnames(-1)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
for i, name := range names {
|
|
if name[0] == '_' {
|
|
names[i] = name[1:]
|
|
} else {
|
|
names[i] = name + "/"
|
|
}
|
|
}
|
|
|
|
return names, nil
|
|
}
|
|
|
|
func (b *FileBackend) expandPath(k string) (string, string) {
|
|
path := filepath.Join(b.path, k)
|
|
key := filepath.Base(path)
|
|
path = filepath.Dir(path)
|
|
return path, "_" + key
|
|
}
|
|
|
|
func (b *TransactionalFileBackend) Transaction(txns []TxnEntry) error {
|
|
b.permitPool.Acquire()
|
|
defer b.permitPool.Release()
|
|
|
|
b.Lock()
|
|
defer b.Unlock()
|
|
|
|
return genericTransactionHandler(b, txns)
|
|
}
|