001 /* 002 * Cumulus4j - Securing your data in the cloud - http://cumulus4j.org 003 * Copyright (C) 2011 NightLabs Consulting GmbH 004 * 005 * This program is free software: you can redistribute it and/or modify 006 * it under the terms of the GNU Affero General Public License as 007 * published by the Free Software Foundation, either version 3 of the 008 * License, or (at your option) any later version. 009 * 010 * This program is distributed in the hope that it will be useful, 011 * but WITHOUT ANY WARRANTY; without even the implied warranty of 012 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 013 * GNU Affero General Public License for more details. 014 * 015 * You should have received a copy of the GNU Affero General Public License 016 * along with this program. If not, see <http://www.gnu.org/licenses/>. 017 */ 018 package org.cumulus4j.store; 019 020 import java.util.Arrays; 021 import java.util.Map; 022 023 import javax.jdo.PersistenceManager; 024 025 import org.cumulus4j.store.crypto.CryptoContext; 026 import org.cumulus4j.store.fieldmanager.FetchFieldManager; 027 import org.cumulus4j.store.fieldmanager.StoreFieldManager; 028 import org.cumulus4j.store.model.ClassMeta; 029 import org.cumulus4j.store.model.DataEntry; 030 import org.cumulus4j.store.model.FieldMeta; 031 import org.cumulus4j.store.model.ObjectContainer; 032 import org.datanucleus.exceptions.NucleusObjectNotFoundException; 033 import org.datanucleus.metadata.AbstractClassMetaData; 034 import org.datanucleus.metadata.AbstractMemberMetaData; 035 import org.datanucleus.store.AbstractPersistenceHandler; 036 import org.datanucleus.store.ExecutionContext; 037 import org.datanucleus.store.ObjectProvider; 038 import org.datanucleus.store.connection.ManagedConnection; 039 import org.slf4j.Logger; 040 import org.slf4j.LoggerFactory; 041 042 /** 043 * Handler for all persistence calls from the StoreManager, communicating with the backend datastore(s). 044 * Manages all inserts/updates/deletes/fetches/locates of the users own objects and translates them 045 * into inserts/updates/deletes/fetches/locates of Cumulus4J model objects. 046 */ 047 public class Cumulus4jPersistenceHandler extends AbstractPersistenceHandler 048 { 049 private static final Logger logger = LoggerFactory.getLogger(Cumulus4jPersistenceHandler.class); 050 051 private Cumulus4jStoreManager storeManager; 052 private EncryptionCoordinateSetManager encryptionCoordinateSetManager; 053 private EncryptionHandler encryptionHandler; 054 055 private IndexEntryAction addIndexEntry; 056 private IndexEntryAction removeIndexEntry; 057 058 public Cumulus4jPersistenceHandler(Cumulus4jStoreManager storeManager) { 059 if (storeManager == null) 060 throw new IllegalArgumentException("storeManager == null"); 061 062 this.storeManager = storeManager; 063 this.encryptionCoordinateSetManager = storeManager.getEncryptionCoordinateSetManager(); 064 this.encryptionHandler = storeManager.getEncryptionHandler(); 065 066 this.addIndexEntry = new IndexEntryAction.Add(this); 067 this.removeIndexEntry = new IndexEntryAction.Remove(this); 068 } 069 070 public Cumulus4jStoreManager getStoreManager() { 071 return storeManager; 072 } 073 074 @Override 075 public void close() { 076 // No resources require to be closed here. 077 } 078 079 @Override 080 public void deleteObject(ObjectProvider op) { 081 // Check if read-only so update not permitted 082 storeManager.assertReadOnlyForUpdateOfObject(op); 083 084 ExecutionContext ec = op.getExecutionContext(); 085 ManagedConnection mconn = storeManager.getConnection(ec); 086 try { 087 PersistenceManagerConnection pmConn = (PersistenceManagerConnection)mconn.getConnection(); 088 PersistenceManager pmData = pmConn.getDataPM(); 089 CryptoContext cryptoContext = new CryptoContext(encryptionCoordinateSetManager, ec, pmConn); 090 091 Object object = op.getObject(); 092 Object objectID = op.getExternalObjectId(); 093 String objectIDString = objectID.toString(); 094 ClassMeta classMeta = storeManager.getClassMeta(ec, object.getClass()); 095 DataEntry dataEntry = DataEntry.getDataEntry(pmData, classMeta, objectIDString); 096 // if (dataEntry == null) 097 // throw new NucleusObjectNotFoundException("Object does not exist in datastore: class=" + classMeta.getClassName() + " oid=" + objectIDString); 098 099 if (dataEntry != null) { 100 // decrypt object-container in order to identify index entries for deletion 101 ObjectContainer objectContainer = encryptionHandler.decryptDataEntry(cryptoContext, dataEntry); 102 AbstractClassMetaData dnClassMetaData = storeManager.getMetaDataManager().getMetaDataForClass(object.getClass(), ec.getClassLoaderResolver()); 103 104 for (Map.Entry<Long, ?> me : objectContainer.getFieldID2value().entrySet()) { 105 long fieldID = me.getKey(); 106 Object fieldValue = me.getValue(); 107 FieldMeta fieldMeta = classMeta.getFieldMeta(fieldID); 108 AbstractMemberMetaData dnMemberMetaData = dnClassMetaData.getMetaDataForManagedMemberAtAbsolutePosition(fieldMeta.getDataNucleusAbsoluteFieldNumber()); 109 110 // sanity checks 111 if (dnMemberMetaData == null) 112 throw new IllegalStateException("dnMemberMetaData == null!!! class == \"" + classMeta.getClassName() + "\" fieldMeta.dataNucleusAbsoluteFieldNumber == " + fieldMeta.getDataNucleusAbsoluteFieldNumber() + " fieldMeta.fieldName == \"" + fieldMeta.getFieldName() + "\""); 113 114 if (!fieldMeta.getFieldName().equals(dnMemberMetaData.getName())) 115 throw new IllegalStateException("Meta data inconsistency!!! class == \"" + classMeta.getClassName() + "\" fieldMeta.dataNucleusAbsoluteFieldNumber == " + fieldMeta.getDataNucleusAbsoluteFieldNumber() + " fieldMeta.fieldName == \"" + fieldMeta.getFieldName() + "\" != dnMemberMetaData.name == \"" + dnMemberMetaData.getName() + "\""); 116 117 removeIndexEntry.perform(cryptoContext, dataEntry.getDataEntryID(), fieldMeta, dnMemberMetaData, fieldValue); 118 } 119 pmData.deletePersistent(dataEntry); 120 } 121 122 } finally { 123 mconn.release(); 124 } 125 } 126 127 @Override 128 public void fetchObject(ObjectProvider op, int[] fieldNumbers) 129 { 130 ExecutionContext ec = op.getExecutionContext(); 131 ManagedConnection mconn = storeManager.getConnection(ec); 132 try { 133 PersistenceManagerConnection pmConn = (PersistenceManagerConnection)mconn.getConnection(); 134 PersistenceManager pmData = pmConn.getDataPM(); 135 CryptoContext cryptoContext = new CryptoContext(encryptionCoordinateSetManager, ec, pmConn); 136 137 Object object = op.getObject(); 138 Object objectID = op.getExternalObjectId(); 139 String objectIDString = objectID.toString(); 140 ClassMeta classMeta = storeManager.getClassMeta(ec, object.getClass()); 141 AbstractClassMetaData dnClassMetaData = storeManager.getMetaDataManager().getMetaDataForClass(object.getClass(), ec.getClassLoaderResolver()); 142 143 // TODO Maybe we should load ALL *SIMPLE* fields, because the decryption happens on a per-row-level and thus 144 // loading only some fields makes no sense performance-wise. However, maybe DataNucleus already optimizes 145 // calls to this method. It makes definitely no sense to load 1-n- or 1-1-fields and it makes no sense to 146 // optimize things that already are optimal. Hence we have to analyze first, how often this method is really 147 // called in normal operation. 148 // Marco. 149 150 DataEntry dataEntry = DataEntry.getDataEntry(pmData, classMeta, objectIDString); 151 if (dataEntry == null) 152 throw new NucleusObjectNotFoundException("Object does not exist in datastore: class=" + classMeta.getClassName() + " oid=" + objectIDString); 153 154 ObjectContainer objectContainer = encryptionHandler.decryptDataEntry(cryptoContext, dataEntry); 155 156 op.replaceFields(fieldNumbers, new FetchFieldManager(op, cryptoContext, classMeta, dnClassMetaData, objectContainer)); 157 if (op.getVersion() == null) // null-check prevents overwriting in case this method is called multiple times (for different field-numbers) - TODO necessary? 158 op.setVersion(objectContainer.getVersion()); 159 } finally { 160 mconn.release(); 161 } 162 } 163 164 @Override 165 public Object findObject(ExecutionContext ec, Object id) { 166 // Since we don't manage the memory instantiation of objects this just returns null. 167 return null; 168 } 169 170 @Override 171 public void insertObject(ObjectProvider op) 172 { 173 // Check if read-only so update not permitted 174 storeManager.assertReadOnlyForUpdateOfObject(op); 175 176 ExecutionContext ec = op.getExecutionContext(); 177 ManagedConnection mconn = storeManager.getConnection(ec); 178 try { 179 PersistenceManagerConnection pmConn = (PersistenceManagerConnection)mconn.getConnection(); 180 PersistenceManager pmData = pmConn.getDataPM(); 181 CryptoContext cryptoContext = new CryptoContext(encryptionCoordinateSetManager, ec, pmConn); 182 183 Object object = op.getObject(); 184 Object objectID = op.getExternalObjectId(); 185 ClassMeta classMeta = storeManager.getClassMeta(ec, object.getClass()); 186 187 AbstractClassMetaData dnClassMetaData = storeManager.getMetaDataManager().getMetaDataForClass(object.getClass(), ec.getClassLoaderResolver()); 188 189 int[] allFieldNumbers = dnClassMetaData.getAllMemberPositions(); 190 ObjectContainer objectContainer = new ObjectContainer(); 191 String objectIDString = objectID.toString(); 192 193 // We have to persist the DataEntry before the call to provideFields(...), because the InsertFieldManager recursively 194 // persists other fields which might back-reference (=> mapped-by) and thus need this DataEntry to already exist. 195 // TO DO Try to make this persistent afterwards and solve the problem by only allocating the ID before [keeping it in memory] (see Cumulus4jStoreManager#nextDataEntryID(), which is commented out currently). 196 // Even though reducing the INSERT + UPDATE to one single INSERT in the handling of IndexEntry made 197 // things faster, it seems not to have a performance benefit here. But we should still look at this 198 // again later. 199 // Marco. 200 // 201 // 2012-02-02: Refactored this because of a Heisenbug with optimistic transactions. At the same time solved 202 // the above to do. Marco :-) 203 204 // // In case we work with deferred datastore operations, the DataEntry might already have been written by 205 // // ObjectContainerHelper.entityToReference(...). We therefore, check, if it already exists (and update it then instead of insert). 206 // DataEntry dataEntry; 207 // dataEntry = DataEntry.getDataEntry(pmData, classMeta, objectIDString); 208 // if (dataEntry != null) 209 // logger.trace("insertObject: Found existing DataEntry for: {}", objectIDString); 210 // else { 211 // dataEntry = pmData.makePersistent(new DataEntry(classMeta, objectIDString)); 212 // logger.trace("insertObject: Persisted DataEntry for: {}", objectIDString); 213 // } 214 215 // This performs reachability on this input object so that all related objects are persisted. 216 op.provideFields(allFieldNumbers, new StoreFieldManager(op, pmData, classMeta, dnClassMetaData, objectContainer)); 217 objectContainer.setVersion(op.getTransactionalVersion()); 218 219 // The DataEntry might already have been written by ObjectContainerHelper.entityToReference(...), 220 // if it was needed for a reference. We therefore check, if it already exists (and update it then instead of insert). 221 boolean persistDataEntry = false; 222 DataEntry dataEntry = ObjectContainerHelper.popTemporaryReferenceDataEntry(pmData, objectIDString); 223 if (dataEntry != null) 224 logger.trace("insertObject: Found temporary-reference-DataEntry for: {}", objectIDString); 225 else { 226 persistDataEntry = true; 227 dataEntry = new DataEntry(classMeta, objectIDString); 228 logger.trace("insertObject: Created new DataEntry for: {}", objectIDString); 229 } 230 231 // persist data 232 encryptionHandler.encryptDataEntry(cryptoContext, dataEntry, objectContainer); 233 234 if (persistDataEntry) { 235 dataEntry = pmData.makePersistent(dataEntry); 236 logger.trace("insertObject: Persisted new DataEntry for: {}", objectIDString); 237 } 238 239 // persist index 240 for (Map.Entry<Long, ?> me : objectContainer.getFieldID2value().entrySet()) { 241 long fieldID = me.getKey(); 242 Object fieldValue = me.getValue(); 243 FieldMeta fieldMeta = classMeta.getFieldMeta(fieldID); 244 AbstractMemberMetaData dnMemberMetaData = dnClassMetaData.getMetaDataForManagedMemberAtAbsolutePosition(fieldMeta.getDataNucleusAbsoluteFieldNumber()); 245 246 // sanity checks 247 if (dnMemberMetaData == null) 248 throw new IllegalStateException("dnMemberMetaData == null!!! class == \"" + classMeta.getClassName() + "\" fieldMeta.dataNucleusAbsoluteFieldNumber == " + fieldMeta.getDataNucleusAbsoluteFieldNumber() + " fieldMeta.fieldName == \"" + fieldMeta.getFieldName() + "\""); 249 250 if (!fieldMeta.getFieldName().equals(dnMemberMetaData.getName())) 251 throw new IllegalStateException("Meta data inconsistency!!! class == \"" + classMeta.getClassName() + "\" fieldMeta.dataNucleusAbsoluteFieldNumber == " + fieldMeta.getDataNucleusAbsoluteFieldNumber() + " fieldMeta.fieldName == \"" + fieldMeta.getFieldName() + "\" != dnMemberMetaData.name == \"" + dnMemberMetaData.getName() + "\""); 252 253 addIndexEntry.perform(cryptoContext, dataEntry.getDataEntryID(), fieldMeta, dnMemberMetaData, fieldValue); 254 } 255 } finally { 256 mconn.release(); 257 } 258 } 259 260 @Override 261 public void locateObject(ObjectProvider op) 262 { 263 ManagedConnection mconn = storeManager.getConnection(op.getExecutionContext()); 264 try { 265 PersistenceManagerConnection pmConn = (PersistenceManagerConnection)mconn.getConnection(); 266 PersistenceManager pmData = pmConn.getDataPM(); 267 268 ClassMeta classMeta = storeManager.getClassMeta(op.getExecutionContext(), op.getObject().getClass()); 269 Object objectID = op.getExternalObjectId(); 270 String objectIDString = objectID.toString(); 271 272 DataEntry dataEntry = DataEntry.getDataEntry(pmData, classMeta, objectIDString); 273 if (dataEntry == null) 274 throw new NucleusObjectNotFoundException("Object does not exist in datastore: class=" + classMeta.getClassName() + " oid=" + objectIDString); 275 } finally { 276 mconn.release(); 277 } 278 } 279 280 @Override 281 public void updateObject(ObjectProvider op, int[] fieldNumbers) 282 { 283 // Check if read-only so update not permitted 284 storeManager.assertReadOnlyForUpdateOfObject(op); 285 286 ExecutionContext ec = op.getExecutionContext(); 287 ManagedConnection mconn = storeManager.getConnection(ec); 288 try { 289 PersistenceManagerConnection pmConn = (PersistenceManagerConnection)mconn.getConnection(); 290 PersistenceManager pmData = pmConn.getDataPM(); 291 CryptoContext cryptoContext = new CryptoContext(encryptionCoordinateSetManager, ec, pmConn); 292 293 Object object = op.getObject(); 294 Object objectID = op.getExternalObjectId(); 295 String objectIDString = objectID.toString(); 296 ClassMeta classMeta = storeManager.getClassMeta(ec, object.getClass()); 297 AbstractClassMetaData dnClassMetaData = storeManager.getMetaDataManager().getMetaDataForClass(object.getClass(), ec.getClassLoaderResolver()); 298 299 DataEntry dataEntry = DataEntry.getDataEntry(pmData, classMeta, objectIDString); 300 if (dataEntry == null) 301 throw new NucleusObjectNotFoundException("Object does not exist in datastore: class=" + classMeta.getClassName() + " oid=" + objectIDString); 302 303 long dataEntryID = dataEntry.getDataEntryID(); 304 305 ObjectContainer objectContainerOld = encryptionHandler.decryptDataEntry(cryptoContext, dataEntry); 306 ObjectContainer objectContainerNew = objectContainerOld.clone(); 307 308 // This performs reachability on this input object so that all related objects are persisted 309 op.provideFields(fieldNumbers, new StoreFieldManager(op, pmData, classMeta, dnClassMetaData, objectContainerNew)); 310 objectContainerNew.setVersion(op.getTransactionalVersion()); 311 312 // update persistent data 313 encryptionHandler.encryptDataEntry(cryptoContext, dataEntry, objectContainerNew); 314 315 // update persistent index 316 for (int fieldNumber : fieldNumbers) { 317 AbstractMemberMetaData dnMemberMetaData = dnClassMetaData.getMetaDataForManagedMemberAtAbsolutePosition(fieldNumber); 318 if (dnMemberMetaData == null) 319 throw new IllegalStateException("dnMemberMetaData == null!!! class == \"" + classMeta.getClassName() + "\" fieldNumber == " + fieldNumber); 320 321 if (dnMemberMetaData.getMappedBy() != null) 322 continue; // TODO is this sufficient to take 'mapped-by' into account? 323 324 FieldMeta fieldMeta = classMeta.getFieldMeta(dnMemberMetaData.getClassName(), dnMemberMetaData.getName()); 325 if (fieldMeta == null) 326 throw new IllegalStateException("fieldMeta == null!!! class == \"" + classMeta.getClassName() + "\" dnMemberMetaData.className == \"" + dnMemberMetaData.getClassName() + "\" dnMemberMetaData.name == \"" + dnMemberMetaData.getName() + "\""); 327 328 Object fieldValueOld = objectContainerOld.getValue(fieldMeta.getFieldID()); 329 Object fieldValueNew = objectContainerNew.getValue(fieldMeta.getFieldID()); 330 331 if (!fieldsEqual(fieldValueOld, fieldValueNew)){ 332 333 removeIndexEntry.perform(cryptoContext, dataEntryID, fieldMeta, dnMemberMetaData, fieldValueOld); 334 addIndexEntry.perform(cryptoContext, dataEntryID, fieldMeta, dnMemberMetaData, fieldValueNew); 335 } 336 } 337 } finally { 338 mconn.release(); 339 } 340 } 341 342 private static boolean fieldsEqual(Object obj0, Object obj1) { 343 if (obj0 instanceof Object[] && obj1 instanceof Object[]) 344 return obj0 == obj1 || Arrays.equals((Object[])obj0, (Object[])obj1); 345 return obj0 == obj1 || (obj0 != null && obj0.equals(obj1)); 346 } 347 348 @Override 349 public boolean useReferentialIntegrity() { 350 // https://sourceforge.net/tracker/?func=detail&aid=3515527&group_id=517465&atid=2102914 351 return super.useReferentialIntegrity(); 352 } 353 }