Added end to end encryption in C++ client #1129
Conversation
merlimat
added
the
type/feature
|
|
||
| class CryptoKeyReader { | ||
|
|
||
| public: |
There was a problem hiding this comment.
Formatting will need to be adjusted, using the make format command
| @@ -93,6 +93,10 @@ void BatchMessageContainer::sendMessage() { | |||
| impl_->metadata.set_num_messages_in_batch(messagesContainerListPtr_->size()); | |||
| compressPayLoad(); | |||
|
|
|||
| SharedBuffer encryptedPayload; | |||
There was a problem hiding this comment.
Creating the SharedBuffer will need to malloc some stuff, can we just doing when encryption is enabled?
There was a problem hiding this comment.
You are right. I have allocated a byte to have valid object. Will try to refactor it before merge.
There was a problem hiding this comment.
Checking again, it seems we are ok to without allocating anything as well.
https://github.com/apache/incubator-pulsar/blob/master/pulsar-client-cpp/lib/SharedBuffer.h#L46
The ptr will be null and will be an issue if we use the buffer at this point. We will error out if encryption fails anyway, so guaranteed to have non null if success. Do you see any issues @merlimat ?
| boost::mutex mutex_; | ||
|
|
||
| int dataKeyLen_; | ||
| std::unique_ptr<unsigned char []> dataKey_; |
There was a problem hiding this comment.
I think we should stick with boost::scoped_ptr instead of std::unique_ptr which depends on C++11
There was a problem hiding this comment.
Switched to scoped_array
|
|
||
| int tagLen_; | ||
| int ivLen_; | ||
| std::unique_ptr<unsigned char []> iv_; |
There was a problem hiding this comment.
same here, boost::scoped_ptr
There was a problem hiding this comment.
Switched to scoped_array
| @@ -262,12 +295,21 @@ void ProducerImpl::sendAsync(const Message& msg, SendCallback callback) { | |||
| SharedBuffer& payload = msg.impl_->payload; | |||
|
|
|||
| uint32_t uncompressedSize = payload.readableBytes(); | |||
| uint32_t compressedSize = uncompressedSize; | |||
There was a problem hiding this comment.
The ways it sounds, it's a bit confusing ;)
There was a problem hiding this comment.
:) Agree. Changed to generic name.
| compressedSize = payload.readableBytes(); | ||
|
|
||
| // Encrypt the payload if enabled | ||
| SharedBuffer encryptedPayload; |
There was a problem hiding this comment.
Check whether it's required before creating the SharedBuffer
pulsar-client-cpp/run-unit-tests.sh
Outdated
| @@ -23,7 +23,9 @@ | |||
|
|
|||
| rm -rf ./pulsar-dist | |||
| mkdir pulsar-dist | |||
| tar xfz ../all/target/apache-pulsar*bin.tar.gz -C pulsar-dist --strip-components 1 | |||
| for i in `ls ../all/target/apache-pulsar*bin.tar.gz`; do | |||
There was a problem hiding this comment.
The expectation here is that there will be a single tgz left after the build
There was a problem hiding this comment.
Thats right. I ended up with multiple bin.tar.gz files and tar failed in Mac.
saandrews
force-pushed
the
cppencryption
branch
from
e894175 to
ac32356
Compare
| #ifndef LIB_CONSUMERCRYPTOFAILUREACTION_H_ | ||
| #define LIB_CONSUMERCRYPTOFAILUREACTION_H_ | ||
|
|
||
| using namespace pulsar; |
| @@ -40,6 +40,7 @@ | |||
| #include "ExecutorService.h" | |||
| #include <boost/asio.hpp> | |||
| #include "ProducerImpl.h" | |||
| #include "MessageCrypto.h" | |||
| @@ -74,4 +74,30 @@ void ConsumerConfiguration::setUnAckedMessagesTimeoutMs(const uint64_t milliSeco | |||
| } | |||
| impl_->unAckedMessagesTimeoutMs = milliSeconds; | |||
| } | |||
|
|
|||
| bool ConsumerConfiguration::isEncryptionEnabled() const { | |||
| if (impl_->cryptoKeyReader != NULL) { | |||
There was a problem hiding this comment.
return impl_->cryptoKeyReader != NULL
| @@ -31,13 +31,18 @@ struct ConsumerConfigurationImpl { | |||
| int receiverQueueSize; | |||
| std::string consumerName; | |||
| long brokerConsumerStatsCacheTimeInMs; | |||
| CryptoKeyReader* cryptoKeyReader; | |||
There was a problem hiding this comment.
Can we use shared pointer instead like we do for MessageRouter
There was a problem hiding this comment.
Slightly different use case here. It has a reference to the application allocated implementation of CryptoKeyReader
| sendTimer_() { | ||
| sendTimer_(), | ||
| msgCrypto_(), | ||
| dataKeyGenInterval_(4 * 60 * 60) { |
There was a problem hiding this comment.
dataKeyGenIntervalInMs_ (time unit missing)
saandrews
force-pushed
the
cppencryption
branch
2 times, most recently
from
d104d05 to
dfac0da
Compare
|
|
||
| const CryptoKeyReader& ConsumerConfiguration::getCryptoKeyReader() const { return *(impl_->cryptoKeyReader); } | ||
|
|
||
| ConsumerConfiguration& ConsumerConfiguration::setCryptoKeyReader(CryptoKeyReader& cryptoKeyReader) { |
There was a problem hiding this comment.
Instead of getting a reference and storing a pointer, we should take either a copy or a shared_ptr from the user. That would avoid any problem on the life cycle of the crypto reader. Otherwise the use needs to know it cannot be destructed and that will lead to unexpected segfaults.
There was a problem hiding this comment.
Switched to shared_ptr.
|
@saandrews Change looks good. Just the comment on using |
saandrews
force-pushed
the
cppencryption
branch
from
dfac0da to
7ad8797
Compare
saandrews
force-pushed
the
cppencryption
branch
5 times, most recently
from
660e99c to
3b70624
Compare
saandrews
force-pushed
the
cppencryption
branch
from
3b70624 to
5896b55
Compare
…_capture_response Capture response for broker interceptor.
Motivation
C++ client implementation to support end to end encryption based on PIP4