RubyGems - grpc - Versions diffs - 1.32.0 → 1.33.0.pre1 - Mend

grpc 1.32.0 → 1.33.0.pre1

Potentially problematic release.

This version of grpc might be problematic. Click here for more details.

Files changed (214) hide show

data/src/core/ext/xds/certificate_provider_factory.h ADDED

@@ -0,0 +1,59 @@
+//
+//
+// Copyright 2020 gRPC authors.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+//
+#ifndef GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_FACTORY_H
+#define GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_FACTORY_H
+#include <grpc/support/port_platform.h>
+#include "src/core/lib/iomgr/error.h"
+#include "src/core/lib/json/json.h"
+#include "src/core/lib/security/certificate_provider.h"
+namespace grpc_core {
+// Factories for plugins. Each plugin implementation should create its own
+// factory implementation and register an instance with the registry.
+class CertificateProviderFactory {
+ public:
+  // Interface for configs for CertificateProviders.
+  class Config {
+   public:
+    virtual ~Config() = default;
+    // Name of the type of the CertificateProvider. Unique to each type of
+    // config.
+    virtual const char* name() const = 0;
+  };
+  virtual ~CertificateProviderFactory() = default;
+  // Name of the plugin.
+  virtual const char* name() const = 0;
+  virtual std::unique_ptr<Config> CreateCertificateProviderConfig(
+      const Json& config_json, grpc_error** error) = 0;
+  // Create a CertificateProvider instance from config.
+  virtual RefCountedPtr<grpc_tls_certificate_provider>
+  CreateCertificateProvider(std::unique_ptr<Config> config) = 0;
+};
+}  // namespace grpc_core
+#endif  // GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_FACTORY_H

data/src/core/ext/xds/certificate_provider_registry.cc ADDED

@@ -0,0 +1,103 @@
+//
+//
+// Copyright 2020 gRPC authors.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+//
+#include <grpc/support/port_platform.h>
+#include "absl/container/inlined_vector.h"
+#include "src/core/ext/xds/certificate_provider_registry.h"
+namespace grpc_core {
+namespace {
+class RegistryState {
+ public:
+  void RegisterCertificateProviderFactory(
+      std::unique_ptr<CertificateProviderFactory> factory) {
+    gpr_log(GPR_DEBUG, "registering certificate provider factory for \"%s\"",
+            factory->name());
+    for (size_t i = 0; i < factories_.size(); ++i) {
+      GPR_ASSERT(strcmp(factories_[i]->name(), factory->name()) != 0);
+    }
+    factories_.push_back(std::move(factory));
+  }
+  CertificateProviderFactory* LookupCertificateProviderFactory(
+      absl::string_view name) const {
+    for (size_t i = 0; i < factories_.size(); ++i) {
+      if (name == factories_[i]->name()) {
+        return factories_[i].get();
+      }
+    }
+    return nullptr;
+  }
+ private:
+  // We currently support 3 factories without doing additional
+  // allocation.  This number could be raised if there is a case where
+  // more factories are needed and the additional allocations are
+  // hurting performance (which is unlikely, since these allocations
+  // only occur at gRPC initialization time).
+  absl::InlinedVector<std::unique_ptr<CertificateProviderFactory>, 3>
+      factories_;
+};
+static RegistryState* g_state = nullptr;
+}  // namespace
+//
+// CertificateProviderRegistry
+//
+CertificateProviderFactory*
+CertificateProviderRegistry::LookupCertificateProviderFactory(
+    absl::string_view name) {
+  GPR_ASSERT(g_state != nullptr);
+  return g_state->LookupCertificateProviderFactory(name);
+}
+void CertificateProviderRegistry::InitRegistry() {
+  if (g_state == nullptr) g_state = new RegistryState();
+}
+void CertificateProviderRegistry::ShutdownRegistry() {
+  delete g_state;
+  g_state = nullptr;
+}
+void CertificateProviderRegistry::RegisterCertificateProviderFactory(
+    std::unique_ptr<CertificateProviderFactory> factory) {
+  InitRegistry();
+  g_state->RegisterCertificateProviderFactory(std::move(factory));
+}
+}  // namespace grpc_core
+//
+// Plugin registration
+//
+void grpc_certificate_provider_registry_init() {
+  grpc_core::CertificateProviderRegistry::InitRegistry();
+}
+void grpc_certificate_provider_registry_shutdown() {
+  grpc_core::CertificateProviderRegistry::ShutdownRegistry();
+}

data/src/core/ext/xds/certificate_provider_registry.h ADDED

@@ -0,0 +1,57 @@
+//
+//
+// Copyright 2020 gRPC authors.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+//
+#ifndef GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_REGISTRY_H
+#define GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_REGISTRY_H
+#include <grpc/support/port_platform.h>
+#include <string>
+#include "src/core/ext/xds/certificate_provider_factory.h"
+namespace grpc_core {
+// Global registry for all the certificate provider plugins.
+class CertificateProviderRegistry {
+ public:
+  // Returns the factory for the plugin keyed by name.
+  static CertificateProviderFactory* LookupCertificateProviderFactory(
+      absl::string_view name);
+  // The following methods are used to create and populate the
+  // CertificateProviderRegistry. NOT THREAD SAFE -- to be used only during
+  // global gRPC initialization and shutdown.
+  // Global initialization of the registry.
+  static void InitRegistry();
+  // Global shutdown of the registry.
+  static void ShutdownRegistry();
+  // Register a provider with the registry. Can only be called after calling
+  // InitRegistry(). The key of the factory is extracted from factory
+  // parameter with method CertificateProviderFactory::name. If the same key
+  // is registered twice, an exception is raised.
+  static void RegisterCertificateProviderFactory(
+      std::unique_ptr<CertificateProviderFactory> factory);
+};
+}  // namespace grpc_core
+#endif  // GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_REGISTRY_H

data/src/core/ext/xds/certificate_provider_store.h ADDED

@@ -0,0 +1,50 @@
+//
+//
+// Copyright 2020 gRPC authors.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+//
+#ifndef GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_STORE_H
+#define GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_STORE_H
+#include <grpc/support/port_platform.h>
+#include <map>
+#include "src/core/lib/gprpp/ref_counted_ptr.h"
+#include "src/core/lib/gprpp/sync.h"
+#include "src/core/lib/security/certificate_provider.h"
+namespace grpc_core {
+// Map for xDS based grpc_tls_certificate_provider instances.
+class CertificateProviderStore {
+ public:
+  // If a provider corresponding to the config is found, a raw pointer to the
+  // grpc_tls_certificate_provider in the map is returned. If no provider is
+  // found for a key, a new provider is created. The CertificateProviderStore
+  // maintains a ref to the grpc_tls_certificate_provider for its entire
+  // lifetime.
+  RefCountedPtr<grpc_tls_certificate_provider> CreateOrGetCertificateProvider(
+      absl::string_view key);
+ private:
+  // Underlying map for the providers.
+  std::map<std::string, RefCountedPtr<grpc_tls_certificate_provider>> map_;
+};
+}  // namespace grpc_core
+#endif  // GRPC_CORE_EXT_XDS_CERTIFICATE_PROVIDER_STORE_H

data/src/core/ext/xds/google_mesh_ca_certificate_provider_factory.cc ADDED

@@ -0,0 +1,377 @@
+//
+//
+// Copyright 2020 gRPC authors.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+//
+#include <grpc/support/port_platform.h>
+#include "src/core/ext/xds/google_mesh_ca_certificate_provider_factory.h"
+#include <sstream>
+#include <type_traits>
+#include "absl/strings/str_cat.h"
+#include <grpc/support/string_util.h>
+#include "src/core/lib/gpr/string.h"
+#include "src/core/lib/iomgr/error.h"
+#include "src/core/lib/json/json_util.h"
+namespace grpc_core {
+namespace {
+const char* kMeshCaPlugin = "meshCA";
+//
+// Helper functions for extracting types from JSON
+//
+template <typename NumericType, typename ErrorVectorType>
+bool ExtractJsonType(const Json& json, const std::string& field_name,
+                     NumericType* output, ErrorVectorType* error_list) {
+  static_assert(std::is_integral<NumericType>::value, "Integral required");
+  if (json.type() != Json::Type::NUMBER) {
+    error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+        absl::StrCat("field:", field_name, " error:type should be NUMBER")
+            .c_str()));
+    return false;
+  }
+  std::istringstream ss(json.string_value());
+  ss >> *output;
+  // The JSON parsing API should have dealt with parsing errors, but check
+  // anyway
+  if (GPR_UNLIKELY(ss.bad())) {
+    error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+        absl::StrCat("field:", field_name, " error:failed to parse.").c_str()));
+    return false;
+  }
+  return true;
+}
+template <typename ErrorVectorType>
+bool ExtractJsonType(const Json& json, const std::string& field_name,
+                     bool* output, ErrorVectorType* error_list) {
+  switch (json.type()) {
+    case Json::Type::JSON_TRUE:
+      *output = true;
+      return true;
+    case Json::Type::JSON_FALSE:
+      *output = false;
+      return true;
+    default:
+      error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+          absl::StrCat("field:", field_name, " error:type should be BOOLEAN")
+              .c_str()));
+      return false;
+  }
+}
+template <typename ErrorVectorType>
+bool ExtractJsonType(const Json& json, const std::string& field_name,
+                     std::string* output, ErrorVectorType* error_list) {
+  if (json.type() != Json::Type::STRING) {
+    *output = "";
+    error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+        absl::StrCat("field:", field_name, " error:type should be STRING")
+            .c_str()));
+    return false;
+  }
+  *output = json.string_value();
+  return true;
+}
+template <typename ErrorVectorType>
+bool ExtractJsonType(const Json& json, const std::string& field_name,
+                     const Json::Array** output, ErrorVectorType* error_list) {
+  if (json.type() != Json::Type::ARRAY) {
+    *output = nullptr;
+    error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+        absl::StrCat("field:", field_name, " error:type should be ARRAY")
+            .c_str()));
+    return false;
+  }
+  *output = &json.array_value();
+  return true;
+}
+template <typename ErrorVectorType>
+bool ExtractJsonType(const Json& json, const std::string& field_name,
+                     const Json::Object** output, ErrorVectorType* error_list) {
+  if (json.type() != Json::Type::OBJECT) {
+    *output = nullptr;
+    error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+        absl::StrCat("field:", field_name, " error:type should be OBJECT")
+            .c_str()));
+    return false;
+  }
+  *output = &json.object_value();
+  return true;
+}
+template <typename ErrorVectorType>
+bool ExtractJsonType(const Json& json, const std::string& field_name,
+                     grpc_millis* output, ErrorVectorType* error_list) {
+  if (!ParseDurationFromJson(json, output)) {
+    *output = GRPC_MILLIS_INF_PAST;
+    error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+        absl::StrCat("field:", field_name,
+                     " error:type should be STRING of the form given by "
+                     "google.proto.Duration.")
+            .c_str()));
+    return false;
+  }
+  return true;
+}
+template <typename T, typename ErrorVectorType>
+bool ParseJsonObjectField(const Json::Object& object,
+                          const std::string& field_name, T* output,
+                          ErrorVectorType* error_list, bool optional = false) {
+  auto it = object.find(field_name);
+  if (it == object.end()) {
+    if (!optional) {
+      error_list->push_back(GRPC_ERROR_CREATE_FROM_COPIED_STRING(
+          absl::StrCat("field:", field_name, " error:does not exist.")
+              .c_str()));
+    }
+    return false;
+  }
+  auto& child_object_json = it->second;
+  return ExtractJsonType(child_object_json, field_name, output, error_list);
+}
+}  // namespace
+//
+// GoogleMeshCaCertificateProviderFactory::Config
+//
+const char* GoogleMeshCaCertificateProviderFactory::Config::name() const {
+  return kMeshCaPlugin;
+}
+std::vector<grpc_error*>
+GoogleMeshCaCertificateProviderFactory::Config::ParseJsonObjectStsService(
+    const Json::Object& sts_service) {
+  std::vector<grpc_error*> error_list_sts_service;
+  if (!ParseJsonObjectField(sts_service, "token_exchange_service_uri",
+                            &sts_config_.token_exchange_service_uri,
+                            &error_list_sts_service, true)) {
+    sts_config_.token_exchange_service_uri =
+        "securetoken.googleapis.com";  // default
+  }
+  ParseJsonObjectField(sts_service, "resource", &sts_config_.resource,
+                       &error_list_sts_service, true);
+  ParseJsonObjectField(sts_service, "audience", &sts_config_.audience,
+                       &error_list_sts_service, true);
+  if (!ParseJsonObjectField(sts_service, "scope", &sts_config_.scope,
+                            &error_list_sts_service, true)) {
+    sts_config_.scope =
+        "https://www.googleapis.com/auth/cloud-platform";  // default
+  }
+  ParseJsonObjectField(sts_service, "requested_token_type",
+                       &sts_config_.requested_token_type,
+                       &error_list_sts_service, true);
+  ParseJsonObjectField(sts_service, "subject_token_path",
+                       &sts_config_.subject_token_path,
+                       &error_list_sts_service);
+  ParseJsonObjectField(sts_service, "subject_token_type",
+                       &sts_config_.subject_token_type,
+                       &error_list_sts_service);
+  ParseJsonObjectField(sts_service, "actor_token_path",
+                       &sts_config_.actor_token_path, &error_list_sts_service,
+                       true);
+  ParseJsonObjectField(sts_service, "actor_token_type",
+                       &sts_config_.actor_token_type, &error_list_sts_service,
+                       true);
+  return error_list_sts_service;
+}
+std::vector<grpc_error*>
+GoogleMeshCaCertificateProviderFactory::Config::ParseJsonObjectCallCredentials(
+    const Json::Object& call_credentials) {
+  std::vector<grpc_error*> error_list_call_credentials;
+  const Json::Object* sts_service = nullptr;
+  if (ParseJsonObjectField(call_credentials, "sts_service", &sts_service,
+                           &error_list_call_credentials)) {
+    std::vector<grpc_error*> error_list_sts_service =
+        ParseJsonObjectStsService(*sts_service);
+    if (!error_list_sts_service.empty()) {
+      error_list_call_credentials.push_back(GRPC_ERROR_CREATE_FROM_VECTOR(
+          "field:sts_service", &error_list_sts_service));
+    }
+  }
+  return error_list_call_credentials;
+}
+std::vector<grpc_error*>
+GoogleMeshCaCertificateProviderFactory::Config::ParseJsonObjectGoogleGrpc(
+    const Json::Object& google_grpc) {
+  std::vector<grpc_error*> error_list_google_grpc;
+  if (!ParseJsonObjectField(google_grpc, "target_uri", &endpoint_,
+                            &error_list_google_grpc, true)) {
+    endpoint_ = "meshca.googleapis.com";  // Default target
+  }
+  const Json::Array* call_credentials_array = nullptr;
+  if (ParseJsonObjectField(google_grpc, "call_credentials",
+                           &call_credentials_array, &error_list_google_grpc)) {
+    if (call_credentials_array->size() != 1) {
+      error_list_google_grpc.push_back(GRPC_ERROR_CREATE_FROM_STATIC_STRING(
+          "field:call_credentials error:Need exactly one entry."));
+    } else {
+      const Json::Object* call_credentials = nullptr;
+      if (ExtractJsonType((*call_credentials_array)[0], "call_credentials[0]",
+                          &call_credentials, &error_list_google_grpc)) {
+        std::vector<grpc_error*> error_list_call_credentials =
+            ParseJsonObjectCallCredentials(*call_credentials);
+        if (!error_list_call_credentials.empty()) {
+          error_list_google_grpc.push_back(GRPC_ERROR_CREATE_FROM_VECTOR(
+              "field:call_credentials", &error_list_call_credentials));
+        }
+      }
+    }
+  }
+  return error_list_google_grpc;
+}
+std::vector<grpc_error*>
+GoogleMeshCaCertificateProviderFactory::Config::ParseJsonObjectGrpcServices(
+    const Json::Object& grpc_service) {
+  std::vector<grpc_error*> error_list_grpc_services;
+  const Json::Object* google_grpc = nullptr;
+  if (ParseJsonObjectField(grpc_service, "google_grpc", &google_grpc,
+                           &error_list_grpc_services)) {
+    std::vector<grpc_error*> error_list_google_grpc =
+        ParseJsonObjectGoogleGrpc(*google_grpc);
+    if (!error_list_google_grpc.empty()) {
+      error_list_grpc_services.push_back(GRPC_ERROR_CREATE_FROM_VECTOR(
+          "field:google_grpc", &error_list_google_grpc));
+    }
+  }
+  if (!ParseJsonObjectField(grpc_service, "timeout", &timeout_,
+                            &error_list_grpc_services, true)) {
+    timeout_ = 10 * 1000;  // 10sec default
+  }
+  return error_list_grpc_services;
+}
+std::vector<grpc_error*>
+GoogleMeshCaCertificateProviderFactory::Config::ParseJsonObjectServer(
+    const Json::Object& server) {
+  std::vector<grpc_error*> error_list_server;
+  std::string api_type;
+  if (ParseJsonObjectField(server, "api_type", &api_type, &error_list_server,
+                           true)) {
+    if (api_type != "GRPC") {
+      error_list_server.push_back(GRPC_ERROR_CREATE_FROM_STATIC_STRING(
+          "field:api_type error:Only GRPC is supported"));
+    }
+  }
+  const Json::Array* grpc_services = nullptr;
+  if (ParseJsonObjectField(server, "grpc_services", &grpc_services,
+                           &error_list_server)) {
+    if (grpc_services->size() != 1) {
+      error_list_server.push_back(GRPC_ERROR_CREATE_FROM_STATIC_STRING(
+          "field:grpc_services error:Need exactly one entry"));
+    } else {
+      const Json::Object* grpc_service = nullptr;
+      if (ExtractJsonType((*grpc_services)[0], "grpc_services[0]",
+                          &grpc_service, &error_list_server)) {
+        std::vector<grpc_error*> error_list_grpc_services =
+            ParseJsonObjectGrpcServices(*grpc_service);
+        if (!error_list_grpc_services.empty()) {
+          error_list_server.push_back(GRPC_ERROR_CREATE_FROM_VECTOR(
+              "field:grpc_services", &error_list_grpc_services));
+        }
+      }
+    }
+  }
+  return error_list_server;
+}
+std::unique_ptr<GoogleMeshCaCertificateProviderFactory::Config>
+GoogleMeshCaCertificateProviderFactory::Config::Parse(const Json& config_json,
+                                                      grpc_error** error) {
+  auto config =
+      absl::make_unique<GoogleMeshCaCertificateProviderFactory::Config>();
+  if (config_json.type() != Json::Type::OBJECT) {
+    *error = GRPC_ERROR_CREATE_FROM_STATIC_STRING(
+        "error:config type should be OBJECT.");
+    return nullptr;
+  }
+  std::vector<grpc_error*> error_list;
+  const Json::Object* server = nullptr;
+  if (ParseJsonObjectField(config_json.object_value(), "server", &server,
+                           &error_list)) {
+    std::vector<grpc_error*> error_list_server =
+        config->ParseJsonObjectServer(*server);
+    if (!error_list_server.empty()) {
+      error_list.push_back(
+          GRPC_ERROR_CREATE_FROM_VECTOR("field:server", &error_list_server));
+    }
+  }
+  if (!ParseJsonObjectField(config_json.object_value(), "certificate_lifetime",
+                            &config->certificate_lifetime_, &error_list,
+                            true)) {
+    config->certificate_lifetime_ = 24 * 60 * 60 * 1000;  // 24hrs default
+  }
+  if (!ParseJsonObjectField(config_json.object_value(), "renewal_grace_period",
+                            &config->renewal_grace_period_, &error_list,
+                            true)) {
+    config->renewal_grace_period_ = 12 * 60 * 60 * 1000;  // 12hrs default
+  }
+  std::string key_type;
+  if (ParseJsonObjectField(config_json.object_value(), "key_type", &key_type,
+                           &error_list, true)) {
+    if (key_type != "RSA") {
+      error_list.push_back(GRPC_ERROR_CREATE_FROM_STATIC_STRING(
+          "field:key_type error:Only RSA is supported."));
+    }
+  }
+  if (!ParseJsonObjectField(config_json.object_value(), "key_size",
+                            &config->key_size_, &error_list, true)) {
+    config->key_size_ = 2048;  // default 2048 bit key size
+  }
+  if (!ParseJsonObjectField(config_json.object_value(), "location",
+                            &config->location_, &error_list, true)) {
+    // GCE/GKE Metadata server needs to be contacted to get the value.
+  }
+  if (!error_list.empty()) {
+    *error = GRPC_ERROR_CREATE_FROM_VECTOR(
+        "Error parsing google Mesh CA config", &error_list);
+    return nullptr;
+  }
+  return config;
+}
+//
+// GoogleMeshCaCertificateProviderFactory
+//
+const char* GoogleMeshCaCertificateProviderFactory::name() const {
+  return kMeshCaPlugin;
+}
+std::unique_ptr<CertificateProviderFactory::Config>
+GoogleMeshCaCertificateProviderFactory::CreateCertificateProviderConfig(
+    const Json& config_json, grpc_error** error) {
+  return GoogleMeshCaCertificateProviderFactory::Config::Parse(config_json,
+                                                               error);
+}
+}  // namespace grpc_core