search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
gallery: Fix phan annotation for ImageGalleryBase::getImages
[mediawiki.git] / includes / libs / objectcache / RESTBagOStuff.php
blobb2600b908c86ac7aefe8d26cecbc5a1a64258b5f
1 <?php
2
3 namespace Wikimedia\ObjectCache;
4
5 use InvalidArgumentException;
6 use Psr\Log\LoggerInterface;
7 use Wikimedia\Http\MultiHttpClient;
8
9 /**
10 * Store key-value data via an HTTP service.
11 *
12 * ### Important caveats
13 *
14 * This interface is currently an incomplete BagOStuff implementation,
15 * supported only for use with MediaWiki features that accept a dedicated
16 * cache type to use for a narrow set of cache keys that share the same
17 * key expiry and replication requirements, and where the key-value server
18 * in question is statically configured with domain knowledge of said
19 * key expiry and replication requirements.
20 *
21 * Specifically, RESTBagOStuff has the following limitations:
22 *
23 * - The expiry parameter is ignored in methods like `set()`.
24 *
25 * There is not currently an agreed protocol for sending this to a
26 * server. This class is written for use with MediaWiki\Session\SessionManager
27 * and Kask/Cassanda at WMF, which does not expose a customizable expiry.
28 *
29 * As such, it is not recommended to use RESTBagOStuff to back a general
30 * purpose cache type (such as MediaWiki's main cache, or main stash).
31 * Instead, it is only supported toMediaWiki features where a cache type can
32 * be pointed for a narrow set of keys that naturally share the same TTL
33 * anyway, or where the feature behaves correctly even if the logical expiry
34 * is longer than specified (e.g. immutable keys, or value verification)
35 *
36 * - Most methods are non-atomic.
37 *
38 * The class should only be used for get, set, and delete operations.
39 * Advanced methods like `incr()`, `add()` and `lock()` do exist but
40 * inherit a native and best-effort implementation based on get+set.
41 * These should not be relied upon.
42 *
43 * ### Backend requirements
44 *
45 * The HTTP server will receive requests for URLs like `{baseURL}/{KEY}`. It
46 * must implement the GET, PUT and DELETE methods.
47 *
48 * E.g., when the base URL is `/sessions/v1`, then `set()` will:
49 *
50 * `PUT /sessions/v1/mykeyhere`
51 *
52 * and `get()` would do:
53 *
54 * `GET /sessions/v1/mykeyhere`
55 *
56 * and `delete()` would do:
57 *
58 * `DELETE /sessions/v1/mykeyhere`
59 *
60 * ### Example configuration
61 *
62 * Minimal generic configuration:
63 *
64 * @code
65 * $wgObjectCaches['sessions'] = array(
66 * 'class' => 'RESTBagOStuff',
67 * 'url' => 'http://localhost:7231/example/'
68 * );
69 * @endcode
70 *
71 *
72 * Configuration for [Kask](https://www.mediawiki.org/wiki/Kask) session store:
73 * @code
74 * $wgObjectCaches['sessions'] = array(
75 * 'class' => 'RESTBagOStuff',
76 * 'url' => 'https://kaskhost:1234/sessions/v1/',
77 * 'httpParams' => [
78 * 'readHeaders' => [],
79 * 'writeHeaders' => [ 'content-type' => 'application/octet-stream' ],
80 * 'deleteHeaders' => [],
81 * 'writeMethod' => 'POST',
82 * ],
83 * 'serialization_type' => 'JSON',
84 * 'extendedErrorBodyFields' => [ 'type', 'title', 'detail', 'instance' ]
85 * );
86 * $wgSessionCacheType = 'sessions';
87 * @endcode
88 */
89 class RESTBagOStuff extends MediumSpecificBagOStuff {
90 /**
91 * Default connection timeout in seconds. The kernel retransmits the SYN
92 * packet after 1 second, so 1.2 seconds allows for 1 retransmit without
93 * permanent failure.
94 */
95 private const DEFAULT_CONN_TIMEOUT = 1.2;
96
97 /**
98 * Default request timeout
99 */
100 private const DEFAULT_REQ_TIMEOUT = 3.0;
101
102 /**
103 * @var MultiHttpClient
104 */
105 private $client;
106
107 /**
108 * REST URL to use for storage.
109 *
110 * @var string
111 */
112 private $url;
113
114 /**
115 * HTTP parameters: readHeaders, writeHeaders, deleteHeaders, writeMethod.
116 *
117 * @var array
118 */
119 private $httpParams;
120
121 /**
122 * Optional serialization type to use. Allowed values: "PHP", "JSON".
123 *
124 * @var string
125 */
126 private $serializationType;
127
128 /**
129 * Optional HMAC Key for protecting the serialized blob. If omitted no protection is done
130 *
131 * @var string
132 */
133 private $hmacKey;
134
135 /**
136 * @var array additional body fields to log on error, if possible
137 */
138 private $extendedErrorBodyFields;
139
140 public function __construct( $params ) {
141 $params['segmentationSize'] ??= INF;
142 if ( empty( $params['url'] ) ) {
143 throw new InvalidArgumentException( 'URL parameter is required' );
144 }
145
146 if ( empty( $params['client'] ) ) {
147 // Pass through some params to the HTTP client.
148 $clientParams = [
149 'connTimeout' => $params['connTimeout'] ?? self::DEFAULT_CONN_TIMEOUT,
150 'reqTimeout' => $params['reqTimeout'] ?? self::DEFAULT_REQ_TIMEOUT,
151 ];
152 foreach ( [ 'caBundlePath', 'proxy', 'telemetry' ] as $key ) {
153 if ( isset( $params[$key] ) ) {
154 $clientParams[$key] = $params[$key];
155 }
156 }
157 $this->client = new MultiHttpClient( $clientParams );
158 } else {
159 $this->client = $params['client'];
160 }
161
162 $this->httpParams['writeMethod'] = $params['httpParams']['writeMethod'] ?? 'PUT';
163 $this->httpParams['readHeaders'] = $params['httpParams']['readHeaders'] ?? [];
164 $this->httpParams['writeHeaders'] = $params['httpParams']['writeHeaders'] ?? [];
165 $this->httpParams['deleteHeaders'] = $params['httpParams']['deleteHeaders'] ?? [];
166 $this->extendedErrorBodyFields = $params['extendedErrorBodyFields'] ?? [];
167 $this->serializationType = $params['serialization_type'] ?? 'PHP';
168 $this->hmacKey = $params['hmac_key'] ?? '';
169
170 // The parent constructor calls setLogger() which sets the logger in $this->client
171 parent::__construct( $params );
172
173 // Make sure URL ends with /
174 $this->url = rtrim( $params['url'], '/' ) . '/';
175
176 $this->attrMap[self::ATTR_DURABILITY] = self::QOS_DURABILITY_DISK;
177 }
178
179 public function setLogger( LoggerInterface $logger ) {
180 parent::setLogger( $logger );
181 $this->client->setLogger( $logger );
182 }
183
184 protected function doGet( $key, $flags = 0, &$casToken = null ) {
185 $getToken = ( $casToken === self::PASS_BY_REF );
186 $casToken = null;
187
188 $req = [
189 'method' => 'GET',
190 'url' => $this->url . rawurlencode( $key ),
191 'headers' => $this->httpParams['readHeaders'],
192 ];
193
194 $value = false;
195 $valueSize = false;
196 [ $rcode, , $rhdrs, $rbody, $rerr ] = $this->client->run( $req );
197 if ( $rcode === 200 && is_string( $rbody ) ) {
198 $value = $this->decodeBody( $rbody );
199 $valueSize = strlen( $rbody );
200 // @FIXME: use some kind of hash or UUID header as CAS token
201 if ( $getToken && $value !== false ) {
202 $casToken = $rbody;
203 }
204 } elseif ( $rcode === 0 || ( $rcode >= 400 && $rcode != 404 ) ) {
205 $this->handleError( 'Failed to fetch {cacheKey}', $rcode, $rerr, $rhdrs, $rbody,
206 [ 'cacheKey' => $key ] );
207 }
208
209 $this->updateOpStats( self::METRIC_OP_GET, [ $key => [ 0, $valueSize ] ] );
210
211 return $value;
212 }
213
214 protected function doSet( $key, $value, $exptime = 0, $flags = 0 ) {
215 $req = [
216 'method' => $this->httpParams['writeMethod'],
217 'url' => $this->url . rawurlencode( $key ),
218 'body' => $this->encodeBody( $value ),
219 'headers' => $this->httpParams['writeHeaders'],
220 ];
221
222 [ $rcode, , $rhdrs, $rbody, $rerr ] = $this->client->run( $req );
223 $res = ( $rcode === 200 || $rcode === 201 || $rcode === 204 );
224 if ( !$res ) {
225 $this->handleError( 'Failed to store {cacheKey}', $rcode, $rerr, $rhdrs, $rbody,
226 [ 'cacheKey' => $key ] );
227 }
228
229 $this->updateOpStats( self::METRIC_OP_SET, [ $key => [ strlen( $rbody ), 0 ] ] );
230
231 return $res;
232 }
233
234 protected function doAdd( $key, $value, $exptime = 0, $flags = 0 ) {
235 // NOTE: This is non-atomic
236 if ( $this->get( $key ) === false ) {
237 return $this->set( $key, $value, $exptime, $flags );
238 }
239
240 // key already set
241 return false;
242 }
243
244 protected function doDelete( $key, $flags = 0 ) {
245 $req = [
246 'method' => 'DELETE',
247 'url' => $this->url . rawurlencode( $key ),
248 'headers' => $this->httpParams['deleteHeaders'],
249 ];
250
251 [ $rcode, , $rhdrs, $rbody, $rerr ] = $this->client->run( $req );
252 $res = in_array( $rcode, [ 200, 204, 205, 404, 410 ] );
253 if ( !$res ) {
254 $this->handleError( 'Failed to delete {cacheKey}', $rcode, $rerr, $rhdrs, $rbody,
255 [ 'cacheKey' => $key ] );
256 }
257
258 $this->updateOpStats( self::METRIC_OP_DELETE, [ $key ] );
259
260 return $res;
261 }
262
263 protected function doIncrWithInit( $key, $exptime, $step, $init, $flags ) {
264 // NOTE: This is non-atomic
265 $curValue = $this->doGet( $key );
266 if ( $curValue === false ) {
267 $newValue = $this->doSet( $key, $init, $exptime ) ? $init : false;
268 } elseif ( $this->isInteger( $curValue ) ) {
269 $sum = max( $curValue + $step, 0 );
270 $newValue = $this->doSet( $key, $sum, $exptime ) ? $sum : false;
271 } else {
272 $newValue = false;
273 }
274
275 return $newValue;
276 }
277
278 /**
279 * Processes the response body.
280 *
281 * @param string $body request body to process
282 *
283 * @return mixed|bool the processed body, or false on error
284 */
285 private function decodeBody( $body ) {
286 $pieces = explode( '.', $body, 3 );
287 if ( count( $pieces ) !== 3 || $pieces[0] !== $this->serializationType ) {
288 return false;
289 }
290 [ , $hmac, $serialized ] = $pieces;
291 if ( $this->hmacKey !== '' ) {
292 $checkHmac = hash_hmac( 'sha256', $serialized, $this->hmacKey, true );
293 if ( !hash_equals( $checkHmac, base64_decode( $hmac ) ) ) {
294 return false;
295 }
296 }
297
298 switch ( $this->serializationType ) {
299 case 'JSON':
300 $value = json_decode( $serialized, true );
301 return ( json_last_error() === JSON_ERROR_NONE ) ? $value : false;
302
303 case 'PHP':
304 return unserialize( $serialized );
305
306 default:
307 throw new \DomainException(
308 "Unknown serialization type: $this->serializationType"
309 );
310 }
311 }
312
313 /**
314 * Prepares the request body (the "value" portion of our key/value store) for transmission.
315 *
316 * @param string $body request body to prepare
317 *
318 * @return string the prepared body
319 */
320 private function encodeBody( $body ) {
321 switch ( $this->serializationType ) {
322 case 'JSON':
323 $value = json_encode( $body );
324 if ( $value === false ) {
325 throw new InvalidArgumentException( __METHOD__ . ": body could not be encoded." );
326 }
327 break;
328
329 case 'PHP':
330 $value = serialize( $body );
331 break;
332
333 default:
334 throw new \DomainException(
335 "Unknown serialization type: $this->serializationType"
336 );
337 }
338
339 if ( $this->hmacKey !== '' ) {
340 $hmac = base64_encode(
341 hash_hmac( 'sha256', $value, $this->hmacKey, true )
342 );
343 } else {
344 $hmac = '';
345 }
346 return $this->serializationType . '.' . $hmac . '.' . $value;
347 }
348
349 /**
350 * Handle storage error
351 *
352 * @param string $msg Error message
353 * @param int $rcode Error code from client
354 * @param string $rerr Error message from client
355 * @param array $rhdrs Response headers
356 * @param string $rbody Error body from client (if any)
357 * @param array $context Error context for PSR-3 logging
358 */
359 protected function handleError( $msg, $rcode, $rerr, $rhdrs, $rbody, $context = [] ) {
360 $message = "$msg : ({code}) {error}";
361 $context = [
362 'code' => $rcode,
363 'error' => $rerr
364 ] + $context;
365
366 if ( $this->extendedErrorBodyFields !== [] ) {
367 $body = $this->decodeBody( $rbody );
368 if ( $body ) {
369 $extraFields = '';
370 foreach ( $this->extendedErrorBodyFields as $field ) {
371 if ( isset( $body[$field] ) ) {
372 $extraFields .= " : ({$field}) {$body[$field]}";
373 }
374 }
375 if ( $extraFields !== '' ) {
376 $message .= " {extra_fields}";
377 $context['extra_fields'] = $extraFields;
378 }
379 }
380 }
381
382 $this->logger->error( $message, $context );
383 $this->setLastError( $rcode === 0 ? self::ERR_UNREACHABLE : self::ERR_UNEXPECTED );
384 }
385 }
386
387 /** @deprecated class alias since 1.43 */
388 class_alias( RESTBagOStuff::class, 'RESTBagOStuff' );
MediaWiki Core