zot-wo-auth/pkg/api/cookiestore.go

package api

import (
	"context"
	"encoding/gob"
	"fmt"
	"io/fs"
	"os"
	"path"
	"path/filepath"
	"strings"
	"time"

	"github.com/gorilla/securecookie"
	"github.com/gorilla/sessions"

	zerr "zotregistry.dev/zot/errors"
	"zotregistry.dev/zot/pkg/scheduler"
	"zotregistry.dev/zot/pkg/storage"
	storageConstants "zotregistry.dev/zot/pkg/storage/constants"
)

const cookiesMaxAge = 7200 // 2h

type CookieStore struct {
	needsCleanup bool // if store should be periodically cleaned
	rootDir      string
	sessions.Store
}

func (c *CookieStore) RunSessionCleaner(sch *scheduler.Scheduler) {
	if c.needsCleanup {
		sch.SubmitGenerator(
			&SessionCleanup{rootDir: c.rootDir},
			cookiesMaxAge*time.Second,
			scheduler.LowPriority,
		)
	}
}

func NewCookieStore(storeController storage.StoreController) (*CookieStore, error) {
	// To store custom types in our cookies
	// we must first register them using gob.Register
	gob.Register(map[string]interface{}{})

	hashKey, err := getHashKey()
	if err != nil {
		return &CookieStore{}, err
	}

	var store sessions.Store

	var sessionsDir string

	var needsCleanup bool

	if storeController.DefaultStore.Name() == storageConstants.LocalStorageDriverName {
		sessionsDir = path.Join(storeController.DefaultStore.RootDir(), "_sessions")
		if err := os.MkdirAll(sessionsDir, storageConstants.DefaultDirPerms); err != nil {
			return &CookieStore{}, err
		}

		localStore := sessions.NewFilesystemStore(sessionsDir, hashKey)

		localStore.MaxAge(cookiesMaxAge)

		store = localStore
		needsCleanup = true
	} else {
		memStore := sessions.NewCookieStore(hashKey)

		memStore.MaxAge(cookiesMaxAge)

		store = memStore
	}

	return &CookieStore{
		Store:        store,
		rootDir:      sessionsDir,
		needsCleanup: needsCleanup,
	}, nil
}

func getHashKey() ([]byte, error) {
	hashKey := securecookie.GenerateRandomKey(64)
	if hashKey == nil {
		return nil, zerr.ErrHashKeyNotCreated
	}

	return hashKey, nil
}

func IsExpiredSession(dirEntry fs.DirEntry) bool {
	fileInfo, err := dirEntry.Info()
	if err != nil { // may have been deleted in the meantime
		return false
	}

	if !strings.HasPrefix(fileInfo.Name(), "session_") {
		return false
	}

	if fileInfo.ModTime().Add(cookiesMaxAge * time.Second).After(time.Now()) {
		return false
	}

	return true
}

func getExpiredSessions(dir string) ([]string, error) {
	sessions := make([]string, 0)

	err := filepath.WalkDir(dir, func(filePath string, dirEntry fs.DirEntry, err error) error {
		if err != nil {
			return err
		}

		if IsExpiredSession(dirEntry) {
			sessions = append(sessions, filePath)
		}

		return nil
	})

	if os.IsNotExist(err) {
		return sessions, nil
	}

	return sessions, err
}

type SessionCleanup struct {
	rootDir string
	done    bool
}

func (gen *SessionCleanup) Name() string {
	return "SessionCleanupGenerator"
}

func (gen *SessionCleanup) Next() (scheduler.Task, error) {
	sessions, err := getExpiredSessions(gen.rootDir)
	if err != nil {
		return nil, err
	}

	if len(sessions) == 0 {
		gen.done = true

		return nil, nil
	}

	return &CleanTask{sessions: sessions}, nil
}

func (gen *SessionCleanup) IsDone() bool {
	return gen.done
}

func (gen *SessionCleanup) IsReady() bool {
	return true
}

func (gen *SessionCleanup) Reset() {
	gen.done = false
}

type CleanTask struct {
	sessions []string
}

func (cleanTask *CleanTask) DoWork(ctx context.Context) error {
	for _, session := range cleanTask.sessions {
		if err := os.Remove(session); err != nil {
			if !os.IsNotExist(err) {
				return err
			}
		}
	}

	return nil
}

func (cleanTask *CleanTask) String() string {
	return fmt.Sprintf("{Name: %s, sessions: %s}",
		cleanTask.Name(), cleanTask.sessions)
}

func (cleanTask *CleanTask) Name() string {
	return "SessionCleanupTask"
}
fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`package api`

			`import (`
			`"context"`
			`"encoding/gob"`
feat(metrics): add scheduler related metrics (#2076) Signed-off-by: Alexei Dodon <adodon@cisco.com> 2023-12-05 00:13:50 +02:00			`"fmt"`
fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`"io/fs"`
			`"os"`
			`"path"`
			`"path/filepath"`
			`"strings"`
			`"time"`

			`"github.com/gorilla/securecookie"`
			`"github.com/gorilla/sessions"`

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187) Signed-off-by: Andrei Aaron <aaaron@luxoft.com> 2024-02-01 06:34:07 +02:00			`zerr "zotregistry.dev/zot/errors"`
			`"zotregistry.dev/zot/pkg/scheduler"`
			`"zotregistry.dev/zot/pkg/storage"`
			`storageConstants "zotregistry.dev/zot/pkg/storage/constants"`
fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`)`

			`const cookiesMaxAge = 7200 // 2h`

			`type CookieStore struct {`
			`needsCleanup bool // if store should be periodically cleaned`
			`rootDir string`
			`sessions.Store`
			`}`

			`func (c CookieStore) RunSessionCleaner(sch scheduler.Scheduler) {`
			`if c.needsCleanup {`
fix(scheduler): the session cleanup generator is reset too often (#2220) This causes the "fair" scheduler to run it too often in the detriment of other generators. The intention was to run it every 2 hours but the measurement unit for 7200 was not specified. Add more logs, including showing a generator name, in order to troubleshoot this kind of issues easier in the future. Signed-off-by: Andrei Aaron <aaaron@luxoft.com> 2024-02-01 19:15:53 +02:00			`sch.SubmitGenerator(`
			`&SessionCleanup{rootDir: c.rootDir},`
			`cookiesMaxAge*time.Second,`
			`scheduler.LowPriority,`
			`)`
fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`}`
			`}`

			`func NewCookieStore(storeController storage.StoreController) (*CookieStore, error) {`
			`// To store custom types in our cookies`
			`// we must first register them using gob.Register`
			`gob.Register(map[string]interface{}{})`

			`hashKey, err := getHashKey()`
			`if err != nil {`
			`return &CookieStore{}, err`
			`}`

			`var store sessions.Store`

			`var sessionsDir string`

			`var needsCleanup bool`

			`if storeController.DefaultStore.Name() == storageConstants.LocalStorageDriverName {`
			`sessionsDir = path.Join(storeController.DefaultStore.RootDir(), "_sessions")`
			`if err := os.MkdirAll(sessionsDir, storageConstants.DefaultDirPerms); err != nil {`
			`return &CookieStore{}, err`
			`}`

			`localStore := sessions.NewFilesystemStore(sessionsDir, hashKey)`

			`localStore.MaxAge(cookiesMaxAge)`

			`store = localStore`
			`needsCleanup = true`
			`} else {`
			`memStore := sessions.NewCookieStore(hashKey)`

			`memStore.MaxAge(cookiesMaxAge)`

			`store = memStore`
			`}`

			`return &CookieStore{`
			`Store: store,`
			`rootDir: sessionsDir,`
			`needsCleanup: needsCleanup,`
			`}, nil`
			`}`

			`func getHashKey() ([]byte, error) {`
			`hashKey := securecookie.GenerateRandomKey(64)`
			`if hashKey == nil {`
			`return nil, zerr.ErrHashKeyNotCreated`
			`}`

			`return hashKey, nil`
			`}`

test: fix flacky coverage in cookiestore cleanup tests (#2257) Refactor and add more coverage to test flacky coverage in case sessions which are already deleted are flagged as expired/for deletion. See coverage drop in pkg/api/cookiestore.go: https://app.codecov.io/gh/project-zot/zot/commit/8e68255946e745b872cc58ecd0899fd766bc1139/indirect-changes Signed-off-by: Andrei Aaron <aaaron@luxoft.com> 2024-02-20 00:43:30 +02:00			`func IsExpiredSession(dirEntry fs.DirEntry) bool {`
			`fileInfo, err := dirEntry.Info()`
			`if err != nil { // may have been deleted in the meantime`
			`return false`
			`}`

			`if !strings.HasPrefix(fileInfo.Name(), "session_") {`
			`return false`
			`}`

			`if fileInfo.ModTime().Add(cookiesMaxAge * time.Second).After(time.Now()) {`
			`return false`
			`}`

			`return true`
			`}`

fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`func getExpiredSessions(dir string) ([]string, error) {`
			`sessions := make([]string, 0)`

test: fix flacky coverage in cookiestore cleanup tests (#2257) Refactor and add more coverage to test flacky coverage in case sessions which are already deleted are flagged as expired/for deletion. See coverage drop in pkg/api/cookiestore.go: https://app.codecov.io/gh/project-zot/zot/commit/8e68255946e745b872cc58ecd0899fd766bc1139/indirect-changes Signed-off-by: Andrei Aaron <aaaron@luxoft.com> 2024-02-20 00:43:30 +02:00			`err := filepath.WalkDir(dir, func(filePath string, dirEntry fs.DirEntry, err error) error {`
fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`if err != nil {`
			`return err`
			`}`

test: fix flacky coverage in cookiestore cleanup tests (#2257) Refactor and add more coverage to test flacky coverage in case sessions which are already deleted are flagged as expired/for deletion. See coverage drop in pkg/api/cookiestore.go: https://app.codecov.io/gh/project-zot/zot/commit/8e68255946e745b872cc58ecd0899fd766bc1139/indirect-changes Signed-off-by: Andrei Aaron <aaaron@luxoft.com> 2024-02-20 00:43:30 +02:00			`if IsExpiredSession(dirEntry) {`
			`sessions = append(sessions, filePath)`
fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`}`

			`return nil`
			`})`

fix(bearer): fixed /v2/ route not implementing token spec (#2176) We use chartmuseum lib for handling bearer requests, which is not implementing the token spec, mainly it expects "scope" parameter to be given on every request, even for /v2/ route which doesn't represent a resource. Handle this /v2/ route inside our code. Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2024-01-22 19:15:27 +02:00			`if os.IsNotExist(err) {`
			`return sessions, nil`
			`}`

fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`return sessions, err`
			`}`

			`type SessionCleanup struct {`
			`rootDir string`
			`done bool`
			`}`

fix(scheduler): the session cleanup generator is reset too often (#2220) This causes the "fair" scheduler to run it too often in the detriment of other generators. The intention was to run it every 2 hours but the measurement unit for 7200 was not specified. Add more logs, including showing a generator name, in order to troubleshoot this kind of issues easier in the future. Signed-off-by: Andrei Aaron <aaaron@luxoft.com> 2024-02-01 19:15:53 +02:00			`func (gen *SessionCleanup) Name() string {`
			`return "SessionCleanupGenerator"`
			`}`

fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`func (gen *SessionCleanup) Next() (scheduler.Task, error) {`
			`sessions, err := getExpiredSessions(gen.rootDir)`
			`if err != nil {`
			`return nil, err`
			`}`

			`if len(sessions) == 0 {`
			`gen.done = true`

			`return nil, nil`
			`}`

			`return &CleanTask{sessions: sessions}, nil`
			`}`

			`func (gen *SessionCleanup) IsDone() bool {`
			`return gen.done`
			`}`

			`func (gen *SessionCleanup) IsReady() bool {`
			`return true`
			`}`

			`func (gen *SessionCleanup) Reset() {`
			`gen.done = false`
			`}`

			`type CleanTask struct {`
			`sessions []string`
			`}`

			`func (cleanTask *CleanTask) DoWork(ctx context.Context) error {`
			`for _, session := range cleanTask.sessions {`
			`if err := os.Remove(session); err != nil {`
fix(scheduler): fix data race (#2085) * fix(scheduler): data race when pushing new tasks the problem here is that scheduler can be closed in two ways: - canceling the context given as argument to scheduler.RunScheduler() - running scheduler.Shutdown() because of this shutdown can trigger a data race between calling scheduler.inShutdown() and actually pushing tasks into the pool workers solved that by keeping a quit channel and listening on both quit channel and ctx.Done() and closing the worker chan and scheduler afterwards. Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> * refactor(scheduler): refactor into a single shutdown before this we could stop scheduler either by closing the context provided to RunScheduler(ctx) or by running Shutdown(). simplify things by getting rid of the external context in RunScheduler(). keep an internal context in the scheduler itself and pass it down to all tasks. Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> --------- Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-12-11 20:00:34 +02:00			`if !os.IsNotExist(err) {`
			`return err`
			`}`
fix(sessions): periodically cleanup expired sessions (#1939) Signed-off-by: Petu Eusebiu <peusebiu@cisco.com> 2023-10-17 06:03:42 +03:00			`}`
			`}`

			`return nil`
			`}`
feat(metrics): add scheduler related metrics (#2076) Signed-off-by: Alexei Dodon <adodon@cisco.com> 2023-12-05 00:13:50 +02:00
			`func (cleanTask *CleanTask) String() string {`
			`return fmt.Sprintf("{Name: %s, sessions: %s}",`
			`cleanTask.Name(), cleanTask.sessions)`
			`}`

			`func (cleanTask *CleanTask) Name() string {`
			`return "SessionCleanupTask"`
			`}`