From eb750879a0f5d8412df345e5ff0b79f0026513e6 Mon Sep 17 00:00:00 2001 From: "Ian (Hee) Cha" Date: Wed, 17 May 2023 14:43:40 -0700 Subject: [PATCH] Use wall-time for credential helper invalidation (#18413) Previously we were using time intervals which excluded time spent with the system sleeping, which is not appropriate for expiring tokens which expire based on wall-time duration. Closes #18301. PiperOrigin-RevId: 529340767 Change-Id: I15e74e7bc87284f8ba53aedace955b29bd52df8e Co-authored-by: Daniel Wagner-Hall Co-authored-by: keertk --- .../lib/authandtls/credentialhelper/BUILD | 10 ++++-- .../credentialhelper/CredentialModule.java | 5 ++- .../credentialhelper/SystemMillisTicker.java | 35 +++++++++++++++++++ 3 files changed, 47 insertions(+), 3 deletions(-) create mode 100644 src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/SystemMillisTicker.java diff --git a/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/BUILD b/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/BUILD index 275c159b60087c..8a8a511068fbcc 100644 --- a/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/BUILD +++ b/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/BUILD @@ -10,7 +10,10 @@ filegroup( java_library( name = "credential_module", - srcs = ["CredentialModule.java"], + srcs = [ + "CredentialModule.java", + "SystemMillisTicker.java", + ], deps = [ "//src/main/java/com/google/devtools/build/lib:runtime", "//src/main/java/com/google/devtools/build/lib/authandtls", @@ -23,7 +26,10 @@ java_library( name = "credentialhelper", srcs = glob( ["*.java"], - exclude = ["CredentialModule.java"], + exclude = [ + "CredentialModule.java", + "SystemMillisTicker.java", + ], ), deps = [ "//src/main/java/com/google/devtools/build/lib/events", diff --git a/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/CredentialModule.java b/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/CredentialModule.java index 95af2af5fcced0..f18aa2d338579e 100644 --- a/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/CredentialModule.java +++ b/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/CredentialModule.java @@ -27,7 +27,10 @@ /** A module whose sole purpose is to hold the credential cache which is shared by other modules. */ public class CredentialModule extends BlazeModule { private final Cache>> credentialCache = - Caffeine.newBuilder().expireAfterWrite(Duration.ZERO).build(); + Caffeine.newBuilder() + .expireAfterWrite(Duration.ZERO) + .ticker(SystemMillisTicker.INSTANCE) + .build(); /** Returns the credential cache. */ public Cache>> getCredentialCache() { diff --git a/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/SystemMillisTicker.java b/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/SystemMillisTicker.java new file mode 100644 index 00000000000000..31328cc6535077 --- /dev/null +++ b/src/main/java/com/google/devtools/build/lib/authandtls/credentialhelper/SystemMillisTicker.java @@ -0,0 +1,35 @@ +// Copyright 2023 The Bazel Authors. All rights reserved. +// +// Licensed under the Apache License, Version 2.0 (the "License"); +// you may not use this file except in compliance with the License. +// You may obtain a copy of the License at +// +// http://www.apache.org/licenses/LICENSE-2.0 +// +// Unless required by applicable law or agreed to in writing, software +// distributed under the License is distributed on an "AS IS" BASIS, +// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +// See the License for the specific language governing permissions and +// limitations under the License. + +package com.google.devtools.build.lib.authandtls.credentialhelper; + +import com.github.benmanes.caffeine.cache.Ticker; + +/** + * SystemMillisTicker is a Ticker which uses the unix epoch as its fixed reference point. + * + *

It is preferable to com.github.benmanes.caffeine.cache.Ticker.SystemTicker because that class + * doesn't increment its time-source while the system is asleep, which isn't appropriate when + * expiring tokens which have wall-time-based expiry policies. + */ +public class SystemMillisTicker implements Ticker { + public static final SystemMillisTicker INSTANCE = new SystemMillisTicker(); + + private SystemMillisTicker() {} + + @Override + public long read() { + return System.currentTimeMillis() * 1_000_000; + } +}