c193dee9ae
The number of the last segment uploaded returned by upload wasn't correct in all the return statements. The Put method calls upload but with the returned values wasn't even certain of cleaning up correctly the segments uploaded when an error happens. This commit moves the logic of cleaning up inside of the upload method because it's easier to understand than only doing inside of it the clean up when a context cancellation happens. It also fixes the number of segments to be deleted by cancelHandler when an error happens. These changes should avoid trying to delete segments which haven't been uploaded because of the wrong index value or because of being inline.
838 lines
24 KiB
Go
838 lines
24 KiB
Go
// Copyright (C) 2019 Storj Labs, Inc.
|
|
// See LICENSE for copying information.
|
|
|
|
package streams
|
|
|
|
import (
|
|
"context"
|
|
"crypto/rand"
|
|
"io"
|
|
"io/ioutil"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/gogo/protobuf/proto"
|
|
"github.com/zeebo/errs"
|
|
"go.uber.org/zap"
|
|
monkit "gopkg.in/spacemonkeygo/monkit.v2"
|
|
|
|
"storj.io/storj/pkg/encryption"
|
|
"storj.io/storj/pkg/paths"
|
|
"storj.io/storj/pkg/pb"
|
|
"storj.io/storj/pkg/ranger"
|
|
"storj.io/storj/pkg/storj"
|
|
"storj.io/storj/uplink/eestream"
|
|
"storj.io/storj/uplink/metainfo"
|
|
"storj.io/storj/uplink/storage/segments"
|
|
)
|
|
|
|
var mon = monkit.Package()
|
|
|
|
// Meta info about a stream
|
|
type Meta struct {
|
|
Modified time.Time
|
|
Expiration time.Time
|
|
Size int64
|
|
Data []byte
|
|
}
|
|
|
|
func numberOfSegments(stream *pb.StreamInfo, streamMeta *pb.StreamMeta) int64 {
|
|
if streamMeta.NumberOfSegments > 0 {
|
|
return streamMeta.NumberOfSegments
|
|
}
|
|
return stream.DeprecatedNumberOfSegments
|
|
}
|
|
|
|
// convertMeta converts segment metadata to stream metadata
|
|
func convertMeta(modified, expiration time.Time, stream pb.StreamInfo, streamMeta pb.StreamMeta) Meta {
|
|
return Meta{
|
|
Modified: modified,
|
|
Expiration: expiration,
|
|
Size: ((numberOfSegments(&stream, &streamMeta) - 1) * stream.SegmentsSize) + stream.LastSegmentSize,
|
|
Data: stream.Metadata,
|
|
}
|
|
}
|
|
|
|
// Store interface methods for streams to satisfy to be a store
|
|
type typedStore interface {
|
|
Meta(ctx context.Context, path Path, pathCipher storj.CipherSuite) (Meta, error)
|
|
Get(ctx context.Context, path Path, pathCipher storj.CipherSuite) (ranger.Ranger, Meta, error)
|
|
Put(ctx context.Context, path Path, pathCipher storj.CipherSuite, data io.Reader, metadata []byte, expiration time.Time) (Meta, error)
|
|
Delete(ctx context.Context, path Path, pathCipher storj.CipherSuite) error
|
|
List(ctx context.Context, prefix Path, startAfter string, pathCipher storj.CipherSuite, recursive bool, limit int, metaFlags uint32) (items []ListItem, more bool, err error)
|
|
}
|
|
|
|
// streamStore is a store for streams. It implements typedStore as part of an ongoing migration
|
|
// to use typed paths. See the shim for the store that the rest of the world interacts with.
|
|
type streamStore struct {
|
|
metainfo *metainfo.Client
|
|
segments segments.Store
|
|
segmentSize int64
|
|
encStore *encryption.Store
|
|
encBlockSize int
|
|
cipher storj.CipherSuite
|
|
inlineThreshold int
|
|
maxEncryptedSegmentSize int64
|
|
}
|
|
|
|
// newTypedStreamStore constructs a typedStore backed by a streamStore.
|
|
func newTypedStreamStore(metainfo *metainfo.Client, segments segments.Store, segmentSize int64, encStore *encryption.Store, encBlockSize int, cipher storj.CipherSuite, inlineThreshold int, maxEncryptedSegmentSize int64) (typedStore, error) {
|
|
if segmentSize <= 0 {
|
|
return nil, errs.New("segment size must be larger than 0")
|
|
}
|
|
if encBlockSize <= 0 {
|
|
return nil, errs.New("encryption block size must be larger than 0")
|
|
}
|
|
|
|
return &streamStore{
|
|
metainfo: metainfo,
|
|
segments: segments,
|
|
segmentSize: segmentSize,
|
|
encStore: encStore,
|
|
encBlockSize: encBlockSize,
|
|
cipher: cipher,
|
|
inlineThreshold: inlineThreshold,
|
|
maxEncryptedSegmentSize: maxEncryptedSegmentSize,
|
|
}, nil
|
|
}
|
|
|
|
// Put breaks up data as it comes in into s.segmentSize length pieces, then
|
|
// store the first piece at s0/<path>, second piece at s1/<path>, and the
|
|
// *last* piece at l/<path>. Store the given metadata, along with the number
|
|
// of segments, in a new protobuf, in the metadata of l/<path>.
|
|
func (s *streamStore) Put(ctx context.Context, path Path, pathCipher storj.CipherSuite, data io.Reader, metadata []byte, expiration time.Time) (m Meta, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
|
|
// previously file uploaded?
|
|
err = s.Delete(ctx, path, pathCipher)
|
|
if err != nil && !storj.ErrObjectNotFound.Has(err) {
|
|
// something wrong happened checking for an existing
|
|
// file with the same name
|
|
return Meta{}, err
|
|
}
|
|
|
|
return s.upload(ctx, path, pathCipher, data, metadata, expiration)
|
|
}
|
|
|
|
// upload registers segments in metainfo and uploads them to storage nodes.
|
|
//
|
|
// If there is an error, it cleans up any uploaded segment before returning.
|
|
func (s *streamStore) upload(ctx context.Context, path Path, pathCipher storj.CipherSuite, data io.Reader, metadata []byte, expiration time.Time) (_ Meta, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
derivedKey, err := encryption.DeriveContentKey(path.Bucket(), path.UnencryptedPath(), s.encStore)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
encPath, err := encryption.EncryptPath(path.Bucket(), path.UnencryptedPath(), pathCipher, s.encStore)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
beginObjectReq := &metainfo.BeginObjectParams{
|
|
Bucket: []byte(path.Bucket()),
|
|
EncryptedPath: []byte(encPath.Raw()),
|
|
ExpiresAt: expiration,
|
|
}
|
|
|
|
var (
|
|
committedSegments int64
|
|
streamID storj.StreamID
|
|
)
|
|
defer func() {
|
|
if err != nil {
|
|
s.cancelHandler(context.Background(), streamID, committedSegments, path, pathCipher)
|
|
return
|
|
}
|
|
|
|
select {
|
|
case <-ctx.Done():
|
|
s.cancelHandler(context.Background(), streamID, committedSegments, path, pathCipher)
|
|
default:
|
|
}
|
|
}()
|
|
|
|
var (
|
|
currentSegment int64
|
|
contentKey storj.Key
|
|
prevSegmentCommitReq *metainfo.CommitSegmentParams
|
|
streamSize int64
|
|
lastSegmentSize int64
|
|
encryptedKey []byte
|
|
keyNonce storj.Nonce
|
|
)
|
|
|
|
eofReader := NewEOFReader(data)
|
|
for !eofReader.isEOF() && !eofReader.hasError() {
|
|
// generate random key for encrypting the segment's content
|
|
_, err := rand.Read(contentKey[:])
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
// Initialize the content nonce with the current total segment incremented
|
|
// by 1 because at this moment the next segment has not been already
|
|
// uploaded.
|
|
// The increment by 1 is to avoid nonce reuse with the metadata encryption,
|
|
// which is encrypted with the zero nonce.
|
|
contentNonce := storj.Nonce{}
|
|
_, err = encryption.Increment(&contentNonce, currentSegment+1)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
// generate random nonce for encrypting the content key
|
|
_, err = rand.Read(keyNonce[:])
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
encryptedKey, err = encryption.EncryptKey(&contentKey, s.cipher, derivedKey, &keyNonce)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
sizeReader := NewSizeReader(eofReader)
|
|
segmentReader := io.LimitReader(sizeReader, s.segmentSize)
|
|
peekReader := segments.NewPeekThresholdReader(segmentReader)
|
|
// If the data is larger than the inline threshold size, then it will be a remote segment
|
|
isRemote, err := peekReader.IsLargerThan(s.inlineThreshold)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
segmentEncryption := storj.SegmentEncryption{}
|
|
if s.cipher != storj.EncNull {
|
|
segmentEncryption = storj.SegmentEncryption{
|
|
EncryptedKey: encryptedKey,
|
|
EncryptedKeyNonce: keyNonce,
|
|
}
|
|
}
|
|
|
|
if isRemote {
|
|
encrypter, err := encryption.NewEncrypter(s.cipher, &contentKey, &contentNonce, s.encBlockSize)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
paddedReader := eestream.PadReader(ioutil.NopCloser(peekReader), encrypter.InBlockSize())
|
|
transformedReader := encryption.TransformReader(paddedReader, encrypter, 0)
|
|
|
|
beginSegment := &metainfo.BeginSegmentParams{
|
|
MaxOrderLimit: s.maxEncryptedSegmentSize,
|
|
Position: storj.SegmentPosition{
|
|
Index: int32(currentSegment),
|
|
},
|
|
}
|
|
|
|
var responses []metainfo.BatchResponse
|
|
if currentSegment == 0 {
|
|
responses, err = s.metainfo.Batch(ctx, beginObjectReq, beginSegment)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
objResponse, err := responses[0].BeginObject()
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
streamID = objResponse.StreamID
|
|
} else {
|
|
beginSegment.StreamID = streamID
|
|
responses, err = s.metainfo.Batch(ctx, prevSegmentCommitReq, beginSegment)
|
|
if len(responses) > 0 {
|
|
// We increment because the first request has succeeded
|
|
committedSegments++
|
|
}
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
}
|
|
|
|
segResponse, err := responses[1].BeginSegment()
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
segmentID := segResponse.SegmentID
|
|
limits := segResponse.Limits
|
|
piecePrivateKey := segResponse.PiecePrivateKey
|
|
|
|
uploadResults, size, err := s.segments.Put(ctx, transformedReader, expiration, limits, piecePrivateKey)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
prevSegmentCommitReq = &metainfo.CommitSegmentParams{
|
|
SegmentID: segmentID,
|
|
SizeEncryptedData: size,
|
|
Encryption: segmentEncryption,
|
|
UploadResult: uploadResults,
|
|
}
|
|
} else {
|
|
data, err := ioutil.ReadAll(peekReader)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
cipherData, err := encryption.Encrypt(data, s.cipher, &contentKey, &contentNonce)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
makeInlineSegment := &metainfo.MakeInlineSegmentParams{
|
|
Position: storj.SegmentPosition{
|
|
Index: int32(currentSegment),
|
|
},
|
|
Encryption: segmentEncryption,
|
|
EncryptedInlineData: cipherData,
|
|
}
|
|
if currentSegment == 0 {
|
|
responses, err := s.metainfo.Batch(ctx, beginObjectReq, makeInlineSegment)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
objResponse, err := responses[0].BeginObject()
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
streamID = objResponse.StreamID
|
|
} else {
|
|
makeInlineSegment.StreamID = streamID
|
|
err = s.metainfo.MakeInlineSegment(ctx, *makeInlineSegment)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
}
|
|
|
|
committedSegments++
|
|
}
|
|
|
|
lastSegmentSize = sizeReader.Size()
|
|
streamSize += lastSegmentSize
|
|
currentSegment++
|
|
}
|
|
|
|
totalSegments := currentSegment
|
|
|
|
if eofReader.hasError() {
|
|
return Meta{}, eofReader.err
|
|
}
|
|
|
|
streamInfo, err := proto.Marshal(&pb.StreamInfo{
|
|
DeprecatedNumberOfSegments: totalSegments,
|
|
SegmentsSize: s.segmentSize,
|
|
LastSegmentSize: lastSegmentSize,
|
|
Metadata: metadata,
|
|
})
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
// encrypt metadata with the content encryption key and zero nonce
|
|
encryptedStreamInfo, err := encryption.Encrypt(streamInfo, s.cipher, &contentKey, &storj.Nonce{})
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
streamMeta := pb.StreamMeta{
|
|
NumberOfSegments: totalSegments,
|
|
EncryptedStreamInfo: encryptedStreamInfo,
|
|
EncryptionType: int32(s.cipher),
|
|
EncryptionBlockSize: int32(s.encBlockSize),
|
|
}
|
|
|
|
if s.cipher != storj.EncNull {
|
|
streamMeta.LastSegmentMeta = &pb.SegmentMeta{
|
|
EncryptedKey: encryptedKey,
|
|
KeyNonce: keyNonce[:],
|
|
}
|
|
}
|
|
|
|
objectMetadata, err := proto.Marshal(&streamMeta)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
commitObject := metainfo.CommitObjectParams{
|
|
StreamID: streamID,
|
|
EncryptedMetadata: objectMetadata,
|
|
}
|
|
if prevSegmentCommitReq != nil {
|
|
var responses []metainfo.BatchResponse
|
|
responses, err = s.metainfo.Batch(ctx, prevSegmentCommitReq, &commitObject)
|
|
if len(responses) > 0 {
|
|
// We increment because the first request has succeeded
|
|
committedSegments++
|
|
}
|
|
} else {
|
|
err = s.metainfo.CommitObject(ctx, commitObject)
|
|
}
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
resultMeta := Meta{
|
|
Expiration: expiration,
|
|
Size: streamSize,
|
|
Data: metadata,
|
|
}
|
|
|
|
return resultMeta, nil
|
|
}
|
|
|
|
// Get returns a ranger that knows what the overall size is (from l/<path>)
|
|
// and then returns the appropriate data from segments s0/<path>, s1/<path>,
|
|
// ..., l/<path>.
|
|
func (s *streamStore) Get(ctx context.Context, path Path, pathCipher storj.CipherSuite) (rr ranger.Ranger, meta Meta, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
|
|
encPath, err := encryption.EncryptPath(path.Bucket(), path.UnencryptedPath(), pathCipher, s.encStore)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
resps, err := s.metainfo.Batch(ctx,
|
|
&metainfo.GetObjectParams{
|
|
Bucket: []byte(path.Bucket()),
|
|
EncryptedPath: []byte(encPath.Raw()),
|
|
},
|
|
&metainfo.DownloadSegmentParams{
|
|
Position: storj.SegmentPosition{
|
|
Index: -1, // Request the last segment
|
|
},
|
|
},
|
|
)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
if len(resps) != 2 {
|
|
return nil, Meta{}, errs.New(
|
|
"metainfo.Batch request returned an unexpected number of responses. Want: 2, got: %d", len(resps),
|
|
)
|
|
}
|
|
|
|
var object storj.ObjectInfo
|
|
{
|
|
resp, err := resps[0].GetObject()
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
object = resp.Info
|
|
}
|
|
|
|
var (
|
|
info storj.SegmentDownloadInfo
|
|
limits []*pb.AddressedOrderLimit
|
|
)
|
|
{
|
|
resp, err := resps[1].DownloadSegment()
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
info = resp.Info
|
|
limits = resp.Limits
|
|
}
|
|
|
|
lastSegmentRanger, err := s.segments.Ranger(ctx, info, limits, object.RedundancyScheme)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
streamInfo, streamMeta, err := TypedDecryptStreamInfo(ctx, object.Metadata, path, s.encStore)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
stream := pb.StreamInfo{}
|
|
err = proto.Unmarshal(streamInfo, &stream)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
derivedKey, err := encryption.DeriveContentKey(path.Bucket(), path.UnencryptedPath(), s.encStore)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
var rangers []ranger.Ranger
|
|
for i := int64(0); i < numberOfSegments(&stream, &streamMeta)-1; i++ {
|
|
var contentNonce storj.Nonce
|
|
_, err = encryption.Increment(&contentNonce, i+1)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
rangers = append(rangers, &lazySegmentRanger{
|
|
metainfo: s.metainfo,
|
|
segments: s.segments,
|
|
streamID: object.StreamID,
|
|
segmentIndex: int32(i),
|
|
rs: object.RedundancyScheme,
|
|
size: stream.SegmentsSize,
|
|
derivedKey: derivedKey,
|
|
startingNonce: &contentNonce,
|
|
encBlockSize: int(streamMeta.EncryptionBlockSize),
|
|
cipher: storj.CipherSuite(streamMeta.EncryptionType),
|
|
})
|
|
}
|
|
|
|
var contentNonce storj.Nonce
|
|
_, err = encryption.Increment(&contentNonce, numberOfSegments(&stream, &streamMeta))
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
encryptedKey, keyNonce := getEncryptedKeyAndNonce(streamMeta.LastSegmentMeta)
|
|
decryptedLastSegmentRanger, err := decryptRanger(
|
|
ctx,
|
|
lastSegmentRanger,
|
|
stream.LastSegmentSize,
|
|
storj.CipherSuite(streamMeta.EncryptionType),
|
|
derivedKey,
|
|
encryptedKey,
|
|
keyNonce,
|
|
&contentNonce,
|
|
int(streamMeta.EncryptionBlockSize),
|
|
)
|
|
if err != nil {
|
|
return nil, Meta{}, err
|
|
}
|
|
|
|
rangers = append(rangers, decryptedLastSegmentRanger)
|
|
catRangers := ranger.Concat(rangers...)
|
|
meta = convertMeta(object.Modified, object.Expires, stream, streamMeta)
|
|
return catRangers, meta, nil
|
|
}
|
|
|
|
// Meta implements Store.Meta
|
|
func (s *streamStore) Meta(ctx context.Context, path Path, pathCipher storj.CipherSuite) (meta Meta, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
|
|
encPath, err := encryption.EncryptPath(path.Bucket(), path.UnencryptedPath(), pathCipher, s.encStore)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
object, err := s.metainfo.GetObject(ctx, metainfo.GetObjectParams{
|
|
Bucket: []byte(path.Bucket()),
|
|
EncryptedPath: []byte(encPath.Raw()),
|
|
})
|
|
|
|
streamInfo, streamMeta, err := TypedDecryptStreamInfo(ctx, object.Metadata, path, s.encStore)
|
|
if err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
var stream pb.StreamInfo
|
|
if err := proto.Unmarshal(streamInfo, &stream); err != nil {
|
|
return Meta{}, err
|
|
}
|
|
|
|
return convertMeta(object.Modified, object.Expires, stream, streamMeta), nil
|
|
}
|
|
|
|
// Delete all the segments, with the last one last
|
|
func (s *streamStore) Delete(ctx context.Context, path Path, pathCipher storj.CipherSuite) (err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
|
|
encPath, err := encryption.EncryptPath(path.Bucket(), path.UnencryptedPath(), pathCipher, s.encStore)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
batchItems := []metainfo.BatchItem{
|
|
&metainfo.BeginDeleteObjectParams{
|
|
Bucket: []byte(path.Bucket()),
|
|
EncryptedPath: []byte(encPath.Raw()),
|
|
},
|
|
&metainfo.ListSegmentsParams{
|
|
CursorPosition: storj.SegmentPosition{
|
|
Index: 0,
|
|
},
|
|
},
|
|
}
|
|
|
|
resps, err := s.metainfo.Batch(ctx, batchItems...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if len(resps) != 2 {
|
|
return errs.New(
|
|
"metainfo.Batch request returned an unexpected number of responses. Want: 2, got: %d", len(resps),
|
|
)
|
|
}
|
|
|
|
delResp, err := resps[0].BeginDeleteObject()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
listResp, err := resps[1].ListSegment()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// TODO handle listResp.More
|
|
|
|
var errlist errs.Group
|
|
for _, item := range listResp.Items {
|
|
err = s.segments.Delete(ctx, delResp.StreamID, item.Position.Index)
|
|
if err != nil {
|
|
errlist.Add(err)
|
|
continue
|
|
}
|
|
}
|
|
|
|
return errlist.Err()
|
|
}
|
|
|
|
// ListItem is a single item in a listing
|
|
type ListItem struct {
|
|
Path string
|
|
Meta Meta
|
|
IsPrefix bool
|
|
}
|
|
|
|
// pathForKey removes the trailing `/` from the raw path, which is required so
|
|
// the derived key matches the final list path (which also has the trailing
|
|
// encrypted `/` part of the path removed)
|
|
func pathForKey(raw string) paths.Unencrypted {
|
|
return paths.NewUnencrypted(strings.TrimSuffix(raw, "/"))
|
|
}
|
|
|
|
// List all the paths inside l/, stripping off the l/ prefix
|
|
func (s *streamStore) List(ctx context.Context, prefix Path, startAfter string, pathCipher storj.CipherSuite, recursive bool, limit int, metaFlags uint32) (items []ListItem, more bool, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
|
|
// TODO use flags with listing
|
|
// if metaFlags&meta.Size != 0 {
|
|
// Calculating the stream's size require also the user-defined metadata,
|
|
// where stream store keeps info about the number of segments and their size.
|
|
// metaFlags |= meta.UserDefined
|
|
// }
|
|
|
|
prefixKey, err := encryption.DerivePathKey(prefix.Bucket(), pathForKey(prefix.UnencryptedPath().Raw()), s.encStore)
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
|
|
encPrefix, err := encryption.EncryptPath(prefix.Bucket(), prefix.UnencryptedPath(), pathCipher, s.encStore)
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
|
|
// If the raw unencrypted path ends in a `/` we need to remove the final
|
|
// section of the encrypted path. For example, if we are listing the path
|
|
// `/bob/`, the encrypted path results in `enc("")/enc("bob")/enc("")`. This
|
|
// is an incorrect list prefix, what we really want is `enc("")/enc("bob")`
|
|
if strings.HasSuffix(prefix.UnencryptedPath().Raw(), "/") {
|
|
lastSlashIdx := strings.LastIndex(encPrefix.Raw(), "/")
|
|
encPrefix = paths.NewEncrypted(encPrefix.Raw()[:lastSlashIdx])
|
|
}
|
|
|
|
// We have to encrypt startAfter but only if it doesn't contain a bucket.
|
|
// It contains a bucket if and only if the prefix has no bucket. This is why it is a raw
|
|
// string instead of a typed string: it's either a bucket or an unencrypted path component
|
|
// and that isn't known at compile time.
|
|
needsEncryption := prefix.Bucket() != ""
|
|
if needsEncryption {
|
|
startAfter, err = encryption.EncryptPathRaw(startAfter, pathCipher, prefixKey)
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
}
|
|
|
|
objects, more, err := s.metainfo.ListObjects(ctx, metainfo.ListObjectsParams{
|
|
Bucket: []byte(prefix.Bucket()),
|
|
EncryptedPrefix: []byte(encPrefix.Raw()),
|
|
EncryptedCursor: []byte(startAfter),
|
|
Limit: int32(limit),
|
|
Recursive: recursive,
|
|
})
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
|
|
items = make([]ListItem, len(objects))
|
|
for i, item := range objects {
|
|
var path Path
|
|
var itemPath string
|
|
|
|
if needsEncryption {
|
|
itemPath, err = encryption.DecryptPathRaw(string(item.EncryptedPath), pathCipher, prefixKey)
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
|
|
// TODO(jeff): this shouldn't be necessary if we handled trailing slashes
|
|
// appropriately. there's some issues with list.
|
|
fullPath := prefix.UnencryptedPath().Raw()
|
|
if len(fullPath) > 0 && fullPath[len(fullPath)-1] != '/' {
|
|
fullPath += "/"
|
|
}
|
|
fullPath += itemPath
|
|
|
|
path = CreatePath(prefix.Bucket(), paths.NewUnencrypted(fullPath))
|
|
} else {
|
|
itemPath = string(item.EncryptedPath)
|
|
path = CreatePath(string(item.EncryptedPath), paths.Unencrypted{})
|
|
}
|
|
|
|
streamInfo, streamMeta, err := TypedDecryptStreamInfo(ctx, item.EncryptedMetadata, path, s.encStore)
|
|
if err != nil {
|
|
return nil, false, err
|
|
}
|
|
|
|
var stream pb.StreamInfo
|
|
if err := proto.Unmarshal(streamInfo, &stream); err != nil {
|
|
return nil, false, err
|
|
}
|
|
|
|
newMeta := convertMeta(item.CreatedAt, item.ExpiresAt, stream, streamMeta)
|
|
items[i] = ListItem{
|
|
Path: itemPath,
|
|
Meta: newMeta,
|
|
IsPrefix: item.IsPrefix,
|
|
}
|
|
}
|
|
|
|
return items, more, nil
|
|
}
|
|
|
|
type lazySegmentRanger struct {
|
|
ranger ranger.Ranger
|
|
metainfo *metainfo.Client
|
|
segments segments.Store
|
|
streamID storj.StreamID
|
|
segmentIndex int32
|
|
rs storj.RedundancyScheme
|
|
size int64
|
|
derivedKey *storj.Key
|
|
startingNonce *storj.Nonce
|
|
encBlockSize int
|
|
cipher storj.CipherSuite
|
|
}
|
|
|
|
// Size implements Ranger.Size.
|
|
func (lr *lazySegmentRanger) Size() int64 {
|
|
return lr.size
|
|
}
|
|
|
|
// Range implements Ranger.Range to be lazily connected.
|
|
func (lr *lazySegmentRanger) Range(ctx context.Context, offset, length int64) (_ io.ReadCloser, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
if lr.ranger == nil {
|
|
info, limits, err := lr.metainfo.DownloadSegment(ctx, metainfo.DownloadSegmentParams{
|
|
StreamID: lr.streamID,
|
|
Position: storj.SegmentPosition{
|
|
Index: lr.segmentIndex,
|
|
},
|
|
})
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
rr, err := lr.segments.Ranger(ctx, info, limits, lr.rs)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
encryptedKey, keyNonce := info.SegmentEncryption.EncryptedKey, info.SegmentEncryption.EncryptedKeyNonce
|
|
lr.ranger, err = decryptRanger(ctx, rr, lr.size, lr.cipher, lr.derivedKey, encryptedKey, &keyNonce, lr.startingNonce, lr.encBlockSize)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
return lr.ranger.Range(ctx, offset, length)
|
|
}
|
|
|
|
// decryptRanger returns a decrypted ranger of the given rr ranger.
|
|
func decryptRanger(ctx context.Context, rr ranger.Ranger, decryptedSize int64, cipher storj.CipherSuite, derivedKey *storj.Key, encryptedKey storj.EncryptedPrivateKey, encryptedKeyNonce, startingNonce *storj.Nonce, encBlockSize int) (decrypted ranger.Ranger, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
contentKey, err := encryption.DecryptKey(encryptedKey, cipher, derivedKey, encryptedKeyNonce)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
decrypter, err := encryption.NewDecrypter(cipher, contentKey, startingNonce, encBlockSize)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
var rd ranger.Ranger
|
|
if rr.Size()%int64(decrypter.InBlockSize()) != 0 {
|
|
reader, err := rr.Range(ctx, 0, rr.Size())
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer func() { err = errs.Combine(err, reader.Close()) }()
|
|
cipherData, err := ioutil.ReadAll(reader)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
data, err := encryption.Decrypt(cipherData, cipher, contentKey, startingNonce)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return ranger.ByteRanger(data), nil
|
|
}
|
|
|
|
rd, err = encryption.Transform(rr, decrypter)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return eestream.Unpad(rd, int(rd.Size()-decryptedSize))
|
|
}
|
|
|
|
// CancelHandler handles clean up of segments on receiving CTRL+C
|
|
func (s *streamStore) cancelHandler(ctx context.Context, streamID storj.StreamID, totalSegments int64, path Path, pathCipher storj.CipherSuite) {
|
|
defer mon.Task()(&ctx)(nil)
|
|
|
|
for i := int64(0); i < totalSegments; i++ {
|
|
err := s.segments.Delete(ctx, streamID, int32(i))
|
|
if err != nil {
|
|
zap.L().Warn("Failed deleting segment", zap.Stringer("path", path), zap.Int64("Segment Index", i), zap.Error(err))
|
|
continue
|
|
}
|
|
}
|
|
}
|
|
|
|
func getEncryptedKeyAndNonce(m *pb.SegmentMeta) (storj.EncryptedPrivateKey, *storj.Nonce) {
|
|
if m == nil {
|
|
return nil, nil
|
|
}
|
|
|
|
var nonce storj.Nonce
|
|
copy(nonce[:], m.KeyNonce)
|
|
|
|
return m.EncryptedKey, &nonce
|
|
}
|
|
|
|
// TypedDecryptStreamInfo decrypts stream info
|
|
func TypedDecryptStreamInfo(ctx context.Context, streamMetaBytes []byte, path Path, encStore *encryption.Store) (
|
|
streamInfo []byte, streamMeta pb.StreamMeta, err error) {
|
|
defer mon.Task()(&ctx)(&err)
|
|
|
|
err = proto.Unmarshal(streamMetaBytes, &streamMeta)
|
|
if err != nil {
|
|
return nil, pb.StreamMeta{}, err
|
|
}
|
|
|
|
derivedKey, err := encryption.DeriveContentKey(path.Bucket(), path.UnencryptedPath(), encStore)
|
|
if err != nil {
|
|
return nil, pb.StreamMeta{}, err
|
|
}
|
|
|
|
cipher := storj.CipherSuite(streamMeta.EncryptionType)
|
|
encryptedKey, keyNonce := getEncryptedKeyAndNonce(streamMeta.LastSegmentMeta)
|
|
contentKey, err := encryption.DecryptKey(encryptedKey, cipher, derivedKey, keyNonce)
|
|
if err != nil {
|
|
return nil, pb.StreamMeta{}, err
|
|
}
|
|
|
|
// decrypt metadata with the content encryption key and zero nonce
|
|
streamInfo, err = encryption.Decrypt(streamMeta.EncryptedStreamInfo, cipher, contentKey, &storj.Nonce{})
|
|
return streamInfo, streamMeta, err
|
|
}
|