2007-01-04 18:06:20 -07:00
|
|
|
# -*- test-case-name: allmydata.test.test_encode -*-
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2020-10-06 11:32:19 -04:00
|
|
|
"""
|
|
|
|
|
Ported to Python 3.
|
|
|
|
|
"""
|
|
|
|
|
|
|
|
|
|
from __future__ import division
|
|
|
|
|
from __future__ import absolute_import
|
|
|
|
|
from __future__ import print_function
|
|
|
|
|
from __future__ import unicode_literals
|
|
|
|
|
|
|
|
|
|
from future.utils import PY2
|
|
|
|
|
if PY2:
|
|
|
|
|
from future.builtins import filter, map, zip, ascii, chr, hex, input, next, oct, open, pow, round, super, bytes, dict, list, object, range, str, max, min # noqa: F401
|
|
|
|
|
|
2008-02-06 00:41:51 -07:00
|
|
|
import time
|
2017-02-27 10:56:49 -07:00
|
|
|
from zope.interface import implementer
|
2006-12-13 20:32:35 -07:00
|
|
|
from twisted.internet import defer
|
2009-05-21 17:38:23 -07:00
|
|
|
from foolscap.api import fireEventually
|
2009-02-18 14:46:55 -07:00
|
|
|
from allmydata import uri
|
|
|
|
|
from allmydata.storage.server import si_b2a
|
2007-06-07 21:47:21 -07:00
|
|
|
from allmydata.hashtree import HashTree
|
2010-05-13 17:49:17 -07:00
|
|
|
from allmydata.util import mathutil, hashutil, base32, log, happinessutil
|
2008-01-17 01:11:35 -07:00
|
|
|
from allmydata.util.assertutil import _assert, precondition
|
2007-02-01 16:07:00 -07:00
|
|
|
from allmydata.codec import CRSEncoder
|
2007-07-23 19:31:53 -07:00
|
|
|
from allmydata.interfaces import IEncoder, IStorageBucketWriter, \
|
2009-12-04 22:30:37 -07:00
|
|
|
IEncryptedUploadable, IUploadStatus, UploadUnhappinessError
|
2009-11-22 18:24:05 -07:00
|
|
|
|
2019-04-03 08:46:22 -04:00
|
|
|
from ..util.eliotutil import (
|
|
|
|
|
log_call_deferred,
|
|
|
|
|
)
|
2006-12-13 20:32:35 -07:00
|
|
|
|
|
|
|
|
"""
|
|
|
|
|
The goal of the encoder is to turn the original file into a series of
|
|
|
|
|
'shares'. Each share is going to a 'shareholder' (nominally each shareholder
|
2007-04-30 13:06:09 -07:00
|
|
|
is a different host, but for small grids there may be overlap). The number
|
2006-12-13 20:32:35 -07:00
|
|
|
of shares is chosen to hit our reliability goals (more shares on more
|
|
|
|
|
machines means more reliability), and is limited by overhead (proportional to
|
2007-12-12 19:34:08 -07:00
|
|
|
numshares or log(numshares)) and the encoding technology in use (zfec permits
|
|
|
|
|
only 256 shares total). It is also constrained by the amount of data
|
2007-10-15 19:53:59 -07:00
|
|
|
we want to send to each host. For estimating purposes, think of 10 shares
|
|
|
|
|
out of which we need 3 to reconstruct the file.
|
2006-12-13 20:32:35 -07:00
|
|
|
|
|
|
|
|
The encoder starts by cutting the original file into segments. All segments
|
|
|
|
|
except the last are of equal size. The segment size is chosen to constrain
|
|
|
|
|
the memory footprint (which will probably vary between 1x and 4x segment
|
2007-12-12 19:34:08 -07:00
|
|
|
size) and to constrain the overhead (which will be proportional to
|
|
|
|
|
log(number of segments)).
|
2006-12-13 20:32:35 -07:00
|
|
|
|
|
|
|
|
|
|
|
|
|
Each segment (A,B,C) is read into memory, encrypted, and encoded into
|
2007-03-29 20:19:52 -07:00
|
|
|
blocks. The 'share' (say, share #1) that makes it out to a host is a
|
|
|
|
|
collection of these blocks (block A1, B1, C1), plus some hash-tree
|
2006-12-13 20:32:35 -07:00
|
|
|
information necessary to validate the data upon retrieval. Only one segment
|
2007-03-29 20:19:52 -07:00
|
|
|
is handled at a time: all blocks for segment A are delivered before any
|
2006-12-13 20:32:35 -07:00
|
|
|
work is begun on segment B.
|
|
|
|
|
|
2008-02-15 13:11:02 -07:00
|
|
|
As blocks are created, we retain the hash of each one. The list of block hashes
|
|
|
|
|
for a single share (say, hash(A1), hash(B1), hash(C1)) is used to form the base
|
|
|
|
|
of a Merkle hash tree for that share, called the block hash tree.
|
|
|
|
|
|
2007-03-29 20:19:52 -07:00
|
|
|
This hash tree has one terminal leaf per block. The complete block hash
|
2006-12-13 20:32:35 -07:00
|
|
|
tree is sent to the shareholder after all the data has been sent. At
|
|
|
|
|
retrieval time, the decoder will ask for specific pieces of this tree before
|
2007-03-29 20:19:52 -07:00
|
|
|
asking for blocks, whichever it needs to validate those blocks.
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2007-03-29 20:19:52 -07:00
|
|
|
(Note: we don't really need to generate this whole block hash tree
|
2006-12-13 20:32:35 -07:00
|
|
|
ourselves. It would be sufficient to have the shareholder generate it and
|
|
|
|
|
just tell us the root. This gives us an extra level of validation on the
|
2006-12-29 12:40:10 -07:00
|
|
|
transfer, though, and it is relatively cheap to compute.)
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2007-03-29 20:19:52 -07:00
|
|
|
Each of these block hash trees has a root hash. The collection of these
|
2006-12-13 20:32:35 -07:00
|
|
|
root hashes for all shares are collected into the 'share hash tree', which
|
2007-03-29 20:19:52 -07:00
|
|
|
has one terminal leaf per share. After sending the blocks and the complete
|
|
|
|
|
block hash tree to each shareholder, we send them the portion of the share
|
2006-12-13 20:32:35 -07:00
|
|
|
hash tree that is necessary to validate their share. The root of the share
|
|
|
|
|
hash tree is put into the URI.
|
|
|
|
|
|
|
|
|
|
"""
|
|
|
|
|
|
2008-01-14 21:27:02 -07:00
|
|
|
class UploadAborted(Exception):
|
|
|
|
|
pass
|
|
|
|
|
|
2007-01-04 23:51:35 -07:00
|
|
|
KiB=1024
|
|
|
|
|
MiB=1024*KiB
|
|
|
|
|
GiB=1024*MiB
|
|
|
|
|
TiB=1024*GiB
|
|
|
|
|
PiB=1024*TiB
|
|
|
|
|
|
2017-02-27 10:56:49 -07:00
|
|
|
@implementer(IEncoder)
|
2006-12-13 20:32:35 -07:00
|
|
|
class Encoder(object):
|
2007-04-16 19:29:57 -07:00
|
|
|
|
2015-11-12 16:16:28 -07:00
|
|
|
def __init__(self, log_parent=None, upload_status=None, progress=None):
|
2007-04-16 19:29:57 -07:00
|
|
|
object.__init__(self)
|
2007-06-08 15:59:16 -07:00
|
|
|
self.uri_extension_data = {}
|
2007-07-23 19:31:53 -07:00
|
|
|
self._codec = None
|
2008-02-12 15:36:05 -07:00
|
|
|
self._status = None
|
|
|
|
|
if upload_status:
|
|
|
|
|
self._status = IUploadStatus(upload_status)
|
2008-01-17 01:11:35 -07:00
|
|
|
precondition(log_parent is None or isinstance(log_parent, int),
|
|
|
|
|
log_parent)
|
|
|
|
|
self._log_number = log.msg("creating Encoder %s" % self,
|
|
|
|
|
facility="tahoe.encoder", parent=log_parent)
|
2008-01-14 21:22:55 -07:00
|
|
|
self._aborted = False
|
2015-11-12 16:16:28 -07:00
|
|
|
self._progress = progress
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2007-08-09 18:26:56 -07:00
|
|
|
def __repr__(self):
|
|
|
|
|
if hasattr(self, "_storage_index"):
|
2009-02-18 14:46:55 -07:00
|
|
|
return "<Encoder for %s>" % si_b2a(self._storage_index)[:5]
|
2007-08-09 18:26:56 -07:00
|
|
|
return "<Encoder for unknown storage index>"
|
|
|
|
|
|
2008-01-14 21:19:20 -07:00
|
|
|
def log(self, *args, **kwargs):
|
|
|
|
|
if "parent" not in kwargs:
|
|
|
|
|
kwargs["parent"] = self._log_number
|
2008-01-17 01:11:35 -07:00
|
|
|
if "facility" not in kwargs:
|
|
|
|
|
kwargs["facility"] = "tahoe.encoder"
|
|
|
|
|
return log.msg(*args, **kwargs)
|
2007-11-19 19:33:41 -07:00
|
|
|
|
2019-04-03 08:46:22 -04:00
|
|
|
@log_call_deferred(action_type=u"immutable:encode:set-encrypted-uploadable")
|
2008-01-16 03:03:35 -07:00
|
|
|
def set_encrypted_uploadable(self, uploadable):
|
|
|
|
|
eu = self._uploadable = IEncryptedUploadable(uploadable)
|
|
|
|
|
d = eu.get_size()
|
|
|
|
|
def _got_size(size):
|
2008-01-17 01:11:35 -07:00
|
|
|
self.log(format="file size: %(size)d", size=size)
|
2008-01-16 03:03:35 -07:00
|
|
|
self.file_size = size
|
2015-11-12 16:16:28 -07:00
|
|
|
if self._progress:
|
|
|
|
|
self._progress.set_progress_total(self.file_size)
|
2008-01-16 03:03:35 -07:00
|
|
|
d.addCallback(_got_size)
|
|
|
|
|
d.addCallback(lambda res: eu.get_all_encoding_parameters())
|
|
|
|
|
d.addCallback(self._got_all_encoding_parameters)
|
|
|
|
|
d.addCallback(lambda res: eu.get_storage_index())
|
|
|
|
|
def _done(storage_index):
|
|
|
|
|
self._storage_index = storage_index
|
|
|
|
|
return self
|
|
|
|
|
d.addCallback(_done)
|
|
|
|
|
return d
|
2007-07-19 18:21:44 -07:00
|
|
|
|
2008-01-16 03:03:35 -07:00
|
|
|
def _got_all_encoding_parameters(self, params):
|
2007-07-23 19:31:53 -07:00
|
|
|
assert not self._codec
|
2008-01-16 03:03:35 -07:00
|
|
|
k, happy, n, segsize = params
|
|
|
|
|
self.required_shares = k
|
2017-02-14 16:36:57 -07:00
|
|
|
self.min_happiness = happy
|
2008-01-16 03:03:35 -07:00
|
|
|
self.num_shares = n
|
|
|
|
|
self.segment_size = segsize
|
|
|
|
|
self.log("got encoding parameters: %d/%d/%d %d" % (k,happy,n, segsize))
|
|
|
|
|
self.log("now setting up codec")
|
2007-07-23 19:31:53 -07:00
|
|
|
|
2007-03-30 16:50:50 -07:00
|
|
|
assert self.segment_size % self.required_shares == 0
|
2008-01-16 03:03:35 -07:00
|
|
|
|
2007-07-19 18:21:44 -07:00
|
|
|
self.num_segments = mathutil.div_ceil(self.file_size,
|
|
|
|
|
self.segment_size)
|
|
|
|
|
|
2007-03-30 11:53:03 -07:00
|
|
|
self._codec = CRSEncoder()
|
2007-03-30 16:50:50 -07:00
|
|
|
self._codec.set_params(self.segment_size,
|
|
|
|
|
self.required_shares, self.num_shares)
|
|
|
|
|
|
2007-06-08 15:59:16 -07:00
|
|
|
data = self.uri_extension_data
|
2007-06-01 18:48:01 -07:00
|
|
|
data['codec_name'] = self._codec.get_encoder_type()
|
|
|
|
|
data['codec_params'] = self._codec.get_serialized_params()
|
|
|
|
|
|
|
|
|
|
data['size'] = self.file_size
|
|
|
|
|
data['segment_size'] = self.segment_size
|
2007-07-19 18:21:44 -07:00
|
|
|
self.share_size = mathutil.div_ceil(self.file_size,
|
|
|
|
|
self.required_shares)
|
|
|
|
|
data['num_segments'] = self.num_segments
|
2007-06-01 18:48:01 -07:00
|
|
|
data['needed_shares'] = self.required_shares
|
|
|
|
|
data['total_shares'] = self.num_shares
|
|
|
|
|
|
2007-03-30 16:50:50 -07:00
|
|
|
# the "tail" is the last segment. This segment may or may not be
|
|
|
|
|
# shorter than all other segments. We use the "tail codec" to handle
|
|
|
|
|
# it. If the tail is short, we use a different codec instance. In
|
|
|
|
|
# addition, the tail codec must be fed data which has been padded out
|
|
|
|
|
# to the right size.
|
download: refactor handling of URI Extension Block and crypttext hash tree, simplify things
Refactor into a class the logic of asking each server in turn until one of them gives an answer
that validates. It is called ValidatedThingObtainer.
Refactor the downloading and verification of the URI Extension Block into a class named
ValidatedExtendedURIProxy.
The new logic of validating UEBs is minimalist: it doesn't require the UEB to contain any
unncessary information, but of course it still accepts such information for backwards
compatibility (so that this new download code is able to download files uploaded with old, and
for that matter with current, upload code).
The new logic of validating UEBs follows the practice of doing all validation up front. This
practice advises one to isolate the validation of incoming data into one place, so that all of
the rest of the code can assume only valid data.
If any redundant information is present in the UEB+URI, the new code cross-checks and asserts
that it is all fully consistent. This closes some issues where the uploader could have
uploaded inconsistent redundant data, which would probably have caused the old downloader to
simply reject that download after getting a Python exception, but perhaps could have caused
greater harm to the old downloader.
I removed the notion of selecting an erasure codec from codec.py based on the string that was
passed in the UEB. Currently "crs" is the only such string that works, so
"_assert(codec_name == 'crs')" is simpler and more explicit. This is also in keeping with the
"validate up front" strategy -- now if someone sets a different string than "crs" in their UEB,
the downloader will reject the download in the "validate this UEB" function instead of in a
separate "select the codec instance" function.
I removed the code to check plaintext hashes and plaintext Merkle Trees. Uploaders do not
produce this information any more (since it potentially exposes confidential information about
the file), and the unit tests for it were disabled. The downloader before this patch would
check that plaintext hash or plaintext merkle tree if they were present, but not complain if
they were absent. The new downloader in this patch complains if they are present and doesn't
check them. (We might in the future re-introduce such hashes over the plaintext, but encrypt
the hashes which are stored in the UEB to preserve confidentiality. This would be a double-
check on the correctness of our own source code -- the current Merkle Tree over the ciphertext
is already sufficient to guarantee the integrity of the download unless there is a bug in our
Merkle Tree or AES implementation.)
This patch increases the lines-of-code count by 8 (from 17,770 to 17,778), and reduces the
uncovered-by-tests lines-of-code count by 24 (from 1408 to 1384). Those numbers would be more
meaningful if we omitted src/allmydata/util/ from the test-coverage statistics.
2008-12-05 08:17:54 -07:00
|
|
|
tail_size = self.file_size % self.segment_size
|
|
|
|
|
if not tail_size:
|
|
|
|
|
tail_size = self.segment_size
|
2007-03-30 16:50:50 -07:00
|
|
|
|
|
|
|
|
# the tail codec is responsible for encoding tail_size bytes
|
download: refactor handling of URI Extension Block and crypttext hash tree, simplify things
Refactor into a class the logic of asking each server in turn until one of them gives an answer
that validates. It is called ValidatedThingObtainer.
Refactor the downloading and verification of the URI Extension Block into a class named
ValidatedExtendedURIProxy.
The new logic of validating UEBs is minimalist: it doesn't require the UEB to contain any
unncessary information, but of course it still accepts such information for backwards
compatibility (so that this new download code is able to download files uploaded with old, and
for that matter with current, upload code).
The new logic of validating UEBs follows the practice of doing all validation up front. This
practice advises one to isolate the validation of incoming data into one place, so that all of
the rest of the code can assume only valid data.
If any redundant information is present in the UEB+URI, the new code cross-checks and asserts
that it is all fully consistent. This closes some issues where the uploader could have
uploaded inconsistent redundant data, which would probably have caused the old downloader to
simply reject that download after getting a Python exception, but perhaps could have caused
greater harm to the old downloader.
I removed the notion of selecting an erasure codec from codec.py based on the string that was
passed in the UEB. Currently "crs" is the only such string that works, so
"_assert(codec_name == 'crs')" is simpler and more explicit. This is also in keeping with the
"validate up front" strategy -- now if someone sets a different string than "crs" in their UEB,
the downloader will reject the download in the "validate this UEB" function instead of in a
separate "select the codec instance" function.
I removed the code to check plaintext hashes and plaintext Merkle Trees. Uploaders do not
produce this information any more (since it potentially exposes confidential information about
the file), and the unit tests for it were disabled. The downloader before this patch would
check that plaintext hash or plaintext merkle tree if they were present, but not complain if
they were absent. The new downloader in this patch complains if they are present and doesn't
check them. (We might in the future re-introduce such hashes over the plaintext, but encrypt
the hashes which are stored in the UEB to preserve confidentiality. This would be a double-
check on the correctness of our own source code -- the current Merkle Tree over the ciphertext
is already sufficient to guarantee the integrity of the download unless there is a bug in our
Merkle Tree or AES implementation.)
This patch increases the lines-of-code count by 8 (from 17,770 to 17,778), and reduces the
uncovered-by-tests lines-of-code count by 24 (from 1408 to 1384). Those numbers would be more
meaningful if we omitted src/allmydata/util/ from the test-coverage statistics.
2008-12-05 08:17:54 -07:00
|
|
|
padded_tail_size = mathutil.next_multiple(tail_size,
|
2007-03-30 16:50:50 -07:00
|
|
|
self.required_shares)
|
|
|
|
|
self._tail_codec = CRSEncoder()
|
|
|
|
|
self._tail_codec.set_params(padded_tail_size,
|
|
|
|
|
self.required_shares, self.num_shares)
|
2007-06-01 18:48:01 -07:00
|
|
|
data['tail_codec_params'] = self._tail_codec.get_serialized_params()
|
|
|
|
|
|
2007-07-23 19:31:53 -07:00
|
|
|
def _get_share_size(self):
|
2007-03-30 11:32:57 -07:00
|
|
|
share_size = mathutil.div_ceil(self.file_size, self.required_shares)
|
2007-07-23 19:31:53 -07:00
|
|
|
overhead = self._compute_overhead()
|
2007-03-30 11:32:57 -07:00
|
|
|
return share_size + overhead
|
2007-07-23 19:31:53 -07:00
|
|
|
|
|
|
|
|
def _compute_overhead(self):
|
2007-03-30 11:32:57 -07:00
|
|
|
return 0
|
2007-07-23 19:31:53 -07:00
|
|
|
|
|
|
|
|
def get_param(self, name):
|
2008-01-16 03:03:35 -07:00
|
|
|
assert self._codec
|
2007-07-23 19:31:53 -07:00
|
|
|
|
|
|
|
|
if name == "storage_index":
|
|
|
|
|
return self._storage_index
|
|
|
|
|
elif name == "share_counts":
|
2017-02-14 16:36:57 -07:00
|
|
|
return (self.required_shares, self.min_happiness,
|
2007-07-23 19:31:53 -07:00
|
|
|
self.num_shares)
|
|
|
|
|
elif name == "num_segments":
|
|
|
|
|
return self.num_segments
|
|
|
|
|
elif name == "segment_size":
|
|
|
|
|
return self.segment_size
|
|
|
|
|
elif name == "block_size":
|
|
|
|
|
return self._codec.get_block_size()
|
|
|
|
|
elif name == "share_size":
|
|
|
|
|
return self._get_share_size()
|
|
|
|
|
elif name == "serialized_params":
|
|
|
|
|
return self._codec.get_serialized_params()
|
|
|
|
|
else:
|
|
|
|
|
raise KeyError("unknown parameter name '%s'" % name)
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2009-11-04 05:12:22 -07:00
|
|
|
def set_shareholders(self, landlords, servermap):
|
2007-03-30 16:50:50 -07:00
|
|
|
assert isinstance(landlords, dict)
|
|
|
|
|
for k in landlords:
|
2007-07-13 15:09:01 -07:00
|
|
|
assert IStorageBucketWriter.providedBy(landlords[k])
|
2007-03-28 13:30:17 -07:00
|
|
|
self.landlords = landlords.copy()
|
2009-11-04 05:12:22 -07:00
|
|
|
assert isinstance(servermap, dict)
|
2020-09-16 11:13:23 -04:00
|
|
|
for v in servermap.values():
|
2010-05-13 17:49:17 -07:00
|
|
|
assert isinstance(v, set)
|
2009-11-04 05:12:22 -07:00
|
|
|
self.servermap = servermap.copy()
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2019-04-03 08:46:22 -04:00
|
|
|
@log_call_deferred(action_type=u"immutable:encode:start")
|
2006-12-13 20:32:35 -07:00
|
|
|
def start(self):
|
2009-01-06 21:48:22 -07:00
|
|
|
""" Returns a Deferred that will fire with the verify cap (an instance of
|
|
|
|
|
uri.CHKFileVerifierURI)."""
|
2008-01-17 01:11:35 -07:00
|
|
|
self.log("%s starting" % (self,))
|
2007-03-30 11:53:03 -07:00
|
|
|
#paddedsize = self._size + mathutil.pad_size(self._size, self.needed_shares)
|
2008-01-16 03:03:35 -07:00
|
|
|
assert self._codec
|
2007-07-19 18:21:44 -07:00
|
|
|
self._crypttext_hasher = hashutil.crypttext_hasher()
|
2007-06-06 19:40:20 -07:00
|
|
|
self._crypttext_hashes = []
|
2007-07-23 19:31:53 -07:00
|
|
|
self.segment_num = 0
|
2008-12-09 16:33:18 -07:00
|
|
|
self.block_hashes = [[] for x in range(self.num_shares)]
|
|
|
|
|
# block_hashes[i] is a list that will be accumulated and then send
|
2007-07-23 19:31:53 -07:00
|
|
|
# to landlord[i]. This list contains a hash of each segment_share
|
|
|
|
|
# that we sent to that landlord.
|
|
|
|
|
self.share_root_hashes = [None] * self.num_shares
|
|
|
|
|
|
2008-02-06 00:41:51 -07:00
|
|
|
self._times = {
|
|
|
|
|
"cumulative_encoding": 0.0,
|
|
|
|
|
"cumulative_sending": 0.0,
|
|
|
|
|
"hashes_and_close": 0.0,
|
|
|
|
|
"total_encode_and_push": 0.0,
|
|
|
|
|
}
|
|
|
|
|
self._start_total_timestamp = time.time()
|
|
|
|
|
|
2009-05-21 17:38:23 -07:00
|
|
|
d = fireEventually()
|
2007-03-30 16:50:50 -07:00
|
|
|
|
2008-01-28 12:14:48 -07:00
|
|
|
d.addCallback(lambda res: self.start_all_shareholders())
|
2007-07-13 14:04:49 -07:00
|
|
|
|
2007-03-30 16:50:50 -07:00
|
|
|
for i in range(self.num_segments-1):
|
2007-04-17 20:29:08 -07:00
|
|
|
# note to self: this form doesn't work, because lambda only
|
|
|
|
|
# captures the slot, not the value
|
|
|
|
|
#d.addCallback(lambda res: self.do_segment(i))
|
|
|
|
|
# use this form instead:
|
2007-07-19 18:21:44 -07:00
|
|
|
d.addCallback(lambda res, i=i: self._encode_segment(i))
|
|
|
|
|
d.addCallback(self._send_segment, i)
|
2007-08-09 18:26:17 -07:00
|
|
|
d.addCallback(self._turn_barrier)
|
2007-07-19 18:21:44 -07:00
|
|
|
last_segnum = self.num_segments - 1
|
|
|
|
|
d.addCallback(lambda res: self._encode_tail_segment(last_segnum))
|
|
|
|
|
d.addCallback(self._send_segment, last_segnum)
|
2007-08-09 18:26:17 -07:00
|
|
|
d.addCallback(self._turn_barrier)
|
2007-07-19 18:21:44 -07:00
|
|
|
|
2007-07-23 19:31:53 -07:00
|
|
|
d.addCallback(lambda res: self.finish_hashing())
|
2007-03-30 16:50:50 -07:00
|
|
|
|
2008-03-23 15:35:54 -07:00
|
|
|
d.addCallback(lambda res:
|
|
|
|
|
self.send_crypttext_hash_tree_to_all_shareholders())
|
2008-12-09 16:33:18 -07:00
|
|
|
d.addCallback(lambda res: self.send_all_block_hash_trees())
|
2006-12-13 20:32:35 -07:00
|
|
|
d.addCallback(lambda res: self.send_all_share_hash_trees())
|
2007-06-08 15:59:16 -07:00
|
|
|
d.addCallback(lambda res: self.send_uri_extension_to_all_shareholders())
|
2007-07-19 18:21:44 -07:00
|
|
|
|
2006-12-13 20:32:35 -07:00
|
|
|
d.addCallback(lambda res: self.close_all_shareholders())
|
2008-06-10 11:55:28 -07:00
|
|
|
d.addCallbacks(self.done, self.err)
|
2006-12-13 20:32:35 -07:00
|
|
|
return d
|
|
|
|
|
|
2008-02-12 15:36:05 -07:00
|
|
|
def set_status(self, status):
|
|
|
|
|
if self._status:
|
|
|
|
|
self._status.set_status(status)
|
|
|
|
|
|
|
|
|
|
def set_encode_and_push_progress(self, sent_segments=None, extra=0.0):
|
|
|
|
|
if self._status:
|
|
|
|
|
# we treat the final hash+close as an extra segment
|
|
|
|
|
if sent_segments is None:
|
|
|
|
|
sent_segments = self.num_segments
|
|
|
|
|
progress = float(sent_segments + extra) / (self.num_segments + 1)
|
|
|
|
|
self._status.set_progress(2, progress)
|
|
|
|
|
|
2008-01-14 21:22:55 -07:00
|
|
|
def abort(self):
|
2008-01-28 12:15:27 -07:00
|
|
|
self.log("aborting upload", level=log.UNUSUAL)
|
2008-01-14 21:22:55 -07:00
|
|
|
assert self._codec, "don't call abort before start"
|
|
|
|
|
self._aborted = True
|
|
|
|
|
# the next segment read (in _gather_data inside _encode_segment) will
|
|
|
|
|
# raise UploadAborted(), which will bypass the rest of the upload
|
|
|
|
|
# chain. If we've sent the final segment's shares, it's too late to
|
|
|
|
|
# abort. TODO: allow abort any time up to close_all_shareholders.
|
|
|
|
|
|
2007-08-09 18:26:17 -07:00
|
|
|
def _turn_barrier(self, res):
|
|
|
|
|
# putting this method in a Deferred chain imposes a guaranteed
|
|
|
|
|
# reactor turn between the pre- and post- portions of that chain.
|
|
|
|
|
# This can be useful to limit memory consumption: since Deferreds do
|
|
|
|
|
# not do tail recursion, code which uses defer.succeed(result) for
|
|
|
|
|
# consistency will cause objects to live for longer than you might
|
|
|
|
|
# normally expect.
|
|
|
|
|
|
2009-05-21 17:38:23 -07:00
|
|
|
return fireEventually(res)
|
2007-08-09 18:26:17 -07:00
|
|
|
|
2008-01-28 12:14:48 -07:00
|
|
|
|
|
|
|
|
def start_all_shareholders(self):
|
|
|
|
|
self.log("starting shareholders", level=log.NOISY)
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Starting shareholders")
|
2008-01-28 12:14:48 -07:00
|
|
|
dl = []
|
2009-05-22 11:44:24 -07:00
|
|
|
for shareid in list(self.landlords):
|
immutable: refactor downloader to be more reusable for checker/verifier/repairer (and better)
The code for validating the share hash tree and the block hash tree has been rewritten to make sure it handles all cases, to share metadata about the file (such as the share hash tree, block hash trees, and UEB) among different share downloads, and not to require hashes to be stored on the server unnecessarily, such as the roots of the block hash trees (not needed since they are also the leaves of the share hash tree), and the root of the share hash tree (not needed since it is also included in the UEB). It also passes the latest tests including handling corrupted shares well.
ValidatedReadBucketProxy takes a share_hash_tree argument to its constructor, which is a reference to a share hash tree shared by all ValidatedReadBucketProxies for that immutable file download.
ValidatedReadBucketProxy requires the block_size and share_size to be provided in its constructor, and it then uses those to compute the offsets and lengths of blocks when it needs them, instead of reading those values out of the share. The user of ValidatedReadBucketProxy therefore has to have first used a ValidatedExtendedURIProxy to compute those two values from the validated contents of the URI. This is pleasingly simplifies safety analysis: the client knows which span of bytes corresponds to a given block from the validated URI data, rather than from the unvalidated data stored on the storage server. It also simplifies unit testing of verifier/repairer, because now it doesn't care about the contents of the "share size" and "block size" fields in the share. It does not relieve the need for share data v2 layout, because we still need to store and retrieve the offsets of the fields which come after the share data, therefore we still need to use share data v2 with its 8-byte fields if we want to store share data larger than about 2^32.
Specify which subset of the block hashes and share hashes you need while downloading a particular share. In the future this will hopefully be used to fetch only a subset, for network efficiency, but currently all of them are fetched, regardless of which subset you specify.
ReadBucketProxy hides the question of whether it has "started" or not (sent a request to the server to get metadata) from its user.
Download is optimized to do as few roundtrips and as few requests as possible, hopefully speeding up download a bit.
2009-01-05 09:51:45 -07:00
|
|
|
d = self.landlords[shareid].put_header()
|
2008-01-28 12:14:48 -07:00
|
|
|
d.addErrback(self._remove_shareholder, shareid, "start")
|
|
|
|
|
dl.append(d)
|
|
|
|
|
return self._gather_responses(dl)
|
|
|
|
|
|
2007-07-19 18:21:44 -07:00
|
|
|
def _encode_segment(self, segnum):
|
2007-03-30 16:50:50 -07:00
|
|
|
codec = self._codec
|
2008-02-06 00:41:51 -07:00
|
|
|
start = time.time()
|
2007-07-19 18:21:44 -07:00
|
|
|
|
2007-03-28 11:06:19 -07:00
|
|
|
# the ICodecEncoder API wants to receive a total of self.segment_size
|
|
|
|
|
# bytes on each encode() call, broken up into a number of
|
|
|
|
|
# identically-sized pieces. Due to the way the codec algorithm works,
|
|
|
|
|
# these pieces need to be the same size as the share which the codec
|
|
|
|
|
# will generate. Therefore we must feed it with input_piece_size that
|
|
|
|
|
# equals the output share size.
|
2007-03-30 16:50:50 -07:00
|
|
|
input_piece_size = codec.get_block_size()
|
2007-03-28 11:06:19 -07:00
|
|
|
|
|
|
|
|
# as a result, the number of input pieces per encode() call will be
|
|
|
|
|
# equal to the number of required shares with which the codec was
|
|
|
|
|
# constructed. You can think of the codec as chopping up a
|
|
|
|
|
# 'segment_size' of data into 'required_shares' shares (not doing any
|
|
|
|
|
# fancy math at all, just doing a split), then creating some number
|
|
|
|
|
# of additional shares which can be substituted if the primary ones
|
|
|
|
|
# are unavailable
|
|
|
|
|
|
2010-10-29 01:20:36 -07:00
|
|
|
# we read data from the source one segment at a time, and then chop
|
|
|
|
|
# it into 'input_piece_size' pieces before handing it to the codec
|
|
|
|
|
|
2007-07-19 18:21:44 -07:00
|
|
|
crypttext_segment_hasher = hashutil.crypttext_segment_hasher()
|
2007-06-07 00:15:41 -07:00
|
|
|
|
2007-06-07 13:15:58 -07:00
|
|
|
# memory footprint: we only hold a tiny piece of the plaintext at any
|
|
|
|
|
# given time. We build up a segment's worth of cryptttext, then hand
|
2007-10-15 19:53:59 -07:00
|
|
|
# it to the encoder. Assuming 3-of-10 encoding (3.3x expansion) and
|
2007-10-16 11:00:29 -07:00
|
|
|
# 1MiB max_segment_size, we get a peak memory footprint of 4.3*1MiB =
|
|
|
|
|
# 4.3MiB. Lowering max_segment_size to, say, 100KiB would drop the
|
2007-10-15 19:53:59 -07:00
|
|
|
# footprint to 430KiB at the expense of more hash-tree overhead.
|
2007-06-07 13:15:58 -07:00
|
|
|
|
2007-07-19 18:21:44 -07:00
|
|
|
d = self._gather_data(self.required_shares, input_piece_size,
|
|
|
|
|
crypttext_segment_hasher)
|
2008-02-06 00:41:51 -07:00
|
|
|
def _done_gathering(chunks):
|
2007-07-19 18:21:44 -07:00
|
|
|
for c in chunks:
|
|
|
|
|
assert len(c) == input_piece_size
|
|
|
|
|
self._crypttext_hashes.append(crypttext_segment_hasher.digest())
|
|
|
|
|
# during this call, we hit 5*segsize memory
|
|
|
|
|
return codec.encode(chunks)
|
2008-02-06 00:41:51 -07:00
|
|
|
d.addCallback(_done_gathering)
|
|
|
|
|
def _done(res):
|
|
|
|
|
elapsed = time.time() - start
|
|
|
|
|
self._times["cumulative_encoding"] += elapsed
|
|
|
|
|
return res
|
2007-07-19 18:21:44 -07:00
|
|
|
d.addCallback(_done)
|
2007-03-30 16:50:50 -07:00
|
|
|
return d
|
|
|
|
|
|
2007-07-19 18:21:44 -07:00
|
|
|
def _encode_tail_segment(self, segnum):
|
|
|
|
|
|
2008-02-06 00:41:51 -07:00
|
|
|
start = time.time()
|
2007-03-30 16:50:50 -07:00
|
|
|
codec = self._tail_codec
|
|
|
|
|
input_piece_size = codec.get_block_size()
|
|
|
|
|
|
2007-07-19 18:21:44 -07:00
|
|
|
crypttext_segment_hasher = hashutil.crypttext_segment_hasher()
|
|
|
|
|
|
|
|
|
|
d = self._gather_data(self.required_shares, input_piece_size,
|
2010-10-29 01:20:36 -07:00
|
|
|
crypttext_segment_hasher, allow_short=True)
|
2008-02-06 00:41:51 -07:00
|
|
|
def _done_gathering(chunks):
|
2007-07-19 18:21:44 -07:00
|
|
|
for c in chunks:
|
|
|
|
|
# a short trailing chunk will have been padded by
|
|
|
|
|
# _gather_data
|
|
|
|
|
assert len(c) == input_piece_size
|
|
|
|
|
self._crypttext_hashes.append(crypttext_segment_hasher.digest())
|
|
|
|
|
return codec.encode(chunks)
|
2008-02-06 00:41:51 -07:00
|
|
|
d.addCallback(_done_gathering)
|
|
|
|
|
def _done(res):
|
|
|
|
|
elapsed = time.time() - start
|
|
|
|
|
self._times["cumulative_encoding"] += elapsed
|
|
|
|
|
return res
|
2007-07-19 18:21:44 -07:00
|
|
|
d.addCallback(_done)
|
|
|
|
|
return d
|
2007-06-07 13:14:14 -07:00
|
|
|
|
2007-07-19 18:21:44 -07:00
|
|
|
def _gather_data(self, num_chunks, input_chunk_size,
|
2007-07-23 19:31:53 -07:00
|
|
|
crypttext_segment_hasher,
|
2010-10-29 01:20:36 -07:00
|
|
|
allow_short=False):
|
2007-07-19 18:21:44 -07:00
|
|
|
"""Return a Deferred that will fire when the required number of
|
|
|
|
|
chunks have been read (and hashed and encrypted). The Deferred fires
|
2010-10-29 01:20:36 -07:00
|
|
|
with a list of chunks, each of size input_chunk_size."""
|
|
|
|
|
|
|
|
|
|
# I originally built this to allow read_encrypted() to behave badly:
|
|
|
|
|
# to let it return more or less data than you asked for. It would
|
|
|
|
|
# stash the leftovers until later, and then recurse until it got
|
|
|
|
|
# enough. I don't think that was actually useful.
|
|
|
|
|
#
|
|
|
|
|
# who defines read_encrypted?
|
|
|
|
|
# offloaded.LocalCiphertextReader: real disk file: exact
|
|
|
|
|
# upload.EncryptAnUploadable: Uploadable, but a wrapper that makes
|
|
|
|
|
# it exact. The return value is a list of 50KiB chunks, to reduce
|
|
|
|
|
# the memory footprint of the encryption process.
|
|
|
|
|
# repairer.Repairer: immutable.filenode.CiphertextFileNode: exact
|
|
|
|
|
#
|
|
|
|
|
# This has been redefined to require read_encrypted() to behave like
|
|
|
|
|
# a local file: return exactly the amount requested unless it hits
|
|
|
|
|
# EOF.
|
|
|
|
|
# -warner
|
2007-07-19 18:21:44 -07:00
|
|
|
|
2008-01-14 21:22:55 -07:00
|
|
|
if self._aborted:
|
|
|
|
|
raise UploadAborted()
|
|
|
|
|
|
2010-10-29 01:20:36 -07:00
|
|
|
read_size = num_chunks * input_chunk_size
|
|
|
|
|
d = self._uploadable.read_encrypted(read_size, hash_only=False)
|
2007-07-19 18:21:44 -07:00
|
|
|
def _got(data):
|
2010-10-29 01:20:36 -07:00
|
|
|
assert isinstance(data, (list,tuple))
|
2008-01-14 21:22:55 -07:00
|
|
|
if self._aborted:
|
|
|
|
|
raise UploadAborted()
|
2020-09-16 11:13:23 -04:00
|
|
|
data = b"".join(data)
|
2010-10-29 01:20:36 -07:00
|
|
|
precondition(len(data) <= read_size, len(data), read_size)
|
|
|
|
|
if not allow_short:
|
|
|
|
|
precondition(len(data) == read_size, len(data), read_size)
|
|
|
|
|
crypttext_segment_hasher.update(data)
|
|
|
|
|
self._crypttext_hasher.update(data)
|
|
|
|
|
if allow_short and len(data) < read_size:
|
|
|
|
|
# padding
|
2020-09-16 11:13:23 -04:00
|
|
|
data += b"\x00" * (read_size - len(data))
|
2010-10-29 01:20:36 -07:00
|
|
|
encrypted_pieces = [data[i:i+input_chunk_size]
|
|
|
|
|
for i in range(0, len(data), input_chunk_size)]
|
|
|
|
|
return encrypted_pieces
|
2007-07-19 18:21:44 -07:00
|
|
|
d.addCallback(_got)
|
2007-01-04 23:51:35 -07:00
|
|
|
return d
|
|
|
|
|
|
2019-04-12 16:18:36 +02:00
|
|
|
def _send_segment(self, shares_and_shareids, segnum):
|
2007-04-18 18:29:10 -07:00
|
|
|
# To generate the URI, we must generate the roothash, so we must
|
|
|
|
|
# generate all shares, even if we aren't actually giving them to
|
2007-07-13 17:00:06 -07:00
|
|
|
# anybody. This means that the set of shares we create will be equal
|
2007-04-18 18:29:10 -07:00
|
|
|
# to or larger than the set of landlords. If we have any landlord who
|
|
|
|
|
# *doesn't* have a share, that's an error.
|
2019-04-12 16:18:36 +02:00
|
|
|
(shares, shareids) = shares_and_shareids
|
2007-04-18 18:29:10 -07:00
|
|
|
_assert(set(self.landlords.keys()).issubset(set(shareids)),
|
2007-03-30 16:50:50 -07:00
|
|
|
shareids=shareids, landlords=self.landlords)
|
2008-02-06 00:41:51 -07:00
|
|
|
start = time.time()
|
2006-12-13 20:32:35 -07:00
|
|
|
dl = []
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Sending segment %d of %d" % (segnum+1,
|
|
|
|
|
self.num_segments))
|
|
|
|
|
self.set_encode_and_push_progress(segnum)
|
2008-01-28 12:15:27 -07:00
|
|
|
lognum = self.log("send_segment(%d)" % segnum, level=log.NOISY)
|
2007-03-27 20:14:45 -07:00
|
|
|
for i in range(len(shares)):
|
2008-12-09 16:33:18 -07:00
|
|
|
block = shares[i]
|
2007-03-27 20:14:45 -07:00
|
|
|
shareid = shareids[i]
|
2008-12-09 16:33:18 -07:00
|
|
|
d = self.send_block(shareid, segnum, block, lognum)
|
2006-12-13 20:32:35 -07:00
|
|
|
dl.append(d)
|
2015-11-12 16:16:28 -07:00
|
|
|
|
2008-12-09 16:33:18 -07:00
|
|
|
block_hash = hashutil.block_hash(block)
|
2008-02-14 19:27:47 -07:00
|
|
|
#from allmydata.util import base32
|
2007-07-13 16:38:25 -07:00
|
|
|
#log.msg("creating block (shareid=%d, blocknum=%d) "
|
|
|
|
|
# "len=%d %r .. %r: %s" %
|
2008-12-09 16:33:18 -07:00
|
|
|
# (shareid, segnum, len(block),
|
|
|
|
|
# block[:50], block[-50:], base32.b2a(block_hash)))
|
|
|
|
|
self.block_hashes[shareid].append(block_hash)
|
2007-08-09 18:28:45 -07:00
|
|
|
|
2007-06-06 12:40:16 -07:00
|
|
|
dl = self._gather_responses(dl)
|
2015-11-12 16:16:28 -07:00
|
|
|
|
|
|
|
|
def do_progress(ign):
|
|
|
|
|
done = self.segment_size * (segnum + 1)
|
|
|
|
|
if self._progress:
|
|
|
|
|
self._progress.set_progress(done)
|
|
|
|
|
return ign
|
|
|
|
|
dl.addCallback(do_progress)
|
|
|
|
|
|
2007-04-02 10:23:24 -07:00
|
|
|
def _logit(res):
|
2007-11-19 19:33:41 -07:00
|
|
|
self.log("%s uploaded %s / %s bytes (%d%%) of your file." %
|
|
|
|
|
(self,
|
|
|
|
|
self.segment_size*(segnum+1),
|
|
|
|
|
self.segment_size*self.num_segments,
|
2020-10-06 11:32:19 -04:00
|
|
|
100 * (segnum+1) // self.num_segments,
|
2008-01-28 12:15:27 -07:00
|
|
|
),
|
|
|
|
|
level=log.OPERATIONAL)
|
2008-02-06 00:41:51 -07:00
|
|
|
elapsed = time.time() - start
|
|
|
|
|
self._times["cumulative_sending"] += elapsed
|
2007-04-02 10:23:24 -07:00
|
|
|
return res
|
|
|
|
|
dl.addCallback(_logit)
|
2007-03-30 18:01:37 -07:00
|
|
|
return dl
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2008-12-09 16:33:18 -07:00
|
|
|
def send_block(self, shareid, segment_num, block, lognum):
|
2007-04-18 18:29:10 -07:00
|
|
|
if shareid not in self.landlords:
|
|
|
|
|
return defer.succeed(None)
|
2007-04-05 22:36:18 -07:00
|
|
|
sh = self.landlords[shareid]
|
2007-11-19 19:33:41 -07:00
|
|
|
lognum2 = self.log("put_block to %s" % self.landlords[shareid],
|
2008-01-14 21:19:20 -07:00
|
|
|
parent=lognum, level=log.NOISY)
|
2008-12-09 16:33:18 -07:00
|
|
|
d = sh.put_block(segment_num, block)
|
2007-11-19 19:33:41 -07:00
|
|
|
def _done(res):
|
2008-01-14 21:19:20 -07:00
|
|
|
self.log("put_block done", parent=lognum2, level=log.NOISY)
|
2007-11-19 19:33:41 -07:00
|
|
|
return res
|
|
|
|
|
d.addCallback(_done)
|
2007-06-06 10:32:40 -07:00
|
|
|
d.addErrback(self._remove_shareholder, shareid,
|
|
|
|
|
"segnum=%d" % segment_num)
|
|
|
|
|
return d
|
|
|
|
|
|
|
|
|
|
def _remove_shareholder(self, why, shareid, where):
|
2008-01-28 12:15:27 -07:00
|
|
|
ln = self.log(format="error while sending %(method)s to shareholder=%(shnum)d",
|
|
|
|
|
method=where, shnum=shareid,
|
|
|
|
|
level=log.UNUSUAL, failure=why)
|
2007-06-06 12:40:16 -07:00
|
|
|
if shareid in self.landlords:
|
2008-06-10 11:55:28 -07:00
|
|
|
self.landlords[shareid].abort()
|
2010-05-13 17:49:17 -07:00
|
|
|
peerid = self.landlords[shareid].get_peerid()
|
|
|
|
|
assert peerid
|
2007-06-06 12:40:16 -07:00
|
|
|
del self.landlords[shareid]
|
2010-05-13 17:49:17 -07:00
|
|
|
self.servermap[shareid].remove(peerid)
|
|
|
|
|
if not self.servermap[shareid]:
|
|
|
|
|
del self.servermap[shareid]
|
2007-06-06 12:40:16 -07:00
|
|
|
else:
|
|
|
|
|
# even more UNUSUAL
|
2008-01-28 12:15:27 -07:00
|
|
|
self.log("they weren't in our list of landlords", parent=ln,
|
2008-08-25 18:57:59 -07:00
|
|
|
level=log.WEIRD, umid="TQGFRw")
|
2010-05-13 17:49:17 -07:00
|
|
|
happiness = happinessutil.servers_of_happiness(self.servermap)
|
2017-02-14 16:36:57 -07:00
|
|
|
if happiness < self.min_happiness:
|
2010-05-13 17:49:17 -07:00
|
|
|
peerids = set(happinessutil.shares_by_server(self.servermap).keys())
|
|
|
|
|
msg = happinessutil.failure_message(len(peerids),
|
|
|
|
|
self.required_shares,
|
2017-02-14 16:36:57 -07:00
|
|
|
self.min_happiness,
|
2010-05-13 17:49:17 -07:00
|
|
|
happiness)
|
|
|
|
|
msg = "%s: %s" % (msg, why)
|
2009-12-04 22:30:37 -07:00
|
|
|
raise UploadUnhappinessError(msg)
|
2007-11-19 19:33:41 -07:00
|
|
|
self.log("but we can still continue with %s shares, we'll be happy "
|
2010-05-13 17:49:17 -07:00
|
|
|
"with at least %s" % (happiness,
|
2017-02-14 16:36:57 -07:00
|
|
|
self.min_happiness),
|
2007-11-19 19:33:41 -07:00
|
|
|
parent=ln)
|
2007-06-06 12:40:16 -07:00
|
|
|
|
|
|
|
|
def _gather_responses(self, dl):
|
|
|
|
|
d = defer.DeferredList(dl, fireOnOneErrback=True)
|
2010-05-13 17:49:17 -07:00
|
|
|
def _eatUploadUnhappinessError(f):
|
2007-06-06 12:40:16 -07:00
|
|
|
# all exceptions that occur while talking to a peer are handled
|
2009-12-04 22:30:37 -07:00
|
|
|
# in _remove_shareholder. That might raise UploadUnhappinessError,
|
2007-06-06 12:40:16 -07:00
|
|
|
# which will cause the DeferredList to errback but which should
|
2009-12-04 22:30:37 -07:00
|
|
|
# otherwise be consumed. Allow non-UploadUnhappinessError exceptions
|
2007-06-06 12:40:16 -07:00
|
|
|
# to pass through as an unhandled errback. We use this in lieu of
|
|
|
|
|
# consumeErrors=True to allow coding errors to be logged.
|
2009-12-04 22:30:37 -07:00
|
|
|
f.trap(UploadUnhappinessError)
|
2007-06-06 12:40:16 -07:00
|
|
|
return None
|
|
|
|
|
for d0 in dl:
|
2010-05-13 17:49:17 -07:00
|
|
|
d0.addErrback(_eatUploadUnhappinessError)
|
2007-06-06 12:40:16 -07:00
|
|
|
return d
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2007-07-23 19:31:53 -07:00
|
|
|
def finish_hashing(self):
|
2008-02-06 00:41:51 -07:00
|
|
|
self._start_hashing_and_close_timestamp = time.time()
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Finishing hashes")
|
|
|
|
|
self.set_encode_and_push_progress(extra=0.0)
|
2008-03-23 15:35:54 -07:00
|
|
|
crypttext_hash = self._crypttext_hasher.digest()
|
|
|
|
|
self.uri_extension_data["crypttext_hash"] = crypttext_hash
|
2008-12-09 16:45:46 -07:00
|
|
|
self._uploadable.close()
|
2008-03-23 15:35:54 -07:00
|
|
|
|
|
|
|
|
def send_crypttext_hash_tree_to_all_shareholders(self):
|
|
|
|
|
self.log("sending crypttext hash tree", level=log.NOISY)
|
|
|
|
|
self.set_status("Sending Crypttext Hash Tree")
|
|
|
|
|
self.set_encode_and_push_progress(extra=0.3)
|
|
|
|
|
t = HashTree(self._crypttext_hashes)
|
|
|
|
|
all_hashes = list(t)
|
|
|
|
|
self.uri_extension_data["crypttext_root_hash"] = t[0]
|
|
|
|
|
dl = []
|
2009-05-22 11:44:24 -07:00
|
|
|
for shareid in list(self.landlords):
|
2008-03-23 15:35:54 -07:00
|
|
|
dl.append(self.send_crypttext_hash_tree(shareid, all_hashes))
|
|
|
|
|
return self._gather_responses(dl)
|
|
|
|
|
|
|
|
|
|
def send_crypttext_hash_tree(self, shareid, all_hashes):
|
|
|
|
|
if shareid not in self.landlords:
|
|
|
|
|
return defer.succeed(None)
|
|
|
|
|
sh = self.landlords[shareid]
|
|
|
|
|
d = sh.put_crypttext_hashes(all_hashes)
|
|
|
|
|
d.addErrback(self._remove_shareholder, shareid, "put_crypttext_hashes")
|
|
|
|
|
return d
|
2007-06-06 19:40:20 -07:00
|
|
|
|
2008-12-09 16:33:18 -07:00
|
|
|
def send_all_block_hash_trees(self):
|
|
|
|
|
self.log("sending block hash trees", level=log.NOISY)
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Sending Subshare Hash Trees")
|
|
|
|
|
self.set_encode_and_push_progress(extra=0.4)
|
2006-12-13 20:32:35 -07:00
|
|
|
dl = []
|
2008-12-09 16:33:18 -07:00
|
|
|
for shareid,hashes in enumerate(self.block_hashes):
|
|
|
|
|
# hashes is a list of the hashes of all blocks that were sent
|
2007-02-01 16:07:00 -07:00
|
|
|
# to shareholder[shareid].
|
2008-12-09 16:33:18 -07:00
|
|
|
dl.append(self.send_one_block_hash_tree(shareid, hashes))
|
2007-06-06 12:40:16 -07:00
|
|
|
return self._gather_responses(dl)
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2008-12-09 16:33:18 -07:00
|
|
|
def send_one_block_hash_tree(self, shareid, block_hashes):
|
|
|
|
|
t = HashTree(block_hashes)
|
2006-12-13 20:32:35 -07:00
|
|
|
all_hashes = list(t)
|
|
|
|
|
# all_hashes[0] is the root hash, == hash(ah[1]+ah[2])
|
|
|
|
|
# all_hashes[1] is the left child, == hash(ah[3]+ah[4])
|
|
|
|
|
# all_hashes[n] == hash(all_hashes[2*n+1] + all_hashes[2*n+2])
|
2007-02-01 16:07:00 -07:00
|
|
|
self.share_root_hashes[shareid] = t[0]
|
2007-04-18 18:29:10 -07:00
|
|
|
if shareid not in self.landlords:
|
|
|
|
|
return defer.succeed(None)
|
2007-04-05 22:36:18 -07:00
|
|
|
sh = self.landlords[shareid]
|
2007-07-08 23:27:46 -07:00
|
|
|
d = sh.put_block_hashes(all_hashes)
|
2007-06-06 10:32:40 -07:00
|
|
|
d.addErrback(self._remove_shareholder, shareid, "put_block_hashes")
|
|
|
|
|
return d
|
2006-12-13 20:32:35 -07:00
|
|
|
|
|
|
|
|
def send_all_share_hash_trees(self):
|
2008-12-21 15:07:52 -07:00
|
|
|
# Each bucket gets a set of share hash tree nodes that are needed to validate their
|
|
|
|
|
# share. This includes the share hash itself, but does not include the top-level hash
|
|
|
|
|
# root (which is stored securely in the URI instead).
|
2008-01-28 12:15:27 -07:00
|
|
|
self.log("sending all share hash trees", level=log.NOISY)
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Sending Share Hash Trees")
|
|
|
|
|
self.set_encode_and_push_progress(extra=0.6)
|
2006-12-13 20:32:35 -07:00
|
|
|
dl = []
|
|
|
|
|
for h in self.share_root_hashes:
|
|
|
|
|
assert h
|
|
|
|
|
# create the share hash tree
|
|
|
|
|
t = HashTree(self.share_root_hashes)
|
|
|
|
|
# the root of this hash tree goes into our URI
|
2007-06-08 15:59:16 -07:00
|
|
|
self.uri_extension_data['share_root_hash'] = t[0]
|
2006-12-13 20:32:35 -07:00
|
|
|
# now send just the necessary pieces out to each shareholder
|
|
|
|
|
for i in range(self.num_shares):
|
2006-12-14 04:31:17 -07:00
|
|
|
# the HashTree is given a list of leaves: 0,1,2,3..n .
|
|
|
|
|
# These become nodes A+0,A+1,A+2.. of the tree, where A=n-1
|
2007-04-12 19:41:48 -07:00
|
|
|
needed_hash_indices = t.needed_hashes(i, include_leaf=True)
|
2006-12-14 04:31:17 -07:00
|
|
|
hashes = [(hi, t[hi]) for hi in needed_hash_indices]
|
|
|
|
|
dl.append(self.send_one_share_hash_tree(i, hashes))
|
2007-06-06 12:40:16 -07:00
|
|
|
return self._gather_responses(dl)
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2007-02-01 16:07:00 -07:00
|
|
|
def send_one_share_hash_tree(self, shareid, needed_hashes):
|
2007-04-18 18:29:10 -07:00
|
|
|
if shareid not in self.landlords:
|
|
|
|
|
return defer.succeed(None)
|
2007-04-05 22:36:18 -07:00
|
|
|
sh = self.landlords[shareid]
|
2007-07-08 23:27:46 -07:00
|
|
|
d = sh.put_share_hashes(needed_hashes)
|
2007-06-06 10:32:40 -07:00
|
|
|
d.addErrback(self._remove_shareholder, shareid, "put_share_hashes")
|
|
|
|
|
return d
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2007-06-08 15:59:16 -07:00
|
|
|
def send_uri_extension_to_all_shareholders(self):
|
2008-01-28 12:15:27 -07:00
|
|
|
lp = self.log("sending uri_extension", level=log.NOISY)
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Sending URI Extensions")
|
|
|
|
|
self.set_encode_and_push_progress(extra=0.8)
|
2008-03-23 15:35:54 -07:00
|
|
|
for k in ('crypttext_root_hash', 'crypttext_hash',
|
|
|
|
|
):
|
|
|
|
|
assert k in self.uri_extension_data
|
2007-06-11 18:25:18 -07:00
|
|
|
uri_extension = uri.pack_extension(self.uri_extension_data)
|
2008-01-23 18:08:04 -07:00
|
|
|
ed = {}
|
|
|
|
|
for k,v in self.uri_extension_data.items():
|
|
|
|
|
if k.endswith("hash"):
|
2008-02-14 19:27:47 -07:00
|
|
|
ed[k] = base32.b2a(v)
|
2008-01-23 18:08:04 -07:00
|
|
|
else:
|
|
|
|
|
ed[k] = v
|
|
|
|
|
self.log("uri_extension_data is %s" % (ed,), level=log.NOISY, parent=lp)
|
2007-06-08 15:59:16 -07:00
|
|
|
self.uri_extension_hash = hashutil.uri_extension_hash(uri_extension)
|
2007-06-01 18:48:01 -07:00
|
|
|
dl = []
|
2009-05-22 11:44:24 -07:00
|
|
|
for shareid in list(self.landlords):
|
2007-06-08 15:59:16 -07:00
|
|
|
dl.append(self.send_uri_extension(shareid, uri_extension))
|
2007-06-06 12:40:16 -07:00
|
|
|
return self._gather_responses(dl)
|
2007-06-01 18:48:01 -07:00
|
|
|
|
2007-06-08 15:59:16 -07:00
|
|
|
def send_uri_extension(self, shareid, uri_extension):
|
2007-06-06 10:32:40 -07:00
|
|
|
sh = self.landlords[shareid]
|
2007-07-08 23:27:46 -07:00
|
|
|
d = sh.put_uri_extension(uri_extension)
|
2007-06-08 15:59:16 -07:00
|
|
|
d.addErrback(self._remove_shareholder, shareid, "put_uri_extension")
|
2007-06-06 10:32:40 -07:00
|
|
|
return d
|
2007-06-01 18:48:01 -07:00
|
|
|
|
2006-12-13 20:32:35 -07:00
|
|
|
def close_all_shareholders(self):
|
2008-01-28 12:15:27 -07:00
|
|
|
self.log("closing shareholders", level=log.NOISY)
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Closing Shareholders")
|
|
|
|
|
self.set_encode_and_push_progress(extra=0.9)
|
2006-12-13 20:32:35 -07:00
|
|
|
dl = []
|
2009-05-22 11:44:24 -07:00
|
|
|
for shareid in list(self.landlords):
|
2007-07-08 23:27:46 -07:00
|
|
|
d = self.landlords[shareid].close()
|
2007-06-06 10:32:40 -07:00
|
|
|
d.addErrback(self._remove_shareholder, shareid, "close")
|
|
|
|
|
dl.append(d)
|
2007-06-06 12:40:16 -07:00
|
|
|
return self._gather_responses(dl)
|
2006-12-13 20:32:35 -07:00
|
|
|
|
2008-06-10 11:55:28 -07:00
|
|
|
def done(self, res):
|
2008-01-28 12:15:27 -07:00
|
|
|
self.log("upload done", level=log.OPERATIONAL)
|
2009-11-20 22:15:43 -08:00
|
|
|
self.set_status("Finished")
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_encode_and_push_progress(extra=1.0) # done
|
2008-02-06 00:41:51 -07:00
|
|
|
now = time.time()
|
|
|
|
|
h_and_c_elapsed = now - self._start_hashing_and_close_timestamp
|
|
|
|
|
self._times["hashes_and_close"] = h_and_c_elapsed
|
|
|
|
|
total_elapsed = now - self._start_total_timestamp
|
|
|
|
|
self._times["total_encode_and_push"] = total_elapsed
|
|
|
|
|
|
|
|
|
|
# update our sharemap
|
|
|
|
|
self._shares_placed = set(self.landlords.keys())
|
2009-01-06 21:48:22 -07:00
|
|
|
return uri.CHKFileVerifierURI(self._storage_index, self.uri_extension_hash,
|
|
|
|
|
self.required_shares, self.num_shares, self.file_size)
|
2007-04-06 18:04:38 -07:00
|
|
|
|
|
|
|
|
def err(self, f):
|
2008-01-28 11:59:10 -07:00
|
|
|
self.log("upload failed", failure=f, level=log.UNUSUAL)
|
2008-02-12 15:36:05 -07:00
|
|
|
self.set_status("Failed")
|
2008-01-14 21:22:55 -07:00
|
|
|
# we need to abort any remaining shareholders, so they'll delete the
|
|
|
|
|
# partial share, allowing someone else to upload it again.
|
2008-01-28 12:15:27 -07:00
|
|
|
self.log("aborting shareholders", level=log.UNUSUAL)
|
2009-05-22 11:44:24 -07:00
|
|
|
for shareid in list(self.landlords):
|
2008-06-10 11:55:28 -07:00
|
|
|
self.landlords[shareid].abort()
|
|
|
|
|
if f.check(defer.FirstError):
|
|
|
|
|
return f.value.subFailure
|
|
|
|
|
return f
|
2008-02-06 00:41:51 -07:00
|
|
|
|
|
|
|
|
def get_shares_placed(self):
|
|
|
|
|
# return a set of share numbers that were successfully placed.
|
|
|
|
|
return self._shares_placed
|
|
|
|
|
|
|
|
|
|
def get_times(self):
|
|
|
|
|
# return a dictionary of encode+push timings
|
|
|
|
|
return self._times
|
2008-02-06 17:30:58 -07:00
|
|
|
|
|
|
|
|
def get_uri_extension_data(self):
|
|
|
|
|
return self.uri_extension_data
|
2012-05-21 21:14:14 -07:00
|
|
|
def get_uri_extension_hash(self):
|
|
|
|
|
return self.uri_extension_hash
|
