sinanawad
diff --git a/‎cmd/jujud/agent/machine/manifolds.go
Lines changed: 3 additions & 0 deletions b/‎cmd/jujud/agent/machine/manifolds.go
Lines changed: 3 additions & 0 deletions
diff --git a/‎cmd/jujud/agent/machine/manifolds_test.go
Lines changed: 12 additions & 4 deletions b/‎cmd/jujud/agent/machine/manifolds_test.go
Lines changed: 12 additions & 4 deletions
diff --git a/‎core/lease/interface.go
Lines changed: 4 additions & 0 deletions b/‎core/lease/interface.go
Lines changed: 4 additions & 0 deletions
diff --git a/‎core/lease/secertary.go
Lines changed: 30 additions & 0 deletions b/‎core/lease/secertary.go
Lines changed: 30 additions & 0 deletions
diff --git a/‎core/objectstore/lease.go
Lines changed: 23 additions & 0 deletions b/‎core/objectstore/lease.go
Lines changed: 23 additions & 0 deletions
diff --git a/‎core/objectstore/lease_test.go
Lines changed: 35 additions & 0 deletions b/‎core/objectstore/lease_test.go
Lines changed: 35 additions & 0 deletions
diff --git a/‎go.mod
Lines changed: 1 addition & 0 deletions b/‎go.mod
Lines changed: 1 addition & 0 deletions
diff --git a/‎internal/lease/lease.go
Lines changed: 131 additions & 0 deletions b/‎internal/lease/lease.go
Lines changed: 131 additions & 0 deletions
@@ -35,6 +35,7 @@ import (
 	coretrace "github.com/juju/juju/core/trace"
 	containerbroker "github.com/juju/juju/internal/container/broker"
 	"github.com/juju/juju/internal/container/lxd"
+	internallease "github.com/juju/juju/internal/lease"
 	internalobjectstore "github.com/juju/juju/internal/objectstore"
 	proxyconfig "github.com/juju/juju/internal/proxy/config"
 	"github.com/juju/juju/internal/servicefactory"
@@ -775,6 +776,7 @@ func commonManifolds(config ManifoldsConfig) dependency.Manifolds {
 			PrometheusRegisterer: config.PrometheusRegisterer,
 			NewWorker:            leasemanager.NewWorker,
 			NewStore:             leasemanager.NewStore,
+			NewSecretaryFinder:   internallease.NewSecretaryFinder,
 		})),
 
 		// The proxy config updater is a leaf worker that sets http/https/apt/etc
@@ -822,6 +824,7 @@ func commonManifolds(config ManifoldsConfig) dependency.Manifolds {
 			StateName:            stateName,
 			TraceName:            traceName,
 			ServiceFactoryName:   serviceFactoryName,
+			LeaseManagerName:     leaseManagerName,
 			Clock:                config.Clock,
 			Logger:               loggo.GetLogger("juju.worker.objectstore"),
 			NewObjectStoreWorker: internalobjectstore.ObjectStoreFactory,
 
@@ -547,15 +547,17 @@ var expectedMachineManifoldsWithDependenciesIAAS = map[string][]string{
 		"agent",
 		"change-stream",
 		"charmhub-http-client",
+		"clock",
 		"db-accessor",
 		"file-notify-watcher",
 		"is-bootstrap-gate",
 		"is-controller-flag",
+		"lease-manager",
 		"object-store",
 		"query-logger",
 		"service-factory",
-		"state",
 		"state-config-watcher",
+		"state",
 		"trace",
 		"upgrade-database-flag",
 		"upgrade-database-gate",
@@ -995,13 +997,15 @@ var expectedMachineManifoldsWithDependenciesIAAS = map[string][]string{
 	"object-store": {
 		"agent",
 		"change-stream",
+		"clock",
 		"db-accessor",
 		"file-notify-watcher",
 		"is-controller-flag",
+		"lease-manager",
 		"query-logger",
 		"service-factory",
-		"state",
 		"state-config-watcher",
+		"state",
 		"trace",
 	},
 
@@ -1265,15 +1269,17 @@ var expectedMachineManifoldsWithDependenciesCAAS = map[string][]string{
 		"agent",
 		"change-stream",
 		"charmhub-http-client",
+		"clock",
 		"db-accessor",
 		"file-notify-watcher",
 		"is-bootstrap-gate",
 		"is-controller-flag",
+		"lease-manager",
 		"object-store",
 		"query-logger",
 		"service-factory",
-		"state",
 		"state-config-watcher",
+		"state",
 		"trace",
 		"upgrade-database-flag",
 		"upgrade-database-gate",
@@ -1562,13 +1568,15 @@ var expectedMachineManifoldsWithDependenciesCAAS = map[string][]string{
 	"object-store": {
 		"agent",
 		"change-stream",
+		"clock",
 		"db-accessor",
 		"file-notify-watcher",
 		"is-controller-flag",
+		"lease-manager",
 		"query-logger",
 		"service-factory",
-		"state",
 		"state-config-watcher",
+		"state",
 		"trace",
 	},
 
 
@@ -15,6 +15,10 @@ const (
 	// SingularControllerNamespace is the namespace used to manage
 	// controller leases.
 	SingularControllerNamespace = "singular-controller"
+
+	// ObjectStoreNamespace is the namespace used to manage
+	// object store files.
+	ObjectStoreNamespace = "object-store"
 )
 
 // Claimer exposes lease acquisition and expiry notification capabilities.
 
@@ -0,0 +1,30 @@
+// Copyright 2024 Canonical Ltd.
+// Licensed under the AGPLv3, see LICENCE file for details.
+
+package lease
+
+import (
+	"time"
+)
+
+// Secretary is responsible for validating the sanity of lease and holder names
+// before bothering the manager with them.
+type Secretary interface {
+
+	// CheckLease returns an error if the supplied lease name is not valid.
+	CheckLease(key Key) error
+
+	// CheckHolder returns an error if the supplied holder name is not valid.
+	CheckHolder(name string) error
+
+	// CheckDuration returns an error if the supplied duration is not valid.
+	CheckDuration(duration time.Duration) error
+}
+
+// SecretaryFinder is responsible for returning the correct Secretary for a
+// given namespace.
+type SecretaryFinder interface {
+	// SecretaryFor returns the Secretary for the given namespace.
+	// Returns an error if the namespace is not valid.
+	SecretaryFor(namespace string) (Secretary, error)
+}
@@ -0,0 +1,23 @@
+// Copyright 2024 Canonical Ltd.
+// Licensed under the AGPLv3, see LICENCE file for details.
+
+package objectstore
+
+import "github.com/juju/errors"
+
+const (
+	// ObjectStoreLeaseHolderName is the name of the lease holder for the
+	// object store.
+	ObjectStoreLeaseHolderName = "objectstore"
+)
+
+// ParseLeaseHolderName returns true if the supplied name is a valid lease
+// holder.
+// This is used to ensure that the lease manager does not attempt to acquire
+// leases for invalid names.
+func ParseLeaseHolderName(name string) error {
+	if name == ObjectStoreLeaseHolderName {
+		return nil
+	}
+	return errors.NotValidf("lease holder name %q", name)
+}
@@ -0,0 +1,35 @@
+// Copyright 2024 Canonical Ltd.
+// Licensed under the AGPLv3, see LICENCE file for details.
+
+package objectstore
+
+import (
+	"github.com/juju/errors"
+	"github.com/juju/testing"
+	jc "github.com/juju/testing/checkers"
+	gc "gopkg.in/check.v1"
+)
+
+type LeaseSuite struct {
+	testing.IsolationSuite
+}
+
+var _ = gc.Suite(&LeaseSuite{})
+
+func (s *LeaseSuite) TestParseLeaseHolderName(c *gc.C) {
+	tests := []struct {
+		name     string
+		expected error
+	}{{
+		name:     "objectstore",
+		expected: nil,
+	}, {
+		name:     "foo",
+		expected: errors.NotValid,
+	}}
+
+	for i, test := range tests {
+		c.Logf("test %d: %s", i, test.name)
+		c.Assert(ParseLeaseHolderName(test.name), jc.ErrorIs, test.expected)
+	}
+}
@@ -108,6 +108,7 @@ require (
 	go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.21.0
 	go.opentelemetry.io/otel/sdk v1.21.0
 	go.opentelemetry.io/otel/trace v1.21.0
+	go.uber.org/goleak v1.3.0
 	go.uber.org/mock v0.4.0
 	golang.org/x/crypto v0.17.0
 	golang.org/x/net v0.19.0
 
@@ -0,0 +1,131 @@
+// Copyright 2024 Canonical Ltd.
+// Licensed under the AGPLv3, see LICENCE file for details.
+
+package lease
+
+import (
+	"time"
+
+	"github.com/juju/errors"
+	"github.com/juju/names/v5"
+
+	coreagent "github.com/juju/juju/core/agent"
+	"github.com/juju/juju/core/lease"
+	"github.com/juju/juju/core/objectstore"
+)
+
+// SecretaryFinder is responsible for returning the correct Secretary for a
+// given namespace.
+type SecretaryFinder struct {
+	secretaries map[string]lease.Secretary
+}
+
+// Register adds a Secretary to the Cabinet.
+func (c SecretaryFinder) Register(namespace string, secretary lease.Secretary) {
+	c.secretaries[namespace] = secretary
+}
+
+// SecretaryFor returns the Secretary for the given namespace.
+// Returns an error if the namespace is not valid.
+func (c SecretaryFinder) SecretaryFor(namespace string) (lease.Secretary, error) {
+	result, found := c.secretaries[namespace]
+	if !found {
+		return nil, errors.NotValidf("namespace %q", namespace)
+	}
+	return result, nil
+}
+
+// NewCabinet returns a SecretaryFinder with default set of secretaries
+// registered with it.
+// Note: a cabinet is a group of secretaries.
+func NewSecretaryFinder(controllerUUID string) lease.SecretaryFinder {
+	finder := SecretaryFinder{
+		secretaries: map[string]lease.Secretary{
+			lease.SingularControllerNamespace: SingularSecretary{
+				ControllerUUID: controllerUUID,
+			},
+			lease.ApplicationLeadershipNamespace: LeadershipSecretary{},
+			lease.ObjectStoreNamespace:           ObjectStoreSecretary{},
+		},
+	}
+	return finder
+}
+
+type baseSecretary struct{}
+
+// CheckDuration is part of the lease.Secretary interface.
+func (baseSecretary) CheckDuration(duration time.Duration) error {
+	if duration <= 0 {
+		return errors.NewNotValid(nil, "non-positive")
+	}
+	return nil
+}
+
+// SingularSecretary implements Secretary to restrict claims to either
+// a lease for the controller or the specific model it's asking for,
+// holdable only by machine-tag strings.
+type SingularSecretary struct {
+	baseSecretary
+	ControllerUUID string
+}
+
+// CheckLease is part of the lease.Secretary interface.
+func (s SingularSecretary) CheckLease(key lease.Key) error {
+	if key.Lease != s.ControllerUUID && key.Lease != key.ModelUUID {
+		return errors.New("expected controller or model UUID")
+	}
+	return nil
+}
+
+// CheckHolder is part of the lease.Secretary interface.
+func (s SingularSecretary) CheckHolder(name string) error {
+	tag, err := names.ParseTag(name)
+	if err != nil {
+		return errors.Annotate(err, "expected a valid tag")
+	}
+	if !coreagent.IsAllowedControllerTag(tag.Kind()) {
+		return errors.New("expected machine or controller tag")
+	}
+	return nil
+}
+
+// LeadershipSecretary implements Secretary; it checks that leases are
+// application names, and holders are unit names.
+type LeadershipSecretary struct {
+	baseSecretary
+}
+
+// CheckLease is part of the lease.Secretary interface.
+func (LeadershipSecretary) CheckLease(key lease.Key) error {
+	if !names.IsValidApplication(key.Lease) {
+		return errors.NewNotValid(nil, "not an application name")
+	}
+	return nil
+}
+
+// CheckHolder is part of the lease.Secretary interface.
+func (LeadershipSecretary) CheckHolder(name string) error {
+	if !names.IsValidUnit(name) {
+		return errors.NewNotValid(nil, "not a unit name")
+	}
+	return nil
+}
+
+// ObjectStoreSecretary implements Secretary; it checks that leases are
+// application names, and holders are unit names.
+type ObjectStoreSecretary struct {
+	baseSecretary
+}
+
+// CheckLease is part of the lease.Secretary interface.
+func (ObjectStoreSecretary) CheckLease(key lease.Key) error {
+	if key.Lease == "" {
+		return errors.NewNotValid(nil, "empty lease name")
+	}
+	return nil
+}
+
+// CheckHolder is part of the lease.Secretary interface.
+func (ObjectStoreSecretary) CheckHolder(name string) error {
+	return objectstore.ParseLeaseHolderName(name)
+}