gRPC: add support for SSL disabled to GrpcConnection.

var-const · var-const · commit 805b673520c3 · 2018-10-18T16:26:52.000-04:00
Unfortunately, there currently is no way to verify this change actually
works.
diff --git a/Firestore/Example/Firestore.xcodeproj/project.pbxproj b/Firestore/Example/Firestore.xcodeproj/project.pbxproj
@@ -81,7 +81,6 @@
 		5492E07A202154D600B64F25 /* FIRTypeTests.mm in Sources */ = {isa = PBXBuildFile; fileRef = 5492E071202154D600B64F25 /* FIRTypeTests.mm */; };
 		5492E07F202154EC00B64F25 /* FSTTransactionTests.mm in Sources */ = {isa = PBXBuildFile; fileRef = 5492E07B202154EB00B64F25 /* FSTTransactionTests.mm */; };
 		5492E080202154EC00B64F25 /* FSTSmokeTests.mm in Sources */ = {isa = PBXBuildFile; fileRef = 5492E07C202154EB00B64F25 /* FSTSmokeTests.mm */; };
-		5492E081202154EC00B64F25 /* FSTStreamTests.mm in Sources */ = {isa = PBXBuildFile; fileRef = 5492E07D202154EB00B64F25 /* FSTStreamTests.mm */; };
 		5492E082202154EC00B64F25 /* FSTDatastoreTests.mm in Sources */ = {isa = PBXBuildFile; fileRef = 5492E07E202154EC00B64F25 /* FSTDatastoreTests.mm */; };
 		5492E09D2021552D00B64F25 /* FSTLocalStoreTests.mm in Sources */ = {isa = PBXBuildFile; fileRef = 5492E0832021552A00B64F25 /* FSTLocalStoreTests.mm */; };
 		5492E09F2021552D00B64F25 /* FSTLevelDBMigrationsTests.mm in Sources */ = {isa = PBXBuildFile; fileRef = 5492E0862021552A00B64F25 /* FSTLevelDBMigrationsTests.mm */; };
@@ -360,7 +359,6 @@
 		5492E071202154D600B64F25 /* FIRTypeTests.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = FIRTypeTests.mm; sourceTree = "<group>"; };
 		5492E07B202154EB00B64F25 /* FSTTransactionTests.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = FSTTransactionTests.mm; sourceTree = "<group>"; };
 		5492E07C202154EB00B64F25 /* FSTSmokeTests.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = FSTSmokeTests.mm; sourceTree = "<group>"; };
-		5492E07D202154EB00B64F25 /* FSTStreamTests.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = FSTStreamTests.mm; sourceTree = "<group>"; };
 		5492E07E202154EC00B64F25 /* FSTDatastoreTests.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = FSTDatastoreTests.mm; sourceTree = "<group>"; };
 		5492E0832021552A00B64F25 /* FSTLocalStoreTests.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = FSTLocalStoreTests.mm; sourceTree = "<group>"; };
 		5492E0852021552A00B64F25 /* FSTRemoteDocumentCacheTests.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = FSTRemoteDocumentCacheTests.h; sourceTree = "<group>"; };
@@ -1231,7 +1229,6 @@
 				DE03B3621F215E1600A30B9C /* CAcert.pem */,
 				5492E07E202154EC00B64F25 /* FSTDatastoreTests.mm */,
 				5492E07C202154EB00B64F25 /* FSTSmokeTests.mm */,
-				5492E07D202154EB00B64F25 /* FSTStreamTests.mm */,
 				5492E07B202154EB00B64F25 /* FSTTransactionTests.mm */,
 			);
 			path = Integration;
@@ -1518,11 +1515,8 @@
 				"${BUILT_PRODUCTS_DIR}/GTMSessionFetcher/GTMSessionFetcher.framework",
 				"${BUILT_PRODUCTS_DIR}/GoogleUtilities/GoogleUtilities.framework",
 				"${BUILT_PRODUCTS_DIR}/Protobuf-iOS8.0/Protobuf.framework",
-				"${BUILT_PRODUCTS_DIR}/gRPC/GRPCClient.framework",
 				"${BUILT_PRODUCTS_DIR}/gRPC-C++/grpcpp.framework",
 				"${BUILT_PRODUCTS_DIR}/gRPC-Core/grpc.framework",
-				"${BUILT_PRODUCTS_DIR}/gRPC-ProtoRPC/ProtoRPC.framework",
-				"${BUILT_PRODUCTS_DIR}/gRPC-RxLibrary/RxLibrary.framework",
 				"${BUILT_PRODUCTS_DIR}/leveldb-library/leveldb.framework",
 				"${BUILT_PRODUCTS_DIR}/nanopb/nanopb.framework",
 			);
@@ -1532,11 +1526,8 @@
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/GTMSessionFetcher.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/GoogleUtilities.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/Protobuf.framework",
-				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/GRPCClient.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/grpcpp.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/grpc.framework",
-				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/ProtoRPC.framework",
-				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/RxLibrary.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/leveldb.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/nanopb.framework",
 			);
@@ -1765,11 +1756,8 @@
 				"${BUILT_PRODUCTS_DIR}/GTMSessionFetcher/GTMSessionFetcher.framework",
 				"${BUILT_PRODUCTS_DIR}/GoogleUtilities/GoogleUtilities.framework",
 				"${BUILT_PRODUCTS_DIR}/Protobuf-iOS8.0/Protobuf.framework",
-				"${BUILT_PRODUCTS_DIR}/gRPC/GRPCClient.framework",
 				"${BUILT_PRODUCTS_DIR}/gRPC-C++/grpcpp.framework",
 				"${BUILT_PRODUCTS_DIR}/gRPC-Core/grpc.framework",
-				"${BUILT_PRODUCTS_DIR}/gRPC-ProtoRPC/ProtoRPC.framework",
-				"${BUILT_PRODUCTS_DIR}/gRPC-RxLibrary/RxLibrary.framework",
 				"${BUILT_PRODUCTS_DIR}/leveldb-library/leveldb.framework",
 				"${BUILT_PRODUCTS_DIR}/nanopb/nanopb.framework",
 			);
@@ -1779,11 +1767,8 @@
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/GTMSessionFetcher.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/GoogleUtilities.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/Protobuf.framework",
-				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/GRPCClient.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/grpcpp.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/grpc.framework",
-				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/ProtoRPC.framework",
-				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/RxLibrary.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/leveldb.framework",
 				"${TARGET_BUILD_DIR}/${FRAMEWORKS_FOLDER_PATH}/nanopb.framework",
 			);
@@ -2002,7 +1987,6 @@
 				5492E0422021440500B64F25 /* FSTHelpers.mm in Sources */,
 				5491BC731FB44593008B3588 /* FSTIntegrationTestCase.mm in Sources */,
 				5492E080202154EC00B64F25 /* FSTSmokeTests.mm in Sources */,
-				5492E081202154EC00B64F25 /* FSTStreamTests.mm in Sources */,
 				5492E07F202154EC00B64F25 /* FSTTransactionTests.mm in Sources */,
 				5492E0442021457E00B64F25 /* XCTestCase+Await.mm in Sources */,
 				B67BF44A216EB43000CA9097 /* create_noop_connectivity_monitor.cc in Sources */,
@@ -2217,14 +2201,6 @@
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/Protobuf/Protobuf.framework/Headers\"",
 					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-Core/grpc.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-ProtoRPC/ProtoRPC.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-RxLibrary/RxLibrary.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC/GRPCClient.framework/Headers\"",
-					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/leveldb-library/leveldb.framework/Headers\"",
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/nanopb/nanopb.framework/Headers\"",
@@ -2301,14 +2277,6 @@
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/Protobuf/Protobuf.framework/Headers\"",
 					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-Core/grpc.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-ProtoRPC/ProtoRPC.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-RxLibrary/RxLibrary.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC/GRPCClient.framework/Headers\"",
-					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/leveldb-library/leveldb.framework/Headers\"",
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/nanopb/nanopb.framework/Headers\"",
@@ -2510,14 +2478,6 @@
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/Protobuf/Protobuf.framework/Headers\"",
 					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-Core/grpc.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-ProtoRPC/ProtoRPC.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-RxLibrary/RxLibrary.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC/GRPCClient.framework/Headers\"",
-					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/leveldb-library/leveldb.framework/Headers\"",
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/nanopb/nanopb.framework/Headers\"",
@@ -2595,14 +2555,6 @@
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/Protobuf/Protobuf.framework/Headers\"",
 					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-Core/grpc.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-ProtoRPC/ProtoRPC.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC-RxLibrary/RxLibrary.framework/Headers\"",
-					"-iquote",
-					"\"${PODS_CONFIGURATION_BUILD_DIR}/gRPC/GRPCClient.framework/Headers\"",
-					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/leveldb-library/leveldb.framework/Headers\"",
 					"-iquote",
 					"\"${PODS_CONFIGURATION_BUILD_DIR}/nanopb/nanopb.framework/Headers\"",
diff --git a/Firestore/core/src/firebase/firestore/remote/grpc_connection.h b/Firestore/core/src/firebase/firestore/remote/grpc_connection.h
@@ -19,6 +19,7 @@
 
 #include <memory>
 #include <string>
+#include <unordered_map>
 #include <vector>
 
 #include "Firestore/core/src/firebase/firestore/auth/token.h"
@@ -80,25 +81,29 @@ class GrpcConnection {
   void Unregister(GrpcCall* call);
 
   /**
-   * For tests only: use a custom root certificate file and the given SSL
-   * target name for all connections. Call before creating any streams or calls.
+   * Don't use SSL, send all traffic unencrypted. Call before creating any
+   * streams or calls.
    */
-  static void UseTestCertificate(absl::string_view certificate_path,
-                                 absl::string_view target_name);
+  static void UseInsecureChannel(const std::string& host);
 
   /**
-   * For tests only: don't use SSL, send all traffic unencrypted. Call before
-   * creating any streams or calls. Overrides a test certificate.
+   * For tests only: use a custom root certificate file and the given SSL
+   * target name for all connections. Call before creating any streams or calls.
    */
-  static void UseInsecureChannel();
+  static void UseTestCertificate(const std::string& host,
+                                 const std::string& certificate_path,
+                                 const std::string& target_name);
 
  private:
-  struct TestCredentials {
+  static bool HasSpecialConfig(const std::string& host);
+
+  struct HostConfig {
     std::string certificate_path;
     std::string target_name;
     bool use_insecure_channel = false;
   };
-  static TestCredentials* test_credentials_;
+  using ConfigByHost = std::unordered_map<std::string, HostConfig>;
+  static ConfigByHost* config_by_host_;
 
   std::unique_ptr<grpc::ClientContext> CreateContext(
       const auth::Token& credential) const;
diff --git a/Firestore/core/src/firebase/firestore/remote/grpc_connection.mm b/Firestore/core/src/firebase/firestore/remote/grpc_connection.mm
@@ -54,7 +54,7 @@
 
 }  // namespace
 
-GrpcConnection::TestCredentials* GrpcConnection::test_credentials_ = nullptr;
+GrpcConnection::ConfigByHost* GrpcConnection::config_by_host_ = nullptr;
 
 GrpcConnection::GrpcConnection(const DatabaseInfo& database_info,
                                util::AsyncQueue* worker_queue,
@@ -120,31 +120,35 @@
 }
 
 std::shared_ptr<grpc::Channel> GrpcConnection::CreateChannel() const {
-  if (!test_credentials_) {
+  const std::string& host = database_info_->host();
+
+  if (!HasSpecialConfig(host)) {
     return grpc::CreateChannel(
-        database_info_->host(),
-        grpc::SslCredentials(grpc::SslCredentialsOptions()));
+        host, grpc::SslCredentials(grpc::SslCredentialsOptions()));
   }
 
-  if (test_credentials_->use_insecure_channel) {
-    return grpc::CreateChannel(database_info_->host(),
-                               grpc::InsecureChannelCredentials());
+  const HostConfig& host_config = (*config_by_host_)[host];
+
+  // For the case when `Settings.sslEnabled == false`.
+  if (host_config.use_insecure_channel) {
+    return grpc::CreateChannel(host, grpc::InsecureChannelCredentials());
   }
 
-  std::ifstream cert_file{test_credentials_->certificate_path};
+  // For tests only
+
+  std::ifstream cert_file{host_config.certificate_path};
   HARD_ASSERT(cert_file.good(),
               StringFormat("Unable to open root certificates at file path %s",
-                           test_credentials_->certificate_path)
+                           host_config.certificate_path)
                   .c_str());
   std::stringstream cert_buffer;
   cert_buffer << cert_file.rdbuf();
   grpc::SslCredentialsOptions options;
   options.pem_root_certs = cert_buffer.str();
 
   grpc::ChannelArguments args;
-  args.SetSslTargetNameOverride(test_credentials_->target_name);
-  return grpc::CreateCustomChannel(database_info_->host(),
-                                   grpc::SslCredentials(options), args);
+  args.SetSslTargetNameOverride(host_config.target_name);
+  return grpc::CreateCustomChannel(host, grpc::SslCredentials(options), args);
 }
 
 std::unique_ptr<GrpcStream> GrpcConnection::CreateStream(
@@ -210,30 +214,40 @@
 }
 
 /*static*/ void GrpcConnection::UseTestCertificate(
-    absl::string_view certificate_path, absl::string_view target_name) {
+    const std::string& host,
+    const std::string& certificate_path,
+    const std::string& target_name) {
+  HARD_ASSERT(!host.empty(), "Empty host name");
   HARD_ASSERT(!certificate_path.empty(), "Empty path to test certificate");
   HARD_ASSERT(!target_name.empty(), "Empty SSL target name");
 
-  if (!test_credentials_) {
+  if (!config_by_host_) {
     // Deliberately never deleted.
-    test_credentials_ = new TestCredentials{};
+    config_by_host_ = new ConfigByHost{};
   }
 
-  test_credentials_->certificate_path =
-      std::string{certificate_path.data(), certificate_path.size()};
-  test_credentials_->target_name =
-      std::string{target_name.data(), target_name.size()};
-  // TODO(varconst): hostname if necessary.
+  HostConfig& host_config = (*config_by_host_)[host];
+  host_config.certificate_path = certificate_path;
+  host_config.target_name = target_name;
 }
 
-/*static*/ void GrpcConnection::UseInsecureChannel() {
-  if (!test_credentials_) {
+/*static*/ void GrpcConnection::UseInsecureChannel(const std::string& host) {
+  HARD_ASSERT(!host.empty(), "Empty host name");
+
+  if (!config_by_host_) {
     // Deliberately never deleted.
-    test_credentials_ = new TestCredentials{};
+    config_by_host_ = new ConfigByHost{};
   }
 
-  test_credentials_->use_insecure_channel = true;
-  // TODO(varconst): hostname if necessary.
+  HostConfig& test_config = (*config_by_host_)[host];
+  test_config.use_insecure_channel = true;
+}
+
+/*static*/ bool GrpcConnection::HasSpecialConfig(const std::string& host) {
+  if (!config_by_host_) {
+    return false;
+  }
+  return config_by_host_->find(host) != config_by_host_->end();
 }
 
 }  // namespace remote
