2019-03-18 10:55:06 +00:00
|
|
|
// Copyright (C) 2019 Storj Labs, Inc.
|
|
|
|
// See LICENSE for copying information.
|
|
|
|
|
|
|
|
package piecestore
|
|
|
|
|
|
|
|
import (
|
|
|
|
"bytes"
|
|
|
|
"context"
|
|
|
|
|
|
|
|
"github.com/zeebo/errs"
|
|
|
|
|
|
|
|
"storj.io/storj/pkg/auth/signing"
|
|
|
|
"storj.io/storj/pkg/identity"
|
|
|
|
"storj.io/storj/pkg/pb"
|
|
|
|
)
|
|
|
|
|
|
|
|
var (
|
|
|
|
// ErrInternal is an error class for internal errors.
|
|
|
|
ErrInternal = errs.Class("internal")
|
|
|
|
// ErrProtocol is an error class for unexpected protocol sequence.
|
|
|
|
ErrProtocol = errs.Class("protocol")
|
|
|
|
// ErrVerifyUntrusted is an error in case there is a trust issue.
|
|
|
|
ErrVerifyUntrusted = errs.Class("untrusted")
|
|
|
|
)
|
|
|
|
|
|
|
|
// VerifyPieceHash verifies piece hash which is sent by peer.
|
|
|
|
func (client *Client) VerifyPieceHash(ctx context.Context, peer *identity.PeerIdentity, limit *pb.OrderLimit2, hash *pb.PieceHash, expectedHash []byte) error {
|
|
|
|
if peer == nil || limit == nil || hash == nil || len(expectedHash) == 0 {
|
|
|
|
return ErrProtocol.New("invalid arguments")
|
|
|
|
}
|
|
|
|
if limit.PieceId != hash.PieceId {
|
|
|
|
return ErrProtocol.New("piece id changed") // TODO: report grpc status bad message
|
|
|
|
}
|
|
|
|
if !bytes.Equal(hash.Hash, expectedHash) {
|
|
|
|
return ErrVerifyUntrusted.New("hashes don't match") // TODO: report grpc status bad message
|
|
|
|
}
|
|
|
|
|
2019-06-05 14:47:01 +01:00
|
|
|
if err := signing.VerifyPieceHashSignature(ctx, signing.SigneeFromPeerIdentity(peer), hash); err != nil {
|
2019-03-18 10:55:06 +00:00
|
|
|
return ErrVerifyUntrusted.New("invalid hash signature: %v", err) // TODO: report grpc status bad message
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|