You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

228 lines
5.6 KiB

package main
// A note on the origin of the name.
// TODO: Nonrepudiable command log
import (
. ""
. ""
pcm ""
var Routes = map[string]*rpc.RPCFunc{
"status": rpc.NewRPCFunc(Status, []string{}),
"run": rpc.NewRPCFunc(Run, []string{"auth_command"}),
// NOTE: also, two special non-JSONRPC routes called "download" and "upload"
type Options struct {
Validators []Validator
ListenAddress string
StartNonce uint64
// Global instance
var barak = struct {
mtx sync.Mutex
processes map[string]*pcm.Process
validators []Validator
nonce uint64
}{sync.Mutex{}, make(map[string]*pcm.Process), nil, 0}
func main() {
// read options from stdin.
var err error
optionsBytes, err := ioutil.ReadAll(os.Stdin)
if err != nil {
panic(Fmt("Error reading input: %v", err))
options := binary.ReadJSON(&Options{}, optionsBytes, &err).(*Options)
if err != nil {
panic(Fmt("Error parsing input: %v", err))
barak.nonce = options.StartNonce
barak.validators = options.Validators
// Debug.
fmt.Printf("Options: %v\n", options)
fmt.Printf("Barak: %v\n", barak)
// Start rpc server.
mux := http.NewServeMux()
mux.HandleFunc("/download", ServeFile)
// TODO: mux.HandleFunc("/upload", UploadFile)
rpc.RegisterRPCFuncs(mux, Routes)
rpc.StartHTTPServer(options.ListenAddress, mux)
TrapSignal(func() {
fmt.Println("Barak shutting down")
// RPC functions
func Status() (*ResponseStatus, error) {
nonce := barak.nonce
validators := barak.validators
return &ResponseStatus{
Nonce: nonce,
Validators: validators,
}, nil
func Run(authCommand AuthCommand) (interface{}, error) {
command, err := parseValidateCommand(authCommand)
if err != nil {
return nil, err
log.Info(Fmt("Run() received command %v", reflect.TypeOf(command)))
// Issue command
switch c := command.(type) {
case CommandRunProcess:
return RunProcess(c.Wait, c.Label, c.ExecPath, c.Args, c.Input)
case CommandStopProcess:
return StopProcess(c.Label, c.Kill)
case CommandListProcesses:
return ListProcesses()
return nil, errors.New("Invalid endpoint for command")
func parseValidateCommandStr(authCommandStr string) (Command, error) {
var err error
authCommand := binary.ReadJSON(AuthCommand{}, []byte(authCommandStr), &err).(AuthCommand)
if err != nil {
fmt.Printf("Failed to parse auth_command")
return nil, errors.New("AuthCommand parse error")
return parseValidateCommand(authCommand)
func parseValidateCommand(authCommand AuthCommand) (Command, error) {
commandJSONStr := authCommand.CommandJSONStr
signatures := authCommand.Signatures
// Validate commandJSONStr
if !validate([]byte(commandJSONStr), barak.validators, signatures) {
fmt.Printf("Failed validation attempt")
return nil, errors.New("Validation error")
// Parse command
var err error
command := binary.ReadJSON(NoncedCommand{}, []byte(commandJSONStr), &err).(NoncedCommand)
if err != nil {
fmt.Printf("Failed to parse command")
return nil, errors.New("Command parse error")
// Prevent replays
if barak.nonce+1 != command.Nonce {
return nil, errors.New("Replay error")
} else {
barak.nonce += 1
return command.Command, nil
// RPC base commands
// WARNING Not validated, do not export to routes.
func RunProcess(wait bool, label string, execPath string, args []string, input string) (*ResponseRunProcess, error) {
// First, see if there already is a process labeled 'label'
existing := barak.processes[label]
if existing != nil {
return nil, fmt.Errorf("Process already exists: %v", label)
// Otherwise, create one.
proc, err := pcm.Create(pcm.ProcessModeDaemon, label, execPath, args, input)
if err == nil {
barak.processes[label] = proc
if err != nil {
return nil, err
if wait {
exitErr := pcm.Wait(proc)
return nil, exitErr
} else {
return &ResponseRunProcess{}, nil
func StopProcess(label string, kill bool) (*ResponseStopProcess, error) {
proc := barak.processes[label]
if proc == nil {
return nil, fmt.Errorf("Process does not exist: %v", label)
err := pcm.Stop(proc, kill)
return &ResponseStopProcess{}, err
func ListProcesses() (*ResponseListProcesses, error) {
var procs = []*pcm.Process{}
fmt.Println("Processes: %v", barak.processes)
for _, proc := range barak.processes {
procs = append(procs, proc)
return &ResponseListProcesses{
Processes: procs,
}, nil
func ServeFile(w http.ResponseWriter, req *http.Request) {
authCommandStr := req.FormValue("auth_command")
command, err := parseValidateCommandStr(authCommandStr)
if err != nil {
http.Error(w, Fmt("Invalid command: %v", err), 400)
serveCommand, ok := command.(CommandServeFile)
if !ok {
http.Error(w, "Invalid command", 400)
path := serveCommand.Path
if path == "" {
http.Error(w, "Must specify path", 400)
file, err := os.Open(path)
if err != nil {
http.Error(w, Fmt("Error opening file: %v. %v", path, err), 400)
_, err = io.Copy(w, file)
if err != nil {
fmt.Fprintf(os.Stderr, Fmt("Error serving file: %v. %v", path, err))