mirror of
https://github.com/VictoriaMetrics/VictoriaMetrics.git
synced 2024-12-20 23:46:23 +01:00
1689 lines
55 KiB
Go
1689 lines
55 KiB
Go
// Copyright 2022 Google LLC
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package storage
|
|
|
|
import (
|
|
"context"
|
|
"encoding/base64"
|
|
"fmt"
|
|
"io"
|
|
"net/url"
|
|
"os"
|
|
|
|
"cloud.google.com/go/internal/trace"
|
|
gapic "cloud.google.com/go/storage/internal/apiv2"
|
|
storagepb "cloud.google.com/go/storage/internal/apiv2/stubs"
|
|
"google.golang.org/api/iterator"
|
|
"google.golang.org/api/option"
|
|
iampb "google.golang.org/genproto/googleapis/iam/v1"
|
|
"google.golang.org/grpc"
|
|
"google.golang.org/grpc/codes"
|
|
"google.golang.org/grpc/metadata"
|
|
"google.golang.org/grpc/status"
|
|
"google.golang.org/protobuf/proto"
|
|
fieldmaskpb "google.golang.org/protobuf/types/known/fieldmaskpb"
|
|
)
|
|
|
|
const (
|
|
// defaultConnPoolSize is the default number of connections
|
|
// to initialize in the GAPIC gRPC connection pool. A larger
|
|
// connection pool may be necessary for jobs that require
|
|
// high throughput and/or leverage many concurrent streams.
|
|
//
|
|
// This is only used for the gRPC client.
|
|
defaultConnPoolSize = 4
|
|
|
|
// maxPerMessageWriteSize is the maximum amount of content that can be sent
|
|
// per WriteObjectRequest message. A buffer reaching this amount will
|
|
// precipitate a flush of the buffer. It is only used by the gRPC Writer
|
|
// implementation.
|
|
maxPerMessageWriteSize int = int(storagepb.ServiceConstants_MAX_WRITE_CHUNK_BYTES)
|
|
|
|
// globalProjectAlias is the project ID alias used for global buckets.
|
|
//
|
|
// This is only used for the gRPC API.
|
|
globalProjectAlias = "_"
|
|
|
|
// msgEntityNotSupported indicates ACL entites using project ID are not currently supported.
|
|
//
|
|
// This is only used for the gRPC API.
|
|
msgEntityNotSupported = "The gRPC API currently does not support ACL entities using project ID, use project numbers instead"
|
|
)
|
|
|
|
// defaultGRPCOptions returns a set of the default client options
|
|
// for gRPC client initialization.
|
|
func defaultGRPCOptions() []option.ClientOption {
|
|
defaults := []option.ClientOption{
|
|
option.WithGRPCConnectionPool(defaultConnPoolSize),
|
|
}
|
|
|
|
// Set emulator options for gRPC if an emulator was specified. Note that in a
|
|
// hybrid client, STORAGE_EMULATOR_HOST will set the host to use for HTTP and
|
|
// STORAGE_EMULATOR_HOST_GRPC will set the host to use for gRPC (when using a
|
|
// local emulator, HTTP and gRPC must use different ports, so this is
|
|
// necessary).
|
|
//
|
|
// TODO: When the newHybridClient is not longer used, remove
|
|
// STORAGE_EMULATOR_HOST_GRPC and use STORAGE_EMULATOR_HOST for both the
|
|
// HTTP and gRPC based clients.
|
|
if host := os.Getenv("STORAGE_EMULATOR_HOST_GRPC"); host != "" {
|
|
// Strip the scheme from the emulator host. WithEndpoint does not take a
|
|
// scheme for gRPC.
|
|
host = stripScheme(host)
|
|
|
|
defaults = append(defaults,
|
|
option.WithEndpoint(host),
|
|
option.WithGRPCDialOption(grpc.WithInsecure()),
|
|
option.WithoutAuthentication(),
|
|
)
|
|
}
|
|
|
|
return defaults
|
|
}
|
|
|
|
// grpcStorageClient is the gRPC API implementation of the transport-agnostic
|
|
// storageClient interface.
|
|
type grpcStorageClient struct {
|
|
raw *gapic.Client
|
|
settings *settings
|
|
}
|
|
|
|
// newGRPCStorageClient initializes a new storageClient that uses the gRPC
|
|
// Storage API.
|
|
func newGRPCStorageClient(ctx context.Context, opts ...storageOption) (storageClient, error) {
|
|
s := initSettings(opts...)
|
|
s.clientOption = append(defaultGRPCOptions(), s.clientOption...)
|
|
|
|
g, err := gapic.NewClient(ctx, s.clientOption...)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &grpcStorageClient{
|
|
raw: g,
|
|
settings: s,
|
|
}, nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) Close() error {
|
|
return c.raw.Close()
|
|
}
|
|
|
|
// Top-level methods.
|
|
|
|
func (c *grpcStorageClient) GetServiceAccount(ctx context.Context, project string, opts ...storageOption) (string, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.GetServiceAccountRequest{
|
|
Project: toProjectResource(project),
|
|
}
|
|
var resp *storagepb.ServiceAccount
|
|
err := run(ctx, func() error {
|
|
var err error
|
|
resp, err = c.raw.GetServiceAccount(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return resp.EmailAddress, err
|
|
}
|
|
|
|
func (c *grpcStorageClient) CreateBucket(ctx context.Context, project, bucket string, attrs *BucketAttrs, opts ...storageOption) (*BucketAttrs, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
b := attrs.toProtoBucket()
|
|
b.Name = bucket
|
|
// If there is lifecycle information but no location, explicitly set
|
|
// the location. This is a GCS quirk/bug.
|
|
if b.GetLocation() == "" && b.GetLifecycle() != nil {
|
|
b.Location = "US"
|
|
}
|
|
|
|
req := &storagepb.CreateBucketRequest{
|
|
Parent: toProjectResource(project),
|
|
Bucket: b,
|
|
BucketId: b.GetName(),
|
|
PredefinedAcl: attrs.PredefinedACL,
|
|
PredefinedDefaultObjectAcl: attrs.PredefinedDefaultObjectACL,
|
|
}
|
|
|
|
var battrs *BucketAttrs
|
|
err := run(ctx, func() error {
|
|
res, err := c.raw.CreateBucket(ctx, req, s.gax...)
|
|
|
|
battrs = newBucketFromProto(res)
|
|
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
|
|
return battrs, err
|
|
}
|
|
|
|
func (c *grpcStorageClient) ListBuckets(ctx context.Context, project string, opts ...storageOption) *BucketIterator {
|
|
s := callSettings(c.settings, opts...)
|
|
it := &BucketIterator{
|
|
ctx: ctx,
|
|
projectID: project,
|
|
}
|
|
|
|
var gitr *gapic.BucketIterator
|
|
fetch := func(pageSize int, pageToken string) (token string, err error) {
|
|
// Initialize GAPIC-based iterator when pageToken is empty, which
|
|
// indicates that this fetch call is attempting to get the first page.
|
|
//
|
|
// Note: Initializing the GAPIC-based iterator lazily is necessary to
|
|
// capture the BucketIterator.Prefix set by the user *after* the
|
|
// BucketIterator is returned to them from the veneer.
|
|
if pageToken == "" {
|
|
req := &storagepb.ListBucketsRequest{
|
|
Parent: toProjectResource(it.projectID),
|
|
Prefix: it.Prefix,
|
|
}
|
|
gitr = c.raw.ListBuckets(it.ctx, req, s.gax...)
|
|
}
|
|
|
|
var buckets []*storagepb.Bucket
|
|
var next string
|
|
err = run(it.ctx, func() error {
|
|
buckets, next, err = gitr.InternalFetch(pageSize, pageToken)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
for _, bkt := range buckets {
|
|
b := newBucketFromProto(bkt)
|
|
it.buckets = append(it.buckets, b)
|
|
}
|
|
|
|
return next, nil
|
|
}
|
|
it.pageInfo, it.nextFunc = iterator.NewPageInfo(
|
|
fetch,
|
|
func() int { return len(it.buckets) },
|
|
func() interface{} { b := it.buckets; it.buckets = nil; return b })
|
|
|
|
return it
|
|
}
|
|
|
|
// Bucket methods.
|
|
|
|
func (c *grpcStorageClient) DeleteBucket(ctx context.Context, bucket string, conds *BucketConditions, opts ...storageOption) error {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.DeleteBucketRequest{
|
|
Name: bucketResourceName(globalProjectAlias, bucket),
|
|
}
|
|
if err := applyBucketCondsProto("grpcStorageClient.DeleteBucket", conds, req); err != nil {
|
|
return err
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
|
|
return run(ctx, func() error {
|
|
return c.raw.DeleteBucket(ctx, req, s.gax...)
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
}
|
|
|
|
func (c *grpcStorageClient) GetBucket(ctx context.Context, bucket string, conds *BucketConditions, opts ...storageOption) (*BucketAttrs, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.GetBucketRequest{
|
|
Name: bucketResourceName(globalProjectAlias, bucket),
|
|
}
|
|
if err := applyBucketCondsProto("grpcStorageClient.GetBucket", conds, req); err != nil {
|
|
return nil, err
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
|
|
var battrs *BucketAttrs
|
|
err := run(ctx, func() error {
|
|
res, err := c.raw.GetBucket(ctx, req, s.gax...)
|
|
|
|
battrs = newBucketFromProto(res)
|
|
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
|
|
if s, ok := status.FromError(err); ok && s.Code() == codes.NotFound {
|
|
return nil, ErrBucketNotExist
|
|
}
|
|
|
|
return battrs, err
|
|
}
|
|
func (c *grpcStorageClient) UpdateBucket(ctx context.Context, bucket string, uattrs *BucketAttrsToUpdate, conds *BucketConditions, opts ...storageOption) (*BucketAttrs, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
b := uattrs.toProtoBucket()
|
|
b.Name = bucketResourceName(globalProjectAlias, bucket)
|
|
req := &storagepb.UpdateBucketRequest{
|
|
Bucket: b,
|
|
PredefinedAcl: uattrs.PredefinedACL,
|
|
PredefinedDefaultObjectAcl: uattrs.PredefinedDefaultObjectACL,
|
|
}
|
|
if err := applyBucketCondsProto("grpcStorageClient.UpdateBucket", conds, req); err != nil {
|
|
return nil, err
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
|
|
var paths []string
|
|
fieldMask := &fieldmaskpb.FieldMask{
|
|
Paths: paths,
|
|
}
|
|
if uattrs.CORS != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "cors")
|
|
}
|
|
if uattrs.DefaultEventBasedHold != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "default_event_based_hold")
|
|
}
|
|
if uattrs.RetentionPolicy != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "retention_policy")
|
|
}
|
|
if uattrs.VersioningEnabled != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "versioning")
|
|
}
|
|
if uattrs.RequesterPays != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "billing")
|
|
}
|
|
if uattrs.BucketPolicyOnly != nil || uattrs.UniformBucketLevelAccess != nil || uattrs.PublicAccessPrevention != PublicAccessPreventionUnknown {
|
|
fieldMask.Paths = append(fieldMask.Paths, "iam_config")
|
|
}
|
|
if uattrs.Encryption != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "encryption")
|
|
}
|
|
if uattrs.Lifecycle != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "lifecycle")
|
|
}
|
|
if uattrs.Logging != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "logging")
|
|
}
|
|
if uattrs.Website != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "website")
|
|
}
|
|
if uattrs.PredefinedACL != "" {
|
|
// In cases where PredefinedACL is set, Acl is cleared.
|
|
fieldMask.Paths = append(fieldMask.Paths, "acl")
|
|
}
|
|
if uattrs.PredefinedDefaultObjectACL != "" {
|
|
// In cases where PredefinedDefaultObjectACL is set, DefaultObjectAcl is cleared.
|
|
fieldMask.Paths = append(fieldMask.Paths, "default_object_acl")
|
|
}
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
if uattrs.acl != nil {
|
|
// In cases where acl is set by UpdateBucketACL method.
|
|
fieldMask.Paths = append(fieldMask.Paths, "acl")
|
|
}
|
|
if uattrs.defaultObjectACL != nil {
|
|
// In cases where defaultObjectACL is set by UpdateBucketACL method.
|
|
fieldMask.Paths = append(fieldMask.Paths, "default_object_acl")
|
|
}
|
|
if uattrs.StorageClass != "" {
|
|
fieldMask.Paths = append(fieldMask.Paths, "storage_class")
|
|
}
|
|
if uattrs.RPO != RPOUnknown {
|
|
fieldMask.Paths = append(fieldMask.Paths, "rpo")
|
|
}
|
|
// TODO(cathyo): Handle labels. Pending b/230510191.
|
|
req.UpdateMask = fieldMask
|
|
|
|
var battrs *BucketAttrs
|
|
err := run(ctx, func() error {
|
|
res, err := c.raw.UpdateBucket(ctx, req, s.gax...)
|
|
battrs = newBucketFromProto(res)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
|
|
return battrs, err
|
|
}
|
|
func (c *grpcStorageClient) LockBucketRetentionPolicy(ctx context.Context, bucket string, conds *BucketConditions, opts ...storageOption) error {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.LockBucketRetentionPolicyRequest{
|
|
Bucket: bucketResourceName(globalProjectAlias, bucket),
|
|
}
|
|
if err := applyBucketCondsProto("grpcStorageClient.LockBucketRetentionPolicy", conds, req); err != nil {
|
|
return err
|
|
}
|
|
|
|
return run(ctx, func() error {
|
|
_, err := c.raw.LockBucketRetentionPolicy(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
|
|
}
|
|
func (c *grpcStorageClient) ListObjects(ctx context.Context, bucket string, q *Query, opts ...storageOption) *ObjectIterator {
|
|
s := callSettings(c.settings, opts...)
|
|
it := &ObjectIterator{
|
|
ctx: ctx,
|
|
}
|
|
if q != nil {
|
|
it.query = *q
|
|
}
|
|
req := &storagepb.ListObjectsRequest{
|
|
Parent: bucketResourceName(globalProjectAlias, bucket),
|
|
Prefix: it.query.Prefix,
|
|
Delimiter: it.query.Delimiter,
|
|
Versions: it.query.Versions,
|
|
LexicographicStart: it.query.StartOffset,
|
|
LexicographicEnd: it.query.EndOffset,
|
|
// TODO(noahietz): Convert a projection to a FieldMask.
|
|
// ReadMask: q.Projection,
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
gitr := c.raw.ListObjects(it.ctx, req, s.gax...)
|
|
fetch := func(pageSize int, pageToken string) (token string, err error) {
|
|
var objects []*storagepb.Object
|
|
err = run(it.ctx, func() error {
|
|
objects, token, err = gitr.InternalFetch(pageSize, pageToken)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
if st, ok := status.FromError(err); ok && st.Code() == codes.NotFound {
|
|
err = ErrBucketNotExist
|
|
}
|
|
return "", err
|
|
}
|
|
|
|
for _, obj := range objects {
|
|
b := newObjectFromProto(obj)
|
|
it.items = append(it.items, b)
|
|
}
|
|
|
|
return token, nil
|
|
}
|
|
it.pageInfo, it.nextFunc = iterator.NewPageInfo(
|
|
fetch,
|
|
func() int { return len(it.items) },
|
|
func() interface{} { b := it.items; it.items = nil; return b })
|
|
|
|
return it
|
|
}
|
|
|
|
// Object metadata methods.
|
|
|
|
func (c *grpcStorageClient) DeleteObject(ctx context.Context, bucket, object string, gen int64, conds *Conditions, opts ...storageOption) error {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.DeleteObjectRequest{
|
|
Bucket: bucketResourceName(globalProjectAlias, bucket),
|
|
Object: object,
|
|
}
|
|
if err := applyCondsProto("grpcStorageClient.DeleteObject", gen, conds, req); err != nil {
|
|
return err
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
err := run(ctx, func() error {
|
|
return c.raw.DeleteObject(ctx, req, s.gax...)
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if s, ok := status.FromError(err); ok && s.Code() == codes.NotFound {
|
|
return ErrObjectNotExist
|
|
}
|
|
return err
|
|
}
|
|
|
|
func (c *grpcStorageClient) GetObject(ctx context.Context, bucket, object string, gen int64, encryptionKey []byte, conds *Conditions, opts ...storageOption) (*ObjectAttrs, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.GetObjectRequest{
|
|
Bucket: bucketResourceName(globalProjectAlias, bucket),
|
|
Object: object,
|
|
}
|
|
if err := applyCondsProto("grpcStorageClient.GetObject", gen, conds, req); err != nil {
|
|
return nil, err
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
if encryptionKey != nil {
|
|
req.CommonObjectRequestParams = toProtoCommonObjectRequestParams(encryptionKey)
|
|
}
|
|
|
|
var attrs *ObjectAttrs
|
|
err := run(ctx, func() error {
|
|
res, err := c.raw.GetObject(ctx, req, s.gax...)
|
|
attrs = newObjectFromProto(res)
|
|
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
|
|
if s, ok := status.FromError(err); ok && s.Code() == codes.NotFound {
|
|
return nil, ErrObjectNotExist
|
|
}
|
|
|
|
return attrs, err
|
|
}
|
|
|
|
func (c *grpcStorageClient) UpdateObject(ctx context.Context, bucket, object string, uattrs *ObjectAttrsToUpdate, gen int64, encryptionKey []byte, conds *Conditions, opts ...storageOption) (*ObjectAttrs, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
o := uattrs.toProtoObject(bucketResourceName(globalProjectAlias, bucket), object)
|
|
req := &storagepb.UpdateObjectRequest{
|
|
Object: o,
|
|
PredefinedAcl: uattrs.PredefinedACL,
|
|
}
|
|
if err := applyCondsProto("grpcStorageClient.UpdateObject", gen, conds, req); err != nil {
|
|
return nil, err
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
if encryptionKey != nil {
|
|
req.CommonObjectRequestParams = toProtoCommonObjectRequestParams(encryptionKey)
|
|
}
|
|
|
|
var paths []string
|
|
fieldMask := &fieldmaskpb.FieldMask{
|
|
Paths: paths,
|
|
}
|
|
if uattrs.EventBasedHold != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "event_based_hold")
|
|
}
|
|
if uattrs.TemporaryHold != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "temporary_hold")
|
|
}
|
|
if uattrs.ContentType != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "content_type")
|
|
}
|
|
if uattrs.ContentLanguage != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "content_language")
|
|
}
|
|
if uattrs.ContentEncoding != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "content_encoding")
|
|
}
|
|
if uattrs.ContentDisposition != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "content_disposition")
|
|
}
|
|
if uattrs.CacheControl != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "cache_control")
|
|
}
|
|
if !uattrs.CustomTime.IsZero() {
|
|
fieldMask.Paths = append(fieldMask.Paths, "custom_time")
|
|
}
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
if uattrs.ACL != nil {
|
|
fieldMask.Paths = append(fieldMask.Paths, "acl")
|
|
}
|
|
// TODO(cathyo): Handle metadata. Pending b/230510191.
|
|
|
|
req.UpdateMask = fieldMask
|
|
|
|
var attrs *ObjectAttrs
|
|
err := run(ctx, func() error {
|
|
res, err := c.raw.UpdateObject(ctx, req, s.gax...)
|
|
attrs = newObjectFromProto(res)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if e, ok := status.FromError(err); ok && e.Code() == codes.NotFound {
|
|
return nil, ErrObjectNotExist
|
|
}
|
|
|
|
return attrs, err
|
|
}
|
|
|
|
// Default Object ACL methods.
|
|
|
|
func (c *grpcStorageClient) DeleteDefaultObjectACL(ctx context.Context, bucket string, entity ACLEntity, opts ...storageOption) error {
|
|
// There is no separate API for PATCH in gRPC.
|
|
// Make a GET call first to retrieve BucketAttrs.
|
|
attrs, err := c.GetBucket(ctx, bucket, nil, opts...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
// Delete the entity and copy other remaining ACL entities.
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
// Return error if entity is not found or a project ID is used.
|
|
invalidEntity := true
|
|
var acl []ACLRule
|
|
for _, a := range attrs.DefaultObjectACL {
|
|
if a.Entity != entity {
|
|
acl = append(acl, a)
|
|
}
|
|
if a.Entity == entity {
|
|
invalidEntity = false
|
|
}
|
|
}
|
|
if invalidEntity {
|
|
return fmt.Errorf("storage: entity %v was not found on bucket %v, got %v. %v", entity, bucket, attrs.DefaultObjectACL, msgEntityNotSupported)
|
|
}
|
|
uattrs := &BucketAttrsToUpdate{defaultObjectACL: acl}
|
|
// Call UpdateBucket with a MetagenerationMatch precondition set.
|
|
if _, err = c.UpdateBucket(ctx, bucket, uattrs, &BucketConditions{MetagenerationMatch: attrs.MetaGeneration}, opts...); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) ListDefaultObjectACLs(ctx context.Context, bucket string, opts ...storageOption) ([]ACLRule, error) {
|
|
attrs, err := c.GetBucket(ctx, bucket, nil, opts...)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return attrs.DefaultObjectACL, nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) UpdateDefaultObjectACL(ctx context.Context, bucket string, entity ACLEntity, role ACLRole, opts ...storageOption) error {
|
|
// There is no separate API for PATCH in gRPC.
|
|
// Make a GET call first to retrieve BucketAttrs.
|
|
attrs, err := c.GetBucket(ctx, bucket, nil, opts...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
var acl []ACLRule
|
|
aclRule := ACLRule{Entity: entity, Role: role}
|
|
acl = append(attrs.DefaultObjectACL, aclRule)
|
|
uattrs := &BucketAttrsToUpdate{defaultObjectACL: acl}
|
|
// Call UpdateBucket with a MetagenerationMatch precondition set.
|
|
if _, err = c.UpdateBucket(ctx, bucket, uattrs, &BucketConditions{MetagenerationMatch: attrs.MetaGeneration}, opts...); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// Bucket ACL methods.
|
|
|
|
func (c *grpcStorageClient) DeleteBucketACL(ctx context.Context, bucket string, entity ACLEntity, opts ...storageOption) error {
|
|
// There is no separate API for PATCH in gRPC.
|
|
// Make a GET call first to retrieve BucketAttrs.
|
|
attrs, err := c.GetBucket(ctx, bucket, nil, opts...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
// Delete the entity and copy other remaining ACL entities.
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
// Return error if entity is not found or a project ID is used.
|
|
invalidEntity := true
|
|
var acl []ACLRule
|
|
for _, a := range attrs.ACL {
|
|
if a.Entity != entity {
|
|
acl = append(acl, a)
|
|
}
|
|
if a.Entity == entity {
|
|
invalidEntity = false
|
|
}
|
|
}
|
|
if invalidEntity {
|
|
return fmt.Errorf("storage: entity %v was not found on bucket %v, got %v. %v", entity, bucket, attrs.ACL, msgEntityNotSupported)
|
|
}
|
|
uattrs := &BucketAttrsToUpdate{acl: acl}
|
|
// Call UpdateBucket with a MetagenerationMatch precondition set.
|
|
if _, err = c.UpdateBucket(ctx, bucket, uattrs, &BucketConditions{MetagenerationMatch: attrs.MetaGeneration}, opts...); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) ListBucketACLs(ctx context.Context, bucket string, opts ...storageOption) ([]ACLRule, error) {
|
|
attrs, err := c.GetBucket(ctx, bucket, nil, opts...)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return attrs.ACL, nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) UpdateBucketACL(ctx context.Context, bucket string, entity ACLEntity, role ACLRole, opts ...storageOption) error {
|
|
// There is no separate API for PATCH in gRPC.
|
|
// Make a GET call first to retrieve BucketAttrs.
|
|
attrs, err := c.GetBucket(ctx, bucket, nil, opts...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
var acl []ACLRule
|
|
aclRule := ACLRule{Entity: entity, Role: role}
|
|
acl = append(attrs.ACL, aclRule)
|
|
uattrs := &BucketAttrsToUpdate{acl: acl}
|
|
// Call UpdateBucket with a MetagenerationMatch precondition set.
|
|
if _, err = c.UpdateBucket(ctx, bucket, uattrs, &BucketConditions{MetagenerationMatch: attrs.MetaGeneration}, opts...); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// Object ACL methods.
|
|
|
|
func (c *grpcStorageClient) DeleteObjectACL(ctx context.Context, bucket, object string, entity ACLEntity, opts ...storageOption) error {
|
|
// There is no separate API for PATCH in gRPC.
|
|
// Make a GET call first to retrieve ObjectAttrs.
|
|
attrs, err := c.GetObject(ctx, bucket, object, defaultGen, nil, nil, opts...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
// Delete the entity and copy other remaining ACL entities.
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
// Return error if entity is not found or a project ID is used.
|
|
invalidEntity := true
|
|
var acl []ACLRule
|
|
for _, a := range attrs.ACL {
|
|
if a.Entity != entity {
|
|
acl = append(acl, a)
|
|
}
|
|
if a.Entity == entity {
|
|
invalidEntity = false
|
|
}
|
|
}
|
|
if invalidEntity {
|
|
return fmt.Errorf("storage: entity %v was not found on bucket %v, got %v. %v", entity, bucket, attrs.ACL, msgEntityNotSupported)
|
|
}
|
|
uattrs := &ObjectAttrsToUpdate{ACL: acl}
|
|
// Call UpdateObject with the specified metageneration.
|
|
if _, err = c.UpdateObject(ctx, bucket, object, uattrs, defaultGen, nil, &Conditions{MetagenerationMatch: attrs.Metageneration}, opts...); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// ListObjectACLs retrieves object ACL entries. By default, it operates on the latest generation of this object.
|
|
// Selecting a specific generation of this object is not currently supported by the client.
|
|
func (c *grpcStorageClient) ListObjectACLs(ctx context.Context, bucket, object string, opts ...storageOption) ([]ACLRule, error) {
|
|
o, err := c.GetObject(ctx, bucket, object, defaultGen, nil, nil, opts...)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return o.ACL, nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) UpdateObjectACL(ctx context.Context, bucket, object string, entity ACLEntity, role ACLRole, opts ...storageOption) error {
|
|
// There is no separate API for PATCH in gRPC.
|
|
// Make a GET call first to retrieve ObjectAttrs.
|
|
attrs, err := c.GetObject(ctx, bucket, object, defaultGen, nil, nil, opts...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
// Note: This API currently does not support entites using project ID.
|
|
// Use project numbers in ACL entities. Pending b/233617896.
|
|
var acl []ACLRule
|
|
aclRule := ACLRule{Entity: entity, Role: role}
|
|
acl = append(attrs.ACL, aclRule)
|
|
uattrs := &ObjectAttrsToUpdate{ACL: acl}
|
|
// Call UpdateObject with the specified metageneration.
|
|
if _, err = c.UpdateObject(ctx, bucket, object, uattrs, defaultGen, nil, &Conditions{MetagenerationMatch: attrs.Metageneration}, opts...); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// Media operations.
|
|
|
|
func (c *grpcStorageClient) ComposeObject(ctx context.Context, req *composeObjectRequest, opts ...storageOption) (*ObjectAttrs, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
|
|
dstObjPb := req.dstObject.attrs.toProtoObject(req.dstBucket)
|
|
dstObjPb.Name = req.dstObject.name
|
|
if err := applyCondsProto("ComposeObject destination", defaultGen, req.dstObject.conds, dstObjPb); err != nil {
|
|
return nil, err
|
|
}
|
|
if req.sendCRC32C {
|
|
dstObjPb.Checksums.Crc32C = &req.dstObject.attrs.CRC32C
|
|
}
|
|
|
|
srcs := []*storagepb.ComposeObjectRequest_SourceObject{}
|
|
for _, src := range req.srcs {
|
|
srcObjPb := &storagepb.ComposeObjectRequest_SourceObject{Name: src.name}
|
|
if err := applyCondsProto("ComposeObject source", src.gen, src.conds, srcObjPb); err != nil {
|
|
return nil, err
|
|
}
|
|
srcs = append(srcs, srcObjPb)
|
|
}
|
|
|
|
rawReq := &storagepb.ComposeObjectRequest{
|
|
Destination: dstObjPb,
|
|
SourceObjects: srcs,
|
|
}
|
|
if req.predefinedACL != "" {
|
|
rawReq.DestinationPredefinedAcl = req.predefinedACL
|
|
}
|
|
if req.dstObject.encryptionKey != nil {
|
|
rawReq.CommonObjectRequestParams = toProtoCommonObjectRequestParams(req.dstObject.encryptionKey)
|
|
}
|
|
|
|
var obj *storagepb.Object
|
|
var err error
|
|
if err := run(ctx, func() error {
|
|
obj, err = c.raw.ComposeObject(ctx, rawReq, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx)); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return newObjectFromProto(obj), nil
|
|
}
|
|
func (c *grpcStorageClient) RewriteObject(ctx context.Context, req *rewriteObjectRequest, opts ...storageOption) (*rewriteObjectResponse, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
obj := req.dstObject.attrs.toProtoObject("")
|
|
call := &storagepb.RewriteObjectRequest{
|
|
SourceBucket: bucketResourceName(globalProjectAlias, req.srcObject.bucket),
|
|
SourceObject: req.srcObject.name,
|
|
RewriteToken: req.token,
|
|
DestinationBucket: bucketResourceName(globalProjectAlias, req.dstObject.bucket),
|
|
DestinationName: req.dstObject.name,
|
|
Destination: obj,
|
|
DestinationKmsKey: req.dstObject.keyName,
|
|
DestinationPredefinedAcl: req.predefinedACL,
|
|
}
|
|
|
|
// The userProject, whether source or destination project, is decided by the code calling the interface.
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
if err := applyCondsProto("Copy destination", defaultGen, req.dstObject.conds, call); err != nil {
|
|
return nil, err
|
|
}
|
|
if err := applySourceCondsProto(req.srcObject.gen, req.srcObject.conds, call); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if len(req.dstObject.encryptionKey) > 0 {
|
|
call.CommonObjectRequestParams = toProtoCommonObjectRequestParams(req.dstObject.encryptionKey)
|
|
}
|
|
if len(req.srcObject.encryptionKey) > 0 {
|
|
srcParams := toProtoCommonObjectRequestParams(req.srcObject.encryptionKey)
|
|
call.CopySourceEncryptionAlgorithm = srcParams.GetEncryptionAlgorithm()
|
|
call.CopySourceEncryptionKeyBytes = srcParams.GetEncryptionKeyBytes()
|
|
call.CopySourceEncryptionKeySha256Bytes = srcParams.GetEncryptionKeySha256Bytes()
|
|
}
|
|
var res *storagepb.RewriteResponse
|
|
var err error
|
|
|
|
retryCall := func() error { res, err = c.raw.RewriteObject(ctx, call, s.gax...); return err }
|
|
|
|
if err := run(ctx, retryCall, s.retry, s.idempotent, setRetryHeaderGRPC(ctx)); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
r := &rewriteObjectResponse{
|
|
done: res.GetDone(),
|
|
written: res.GetTotalBytesRewritten(),
|
|
size: res.GetObjectSize(),
|
|
token: res.GetRewriteToken(),
|
|
resource: newObjectFromProto(res.GetResource()),
|
|
}
|
|
|
|
return r, nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) NewRangeReader(ctx context.Context, params *newRangeReaderParams, opts ...storageOption) (r *Reader, err error) {
|
|
ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.grpcStorageClient.NewRangeReader")
|
|
defer func() { trace.EndSpan(ctx, err) }()
|
|
|
|
s := callSettings(c.settings, opts...)
|
|
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
|
|
// A negative length means "read to the end of the object", but the
|
|
// read_limit field it corresponds to uses zero to mean the same thing. Thus
|
|
// we coerce the length to 0 to read to the end of the object.
|
|
if params.length < 0 {
|
|
params.length = 0
|
|
}
|
|
|
|
b := bucketResourceName(globalProjectAlias, params.bucket)
|
|
// TODO(noahdietz): Use encryptionKey to set relevant request fields.
|
|
req := &storagepb.ReadObjectRequest{
|
|
Bucket: b,
|
|
Object: params.object,
|
|
}
|
|
// The default is a negative value, which means latest.
|
|
if params.gen >= 0 {
|
|
req.Generation = params.gen
|
|
}
|
|
|
|
// Define a function that initiates a Read with offset and length, assuming
|
|
// we have already read seen bytes.
|
|
reopen := func(seen int64) (*readStreamResponse, context.CancelFunc, error) {
|
|
// If the context has already expired, return immediately without making
|
|
// we call.
|
|
if err := ctx.Err(); err != nil {
|
|
return nil, nil, err
|
|
}
|
|
|
|
cc, cancel := context.WithCancel(ctx)
|
|
|
|
start := params.offset + seen
|
|
// Only set a ReadLimit if length is greater than zero, because zero
|
|
// means read it all.
|
|
if params.length > 0 {
|
|
req.ReadLimit = params.length - seen
|
|
}
|
|
req.ReadOffset = start
|
|
|
|
if err := applyCondsProto("gRPCReader.reopen", params.gen, params.conds, req); err != nil {
|
|
cancel()
|
|
return nil, nil, err
|
|
}
|
|
|
|
var stream storagepb.Storage_ReadObjectClient
|
|
var msg *storagepb.ReadObjectResponse
|
|
var err error
|
|
|
|
err = run(cc, func() error {
|
|
stream, err = c.raw.ReadObject(cc, req, s.gax...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
msg, err = stream.Recv()
|
|
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
// Close the stream context we just created to ensure we don't leak
|
|
// resources.
|
|
cancel()
|
|
return nil, nil, err
|
|
}
|
|
|
|
return &readStreamResponse{stream, msg}, cancel, nil
|
|
}
|
|
|
|
res, cancel, err := reopen(0)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// The first message was Recv'd on stream open, use it to populate the
|
|
// object metadata.
|
|
msg := res.response
|
|
obj := msg.GetMetadata()
|
|
// This is the size of the entire object, even if only a range was requested.
|
|
size := obj.GetSize()
|
|
|
|
r = &Reader{
|
|
Attrs: ReaderObjectAttrs{
|
|
Size: size,
|
|
ContentType: obj.GetContentType(),
|
|
ContentEncoding: obj.GetContentEncoding(),
|
|
CacheControl: obj.GetCacheControl(),
|
|
LastModified: obj.GetUpdateTime().AsTime(),
|
|
Metageneration: obj.GetMetageneration(),
|
|
Generation: obj.GetGeneration(),
|
|
},
|
|
reader: &gRPCReader{
|
|
stream: res.stream,
|
|
reopen: reopen,
|
|
cancel: cancel,
|
|
size: size,
|
|
// Store the content from the first Recv in the
|
|
// client buffer for reading later.
|
|
leftovers: msg.GetChecksummedData().GetContent(),
|
|
},
|
|
}
|
|
|
|
cr := msg.GetContentRange()
|
|
if cr != nil {
|
|
r.Attrs.StartOffset = cr.GetStart()
|
|
r.remain = cr.GetEnd() - cr.GetStart() + 1
|
|
} else {
|
|
r.remain = size
|
|
}
|
|
|
|
// Only support checksums when reading an entire object, not a range.
|
|
if checksums := msg.GetObjectChecksums(); checksums != nil && checksums.Crc32C != nil && params.offset == 0 && params.length == 0 {
|
|
r.wantCRC = checksums.GetCrc32C()
|
|
r.checkCRC = true
|
|
}
|
|
|
|
return r, nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) OpenWriter(params *openWriterParams, opts ...storageOption) (*io.PipeWriter, error) {
|
|
var offset int64
|
|
errorf := params.setError
|
|
progress := params.progress
|
|
setObj := params.setObj
|
|
|
|
pr, pw := io.Pipe()
|
|
gw := newGRPCWriter(c, params, pr)
|
|
|
|
// This function reads the data sent to the pipe and sends sets of messages
|
|
// on the gRPC client-stream as the buffer is filled.
|
|
go func() {
|
|
defer close(params.donec)
|
|
|
|
// Loop until there is an error or the Object has been finalized.
|
|
for {
|
|
// Note: This blocks until either the buffer is full or EOF is read.
|
|
recvd, doneReading, err := gw.read()
|
|
if err != nil {
|
|
err = checkCanceled(err)
|
|
errorf(err)
|
|
pr.CloseWithError(err)
|
|
return
|
|
}
|
|
|
|
// TODO(noahdietz): Send encryption key via CommonObjectRequestParams.
|
|
|
|
// The chunk buffer is full, but there is no end in sight. This
|
|
// means that a resumable upload will need to be used to send
|
|
// multiple chunks, until we are done reading data. Start a
|
|
// resumable upload if it has not already been started.
|
|
// Otherwise, all data will be sent over a single gRPC stream.
|
|
if !doneReading && gw.upid == "" {
|
|
err = gw.startResumableUpload()
|
|
if err != nil {
|
|
err = checkCanceled(err)
|
|
errorf(err)
|
|
pr.CloseWithError(err)
|
|
return
|
|
}
|
|
}
|
|
|
|
o, off, finalized, err := gw.uploadBuffer(recvd, offset, doneReading)
|
|
if err != nil {
|
|
err = checkCanceled(err)
|
|
errorf(err)
|
|
pr.CloseWithError(err)
|
|
return
|
|
}
|
|
// At this point, the current buffer has been uploaded. Capture the
|
|
// committed offset here in case the upload was not finalized and
|
|
// another chunk is to be uploaded.
|
|
offset = off
|
|
progress(offset)
|
|
|
|
// When we are done reading data and the chunk has been finalized,
|
|
// we are done.
|
|
if doneReading && finalized {
|
|
// Build Object from server's response.
|
|
setObj(newObjectFromProto(o))
|
|
return
|
|
}
|
|
}
|
|
}()
|
|
|
|
return pw, nil
|
|
}
|
|
|
|
// IAM methods.
|
|
|
|
func (c *grpcStorageClient) GetIamPolicy(ctx context.Context, resource string, version int32, opts ...storageOption) (*iampb.Policy, error) {
|
|
// TODO: Need a way to set UserProject, potentially in X-Goog-User-Project system parameter.
|
|
s := callSettings(c.settings, opts...)
|
|
req := &iampb.GetIamPolicyRequest{
|
|
Resource: bucketResourceName(globalProjectAlias, resource),
|
|
Options: &iampb.GetPolicyOptions{
|
|
RequestedPolicyVersion: version,
|
|
},
|
|
}
|
|
var rp *iampb.Policy
|
|
err := run(ctx, func() error {
|
|
var err error
|
|
rp, err = c.raw.GetIamPolicy(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
|
|
return rp, err
|
|
}
|
|
|
|
func (c *grpcStorageClient) SetIamPolicy(ctx context.Context, resource string, policy *iampb.Policy, opts ...storageOption) error {
|
|
// TODO: Need a way to set UserProject, potentially in X-Goog-User-Project system parameter.
|
|
s := callSettings(c.settings, opts...)
|
|
|
|
req := &iampb.SetIamPolicyRequest{
|
|
Resource: bucketResourceName(globalProjectAlias, resource),
|
|
Policy: policy,
|
|
}
|
|
|
|
return run(ctx, func() error {
|
|
_, err := c.raw.SetIamPolicy(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
}
|
|
|
|
func (c *grpcStorageClient) TestIamPermissions(ctx context.Context, resource string, permissions []string, opts ...storageOption) ([]string, error) {
|
|
// TODO: Need a way to set UserProject, potentially in X-Goog-User-Project system parameter.
|
|
s := callSettings(c.settings, opts...)
|
|
req := &iampb.TestIamPermissionsRequest{
|
|
Resource: bucketResourceName(globalProjectAlias, resource),
|
|
Permissions: permissions,
|
|
}
|
|
var res *iampb.TestIamPermissionsResponse
|
|
err := run(ctx, func() error {
|
|
var err error
|
|
res, err = c.raw.TestIamPermissions(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return res.Permissions, nil
|
|
}
|
|
|
|
// HMAC Key methods.
|
|
|
|
func (c *grpcStorageClient) GetHMACKey(ctx context.Context, project, accessID string, opts ...storageOption) (*HMACKey, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.GetHmacKeyRequest{
|
|
AccessId: accessID,
|
|
Project: toProjectResource(project),
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
var metadata *storagepb.HmacKeyMetadata
|
|
err := run(ctx, func() error {
|
|
var err error
|
|
metadata, err = c.raw.GetHmacKey(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return toHMACKeyFromProto(metadata), nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) ListHMACKeys(ctx context.Context, project, serviceAccountEmail string, showDeletedKeys bool, opts ...storageOption) *HMACKeysIterator {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.ListHmacKeysRequest{
|
|
Project: toProjectResource(project),
|
|
ServiceAccountEmail: serviceAccountEmail,
|
|
ShowDeletedKeys: showDeletedKeys,
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
it := &HMACKeysIterator{
|
|
ctx: ctx,
|
|
projectID: project,
|
|
retry: s.retry,
|
|
}
|
|
gitr := c.raw.ListHmacKeys(it.ctx, req, s.gax...)
|
|
fetch := func(pageSize int, pageToken string) (token string, err error) {
|
|
var hmacKeys []*storagepb.HmacKeyMetadata
|
|
err = run(it.ctx, func() error {
|
|
hmacKeys, token, err = gitr.InternalFetch(pageSize, pageToken)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
for _, hkmd := range hmacKeys {
|
|
hk := toHMACKeyFromProto(hkmd)
|
|
it.hmacKeys = append(it.hmacKeys, hk)
|
|
}
|
|
|
|
return token, nil
|
|
}
|
|
it.pageInfo, it.nextFunc = iterator.NewPageInfo(
|
|
fetch,
|
|
func() int { return len(it.hmacKeys) - it.index },
|
|
func() interface{} {
|
|
prev := it.hmacKeys
|
|
it.hmacKeys = it.hmacKeys[:0]
|
|
it.index = 0
|
|
return prev
|
|
})
|
|
return it
|
|
}
|
|
|
|
func (c *grpcStorageClient) UpdateHMACKey(ctx context.Context, project, serviceAccountEmail, accessID string, attrs *HMACKeyAttrsToUpdate, opts ...storageOption) (*HMACKey, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
hk := &storagepb.HmacKeyMetadata{
|
|
AccessId: accessID,
|
|
Project: toProjectResource(project),
|
|
ServiceAccountEmail: serviceAccountEmail,
|
|
State: string(attrs.State),
|
|
Etag: attrs.Etag,
|
|
}
|
|
var paths []string
|
|
fieldMask := &fieldmaskpb.FieldMask{
|
|
Paths: paths,
|
|
}
|
|
if attrs.State != "" {
|
|
fieldMask.Paths = append(fieldMask.Paths, "state")
|
|
}
|
|
req := &storagepb.UpdateHmacKeyRequest{
|
|
HmacKey: hk,
|
|
UpdateMask: fieldMask,
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
var metadata *storagepb.HmacKeyMetadata
|
|
err := run(ctx, func() error {
|
|
var err error
|
|
metadata, err = c.raw.UpdateHmacKey(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return toHMACKeyFromProto(metadata), nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) CreateHMACKey(ctx context.Context, project, serviceAccountEmail string, opts ...storageOption) (*HMACKey, error) {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.CreateHmacKeyRequest{
|
|
Project: toProjectResource(project),
|
|
ServiceAccountEmail: serviceAccountEmail,
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
var res *storagepb.CreateHmacKeyResponse
|
|
err := run(ctx, func() error {
|
|
var err error
|
|
res, err = c.raw.CreateHmacKey(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
key := toHMACKeyFromProto(res.Metadata)
|
|
key.Secret = base64.StdEncoding.EncodeToString(res.SecretKeyBytes)
|
|
|
|
return key, nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) DeleteHMACKey(ctx context.Context, project string, accessID string, opts ...storageOption) error {
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.DeleteHmacKeyRequest{
|
|
AccessId: accessID,
|
|
Project: toProjectResource(project),
|
|
}
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
return run(ctx, func() error {
|
|
return c.raw.DeleteHmacKey(ctx, req, s.gax...)
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
}
|
|
|
|
// Notification methods.
|
|
|
|
func (c *grpcStorageClient) ListNotifications(ctx context.Context, bucket string, opts ...storageOption) (n map[string]*Notification, err error) {
|
|
ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.grpcStorageClient.ListNotifications")
|
|
defer func() { trace.EndSpan(ctx, err) }()
|
|
|
|
s := callSettings(c.settings, opts...)
|
|
if s.userProject != "" {
|
|
ctx = setUserProjectMetadata(ctx, s.userProject)
|
|
}
|
|
req := &storagepb.ListNotificationsRequest{
|
|
Parent: bucketResourceName(globalProjectAlias, bucket),
|
|
}
|
|
var notifications []*storagepb.Notification
|
|
err = run(ctx, func() error {
|
|
gitr := c.raw.ListNotifications(ctx, req, s.gax...)
|
|
for {
|
|
// PageSize is not set and fallbacks to the API default pageSize of 100.
|
|
items, nextPageToken, err := gitr.InternalFetch(int(req.GetPageSize()), req.GetPageToken())
|
|
if err != nil {
|
|
return err
|
|
}
|
|
notifications = append(notifications, items...)
|
|
// If there are no more results, nextPageToken is empty and err is nil.
|
|
if nextPageToken == "" {
|
|
return err
|
|
}
|
|
req.PageToken = nextPageToken
|
|
}
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return notificationsToMapFromProto(notifications), nil
|
|
}
|
|
|
|
func (c *grpcStorageClient) CreateNotification(ctx context.Context, bucket string, n *Notification, opts ...storageOption) (ret *Notification, err error) {
|
|
ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.grpcStorageClient.CreateNotification")
|
|
defer func() { trace.EndSpan(ctx, err) }()
|
|
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.CreateNotificationRequest{
|
|
Parent: bucketResourceName(globalProjectAlias, bucket),
|
|
Notification: toProtoNotification(n),
|
|
}
|
|
var pbn *storagepb.Notification
|
|
err = run(ctx, func() error {
|
|
var err error
|
|
pbn, err = c.raw.CreateNotification(ctx, req, s.gax...)
|
|
return err
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return toNotificationFromProto(pbn), err
|
|
}
|
|
|
|
func (c *grpcStorageClient) DeleteNotification(ctx context.Context, bucket string, id string, opts ...storageOption) (err error) {
|
|
ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.grpcStorageClient.DeleteNotification")
|
|
defer func() { trace.EndSpan(ctx, err) }()
|
|
|
|
s := callSettings(c.settings, opts...)
|
|
req := &storagepb.DeleteNotificationRequest{Name: id}
|
|
return run(ctx, func() error {
|
|
return c.raw.DeleteNotification(ctx, req, s.gax...)
|
|
}, s.retry, s.idempotent, setRetryHeaderGRPC(ctx))
|
|
}
|
|
|
|
// setUserProjectMetadata appends a project ID to the outgoing Context metadata
|
|
// via the x-goog-user-project system parameter defined at
|
|
// https://cloud.google.com/apis/docs/system-parameters. This is only for
|
|
// billing purposes, and is generally optional, except for requester-pays
|
|
// buckets.
|
|
func setUserProjectMetadata(ctx context.Context, project string) context.Context {
|
|
return metadata.AppendToOutgoingContext(ctx, "x-goog-user-project", project)
|
|
}
|
|
|
|
type readStreamResponse struct {
|
|
stream storagepb.Storage_ReadObjectClient
|
|
response *storagepb.ReadObjectResponse
|
|
}
|
|
|
|
type gRPCReader struct {
|
|
seen, size int64
|
|
stream storagepb.Storage_ReadObjectClient
|
|
reopen func(seen int64) (*readStreamResponse, context.CancelFunc, error)
|
|
leftovers []byte
|
|
cancel context.CancelFunc
|
|
}
|
|
|
|
// Read reads bytes into the user's buffer from an open gRPC stream.
|
|
func (r *gRPCReader) Read(p []byte) (int, error) {
|
|
// No stream to read from, either never initiliazed or Close was called.
|
|
// Note: There is a potential concurrency issue if multiple routines are
|
|
// using the same reader. One encounters an error and the stream is closed
|
|
// and then reopened while the other routine attempts to read from it.
|
|
if r.stream == nil {
|
|
return 0, fmt.Errorf("reader has been closed")
|
|
}
|
|
|
|
// The entire object has been read by this reader, return EOF.
|
|
if r.size != 0 && r.size == r.seen {
|
|
return 0, io.EOF
|
|
}
|
|
|
|
var n int
|
|
// Read leftovers and return what was available to conform to the Reader
|
|
// interface: https://pkg.go.dev/io#Reader.
|
|
if len(r.leftovers) > 0 {
|
|
n = copy(p, r.leftovers)
|
|
r.seen += int64(n)
|
|
r.leftovers = r.leftovers[n:]
|
|
return n, nil
|
|
}
|
|
|
|
// Attempt to Recv the next message on the stream.
|
|
msg, err := r.recv()
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
// TODO: Determine if we need to capture incremental CRC32C for this
|
|
// chunk. The Object CRC32C checksum is captured when directed to read
|
|
// the entire Object. If directed to read a range, we may need to
|
|
// calculate the range's checksum for verification if the checksum is
|
|
// present in the response here.
|
|
// TODO: Figure out if we need to support decompressive transcoding
|
|
// https://cloud.google.com/storage/docs/transcoding.
|
|
content := msg.GetChecksummedData().GetContent()
|
|
n = copy(p[n:], content)
|
|
leftover := len(content) - n
|
|
if leftover > 0 {
|
|
// Wasn't able to copy all of the data in the message, store for
|
|
// future Read calls.
|
|
r.leftovers = content[n:]
|
|
}
|
|
r.seen += int64(n)
|
|
|
|
return n, nil
|
|
}
|
|
|
|
// Close cancels the read stream's context in order for it to be closed and
|
|
// collected.
|
|
func (r *gRPCReader) Close() error {
|
|
if r.cancel != nil {
|
|
r.cancel()
|
|
}
|
|
r.stream = nil
|
|
return nil
|
|
}
|
|
|
|
// recv attempts to Recv the next message on the stream. In the event
|
|
// that a retryable error is encountered, the stream will be closed, reopened,
|
|
// and Recv again. This will attempt to Recv until one of the following is true:
|
|
//
|
|
// * Recv is successful
|
|
// * A non-retryable error is encountered
|
|
// * The Reader's context is canceled
|
|
//
|
|
// The last error received is the one that is returned, which could be from
|
|
// an attempt to reopen the stream.
|
|
func (r *gRPCReader) recv() (*storagepb.ReadObjectResponse, error) {
|
|
msg, err := r.stream.Recv()
|
|
if err != nil && shouldRetry(err) {
|
|
// This will "close" the existing stream and immediately attempt to
|
|
// reopen the stream, but will backoff if further attempts are necessary.
|
|
// Reopening the stream Recvs the first message, so if retrying is
|
|
// successful, the next logical chunk will be returned.
|
|
msg, err = r.reopenStream()
|
|
}
|
|
|
|
return msg, err
|
|
}
|
|
|
|
// reopenStream "closes" the existing stream and attempts to reopen a stream and
|
|
// sets the Reader's stream and cancelStream properties in the process.
|
|
func (r *gRPCReader) reopenStream() (*storagepb.ReadObjectResponse, error) {
|
|
// Close existing stream and initialize new stream with updated offset.
|
|
r.Close()
|
|
|
|
res, cancel, err := r.reopen(r.seen)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
r.stream = res.stream
|
|
r.cancel = cancel
|
|
return res.response, nil
|
|
}
|
|
|
|
func newGRPCWriter(c *grpcStorageClient, params *openWriterParams, r io.Reader) *gRPCWriter {
|
|
size := params.chunkSize
|
|
if params.chunkSize == 0 {
|
|
// TODO: Should we actually use the minimum of 256 KB here when the user
|
|
// indicates they want minimal memory usage? We cannot do a zero-copy,
|
|
// bufferless upload like HTTP/JSON can.
|
|
// TODO: We need to determine if we can avoid starting a
|
|
// resumable upload when the user *plans* to send more than bufSize but
|
|
// with a bufferless upload.
|
|
size = maxPerMessageWriteSize
|
|
}
|
|
|
|
return &gRPCWriter{
|
|
buf: make([]byte, size),
|
|
c: c,
|
|
ctx: params.ctx,
|
|
reader: r,
|
|
bucket: params.bucket,
|
|
attrs: params.attrs,
|
|
conds: params.conds,
|
|
encryptionKey: params.encryptionKey,
|
|
sendCRC32C: params.sendCRC32C,
|
|
}
|
|
}
|
|
|
|
// gRPCWriter is a wrapper around the the gRPC client-stream API that manages
|
|
// sending chunks of data provided by the user over the stream.
|
|
type gRPCWriter struct {
|
|
c *grpcStorageClient
|
|
buf []byte
|
|
reader io.Reader
|
|
|
|
ctx context.Context
|
|
|
|
bucket string
|
|
attrs *ObjectAttrs
|
|
conds *Conditions
|
|
encryptionKey []byte
|
|
|
|
sendCRC32C bool
|
|
|
|
// The gRPC client-stream used for sending buffers.
|
|
stream storagepb.Storage_WriteObjectClient
|
|
|
|
// The Resumable Upload ID started by a gRPC-based Writer.
|
|
upid string
|
|
}
|
|
|
|
// startResumableUpload initializes a Resumable Upload with gRPC and sets the
|
|
// upload ID on the Writer.
|
|
func (w *gRPCWriter) startResumableUpload() error {
|
|
spec, err := w.writeObjectSpec()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
upres, err := w.c.raw.StartResumableWrite(w.ctx, &storagepb.StartResumableWriteRequest{
|
|
WriteObjectSpec: spec,
|
|
})
|
|
|
|
w.upid = upres.GetUploadId()
|
|
return err
|
|
}
|
|
|
|
// queryProgress is a helper that queries the status of the resumable upload
|
|
// associated with the given upload ID.
|
|
func (w *gRPCWriter) queryProgress() (int64, error) {
|
|
q, err := w.c.raw.QueryWriteStatus(w.ctx, &storagepb.QueryWriteStatusRequest{UploadId: w.upid})
|
|
|
|
// q.GetCommittedSize() will return 0 if q is nil.
|
|
return q.GetPersistedSize(), err
|
|
}
|
|
|
|
// uploadBuffer opens a Write stream and uploads the buffer at the given offset (if
|
|
// uploading a chunk for a resumable uploadBuffer), and will mark the write as
|
|
// finished if we are done receiving data from the user. The resulting write
|
|
// offset after uploading the buffer is returned, as well as a boolean
|
|
// indicating if the Object has been finalized. If it has been finalized, the
|
|
// final Object will be returned as well. Finalizing the upload is primarily
|
|
// important for Resumable Uploads. A simple or multi-part upload will always
|
|
// be finalized once the entire buffer has been written.
|
|
func (w *gRPCWriter) uploadBuffer(recvd int, start int64, doneReading bool) (*storagepb.Object, int64, bool, error) {
|
|
var err error
|
|
var finishWrite bool
|
|
var sent, limit int = 0, maxPerMessageWriteSize
|
|
offset := start
|
|
toWrite := w.buf[:recvd]
|
|
for {
|
|
first := sent == 0
|
|
// This indicates that this is the last message and the remaining
|
|
// data fits in one message.
|
|
belowLimit := recvd-sent <= limit
|
|
if belowLimit {
|
|
limit = recvd - sent
|
|
}
|
|
if belowLimit && doneReading {
|
|
finishWrite = true
|
|
}
|
|
|
|
// Prepare chunk section for upload.
|
|
data := toWrite[sent : sent+limit]
|
|
req := &storagepb.WriteObjectRequest{
|
|
Data: &storagepb.WriteObjectRequest_ChecksummedData{
|
|
ChecksummedData: &storagepb.ChecksummedData{
|
|
Content: data,
|
|
},
|
|
},
|
|
WriteOffset: offset,
|
|
FinishWrite: finishWrite,
|
|
}
|
|
|
|
// Open a new stream and set the first_message field on the request.
|
|
// The first message on the WriteObject stream must either be the
|
|
// Object or the Resumable Upload ID.
|
|
if first {
|
|
ctx := gapic.InsertMetadata(w.ctx, metadata.Pairs("x-goog-request-params", "bucket="+url.QueryEscape(w.bucket)))
|
|
w.stream, err = w.c.raw.WriteObject(ctx)
|
|
if err != nil {
|
|
return nil, 0, false, err
|
|
}
|
|
|
|
if w.upid != "" {
|
|
req.FirstMessage = &storagepb.WriteObjectRequest_UploadId{UploadId: w.upid}
|
|
} else {
|
|
spec, err := w.writeObjectSpec()
|
|
if err != nil {
|
|
return nil, 0, false, err
|
|
}
|
|
req.FirstMessage = &storagepb.WriteObjectRequest_WriteObjectSpec{
|
|
WriteObjectSpec: spec,
|
|
}
|
|
}
|
|
|
|
// TODO: Currently the checksums are only sent on the first message
|
|
// of the stream, but in the future, we must also support sending it
|
|
// on the *last* message of the stream (instead of the first).
|
|
if w.sendCRC32C {
|
|
req.ObjectChecksums = &storagepb.ObjectChecksums{
|
|
Crc32C: proto.Uint32(w.attrs.CRC32C),
|
|
Md5Hash: w.attrs.MD5,
|
|
}
|
|
}
|
|
}
|
|
|
|
err = w.stream.Send(req)
|
|
if err == io.EOF {
|
|
// err was io.EOF. The client-side of a stream only gets an EOF on Send
|
|
// when the backend closes the stream and wants to return an error
|
|
// status. Closing the stream receives the status as an error.
|
|
_, err = w.stream.CloseAndRecv()
|
|
|
|
// Retriable errors mean we should start over and attempt to
|
|
// resend the entire buffer via a new stream.
|
|
// If not retriable, falling through will return the error received
|
|
// from closing the stream.
|
|
if shouldRetry(err) {
|
|
sent = 0
|
|
finishWrite = false
|
|
// TODO: Add test case for failure modes of querying progress.
|
|
offset, err = w.determineOffset(start)
|
|
if err == nil {
|
|
continue
|
|
}
|
|
}
|
|
}
|
|
if err != nil {
|
|
return nil, 0, false, err
|
|
}
|
|
|
|
// Update the immediate stream's sent total and the upload offset with
|
|
// the data sent.
|
|
sent += len(data)
|
|
offset += int64(len(data))
|
|
|
|
// Not done sending data, do not attempt to commit it yet, loop around
|
|
// and send more data.
|
|
if recvd-sent > 0 {
|
|
continue
|
|
}
|
|
|
|
// Done sending data. Close the stream to "commit" the data sent.
|
|
resp, finalized, err := w.commit()
|
|
// Retriable errors mean we should start over and attempt to
|
|
// resend the entire buffer via a new stream.
|
|
// If not retriable, falling through will return the error received
|
|
// from closing the stream.
|
|
if shouldRetry(err) {
|
|
sent = 0
|
|
finishWrite = false
|
|
offset, err = w.determineOffset(start)
|
|
if err == nil {
|
|
continue
|
|
}
|
|
}
|
|
if err != nil {
|
|
return nil, 0, false, err
|
|
}
|
|
|
|
return resp.GetResource(), offset, finalized, nil
|
|
}
|
|
}
|
|
|
|
// determineOffset either returns the offset given to it in the case of a simple
|
|
// upload, or queries the write status in the case a resumable upload is being
|
|
// used.
|
|
func (w *gRPCWriter) determineOffset(offset int64) (int64, error) {
|
|
// For a Resumable Upload, we must start from however much data
|
|
// was committed.
|
|
if w.upid != "" {
|
|
committed, err := w.queryProgress()
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
offset = committed
|
|
}
|
|
return offset, nil
|
|
}
|
|
|
|
// commit closes the stream to commit the data sent and potentially receive
|
|
// the finalized object if finished uploading. If the last request sent
|
|
// indicated that writing was finished, the Object will be finalized and
|
|
// returned. If not, then the Object will be nil, and the boolean returned will
|
|
// be false.
|
|
func (w *gRPCWriter) commit() (*storagepb.WriteObjectResponse, bool, error) {
|
|
finalized := true
|
|
resp, err := w.stream.CloseAndRecv()
|
|
if err == io.EOF {
|
|
// Closing a stream for a resumable upload finish_write = false results
|
|
// in an EOF which can be ignored, as we aren't done uploading yet.
|
|
finalized = false
|
|
err = nil
|
|
}
|
|
// Drop the stream reference as it has been closed.
|
|
w.stream = nil
|
|
|
|
return resp, finalized, err
|
|
}
|
|
|
|
// writeObjectSpec constructs a WriteObjectSpec proto using the Writer's
|
|
// ObjectAttrs and applies its Conditions. This is only used for gRPC.
|
|
func (w *gRPCWriter) writeObjectSpec() (*storagepb.WriteObjectSpec, error) {
|
|
// To avoid modifying the ObjectAttrs embeded in the calling writer, deref
|
|
// the ObjectAttrs pointer to make a copy, then assign the desired name to
|
|
// the attribute.
|
|
attrs := *w.attrs
|
|
|
|
spec := &storagepb.WriteObjectSpec{
|
|
Resource: attrs.toProtoObject(w.bucket),
|
|
}
|
|
// WriteObject doesn't support the generation condition, so use default.
|
|
if err := applyCondsProto("WriteObject", defaultGen, w.conds, spec); err != nil {
|
|
return nil, err
|
|
}
|
|
return spec, nil
|
|
}
|
|
|
|
// read copies the data in the reader to the given buffer and reports how much
|
|
// data was read into the buffer and if there is no more data to read (EOF).
|
|
func (w *gRPCWriter) read() (int, bool, error) {
|
|
// Set n to -1 to start the Read loop.
|
|
var n, recvd int = -1, 0
|
|
var err error
|
|
for err == nil && n != 0 {
|
|
// The routine blocks here until data is received.
|
|
n, err = w.reader.Read(w.buf[recvd:])
|
|
recvd += n
|
|
}
|
|
var done bool
|
|
if err == io.EOF {
|
|
done = true
|
|
err = nil
|
|
}
|
|
return recvd, done, err
|
|
}
|
|
|
|
func checkCanceled(err error) error {
|
|
if status.Code(err) == codes.Canceled {
|
|
return context.Canceled
|
|
}
|
|
|
|
return err
|
|
}
|