fix(storage): use hash values in InsertObject() (#7025)

coryan · web-flow · commit a3df9c7564cb · 2021-07-20T10:49:53.000-04:00
If the application provides a `gcs::Crc32ChecksumValue()` or
`gcs::MD5HashValue()` to `InsertObject()` we should use those values to
create the metadata portion of the upload. Otherwise we are losing an
opportunity to validate the data integrity during the upload.

I discovered this while refactoring and restructuring the integration
tests for CRC32C checksums and MD5 hashes. Apologies for the massive
changes in the tests for what amounts to a small fix.

The tests now have 3 portions, one for `InsertObject()`, one for
`WriteObject()` and one for `ReadObject()`. Unlike before, the code for
XML and JSON tests is shared, though this required some changes in the
emulator to make it easier to detect what hash fields (if any) were
including in the upload.

For `InsertObject()` and `WriteObject()` we test 5 scenarios: (1) using
the default settings, which are enabled for CRC32C, and disabled for
MD5, (2) explicitly disabling the hash, (3) explicitly enabling the
hash, (4) setting the hash to the correct value, and (5) setting the
hash to the incorrect value.

For `WriteObject()` we also test detecting an invalid hash, both in the
case where the library computes the hash and the case where the
application provides it.

For `ReadObject()` it is simpler, because we cannot provide expected
hashes. So we only test the cases where the hash check is in its default
setting (enabled for CRC32, disabled for MD5) and that hash mistmatches
are detected when the hash is enabled.
diff --git a/google/cloud/storage/emulator/emulator.py b/google/cloud/storage/emulator/emulator.py
@@ -48,6 +48,7 @@ def index():
 TODO(#6615): Introducing failures into uploads with return-XXX-after-YYYk
 """
 
+
 # Needs to be defined in emulator.py to keep context of flask and db global variables
 def retry_test(method):
     global supported_methods
@@ -805,7 +806,6 @@ def resumable_upload_chunk(bucket_name):
                 blob.metadata.metadata["x_emulator_transfer_encoding"] = ":".join(
                     upload.transfer
                 )
-                blob.metadata.metadata["x_emulator_upload"] = "resumable"
                 db.insert_object(upload.request, bucket_name, blob, None)
                 projection = utils.common.extract_projection(
                     upload.request, CommonEnums.Projection.NO_ACL, None
@@ -906,7 +906,6 @@ def xml_get_object(bucket_name, object_name):
 # Define the WSGI application to handle IAM requests
 (IAM_HANDLER_PATH, iam_app) = gcs_type.iam.get_iam_app()
 
-
 server = HandleGzipMiddleware(
     DispatcherMiddleware(
         root,
diff --git a/google/cloud/storage/emulator/gcs/holder.py b/google/cloud/storage/emulator/gcs/holder.py
@@ -27,6 +27,7 @@
 
 class DataHolder(types.SimpleNamespace):
     rest_only_fields = ["customTime"]
+    __upload_id_generator = 0
 
     def __init__(self, **kwargs):
         super().__init__(**kwargs)
@@ -57,6 +58,27 @@ def init_upload(
             rest_only=rest_only,
         )
 
+    @classmethod
+    def __preprocess_rest_metadata(cls, metadata):
+        return utils.common.rest_adjust(
+            metadata,
+            {
+                "crc32c": lambda x: (
+                    "crc32c",
+                    utils.common.rest_crc32c_to_proto(metadata["crc32c"]),
+                )
+            },
+        )
+
+    @classmethod
+    def __create_upload_id(cls, bucket_name, object_name):
+        cls.__upload_id_generator = cls.__upload_id_generator + 1
+        return hashlib.sha256(
+            (
+                "%d/%s/o/%s" % (cls.__upload_id_generator, bucket_name, object_name)
+            ).encode("utf-8")
+        ).hexdigest()
+
     @classmethod
     def init_resumable_rest(cls, request, bucket):
         query_name = request.args.get("name", None)
@@ -76,7 +98,19 @@ def init_resumable_rest(cls, request, bucket):
                     context=None,
                 )
             rest_only = cls.__extract_rest_only(data)
-            metadata = json_format.ParseDict(data, metadata)
+            metadata = json_format.ParseDict(
+                cls.__preprocess_rest_metadata(data), metadata
+            )
+            # Add some annotations to make it easier to write tests
+            metadata.metadata["x_emulator_upload"] = "resumable"
+            if data.get("crc32c", None) is not None:
+                metadata.metadata["x_emulator_crc32c"] = data.get("crc32c")
+            if data.get("md5Hash", None) is not None:
+                metadata.metadata["x_emulator_md5"] = data.get("md5Hash")
+        if metadata.metadata.get("x_emulator_crc32c", None) is None:
+            metadata.metadata["x_emulator_no_crc32c"] = "true"
+        if metadata.metadata.get("x_emulator_md5", None) is None:
+            metadata.metadata["x_emulator_no_md5"] = "true"
         if query_name:
             metadata.name = query_name
         if metadata.name == "":
@@ -85,9 +119,7 @@ def init_resumable_rest(cls, request, bucket):
             metadata.content_type = request.headers.get(
                 "x-upload-content-type", "application/octet-stream"
             )
-        upload_id = hashlib.sha256(
-            ("%s/o/%s" % (bucket.name, metadata.name)).encode("utf-8")
-        ).hexdigest()
+        upload_id = cls.__create_upload_id(bucket.name, metadata.name)
         location = (
             request.host_url
             + "upload/storage/v1/b/%s/o?uploadType=resumable&upload_id=%s"
@@ -108,9 +140,19 @@ def init_resumable_rest(cls, request, bucket):
     @classmethod
     def init_resumable_grpc(cls, request, bucket, context):
         metadata = request.insert_object_spec.resource
-        upload_id = hashlib.sha256(
-            ("%s/o/%s" % (bucket.name, metadata.name)).encode("utf-8")
-        ).hexdigest()
+        # Add some annotations to make it easier to write tests
+        metadata.metadata["x_emulator_upload"] = "resumable"
+        if metadata.crc32c.value is not None:
+            metadata.metadata[
+                "x_emulator_crc32c"
+            ] = utils.common.rest_crc32c_from_proto(metadata.crc32c.value)
+        else:
+            metadata.metadata["x_emulator_no_crc3c"] = "true"
+        if metadata.md5_hash is not None:
+            metadata.metadata["x_emulator_md5"] = metadata.md5_hash
+        else:
+            metadata.metadata["x_emulator_no_md5"] = "true"
+        upload_id = cls.__create_upload_id(bucket.name, metadata.name)
         fake_request = utils.common.FakeRequest.init_protobuf(request, context)
         fake_request.update_protobuf(request.insert_object_spec, context)
         return cls.init_upload(fake_request, metadata, bucket, "", upload_id)
diff --git a/google/cloud/storage/emulator/gcs/object.py b/google/cloud/storage/emulator/gcs/object.py
@@ -203,9 +203,7 @@ def init_multipart(cls, request, bucket):
             metadata["md5Hash"] = metadata["md5Hash"]
         if "crc32c" in metadata:
             metadata["metadata"]["x_emulator_crc32c"] = metadata["crc32c"]
-            metadata["crc32c"] = struct.unpack(
-                ">I", base64.b64decode(metadata["crc32c"].encode("utf-8"))
-            )[0]
+            metadata["crc32c"] = utils.common.rest_crc32c_to_proto(metadata["crc32c"])
         return cls.init_dict(request, metadata, media, bucket, False)
 
     @classmethod
@@ -227,9 +225,7 @@ def init_xml(cls, request, bucket, name):
                     metadata["md5Hash"] = md5Hash
                 if checksum.startswith("crc32c="):
                     crc32c_value = checksum[7:]
-                    metadata["crc32c"] = struct.unpack(
-                        ">I", base64.b64decode(crc32c_value.encode("utf-8"))
-                    )[0]
+                    metadata["crc32c"] = utils.common.rest_crc32c_to_proto(crc32c_value)
         blob, _ = cls.init_dict(fake_request, metadata, media, bucket, False)
         return blob, fake_request
 
@@ -374,9 +370,7 @@ def delete_acl(self, entity, context):
     def rest(cls, metadata, rest_only):
         response = json_format.MessageToDict(metadata)
         response["kind"] = "storage#object"
-        response["crc32c"] = base64.b64encode(
-            struct.pack(">I", response["crc32c"])
-        ).decode("utf-8")
+        response["crc32c"] = utils.common.rest_crc32c_from_proto(response["crc32c"])
         response.update(rest_only)
         old_metadata = {}
         if "metadata" in response:
@@ -391,14 +385,15 @@ def rest_metadata(self):
         return self.rest(self.metadata, self.rest_only)
 
     def x_goog_hash_header(self):
-        header = ""
-        if "x_emulator_crc32c" in self.metadata.metadata:
-            header += "crc32c=" + self.metadata.metadata["x_emulator_crc32c"]
-        if "x_emulator_md5" in self.metadata.metadata:
-            if header != "":
-                header += ","
-            header += "md5=" + self.metadata.metadata["x_emulator_md5"]
-        return header if header != "" else None
+        hashes = []
+        if self.metadata.crc32c is not None and self.metadata.crc32c.value is not None:
+            hashes.append(
+                "crc32c=%s"
+                % utils.common.rest_crc32c_from_proto(self.metadata.crc32c.value)
+            )
+        if self.metadata.md5_hash is not None:
+            hashes.append("md5=%s" % self.metadata.md5_hash)
+        return ",".join(hashes) if len(hashes) != 0 else None
 
     def rest_media(self, request):
         range_header = request.headers.get("range")
diff --git a/google/cloud/storage/emulator/grpc_server.py b/google/cloud/storage/emulator/grpc_server.py
@@ -253,7 +253,6 @@ def StartResumableWrite(self, request, context):
         upload = gcs_type.holder.DataHolder.init_resumable_grpc(
             request, bucket, context
         )
-        upload.metadata.metadata["x_emulator_upload"] = "resumable"
         db.insert_upload(upload)
         return storage_pb2.StartResumableWriteResponse(upload_id=upload.upload_id)
 
diff --git a/google/cloud/storage/emulator/tests/test_holder.py b/google/cloud/storage/emulator/tests/test_holder.py
@@ -195,6 +195,14 @@ def test_init_resumable_grpc(self):
             insert_object_spec=insert_object_spec, write_offset=0
         )
         upload = gcs.holder.DataHolder.init_resumable_grpc(request, bucket, "")
+        # Verify the annotations inserted by the emulator.
+        annotations = upload.metadata.metadata
+        self.assertGreaterEqual(
+            set(["x_emulator_upload", "x_emulator_crc32c", "x_emulator_md5"]),
+            set(annotations.keys()),
+        )
+        # Clear any annotations created by the emulator
+        upload.metadata.metadata.clear()
         self.assertEqual(
             upload.metadata, resources_pb2.Object(name="object", bucket="bucket")
         )
@@ -215,6 +223,30 @@ def test_init_resumable_grpc(self):
         projection = utils.common.extract_projection(upload.request, False, "")
         self.assertEqual(projection, CommonEnums.Projection.FULL)
 
+    def test_init_resumable_rest(self):
+        request = storage_pb2.InsertBucketRequest(bucket={"name": "bucket"})
+        bucket, _ = gcs.bucket.Bucket.init(request, "")
+        bucket = bucket.metadata
+        data = json.dumps(
+            {
+                # Empty payload checksums
+                "crc32c": "AAAAAA==",
+                "md5Hash": "1B2M2Y8AsgTpgAmY7PhCfg==",
+                "name": "test-object-name",
+            }
+        )
+        environ = create_environ(
+            base_url="http://localhost:8080",
+            content_length=len(data),
+            data=data,
+            content_type="application/json",
+            method="POST",
+        )
+        upload = gcs.holder.DataHolder.init_resumable_rest(Request(environ), bucket)
+        self.assertEqual(upload.metadata.name, "test-object-name")
+        self.assertEqual(upload.metadata.crc32c.value, 0)
+        self.assertEqual(upload.metadata.md5_hash, "1B2M2Y8AsgTpgAmY7PhCfg==")
+
 
 if __name__ == "__main__":
     unittest.main()
diff --git a/google/cloud/storage/emulator/utils/common.py b/google/cloud/storage/emulator/utils/common.py
@@ -14,11 +14,11 @@
 
 """Common utils"""
 
+import base64
 import json
 import random
 import re
 import types
-import time
 import sys
 import socket
 import struct
@@ -422,3 +422,54 @@ def handle_retry_test_instruction(database, request, method):
             database.dequeue_next_instruction(test_id, method)
             utils.error.notallowed()
     return __get_default_response_fn
+
+
+def rest_crc32c_to_proto(crc32c):
+    """Convert from the REST representation of crc32c checksums to the proto representation.
+
+    REST uses base64 encoded 32-bit big endian integers, while protos use just `int32`.
+    """
+    return struct.unpack(">I", base64.b64decode(crc32c.encode("utf-8")))[0]
+
+
+def rest_crc32c_from_proto(crc32c):
+    """Convert from the gRPC/proto representation of crc32c checksums to the REST representation.
+
+    REST uses base64 encoded 32-bit big endian integers, while protos use just `int32`.
+    """
+    return base64.b64encode(struct.pack(">I", crc32c)).decode("utf-8")
+
+
+def rest_adjust(data, adjustments):
+    """
+    Apply a per-key 'actions' to a dictionary *if* the key is present.
+
+    When mapping between the gRPC and the REST representations of resources
+    (Bucket, Object, etc.) we sometimes need to change the name and/or format
+    of some fields.
+
+    The `adjustments` describes what keys (if present) need adjustment, and
+    a function that returns the new key and value for the item in `data`.
+
+    Parameters
+    ----------
+    data : dict
+        A dictionary, typically the REST representation of a resource
+    adjustments : dict
+        The keys in `data` that, if present, need adjustment. The values
+        in this dictionary are functions returning a (key, value) tuple
+        that replaces the existing tuple in `data`.
+
+    Returns
+    -------
+    dict
+        A copy of `data` with the changes prescribed by `adjustments`.
+    """
+    modified = data.copy()
+    for key, action in adjustments.items():
+        value = modified.pop(key, None)
+        if value is not None:
+            k, v = action(value)
+            if value is not None:
+                modified[k] = v
+    return modified
diff --git a/google/cloud/storage/internal/curl_client.cc b/google/cloud/storage/internal/curl_client.cc
@@ -536,7 +536,9 @@ StatusOr<ObjectMetadata> CurlClient::InsertObjectMedia(
   // uploads. `DisableMD5Hash` and `DisableCrc32cChecksum` should not be
   // dependent on each other.
   if (!request.GetOption<DisableMD5Hash>().value() ||
-      !request.GetOption<DisableCrc32cChecksum>().value_or(false)) {
+      !request.GetOption<DisableCrc32cChecksum>().value_or(false) ||
+      request.HasOption<MD5HashValue>() ||
+      request.HasOption<Crc32cChecksumValue>()) {
     return InsertObjectMediaMultipart(request);
   }
 
diff --git a/google/cloud/storage/testing/storage_integration_test.h b/google/cloud/storage/testing/storage_integration_test.h
@@ -105,6 +105,30 @@ class StorageIntegrationTest
     buckets_to_delete_.push_back(std::move(meta));
   }
 
+  struct ApiSwitch {
+    Fields for_insert;
+    IfMetagenerationNotMatch for_streaming_read;
+  };
+
+  static ApiSwitch RestApiFlags(std::string const& api) {
+    if (api == "XML") {
+      return ApiSwitch{
+          // enables XML: this filters-out all metadata fields from
+          // the InsertObject() response. JSON and XML are equivalent when no
+          // metadata fields are requested, and we default to XML in that case.
+          Fields(""),
+          // empty option has no effect, and the default is XML
+          IfMetagenerationNotMatch()};
+    }
+    return ApiSwitch{
+        // empty option has no effect, and the default is JSON since only JSON
+        // can provide all metadata fields.
+        Fields(),
+        // disables XML (the default) as it does not support
+        // metageneration-not-match
+        IfMetagenerationNotMatch(0)};
+  }
+
  private:
   std::vector<ObjectMetadata> objects_to_delete_;
   std::vector<BucketMetadata> buckets_to_delete_;
diff --git a/google/cloud/storage/tests/object_checksum_integration_test.cc b/google/cloud/storage/tests/object_checksum_integration_test.cc
diff --git a/google/cloud/storage/tests/object_hash_integration_test.cc b/google/cloud/storage/tests/object_hash_integration_test.cc

Original file line number	Diff line number	Diff line change
`@@ -253,7 +253,6 @@ def StartResumableWrite(self, request, context):`
`253`	`253`	`upload = gcs_type.holder.DataHolder.init_resumable_grpc(`
`254`	`254`	`request, bucket, context`
`255`	`255`	`)`
`256`		`- upload.metadata.metadata["x_emulator_upload"] = "resumable"`
`257`	`256`	`db.insert_upload(upload)`
`258`	`257`	`return storage_pb2.StartResumableWriteResponse(upload_id=upload.upload_id)`
`259`	`258`