72929ec05b
This PR also brings --compat option to run MinIO in strict S3 compatibility mode, MinIO by default will now try to run high performance mode.
168 lines
4.3 KiB
Go
168 lines
4.3 KiB
Go
/*
|
|
* MinIO Cloud Storage, (C) 2017 MinIO, Inc.
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
package hash
|
|
|
|
import (
|
|
"bytes"
|
|
"crypto/md5"
|
|
"encoding/base64"
|
|
"encoding/hex"
|
|
"errors"
|
|
"hash"
|
|
"io"
|
|
|
|
sha256 "github.com/minio/sha256-simd"
|
|
)
|
|
|
|
var errNestedReader = errors.New("Nesting of Reader detected, not allowed")
|
|
|
|
// Reader writes what it reads from an io.Reader to an MD5 and SHA256 hash.Hash.
|
|
// Reader verifies that the content of the io.Reader matches the expected checksums.
|
|
type Reader struct {
|
|
src io.Reader
|
|
size int64
|
|
actualSize int64
|
|
|
|
md5sum, sha256sum []byte // Byte values of md5sum, sha256sum of client sent values.
|
|
md5Hash, sha256Hash hash.Hash
|
|
}
|
|
|
|
// NewReader returns a new hash Reader which computes the MD5 sum and
|
|
// SHA256 sum (if set) of the provided io.Reader at EOF.
|
|
func NewReader(src io.Reader, size int64, md5Hex, sha256Hex string, actualSize int64, strictCompat bool) (*Reader, error) {
|
|
if _, ok := src.(*Reader); ok {
|
|
return nil, errNestedReader
|
|
}
|
|
|
|
sha256sum, err := hex.DecodeString(sha256Hex)
|
|
if err != nil {
|
|
return nil, SHA256Mismatch{}
|
|
}
|
|
|
|
md5sum, err := hex.DecodeString(md5Hex)
|
|
if err != nil {
|
|
return nil, BadDigest{}
|
|
}
|
|
|
|
var sha256Hash hash.Hash
|
|
if len(sha256sum) != 0 {
|
|
sha256Hash = sha256.New()
|
|
}
|
|
var md5Hash hash.Hash
|
|
if strictCompat {
|
|
// Strict compatibility is set then we should
|
|
// calculate md5sum always.
|
|
md5Hash = md5.New()
|
|
} else if len(md5sum) != 0 {
|
|
md5Hash = md5.New()
|
|
}
|
|
if size >= 0 {
|
|
src = io.LimitReader(src, size)
|
|
}
|
|
return &Reader{
|
|
md5sum: md5sum,
|
|
sha256sum: sha256sum,
|
|
src: src,
|
|
size: size,
|
|
md5Hash: md5Hash,
|
|
sha256Hash: sha256Hash,
|
|
actualSize: actualSize,
|
|
}, nil
|
|
}
|
|
|
|
func (r *Reader) Read(p []byte) (n int, err error) {
|
|
n, err = r.src.Read(p)
|
|
if n > 0 {
|
|
if r.md5Hash != nil {
|
|
r.md5Hash.Write(p[:n])
|
|
}
|
|
if r.sha256Hash != nil {
|
|
r.sha256Hash.Write(p[:n])
|
|
}
|
|
}
|
|
|
|
// At io.EOF verify if the checksums are right.
|
|
if err == io.EOF {
|
|
if cerr := r.Verify(); cerr != nil {
|
|
return 0, cerr
|
|
}
|
|
}
|
|
|
|
return
|
|
}
|
|
|
|
// Size returns the absolute number of bytes the Reader
|
|
// will return during reading. It returns -1 for unlimited
|
|
// data.
|
|
func (r *Reader) Size() int64 { return r.size }
|
|
|
|
// ActualSize returns the pre-modified size of the object.
|
|
// DecompressedSize - For compressed objects.
|
|
func (r *Reader) ActualSize() int64 { return r.actualSize }
|
|
|
|
// MD5 - returns byte md5 value
|
|
func (r *Reader) MD5() []byte {
|
|
return r.md5sum
|
|
}
|
|
|
|
// MD5Current - returns byte md5 value of the current state
|
|
// of the md5 hash after reading the incoming content.
|
|
// NOTE: Calling this function multiple times might yield
|
|
// different results if they are intermixed with Reader.
|
|
func (r *Reader) MD5Current() []byte {
|
|
if r.md5Hash != nil {
|
|
return r.md5Hash.Sum(nil)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// SHA256 - returns byte sha256 value
|
|
func (r *Reader) SHA256() []byte {
|
|
return r.sha256sum
|
|
}
|
|
|
|
// MD5HexString returns hex md5 value.
|
|
func (r *Reader) MD5HexString() string {
|
|
return hex.EncodeToString(r.md5sum)
|
|
}
|
|
|
|
// MD5Base64String returns base64 encoded MD5sum value.
|
|
func (r *Reader) MD5Base64String() string {
|
|
return base64.StdEncoding.EncodeToString(r.md5sum)
|
|
}
|
|
|
|
// SHA256HexString returns hex sha256 value.
|
|
func (r *Reader) SHA256HexString() string {
|
|
return hex.EncodeToString(r.sha256sum)
|
|
}
|
|
|
|
// Verify verifies if the computed MD5 sum and SHA256 sum are
|
|
// equal to the ones specified when creating the Reader.
|
|
func (r *Reader) Verify() error {
|
|
if r.sha256Hash != nil && len(r.sha256sum) > 0 {
|
|
if sum := r.sha256Hash.Sum(nil); !bytes.Equal(r.sha256sum, sum) {
|
|
return SHA256Mismatch{hex.EncodeToString(r.sha256sum), hex.EncodeToString(sum)}
|
|
}
|
|
}
|
|
if r.md5Hash != nil && len(r.md5sum) > 0 {
|
|
if sum := r.md5Hash.Sum(nil); !bytes.Equal(r.md5sum, sum) {
|
|
return BadDigest{hex.EncodeToString(r.md5sum), hex.EncodeToString(sum)}
|
|
}
|
|
}
|
|
return nil
|
|
}
|