plumb VerifyConfig into retrieveKeyFile
This fixes the recent reversion that annex.verify is not honored, because retrieveChunks was passed RemoteVerify baser, but baser did not have export/import set up. Sponsored-by: Dartmouth College's DANDI project
This commit is contained in:
Joey Hess
parent
4bbc6a25fa
commit
f0754a61f5
21 changed files with 64 additions and 55 deletions
|
|
@ -53,7 +53,8 @@ module Annex.Content (
|
||||||
isUnmodifiedCheap,
|
isUnmodifiedCheap,
|
||||||
verifyKeyContentPostRetrieval,
|
verifyKeyContentPostRetrieval,
|
||||||
verifyKeyContent,
|
verifyKeyContent,
|
||||||
VerifyConfig(..),
|
VerifyConfig,
|
||||||
|
VerifyConfigA(..),
|
||||||
Verification(..),
|
Verification(..),
|
||||||
unVerified,
|
unVerified,
|
||||||
withTmpWorkDir,
|
withTmpWorkDir,
|
||||||
|
|
@ -83,7 +84,7 @@ import Annex.InodeSentinal
|
||||||
import Annex.ReplaceFile
|
import Annex.ReplaceFile
|
||||||
import Annex.AdjustedBranch (adjustedBranchRefresh)
|
import Annex.AdjustedBranch (adjustedBranchRefresh)
|
||||||
import Messages.Progress
|
import Messages.Progress
|
||||||
import Types.Remote (RetrievalSecurityPolicy(..))
|
import Types.Remote (RetrievalSecurityPolicy(..), VerifyConfigA(..))
|
||||||
import Types.NumCopies
|
import Types.NumCopies
|
||||||
import Types.Key
|
import Types.Key
|
||||||
import Types.Transfer
|
import Types.Transfer
|
||||||
|
|
|
||||||
|
|
@ -78,10 +78,11 @@ download r key f d witness = logStatusAfter key $ stallDetection r >>= \case
|
||||||
Just StallDetectionDisabled -> go Nothing
|
Just StallDetectionDisabled -> go Nothing
|
||||||
Just sd -> runTransferrer sd r key f d Download witness
|
Just sd -> runTransferrer sd r key f d Download witness
|
||||||
where
|
where
|
||||||
go sd = getViaTmp (Remote.retrievalSecurityPolicy r) (RemoteVerify r) key f $ \dest ->
|
go sd = getViaTmp (Remote.retrievalSecurityPolicy r) vc key f $ \dest ->
|
||||||
download' (Remote.uuid r) key f sd d (go' dest) witness
|
download' (Remote.uuid r) key f sd d (go' dest) witness
|
||||||
go' dest p = verifiedAction $
|
go' dest p = verifiedAction $
|
||||||
Remote.retrieveKeyFile r key f (fromRawFilePath dest) p
|
Remote.retrieveKeyFile r key f (fromRawFilePath dest) p vc
|
||||||
|
vc = Remote.RemoteVerify r
|
||||||
|
|
||||||
-- Download, not supporting canceling detected stalls.
|
-- Download, not supporting canceling detected stalls.
|
||||||
download' :: Observable v => UUID -> Key -> AssociatedFile -> Maybe StallDetection -> RetryDecider -> (MeterUpdate -> Annex v) -> NotifyWitness -> Annex v
|
download' :: Observable v => UUID -> Key -> AssociatedFile -> Maybe StallDetection -> RetryDecider -> (MeterUpdate -> Annex v) -> NotifyWitness -> Annex v
|
||||||
|
|
|
||||||
|
|
@ -8,7 +8,6 @@
|
||||||
{-# LANGUAGE CPP #-}
|
{-# LANGUAGE CPP #-}
|
||||||
|
|
||||||
module Annex.Verify (
|
module Annex.Verify (
|
||||||
VerifyConfig(..),
|
|
||||||
shouldVerify,
|
shouldVerify,
|
||||||
verifyKeyContentPostRetrieval,
|
verifyKeyContentPostRetrieval,
|
||||||
verifyKeyContent,
|
verifyKeyContent,
|
||||||
|
|
@ -24,6 +23,7 @@ module Annex.Verify (
|
||||||
import Annex.Common
|
import Annex.Common
|
||||||
import qualified Annex
|
import qualified Annex
|
||||||
import qualified Types.Remote
|
import qualified Types.Remote
|
||||||
|
import Types.Remote (VerifyConfigA(..))
|
||||||
import qualified Types.Backend
|
import qualified Types.Backend
|
||||||
import Types.Backend (IncrementalVerifier(..))
|
import Types.Backend (IncrementalVerifier(..))
|
||||||
import qualified Backend
|
import qualified Backend
|
||||||
|
|
@ -39,8 +39,6 @@ import qualified Data.ByteString as S
|
||||||
import qualified System.FilePath.ByteString as P
|
import qualified System.FilePath.ByteString as P
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
data VerifyConfig = AlwaysVerify | NoVerify | RemoteVerify Remote | DefaultVerify
|
|
||||||
|
|
||||||
shouldVerify :: VerifyConfig -> Annex Bool
|
shouldVerify :: VerifyConfig -> Annex Bool
|
||||||
shouldVerify AlwaysVerify = return True
|
shouldVerify AlwaysVerify = return True
|
||||||
shouldVerify NoVerify = return False
|
shouldVerify NoVerify = return False
|
||||||
|
|
|
||||||
|
|
@ -201,7 +201,8 @@ downloadRemoteFile addunlockedmatcher r o uri file sz = checkCanAdd o file $ \ca
|
||||||
-- should use to download it.
|
-- should use to download it.
|
||||||
setTempUrl urlkey loguri
|
setTempUrl urlkey loguri
|
||||||
let downloader = \dest p ->
|
let downloader = \dest p ->
|
||||||
fst <$> Remote.verifiedAction (Remote.retrieveKeyFile r urlkey af dest p)
|
fst <$> Remote.verifiedAction
|
||||||
|
(Remote.retrieveKeyFile r urlkey af dest p (RemoteVerify r))
|
||||||
ret <- downloadWith canadd addunlockedmatcher downloader urlkey (Remote.uuid r) loguri file
|
ret <- downloadWith canadd addunlockedmatcher downloader urlkey (Remote.uuid r) loguri file
|
||||||
removeTempUrl urlkey
|
removeTempUrl urlkey
|
||||||
return ret
|
return ret
|
||||||
|
|
|
||||||
|
|
@ -199,7 +199,7 @@ performRemote key afile backend numcopies remote =
|
||||||
)
|
)
|
||||||
, return Nothing
|
, return Nothing
|
||||||
)
|
)
|
||||||
getfile' tmp = Remote.retrieveKeyFile remote key (AssociatedFile Nothing) (fromRawFilePath tmp) dummymeter
|
getfile' tmp = Remote.retrieveKeyFile remote key (AssociatedFile Nothing) (fromRawFilePath tmp) dummymeter (RemoteVerify remote)
|
||||||
dummymeter _ = noop
|
dummymeter _ = noop
|
||||||
getcheap tmp = case Remote.retrieveKeyFileCheap remote of
|
getcheap tmp = case Remote.retrieveKeyFileCheap remote of
|
||||||
Just a -> isRight <$> tryNonAsync (a key afile (fromRawFilePath tmp))
|
Just a -> isRight <$> tryNonAsync (a key afile (fromRawFilePath tmp))
|
||||||
|
|
|
||||||
|
|
@ -297,7 +297,7 @@ test runannex mkr mkk =
|
||||||
Nothing -> return True
|
Nothing -> return True
|
||||||
Just verifier -> verifier k (serializeKey' k)
|
Just verifier -> verifier k (serializeKey' k)
|
||||||
get r k = logStatusAfter k $ getViaTmp (Remote.retrievalSecurityPolicy r) (RemoteVerify r) k (AssociatedFile Nothing) $ \dest ->
|
get r k = logStatusAfter k $ getViaTmp (Remote.retrievalSecurityPolicy r) (RemoteVerify r) k (AssociatedFile Nothing) $ \dest ->
|
||||||
tryNonAsync (Remote.retrieveKeyFile r k (AssociatedFile Nothing) (fromRawFilePath dest) nullMeterUpdate) >>= \case
|
tryNonAsync (Remote.retrieveKeyFile r k (AssociatedFile Nothing) (fromRawFilePath dest) nullMeterUpdate (RemoteVerify r)) >>= \case
|
||||||
Right v -> return (True, v)
|
Right v -> return (True, v)
|
||||||
Left _ -> return (False, UnVerified)
|
Left _ -> return (False, UnVerified)
|
||||||
store r k = Remote.storeKey r k (AssociatedFile Nothing) nullMeterUpdate
|
store r k = Remote.storeKey r k (AssociatedFile Nothing) nullMeterUpdate
|
||||||
|
|
@ -371,7 +371,7 @@ testUnavailable runannex mkr mkk =
|
||||||
Remote.checkPresent r k
|
Remote.checkPresent r k
|
||||||
, check (== Right False) "retrieveKeyFile" $ \r k ->
|
, check (== Right False) "retrieveKeyFile" $ \r k ->
|
||||||
logStatusAfter k $ getViaTmp (Remote.retrievalSecurityPolicy r) (RemoteVerify r) k (AssociatedFile Nothing) $ \dest ->
|
logStatusAfter k $ getViaTmp (Remote.retrievalSecurityPolicy r) (RemoteVerify r) k (AssociatedFile Nothing) $ \dest ->
|
||||||
tryNonAsync (Remote.retrieveKeyFile r k (AssociatedFile Nothing) (fromRawFilePath dest) nullMeterUpdate) >>= \case
|
tryNonAsync (Remote.retrieveKeyFile r k (AssociatedFile Nothing) (fromRawFilePath dest) nullMeterUpdate (RemoteVerify r)) >>= \case
|
||||||
Right v -> return (True, v)
|
Right v -> return (True, v)
|
||||||
Left _ -> return (False, UnVerified)
|
Left _ -> return (False, UnVerified)
|
||||||
, check (== Right False) "retrieveKeyFileCheap" $ \r k -> case Remote.retrieveKeyFileCheap r of
|
, check (== Right False) "retrieveKeyFileCheap" $ \r k -> case Remote.retrieveKeyFileCheap r of
|
||||||
|
|
|
||||||
|
|
@ -63,12 +63,14 @@ toPerform key file remote = go Upload file $
|
||||||
fromPerform :: Key -> AssociatedFile -> Remote -> CommandPerform
|
fromPerform :: Key -> AssociatedFile -> Remote -> CommandPerform
|
||||||
fromPerform key file remote = go Upload file $
|
fromPerform key file remote = go Upload file $
|
||||||
download' (uuid remote) key file Nothing stdRetry $ \p ->
|
download' (uuid remote) key file Nothing stdRetry $ \p ->
|
||||||
logStatusAfter key $ getViaTmp (retrievalSecurityPolicy remote) (RemoteVerify remote) key file $ \t ->
|
logStatusAfter key $ getViaTmp (retrievalSecurityPolicy remote) vc key file $ \t ->
|
||||||
tryNonAsync (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p) >>= \case
|
tryNonAsync (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p vc) >>= \case
|
||||||
Right v -> return (True, v)
|
Right v -> return (True, v)
|
||||||
Left e -> do
|
Left e -> do
|
||||||
warning (show e)
|
warning (show e)
|
||||||
return (False, UnVerified)
|
return (False, UnVerified)
|
||||||
|
where
|
||||||
|
vc = RemoteVerify remote
|
||||||
|
|
||||||
go :: Direction -> AssociatedFile -> (NotifyWitness -> Annex Bool) -> CommandPerform
|
go :: Direction -> AssociatedFile -> (NotifyWitness -> Annex Bool) -> CommandPerform
|
||||||
go direction file a = notifyTransfer direction file a >>= liftIO . exitBool
|
go direction file a = notifyTransfer direction file a >>= liftIO . exitBool
|
||||||
|
|
|
||||||
|
|
@ -51,7 +51,7 @@ start = do
|
||||||
| otherwise = notifyTransfer direction file $
|
| otherwise = notifyTransfer direction file $
|
||||||
download' (Remote.uuid remote) key file Nothing stdRetry $ \p ->
|
download' (Remote.uuid remote) key file Nothing stdRetry $ \p ->
|
||||||
logStatusAfter key $ getViaTmp (Remote.retrievalSecurityPolicy remote) (RemoteVerify remote) key file $ \t -> do
|
logStatusAfter key $ getViaTmp (Remote.retrievalSecurityPolicy remote) (RemoteVerify remote) key file $ \t -> do
|
||||||
r <- tryNonAsync (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p) >>= \case
|
r <- tryNonAsync (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p (RemoteVerify remote)) >>= \case
|
||||||
Left e -> do
|
Left e -> do
|
||||||
warning (show e)
|
warning (show e)
|
||||||
return (False, UnVerified)
|
return (False, UnVerified)
|
||||||
|
|
|
||||||
|
|
@ -56,7 +56,7 @@ start = do
|
||||||
-- and for retrying, and updating location log,
|
-- and for retrying, and updating location log,
|
||||||
-- and stall canceling.
|
-- and stall canceling.
|
||||||
let go p = getViaTmp (Remote.retrievalSecurityPolicy remote) (RemoteVerify remote) key file $ \t -> do
|
let go p = getViaTmp (Remote.retrievalSecurityPolicy remote) (RemoteVerify remote) key file $ \t -> do
|
||||||
Remote.verifiedAction (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p)
|
Remote.verifiedAction (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p (RemoteVerify remote))
|
||||||
in download' (Remote.uuid remote) key file Nothing noRetry go
|
in download' (Remote.uuid remote) key file Nothing noRetry go
|
||||||
noNotification
|
noNotification
|
||||||
runner (AssistantUploadRequest _ key (TransferAssociatedFile file)) remote =
|
runner (AssistantUploadRequest _ key (TransferAssociatedFile file)) remote =
|
||||||
|
|
@ -73,7 +73,7 @@ start = do
|
||||||
notifyTransfer Download file $
|
notifyTransfer Download file $
|
||||||
download' (Remote.uuid remote) key file Nothing stdRetry $ \p ->
|
download' (Remote.uuid remote) key file Nothing stdRetry $ \p ->
|
||||||
logStatusAfter key $ getViaTmp (Remote.retrievalSecurityPolicy remote) (RemoteVerify remote) key file $ \t -> do
|
logStatusAfter key $ getViaTmp (Remote.retrievalSecurityPolicy remote) (RemoteVerify remote) key file $ \t -> do
|
||||||
r <- tryNonAsync (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p) >>= \case
|
r <- tryNonAsync (Remote.retrieveKeyFile remote key file (fromRawFilePath t) p (RemoteVerify remote)) >>= \case
|
||||||
Left e -> do
|
Left e -> do
|
||||||
warning (show e)
|
warning (show e)
|
||||||
return (False, UnVerified)
|
return (False, UnVerified)
|
||||||
|
|
|
||||||
|
|
@ -96,8 +96,8 @@ gen r _ rc gc rs = do
|
||||||
, remoteStateHandle = rs
|
, remoteStateHandle = rs
|
||||||
}
|
}
|
||||||
|
|
||||||
downloadKey :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
downloadKey :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
downloadKey key _file dest p = do
|
downloadKey key _file dest p _ = do
|
||||||
get . map (torrentUrlNum . fst . getDownloader) =<< getBitTorrentUrls key
|
get . map (torrentUrlNum . fst . getDownloader) =<< getBitTorrentUrls key
|
||||||
-- While bittorrent verifies the hash in the torrent file,
|
-- While bittorrent verifies the hash in the torrent file,
|
||||||
-- the torrent file itself is downloaded without verification,
|
-- the torrent file itself is downloaded without verification,
|
||||||
|
|
|
||||||
|
|
@ -529,16 +529,16 @@ lockKey' repo r st@(State connpool duc _ _ _) key callback
|
||||||
failedlock = giveup "can't lock content"
|
failedlock = giveup "can't lock content"
|
||||||
|
|
||||||
{- Tries to copy a key's content from a remote's annex to a file. -}
|
{- Tries to copy a key's content from a remote's annex to a file. -}
|
||||||
copyFromRemote :: Remote -> State -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
copyFromRemote :: Remote -> State -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
copyFromRemote = copyFromRemote' False
|
copyFromRemote = copyFromRemote' False
|
||||||
|
|
||||||
copyFromRemote' :: Bool -> Remote -> State -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
copyFromRemote' :: Bool -> Remote -> State -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
copyFromRemote' forcersync r st key file dest meterupdate = do
|
copyFromRemote' forcersync r st key file dest meterupdate vc = do
|
||||||
repo <- getRepo r
|
repo <- getRepo r
|
||||||
copyFromRemote'' repo forcersync r st key file dest meterupdate
|
copyFromRemote'' repo forcersync r st key file dest meterupdate vc
|
||||||
|
|
||||||
copyFromRemote'' :: Git.Repo -> Bool -> Remote -> State -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
copyFromRemote'' :: Git.Repo -> Bool -> Remote -> State -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
copyFromRemote'' repo forcersync r st@(State connpool _ _ _ _) key file dest meterupdate
|
copyFromRemote'' repo forcersync r st@(State connpool _ _ _ _) key file dest meterupdate vc
|
||||||
| Git.repoIsHttp repo = do
|
| Git.repoIsHttp repo = do
|
||||||
gc <- Annex.getGitConfig
|
gc <- Annex.getGitConfig
|
||||||
ok <- Url.withUrlOptionsPromptingCreds $
|
ok <- Url.withUrlOptionsPromptingCreds $
|
||||||
|
|
@ -555,12 +555,11 @@ copyFromRemote'' repo forcersync r st@(State connpool _ _ _ _) key file dest met
|
||||||
let checksuccess = check >>= \case
|
let checksuccess = check >>= \case
|
||||||
Just err -> giveup err
|
Just err -> giveup err
|
||||||
Nothing -> return True
|
Nothing -> return True
|
||||||
let verify = Annex.Content.RemoteVerify r
|
|
||||||
copier <- mkFileCopier hardlink st
|
copier <- mkFileCopier hardlink st
|
||||||
(ok, v) <- runTransfer (Transfer Download u (fromKey id key))
|
(ok, v) <- runTransfer (Transfer Download u (fromKey id key))
|
||||||
file Nothing stdRetry $ \p ->
|
file Nothing stdRetry $ \p ->
|
||||||
metered (Just (combineMeterUpdate p meterupdate)) key $ \_ p' ->
|
metered (Just (combineMeterUpdate p meterupdate)) key $ \_ p' ->
|
||||||
copier object dest key p' checksuccess verify
|
copier object dest key p' checksuccess vc
|
||||||
if ok
|
if ok
|
||||||
then return v
|
then return v
|
||||||
else giveup "failed to retrieve content from remote"
|
else giveup "failed to retrieve content from remote"
|
||||||
|
|
@ -572,9 +571,8 @@ copyFromRemote'' repo forcersync r st@(State connpool _ _ _ _) key file dest met
|
||||||
then return v
|
then return v
|
||||||
else giveup "failed to retrieve content from remote"
|
else giveup "failed to retrieve content from remote"
|
||||||
else P2PHelper.retrieve
|
else P2PHelper.retrieve
|
||||||
(Annex.Content.RemoteVerify r)
|
|
||||||
(\p -> Ssh.runProto r connpool (return (False, UnVerified)) (fallback p))
|
(\p -> Ssh.runProto r connpool (return (False, UnVerified)) (fallback p))
|
||||||
key file dest meterupdate
|
key file dest meterupdate vc
|
||||||
| otherwise = giveup "copying from non-ssh, non-http remote not supported"
|
| otherwise = giveup "copying from non-ssh, non-http remote not supported"
|
||||||
where
|
where
|
||||||
fallback p = unVerified $ feedprogressback $ \p' -> do
|
fallback p = unVerified $ feedprogressback $ \p' -> do
|
||||||
|
|
@ -699,7 +697,7 @@ copyToRemote' repo r st@(State connpool duc _ _ _) key file meterupdate
|
||||||
res <- onLocalFast st $ ifM (Annex.Content.inAnnex key)
|
res <- onLocalFast st $ ifM (Annex.Content.inAnnex key)
|
||||||
( return True
|
( return True
|
||||||
, runTransfer (Transfer Download u (fromKey id key)) file Nothing stdRetry $ \p -> do
|
, runTransfer (Transfer Download u (fromKey id key)) file Nothing stdRetry $ \p -> do
|
||||||
let verify = Annex.Content.RemoteVerify r
|
let verify = RemoteVerify r
|
||||||
copier <- mkFileCopier hardlink st
|
copier <- mkFileCopier hardlink st
|
||||||
let rsp = RetrievalAllKeysSecure
|
let rsp = RetrievalAllKeysSecure
|
||||||
let checksuccess = liftIO checkio >>= \case
|
let checksuccess = liftIO checkio >>= \case
|
||||||
|
|
|
||||||
|
|
@ -171,14 +171,14 @@ adjustExportImport' isexport isimport r rs = do
|
||||||
, lockContent = if versioned
|
, lockContent = if versioned
|
||||||
then lockContent r
|
then lockContent r
|
||||||
else Nothing
|
else Nothing
|
||||||
, retrieveKeyFile = \k af dest p ->
|
, retrieveKeyFile = \k af dest p vc ->
|
||||||
if isimport
|
if isimport
|
||||||
then supportversionedretrieve k af dest p $
|
then supportversionedretrieve k af dest p vc $
|
||||||
retrieveKeyFileFromImport dbv ciddbv k af dest p
|
retrieveKeyFileFromImport dbv ciddbv k af dest p
|
||||||
else if isexport
|
else if isexport
|
||||||
then supportversionedretrieve k af dest p $
|
then supportversionedretrieve k af dest p vc $
|
||||||
retrieveKeyFileFromExport dbv k af dest p
|
retrieveKeyFileFromExport dbv k af dest p
|
||||||
else retrieveKeyFile r k af dest p
|
else retrieveKeyFile r k af dest p vc
|
||||||
, retrieveKeyFileCheap = if versioned
|
, retrieveKeyFileCheap = if versioned
|
||||||
then retrieveKeyFileCheap r
|
then retrieveKeyFileCheap r
|
||||||
else Nothing
|
else Nothing
|
||||||
|
|
@ -369,9 +369,9 @@ adjustExportImport' isexport isimport r rs = do
|
||||||
-- versionedExport remotes have a key/value store, so can use
|
-- versionedExport remotes have a key/value store, so can use
|
||||||
-- the usual retrieveKeyFile, rather than an import/export
|
-- the usual retrieveKeyFile, rather than an import/export
|
||||||
-- variant. However, fall back to that if retrieveKeyFile fails.
|
-- variant. However, fall back to that if retrieveKeyFile fails.
|
||||||
supportversionedretrieve k af dest p a
|
supportversionedretrieve k af dest p vc a
|
||||||
| versionedExport (exportActions r) =
|
| versionedExport (exportActions r) =
|
||||||
retrieveKeyFile r k af dest p
|
retrieveKeyFile r k af dest p vc
|
||||||
`catchNonAsync` const a
|
`catchNonAsync` const a
|
||||||
| otherwise = a
|
| otherwise = a
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -34,8 +34,10 @@ addHooks' r Nothing Nothing = r
|
||||||
addHooks' r starthook stophook = r'
|
addHooks' r starthook stophook = r'
|
||||||
where
|
where
|
||||||
r' = r
|
r' = r
|
||||||
{ storeKey = \k f p -> wrapper $ storeKey r k f p
|
{ storeKey = \k f p ->
|
||||||
, retrieveKeyFile = \k f d p -> wrapper $ retrieveKeyFile r k f d p
|
wrapper $ storeKey r k f p
|
||||||
|
, retrieveKeyFile = \k f d p vc ->
|
||||||
|
wrapper $ retrieveKeyFile r k f d p vc
|
||||||
, retrieveKeyFileCheap = case retrieveKeyFileCheap r of
|
, retrieveKeyFileCheap = case retrieveKeyFileCheap r of
|
||||||
Just a -> Just $ \k af f -> wrapper $ a k af f
|
Just a -> Just $ \k af f -> wrapper $ a k af f
|
||||||
Nothing -> Nothing
|
Nothing -> Nothing
|
||||||
|
|
|
||||||
|
|
@ -40,8 +40,8 @@ store runner k af p = do
|
||||||
Just False -> giveup "Transfer failed"
|
Just False -> giveup "Transfer failed"
|
||||||
Nothing -> remoteUnavail
|
Nothing -> remoteUnavail
|
||||||
|
|
||||||
retrieve :: VerifyConfig -> (MeterUpdate -> ProtoRunner (Bool, Verification)) -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
retrieve :: (MeterUpdate -> ProtoRunner (Bool, Verification)) -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
retrieve verifyconfig runner k af dest p = do
|
retrieve runner k af dest p verifyconfig = do
|
||||||
iv <- startVerifyKeyContentIncrementally verifyconfig k
|
iv <- startVerifyKeyContentIncrementally verifyconfig k
|
||||||
metered (Just p) k $ \m p' ->
|
metered (Just p) k $ \m p' ->
|
||||||
runner p' (P2P.get dest k iv af m p') >>= \case
|
runner p' (P2P.get dest k iv af m p') >>= \case
|
||||||
|
|
|
||||||
|
|
@ -146,8 +146,8 @@ fileRetriever' a k m miv callback = do
|
||||||
-}
|
-}
|
||||||
storeKeyDummy :: Key -> AssociatedFile -> MeterUpdate -> Annex ()
|
storeKeyDummy :: Key -> AssociatedFile -> MeterUpdate -> Annex ()
|
||||||
storeKeyDummy _ _ _ = error "missing storeKey implementation"
|
storeKeyDummy _ _ _ = error "missing storeKey implementation"
|
||||||
retrieveKeyFileDummy :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
retrieveKeyFileDummy :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
retrieveKeyFileDummy _ _ _ _ = error "missing retrieveKeyFile implementation"
|
retrieveKeyFileDummy _ _ _ _ _ = error "missing retrieveKeyFile implementation"
|
||||||
removeKeyDummy :: Key -> Annex ()
|
removeKeyDummy :: Key -> Annex ()
|
||||||
removeKeyDummy _ = error "missing removeKey implementation"
|
removeKeyDummy _ = error "missing removeKey implementation"
|
||||||
checkPresentDummy :: Key -> Annex Bool
|
checkPresentDummy :: Key -> Annex Bool
|
||||||
|
|
@ -192,7 +192,7 @@ specialRemote' cfg c storer retriever remover checkpresent baser = encr
|
||||||
where
|
where
|
||||||
encr = baser
|
encr = baser
|
||||||
{ storeKey = \k _f p -> cip >>= storeKeyGen k p
|
{ storeKey = \k _f p -> cip >>= storeKeyGen k p
|
||||||
, retrieveKeyFile = \k _f d p -> cip >>= retrieveKeyFileGen k d p
|
, retrieveKeyFile = \k _f d p vc -> cip >>= retrieveKeyFileGen k d p vc
|
||||||
, retrieveKeyFileCheap = case retrieveKeyFileCheap baser of
|
, retrieveKeyFileCheap = case retrieveKeyFileCheap baser of
|
||||||
Nothing -> Nothing
|
Nothing -> Nothing
|
||||||
Just a
|
Just a
|
||||||
|
|
@ -241,11 +241,9 @@ specialRemote' cfg c storer retriever remover checkpresent baser = encr
|
||||||
enck = maybe id snd enc
|
enck = maybe id snd enc
|
||||||
|
|
||||||
-- call retriever to get chunks; decrypt them; stream to dest file
|
-- call retriever to get chunks; decrypt them; stream to dest file
|
||||||
retrieveKeyFileGen k dest p enc =
|
retrieveKeyFileGen k dest p vc enc =
|
||||||
displayprogress p k Nothing $ \p' ->
|
displayprogress p k Nothing $ \p' ->
|
||||||
retrieveChunks retriever
|
retrieveChunks retriever (uuid baser) vc
|
||||||
(uuid baser)
|
|
||||||
(RemoteVerify baser)
|
|
||||||
chunkconfig enck k dest p' enc encr
|
chunkconfig enck k dest p' enc encr
|
||||||
where
|
where
|
||||||
enck = maybe id snd enc
|
enck = maybe id snd enc
|
||||||
|
|
|
||||||
|
|
@ -113,8 +113,8 @@ httpAlsoSetup _ (Just u) _ c gc = do
|
||||||
gitConfigSpecialRemote u c' [("httpalso", "true")]
|
gitConfigSpecialRemote u c' [("httpalso", "true")]
|
||||||
return (c', u)
|
return (c', u)
|
||||||
|
|
||||||
downloadKey :: Maybe URLString -> LearnedLayout -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
downloadKey :: Maybe URLString -> LearnedLayout -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
downloadKey baseurl ll key _af dest p = do
|
downloadKey baseurl ll key _af dest p _vc = do
|
||||||
downloadAction dest p key (keyUrlAction baseurl ll key)
|
downloadAction dest p key (keyUrlAction baseurl ll key)
|
||||||
return UnVerified
|
return UnVerified
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -13,7 +13,6 @@ module Remote.P2P (
|
||||||
import Annex.Common
|
import Annex.Common
|
||||||
import qualified Annex
|
import qualified Annex
|
||||||
import qualified P2P.Protocol as P2P
|
import qualified P2P.Protocol as P2P
|
||||||
import qualified Annex.Content
|
|
||||||
import P2P.Address
|
import P2P.Address
|
||||||
import P2P.Annex
|
import P2P.Annex
|
||||||
import P2P.IO
|
import P2P.IO
|
||||||
|
|
@ -57,7 +56,7 @@ chainGen addr r u rc gc rs = do
|
||||||
, cost = cst
|
, cost = cst
|
||||||
, name = Git.repoDescribe r
|
, name = Git.repoDescribe r
|
||||||
, storeKey = store (const protorunner)
|
, storeKey = store (const protorunner)
|
||||||
, retrieveKeyFile = retrieve (Annex.Content.RemoteVerify this) (const protorunner)
|
, retrieveKeyFile = retrieve (const protorunner)
|
||||||
, retrieveKeyFileCheap = Nothing
|
, retrieveKeyFileCheap = Nothing
|
||||||
, retrievalSecurityPolicy = RetrievalAllKeysSecure
|
, retrievalSecurityPolicy = RetrievalAllKeysSecure
|
||||||
, removeKey = remove protorunner
|
, removeKey = remove protorunner
|
||||||
|
|
|
||||||
|
|
@ -144,8 +144,8 @@ store rs hdl k _f _p = sendAnnex k noop $ \src ->
|
||||||
(giveup "tahoe failed to store content")
|
(giveup "tahoe failed to store content")
|
||||||
(\cap -> storeCapability rs k cap)
|
(\cap -> storeCapability rs k cap)
|
||||||
|
|
||||||
retrieve :: RemoteStateHandle -> TahoeHandle -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
retrieve :: RemoteStateHandle -> TahoeHandle -> Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
retrieve rs hdl k _f d _p = do
|
retrieve rs hdl k _f d _p _ = do
|
||||||
go =<< getCapability rs k
|
go =<< getCapability rs k
|
||||||
-- Tahoe verifies the content it retrieves using cryptographically
|
-- Tahoe verifies the content it retrieves using cryptographically
|
||||||
-- secure methods.
|
-- secure methods.
|
||||||
|
|
|
||||||
|
|
@ -81,8 +81,8 @@ gen r _ rc gc rs = do
|
||||||
, remoteStateHandle = rs
|
, remoteStateHandle = rs
|
||||||
}
|
}
|
||||||
|
|
||||||
downloadKey :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> Annex Verification
|
downloadKey :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfig -> Annex Verification
|
||||||
downloadKey key _af dest p = do
|
downloadKey key _af dest p _ = do
|
||||||
get =<< getWebUrls key
|
get =<< getWebUrls key
|
||||||
return UnVerified
|
return UnVerified
|
||||||
where
|
where
|
||||||
|
|
|
||||||
2
Types.hs
2
Types.hs
|
|
@ -15,6 +15,7 @@ module Types (
|
||||||
RemoteGitConfig(..),
|
RemoteGitConfig(..),
|
||||||
Remote,
|
Remote,
|
||||||
RemoteType,
|
RemoteType,
|
||||||
|
VerifyConfig,
|
||||||
) where
|
) where
|
||||||
|
|
||||||
import Annex
|
import Annex
|
||||||
|
|
@ -27,3 +28,4 @@ import Types.Remote
|
||||||
type Backend = BackendA Annex
|
type Backend = BackendA Annex
|
||||||
type Remote = RemoteA Annex
|
type Remote = RemoteA Annex
|
||||||
type RemoteType = RemoteTypeA Annex
|
type RemoteType = RemoteTypeA Annex
|
||||||
|
type VerifyConfig = VerifyConfigA Annex
|
||||||
|
|
|
||||||
|
|
@ -16,6 +16,7 @@ module Types.Remote
|
||||||
, RemoteStateHandle
|
, RemoteStateHandle
|
||||||
, SetupStage(..)
|
, SetupStage(..)
|
||||||
, Availability(..)
|
, Availability(..)
|
||||||
|
, VerifyConfigA(..)
|
||||||
, Verification(..)
|
, Verification(..)
|
||||||
, unVerified
|
, unVerified
|
||||||
, RetrievalSecurityPolicy(..)
|
, RetrievalSecurityPolicy(..)
|
||||||
|
|
@ -95,7 +96,7 @@ data RemoteA a = Remote
|
||||||
-- (The MeterUpdate does not need to be used if it writes
|
-- (The MeterUpdate does not need to be used if it writes
|
||||||
-- sequentially to the file.)
|
-- sequentially to the file.)
|
||||||
-- Throws exception on failure.
|
-- Throws exception on failure.
|
||||||
, retrieveKeyFile :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> a Verification
|
, retrieveKeyFile :: Key -> AssociatedFile -> FilePath -> MeterUpdate -> VerifyConfigA a -> a Verification
|
||||||
-- Retrieves a key's contents to a tmp file, if it can be done cheaply.
|
-- Retrieves a key's contents to a tmp file, if it can be done cheaply.
|
||||||
-- It's ok to create a symlink or hardlink.
|
-- It's ok to create a symlink or hardlink.
|
||||||
-- Throws exception on failure.
|
-- Throws exception on failure.
|
||||||
|
|
@ -192,6 +193,12 @@ instance Ord (RemoteA a) where
|
||||||
instance ToUUID (RemoteA a) where
|
instance ToUUID (RemoteA a) where
|
||||||
toUUID = uuid
|
toUUID = uuid
|
||||||
|
|
||||||
|
data VerifyConfigA a
|
||||||
|
= AlwaysVerify
|
||||||
|
| NoVerify
|
||||||
|
| RemoteVerify (RemoteA a)
|
||||||
|
| DefaultVerify
|
||||||
|
|
||||||
data Verification
|
data Verification
|
||||||
= UnVerified
|
= UnVerified
|
||||||
-- ^ Content was not verified during transfer, but is probably
|
-- ^ Content was not verified during transfer, but is probably
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue