other 80% of avoding verification when hard linking to objects in shared repo
In c6632ee5c8, it actually only handled
uploading objects to a shared repository. To avoid verification when
downloading objects from a shared repository, was a lot harder.
On the plus side, if the process of downloading a file from a remote
is able to verify its content on the side, the remote can indicate this
now, and avoid the extra post-download verification.
As of yet, I don't have any remotes (except Git) using this ability.
Some more work would be needed to support it in special remotes.
It would make sense for tahoe to implicitly verify things downloaded from it;
as long as you trust your tahoe server (which typically runs locally),
there's cryptographic integrity. OTOH, despite bup being based on shas,
a bup repo under an attacker's control could have the git ref used for an
object changed, and so a bup repo shouldn't implicitly verify. Indeed,
tahoe seems unique in being trustworthy enough to implicitly verify.
This commit is contained in:
Joey Hess
parent
7c7fe895f9
commit
2def1d0a23
15 changed files with 100 additions and 77 deletions
|
|
@ -13,6 +13,8 @@ module Types.Remote
|
|||
, RemoteTypeA(..)
|
||||
, RemoteA(..)
|
||||
, Availability(..)
|
||||
, Verification(..)
|
||||
, unVerified
|
||||
)
|
||||
where
|
||||
|
||||
|
|
@ -64,9 +66,9 @@ data RemoteA a = Remote {
|
|||
-- all of its contents have been transferred.
|
||||
storeKey :: Key -> AssociatedFile -> MeterUpdate -> a Bool,
|
||||
-- Retrieves a key's contents to a file.
|
||||
-- (The MeterUpdate does not need to be used if it retrieves
|
||||
-- directly to the file, and not to an intermediate file.)
|
||||
retrieveKeyFile :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> a Bool,
|
||||
-- (The MeterUpdate does not need to be used if it writes
|
||||
-- sequentially to the file.)
|
||||
retrieveKeyFile :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> a (Bool, Verification),
|
||||
-- Retrieves a key's contents to a tmp file, if it can be done cheaply.
|
||||
-- It's ok to create a symlink or hardlink.
|
||||
retrieveKeyFileCheap :: Key -> AssociatedFile -> FilePath -> a Bool,
|
||||
|
|
@ -122,3 +124,12 @@ instance Eq (RemoteA a) where
|
|||
|
||||
instance Ord (RemoteA a) where
|
||||
compare = comparing uuid
|
||||
|
||||
-- Use Verified when the content of a key is verified as part of a
|
||||
-- transfer, and so a separate verification step is not needed.
|
||||
data Verification = UnVerified | Verified
|
||||
|
||||
unVerified :: Monad m => m Bool -> m (Bool, Verification)
|
||||
unVerified a = do
|
||||
ok <- a
|
||||
return (ok, UnVerified)
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue