satellite/metainfo: Improve piece hash validation (#3671)

Improve the piece hash validation filtering out a piece when an order limit is not found for it. The commit also improves the documentation of an internal metainfo method and rename the parameters of 2 methods for clarifying what they are.
2019-12-03 14:36:32 +01:00 · 2019-12-03 14:36:32 +01:00 · d69482e938
commit d69482e938
parent 52851026a7
2 changed files with 30 additions and 15 deletions
--- a/satellite/metainfo/metainfo.go
+++ b/satellite/metainfo/metainfo.go
@ -468,9 +468,12 @@ func createBucketID(projectID uuid.UUID, bucket []byte) []byte {

 // filterValidPieces filter out the invalid remote pieces held by pointer.
 //
+// This method expect the pointer to be valid, so it has to be validated before
+// calling it.
+//
 // The method always return a gRPC status error so the caller can directly
 // return it to the client.
-func (endpoint *Endpoint) filterValidPieces(ctx context.Context, pointer *pb.Pointer, limits []*pb.OrderLimit) (err error) {
+func (endpoint *Endpoint) filterValidPieces(ctx context.Context, pointer *pb.Pointer, originalLimits []*pb.OrderLimit) (err error) {
 	defer mon.Task()(&ctx)(&err)

 	if pointer.Type != pb.Pointer_REMOTE {
@ -514,7 +517,21 @@ func (endpoint *Endpoint) filterValidPieces(ctx context.Context, pointer *pb.Poi
 		}
 		signee := signing.SigneeFromPeerIdentity(peerID)

-		err = endpoint.validatePieceHash(ctx, piece, limits, signee)
+		limit := originalLimits[piece.PieceNum]
+		if limit == nil {
+			endpoint.log.Warn("There is not limit for the piece.  Piece removed from pointer",
+				zap.Int32("Piece ID", piece.PieceNum),
+			)
+
+			invalidPieces = append(invalidPieces, invalidPiece{
+				NodeID:   piece.NodeId,
+				PieceNum: piece.PieceNum,
+				Reason:   "No order limit for validating the piece hash",
+			})
+			continue
+		}
+
+		err = endpoint.validatePieceHash(ctx, piece, limit, signee)
 		if err != nil {
 			endpoint.log.Warn("Problem validating piece hash. Pieces removed from pointer", zap.Error(err))
 			invalidPieces = append(invalidPieces, invalidPiece{
--- a/satellite/metainfo/validation.go
+++ b/satellite/metainfo/validation.go
@ -365,7 +365,7 @@ func (endpoint *Endpoint) validateRedundancy(ctx context.Context, redundancy *pb
 	return nil
 }

-func (endpoint *Endpoint) validatePieceHash(ctx context.Context, piece *pb.RemotePiece, limits []*pb.OrderLimit, signee signing.Signee) (err error) {
+func (endpoint *Endpoint) validatePieceHash(ctx context.Context, piece *pb.RemotePiece, originalLimit *pb.OrderLimit, signee signing.Signee) (err error) {
 	defer mon.Task()(&ctx)(&err)

 	if piece.Hash == nil {
@ -386,18 +386,16 @@ func (endpoint *Endpoint) validatePieceHash(ctx context.Context, piece *pb.Remot
 		)
 	}

-	limit := limits[piece.PieceNum]
-	if limit != nil {
-		switch {
-		case limit.PieceId != piece.Hash.PieceId:
-			return errs.New("piece hash pieceID (%v) doesn't match limit pieceID (%v). NodeID: %v, PieceNum: %d",
-				piece.Hash.PieceId, limit.PieceId, piece.NodeId, piece.PieceNum,
-			)
-		case limit.Limit < piece.Hash.PieceSize:
-			return errs.New("piece hash PieceSize (%d) is larger than order limit (%d). NodeID: %v, PieceNum: %d",
-				piece.Hash.PieceSize, limit.Limit, piece.NodeId, piece.PieceNum,
-			)
-		}
+	switch {
+	case originalLimit.PieceId != piece.Hash.PieceId:
+		return errs.New("piece hash pieceID (%v) doesn't match limit pieceID (%v). NodeID: %v, PieceNum: %d",
+			piece.Hash.PieceId, originalLimit.PieceId, piece.NodeId, piece.PieceNum,
+		)
+	case originalLimit.Limit < piece.Hash.PieceSize:
+		return errs.New("piece hash PieceSize (%d) is larger than order limit (%d). NodeID: %v, PieceNum: %d",
+			piece.Hash.PieceSize, originalLimit.Limit, piece.NodeId, piece.PieceNum,
+		)
 	}
+
 	return nil
 }