Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

rgw: add time skew check in function parse_v4_auth_header #19476

Merged
merged 1 commit into from
Jan 18, 2018
Merged

rgw: add time skew check in function parse_v4_auth_header #19476

merged 1 commit into from
Jan 18, 2018

Conversation

qrGitHub
Copy link

  • In auth v4 http header request, RGW doesn't check time skew, while AWS
  • does.

Fixes: http://tracker.ceph.com/issues/22418
Signed-off-by: Bingyin Zhang zhangbingyin@cloudin.cn

mattbenjamin
mattbenjamin reviewed Dec 13, 2017
View reviewed changes
src/rgw/rgw_auth_s3.cc Outdated
@@ -408,6 +408,19 @@ static inline int parse_v4_auth_header(const req_info& info, /* in
}
date = d;

uint64_t req_sec = (uint64_t)internal_timegm(&t);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we should be using new ceph::time primitives here; @adamemerson?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, we should.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hi @mattbenjamin, thanks for your comments.
I copied "internal_timegm" from function parse_v4_query_string. Would you tell me what "new ceph::time" is?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i think the internal_timegm() bit is fine. there is a common/ceph_time.h header that's based on the std::chrono library that could be used instead of the ceph_clock_now() part. @adamemerson, do you see any advantages to using that here?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@cbodley I'd prefer we use that going forward.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @adamemerson @mattbenjamin @cbodley, do you mean change ceph_clock_now to ceph::real_clock::now?

@qrGitHub qrGitHub mentioned this pull request Dec 13, 2017
Merged
@qrGitHub
Copy link
Author

hi @rzarzynski, @cbodley would you help to review this? Thanks.

@rzarzynski rzarzynski self-requested a review December 17, 2017 12:29
adamemerson
adamemerson reviewed Dec 19, 2017
View reviewed changes
Copy link
Contributor

@adamemerson adamemerson left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@cbodley All new code should use the new ceph_time.h stuff. Trying to migrate to it entirely is one of our Trello cards, I believe.

src/rgw/rgw_auth_s3.cc Outdated
@@ -408,6 +408,19 @@ static inline int parse_v4_auth_header(const req_info& info, /* in
}
date = d;

uint64_t req_sec = (uint64_t)internal_timegm(&t);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, we should.

@adamemerson
Copy link
Contributor

As opposed to utime_t/ceph_clock_now()

@cbodley
Copy link
Contributor

cbodley commented Dec 20, 2017

@cbodley All new code should use the new ceph_time.h stuff. Trying to migrate to it entirely is one of our Trello cards, I believe.

okay, no arguments there. just note that this block was copied from the v2 implementation, so we should probably move this logic into a helper function and fix both while we're at it. would you be willing to share some example code for @qrGitHub? since the resolution is currently in seconds, is ceph::coarse_real_clock the one you'd recommend?

@qrGitHub
Copy link
Author

Hi @adamemerson, would you be willing to share some example code? Thanks.

@adamemerson
Copy link
Contributor

Yes! Coarse real clock should be the one to use.

@adamemerson
Copy link
Contributor

As to timegm or internal_timegm, just use coarse_real_clock::from_time_t() to convert it to time point.

@qrGitHub
Copy link
Author

qrGitHub commented Jan 8, 2018

Hi @cbodley @adamemerson would you help to review this? Thanks.

cbodley
cbodley reviewed Jan 9, 2018
View reviewed changes
src/rgw/rgw_auth_s3.cc Outdated
auto req_tp = ceph::coarse_real_clock::from_time_t(internal_timegm(&t));
auto cur_tp = ceph::coarse_real_clock::now();
auto skew = std::chrono::duration_cast<std::chrono::seconds>(cur_tp - req_tp).count();
if (skew < -60*RGW_AUTH_GRACE_MINS || skew > 60*RGW_AUTH_GRACE_MINS) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there's a std::chrono::abs() in c++17 that can simplify this a bit:

  constexpr auto grace = std::chrono::minutes{RGW_AUTH_GRACE_MINS};
  if (std::chrono::abs(cur_tp - req_tp) > grace) {

src/rgw/rgw_auth_s3.cc Outdated
if (skew < -60*RGW_AUTH_GRACE_MINS || skew > 60*RGW_AUTH_GRACE_MINS) {
dout(10) << "NOTICE: request time skew too big." << dendl;
dout(10) << "req_tp=" << ceph::coarse_real_clock::to_time_t(req_tp) <<
", cur_tp=" << ceph::coarse_real_clock::to_time_t(cur_tp) << dendl;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

these duration types can be output directly with:

    using ceph::operator<<;
    dout(10) << "req_tp=" << req_tp << ", cur_tp=" << cur_tp << dendl;

rgw: add time skew check in function parse_v4_auth_header
b4e2f32 
* In auth v4 http header request, RGW doesn't check time skew, while AWS
* does.

Fixes: http://tracker.ceph.com/issues/22418
Signed-off-by: Bingyin Zhang <zhangbingyin@cloudin.cn>
@qrGitHub
Copy link
Author

Hi @cbodley, would you help to review this?
Do you know how to enable C++17 support in Ubuntu 16.04? I didn't test "std::chrono::abs" because my build machine cannot support C++17 yet.

@mattbenjamin
Copy link
Contributor

@qrGitHub @tchaikov certainly does; I'm pretty sure we're sourcing gcc-7and/or clang from some repo in our builders to accomplish that, e.g., https://askubuntu.com/questions/859256/how-to-install-gcc-7-or-clang-4-0

@tchaikov
Copy link
Contributor

@qrGitHub please see https://github.com/ceph/ceph#build-prerequisites . install-deps.sh will install gcc-7 on your system.

@qrGitHub
Copy link
Author

Thanks @mattbenjamin @tchaikov, after install-deps.sh, my machine can build the latest code now.

@qrGitHub
Copy link
Author

Hi @cbodley, can this be merged? Thanks.

@yuriw
Copy link
Contributor

yuriw commented Jan 16, 2018

wip-yuri2-testing-2018-01-16-1725

@yuriw yuriw merged commit c329791 into ceph:master Jan 18, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mattbenjamin mattbenjamin mattbenjamin left review comments

@adamemerson adamemerson adamemerson left review comments

@cbodley cbodley cbodley approved these changes

@rzarzynski rzarzynski Awaiting requested review from rzarzynski

Assignees
No one assigned
Labels
bug-fix needs-qa rgw wip-yuri2-testing
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@qrGitHub @adamemerson @cbodley @mattbenjamin @tchaikov @yuriw @rzarzynski