Context Navigation

Back to Ticket #393

Ticket #393: 393status30.dpatch

File 393status30.dpatch, 515.9 KB (added by kevan, at 2010-08-11T00:55:46Z)

Line
1	Mon Aug 9 16:15:10 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
2	* mutable/servermap.py: Alter the servermap updater to work with MDMF files
3
4	These modifications were basically all to the end of having the
5	servermap updater use the unified MDMF + SDMF read interface whenever
6	possible -- this reduces the complexity of the code, making it easier to
7	read and maintain. To do this, I needed to modify the process of
8	updating the servermap a little bit.
9
10	To support partial-file updates, I also modified the servermap updater
11	to fetch the block hash trees and certain segments of files while it
12	performed a servermap update (this can be done without adding any new
13	roundtrips because of batch-read functionality that the read proxy has).
14
15
16	Mon Aug 9 16:25:14 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
17	* mutable/checker.py and mutable/repair.py: Modify checker and repairer to work with MDMF
18
19	The checker and repairer required minimal changes to work with the MDMF
20	modifications made elsewhere. The checker duplicated a lot of the code
21	that was already in the downloader, so I modified the downloader
22	slightly to expose this functionality to the checker and removed the
23	duplicated code. The repairer only required a minor change to deal with
24	data representation.
25
26	Mon Aug 9 16:32:44 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
27	* interfaces.py: Add #993 interfaces
28
29	Mon Aug 9 16:35:35 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
30	* frontends/sftpd.py: Modify the sftp frontend to work with the MDMF changes
31
32	Mon Aug 9 16:36:23 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
33	* nodemaker.py: Make nodemaker expose a way to create MDMF files
34
35	Mon Aug 9 16:37:55 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
36	* web: Alter the webapi to get along with and take advantage of the MDMF changes
37
38	The main benefit that the webapi gets from MDMF, at least initially, is
39	the ability to do a streaming download of an MDMF mutable file. It also
40	exposes a way (through the PUT verb) to append to or otherwise modify
41	(in-place) an MDMF mutable file.
42
43	Mon Aug 9 16:40:04 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
44	* mutable/layout.py and interfaces.py: add MDMF writer and reader
45
46	The MDMF writer is responsible for keeping state as plaintext is
47	gradually processed into share data by the upload process. When the
48	upload finishes, it will write all of its share data to a remote server,
49	reporting its status back to the publisher.
50
51	The MDMF reader is responsible for abstracting an MDMF file as it sits
52	on the grid from the downloader; specifically, by receiving and
53	responding to requests for arbitrary data within the MDMF file.
54
55	The interfaces.py file has also been modified to contain an interface
56	for the writer.
57
58	Mon Aug 9 17:06:19 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
59	* immutable/filenode.py: Make the immutable file node implement the same interfaces as the mutable one
60
61	Mon Aug 9 17:06:33 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
62	* immutable/literal.py: implement the same interfaces as other filenodes
63
64	Tue Aug 10 17:19:15 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
65	* mutable/publish.py: Modify the publish process to support MDMF
66
67	The inner workings of the publishing process needed to be reworked to a
68	large extend to cope with segmented mutable files, and to cope with
69	partial-file updates of mutable files. This patch does that. It also
70	introduces wrappers for uploadable data, allowing the use of
71	filehandle-like objects as data sources, in addition to strings. This
72	reduces memory inefficiency when dealing with large files through the
73	webapi, and clarifies update code there.
74
75	Tue Aug 10 17:20:00 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
76	* mutable/retrieve.py: Modify the retrieval process to support MDMF
77
78	The logic behind a mutable file download had to be adapted to work with
79	segmented mutable files; this patch performs those adaptations. It also
80	exposes some decoding and decrypting functionality to make partial-file
81	updates a little easier, and supports efficient random-access downloads
82	of parts of an MDMF file.
83
84	Tue Aug 10 17:20:30 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
85	* mutable/filenode.py: add versions and partial-file updates to the mutable file node
86
87	One of the goals of MDMF as a GSoC project is to lay the groundwork for
88	LDMF, a format that will allow Tahoe-LAFS to deal with and encourage
89	multiple versions of a single cap on the grid. In line with this, there
90	is a now a distinction between an overriding mutable file (which can be
91	thought to correspond to the cap/unique identifier for that mutable
92	file) and versions of the mutable file (which we can download, update,
93	and so on). All download, upload, and modification operations end up
94	happening on a particular version of a mutable file, but there are
95	shortcut methods on the object representing the overriding mutable file
96	that perform these operations on the best version of the mutable file
97	(which is what code should be doing until we have LDMF and better
98	support for other paradigms).
99
100	Another goal of MDMF was to take advantage of segmentation to give
101	callers more efficient partial file updates or appends. This patch
102	implements methods that do that, too.
103
104
105	Tue Aug 10 17:21:09 PDT 2010 Kevan Carstensen <kevan@isnotajoke.com>
106	* tests:
107
108	- A lot of existing tests relied on aspects of the mutable file
109	implementation that were changed. This patch updates those tests
110	to work with the changes.
111	- This patch also adds tests for new features.
112
113	New patches:
114
115	[mutable/servermap.py: Alter the servermap updater to work with MDMF files
116	Kevan Carstensen <kevan@isnotajoke.com>**20100809231510
117	Ignore-this: 26f95723688adc5d9457224ac006fd65
118
119	These modifications were basically all to the end of having the
120	servermap updater use the unified MDMF + SDMF read interface whenever
121	possible -- this reduces the complexity of the code, making it easier to
122	read and maintain. To do this, I needed to modify the process of
123	updating the servermap a little bit.
124
125	To support partial-file updates, I also modified the servermap updater
126	to fetch the block hash trees and certain segments of files while it
127	performed a servermap update (this can be done without adding any new
128	roundtrips because of batch-read functionality that the read proxy has).
129
130	] {
131	hunk ./src/allmydata/mutable/servermap.py 7
132	from itertools import count
133	from twisted.internet import defer
134	from twisted.python import failure
135	-from foolscap.api import DeadReferenceError, RemoteException, eventually
136	-from allmydata.util import base32, hashutil, idlib, log
137	+from foolscap.api import DeadReferenceError, RemoteException, eventually, \
138	+ fireEventually
139	+from allmydata.util import base32, hashutil, idlib, log, deferredutil
140	from allmydata.storage.server import si_b2a
141	from allmydata.interfaces import IServermapUpdaterStatus
142	from pycryptopp.publickey import rsa
143	hunk ./src/allmydata/mutable/servermap.py 17
144	from allmydata.mutable.common import MODE_CHECK, MODE_ANYTHING, MODE_WRITE, MODE_READ, \
145	DictOfSets, CorruptShareError, NeedMoreDataError
146	from allmydata.mutable.layout import unpack_prefix_and_signature, unpack_header, unpack_share, \
147	- SIGNED_PREFIX_LENGTH
148	+ SIGNED_PREFIX_LENGTH, MDMFSlotReadProxy
149
150	class UpdateStatus:
151	implements(IServermapUpdaterStatus)
152	hunk ./src/allmydata/mutable/servermap.py 124
153	self.bad_shares = {} # maps (peerid,shnum) to old checkstring
154	self.last_update_mode = None
155	self.last_update_time = 0
156	+ self.update_data = {} # (verinfo,shnum) => data
157
158	def copy(self):
159	s = ServerMap()
160	hunk ./src/allmydata/mutable/servermap.py 255
161	"""Return a set of versionids, one for each version that is currently
162	recoverable."""
163	versionmap = self.make_versionmap()
164	-
165	recoverable_versions = set()
166	for (verinfo, shares) in versionmap.items():
167	(seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
168	hunk ./src/allmydata/mutable/servermap.py 340
169	return False
170
171
172	+ def get_update_data_for_share_and_verinfo(self, shnum, verinfo):
173	+ """
174	+ I return the update data for the given shnum
175	+ """
176	+ update_data = self.update_data[shnum]
177	+ update_datum = [i[1] for i in update_data if i[0] == verinfo][0]
178	+ return update_datum
179	+
180	+
181	+ def set_update_data_for_share_and_verinfo(self, shnum, verinfo, data):
182	+ """
183	+ I record the block hash tree for the given shnum.
184	+ """
185	+ self.update_data.setdefault(shnum , []).append((verinfo, data))
186	+
187	+
188	class ServermapUpdater:
189	def __init__(self, filenode, storage_broker, monitor, servermap,
190	hunk ./src/allmydata/mutable/servermap.py 358
191	- mode=MODE_READ, add_lease=False):
192	+ mode=MODE_READ, add_lease=False, update_range=None):
193	"""I update a servermap, locating a sufficient number of useful
194	shares and remembering where they are located.
195
196	hunk ./src/allmydata/mutable/servermap.py 390
197	# * if we need the encrypted private key, we want [-1216ish:]
198	# * but we can't read from negative offsets
199	# * the offset table tells us the 'ish', also the positive offset
200	- # A future version of the SMDF slot format should consider using
201	- # fixed-size slots so we can retrieve less data. For now, we'll just
202	- # read 2000 bytes, which also happens to read enough actual data to
203	- # pre-fetch a 9-entry dirnode.
204	+ # MDMF:
205	+ # * Checkstring? [0:72]
206	+ # * If we want to validate the checkstring, then [0:72], [143:?] --
207	+ # the offset table will tell us for sure.
208	+ # * If we need the verification key, we have to consult the offset
209	+ # table as well.
210	+ # At this point, we don't know which we are. Our filenode can
211	+ # tell us, but it might be lying -- in some cases, we're
212	+ # responsible for telling it which kind of file it is.
213	self._read_size = 4000
214	if mode == MODE_CHECK:
215	# we use unpack_prefix_and_signature, so we need 1k
216	hunk ./src/allmydata/mutable/servermap.py 410
217	# to ask for it during the check, we'll have problems doing the
218	# publish.
219
220	+ self.fetch_update_data = False
221	+ if mode == MODE_WRITE and update_range:
222	+ # We're updating the servermap in preparation for an
223	+ # in-place file update, so we need to fetch some additional
224	+ # data from each share that we find.
225	+ assert len(update_range) == 2
226	+
227	+ self.start_segment = update_range[0]
228	+ self.end_segment = update_range[1]
229	+ self.fetch_update_data = True
230	+
231	prefix = si_b2a(self._storage_index)[:5]
232	self._log_number = log.msg(format="SharemapUpdater(%(si)s): starting (%(mode)s)",
233	si=prefix, mode=mode)
234	hunk ./src/allmydata/mutable/servermap.py 459
235	self._queries_completed = 0
236
237	sb = self._storage_broker
238	+ # All of the peers, permuted by the storage index, as usual.
239	full_peerlist = sb.get_servers_for_index(self._storage_index)
240	self.full_peerlist = full_peerlist # for use later, immutable
241	self.extra_peers = full_peerlist[:] # peers are removed as we use them
242	hunk ./src/allmydata/mutable/servermap.py 466
243	self._good_peers = set() # peers who had some shares
244	self._empty_peers = set() # peers who don't have any shares
245	self._bad_peers = set() # peers to whom our queries failed
246	+ self._readers = {} # peerid -> dict(sharewriters), filled in
247	+ # after responses come in.
248
249	k = self._node.get_required_shares()
250	hunk ./src/allmydata/mutable/servermap.py 470
251	+ # For what cases can these conditions work?
252	if k is None:
253	# make a guess
254	k = 3
255	hunk ./src/allmydata/mutable/servermap.py 483
256	self.num_peers_to_query = k + self.EPSILON
257
258	if self.mode == MODE_CHECK:
259	+ # We want to query all of the peers.
260	initial_peers_to_query = dict(full_peerlist)
261	must_query = set(initial_peers_to_query.keys())
262	self.extra_peers = []
263	hunk ./src/allmydata/mutable/servermap.py 491
264	# we're planning to replace all the shares, so we want a good
265	# chance of finding them all. We will keep searching until we've
266	# seen epsilon that don't have a share.
267	+ # We don't query all of the peers because that could take a while.
268	self.num_peers_to_query = N + self.EPSILON
269	initial_peers_to_query, must_query = self._build_initial_querylist()
270	self.required_num_empty_peers = self.EPSILON
271	hunk ./src/allmydata/mutable/servermap.py 501
272	# might also avoid the round trip required to read the encrypted
273	# private key.
274
275	- else:
276	+ else: # MODE_READ, MODE_ANYTHING
277	+ # 2k peers is good enough.
278	initial_peers_to_query, must_query = self._build_initial_querylist()
279
280	# this is a set of peers that we are required to get responses from:
281	hunk ./src/allmydata/mutable/servermap.py 517
282	# before we can consider ourselves finished, and self.extra_peers
283	# contains the overflow (peers that we should tap if we don't get
284	# enough responses)
285	+ # I guess that self._must_query is a subset of
286	+ # initial_peers_to_query?
287	+ assert set(must_query).issubset(set(initial_peers_to_query))
288
289	self._send_initial_requests(initial_peers_to_query)
290	self._status.timings["initial_queries"] = time.time() - self._started
291	hunk ./src/allmydata/mutable/servermap.py 576
292	# errors that aren't handled by _query_failed (and errors caused by
293	# _query_failed) get logged, but we still want to check for doneness.
294	d.addErrback(log.err)
295	- d.addBoth(self._check_for_done)
296	d.addErrback(self._fatal_error)
297	hunk ./src/allmydata/mutable/servermap.py 577
298	+ d.addCallback(self._check_for_done)
299	return d
300
301	def _do_read(self, ss, peerid, storage_index, shnums, readv):
302	hunk ./src/allmydata/mutable/servermap.py 596
303	d = ss.callRemote("slot_readv", storage_index, shnums, readv)
304	return d
305
306	+
307	+ def _got_corrupt_share(self, e, shnum, peerid, data, lp):
308	+ """
309	+ I am called when a remote server returns a corrupt share in
310	+ response to one of our queries. By corrupt, I mean a share
311	+ without a valid signature. I then record the failure, notify the
312	+ server of the corruption, and record the share as bad.
313	+ """
314	+ f = failure.Failure(e)
315	+ self.log(format="bad share: %(f_value)s", f_value=str(f),
316	+ failure=f, parent=lp, level=log.WEIRD, umid="h5llHg")
317	+ # Notify the server that its share is corrupt.
318	+ self.notify_server_corruption(peerid, shnum, str(e))
319	+ # By flagging this as a bad peer, we won't count any of
320	+ # the other shares on that peer as valid, though if we
321	+ # happen to find a valid version string amongst those
322	+ # shares, we'll keep track of it so that we don't need
323	+ # to validate the signature on those again.
324	+ self._bad_peers.add(peerid)
325	+ self._last_failure = f
326	+ # XXX: Use the reader for this?
327	+ checkstring = data[:SIGNED_PREFIX_LENGTH]
328	+ self._servermap.mark_bad_share(peerid, shnum, checkstring)
329	+ self._servermap.problems.append(f)
330	+
331	+
332	+ def _cache_good_sharedata(self, verinfo, shnum, now, data):
333	+ """
334	+ If one of my queries returns successfully (which means that we
335	+ were able to and successfully did validate the signature), I
336	+ cache the data that we initially fetched from the storage
337	+ server. This will help reduce the number of roundtrips that need
338	+ to occur when the file is downloaded, or when the file is
339	+ updated.
340	+ """
341	+ self._node._add_to_cache(verinfo, shnum, 0, data, now)
342	+
343	+
344	def _got_results(self, datavs, peerid, readsize, stuff, started):
345	lp = self.log(format="got result from [%(peerid)s], %(numshares)d shares",
346	peerid=idlib.shortnodeid_b2a(peerid),
347	hunk ./src/allmydata/mutable/servermap.py 641
348	level=log.NOISY)
349	now = time.time()
350	elapsed = now - started
351	- self._queries_outstanding.discard(peerid)
352	- self._servermap.reachable_peers.add(peerid)
353	- self._must_query.discard(peerid)
354	- self._queries_completed += 1
355	+ def _done_processing(ignored=None):
356	+ self._queries_outstanding.discard(peerid)
357	+ self._servermap.reachable_peers.add(peerid)
358	+ self._must_query.discard(peerid)
359	+ self._queries_completed += 1
360	if not self._running:
361	self.log("but we're not running, so we'll ignore it", parent=lp,
362	level=log.NOISY)
363	hunk ./src/allmydata/mutable/servermap.py 649
364	+ _done_processing()
365	self._status.add_per_server_time(peerid, "late", started, elapsed)
366	return
367	self._status.add_per_server_time(peerid, "query", started, elapsed)
368	hunk ./src/allmydata/mutable/servermap.py 659
369	else:
370	self._empty_peers.add(peerid)
371
372	- last_verinfo = None
373	- last_shnum = None
374	+ ss, storage_index = stuff
375	+ ds = []
376	+
377	for shnum,datav in datavs.items():
378	data = datav[0]
379	hunk ./src/allmydata/mutable/servermap.py 664
380	- try:
381	- verinfo = self._got_results_one_share(shnum, data, peerid, lp)
382	- last_verinfo = verinfo
383	- last_shnum = shnum
384	- self._node._add_to_cache(verinfo, shnum, 0, data, now)
385	- except CorruptShareError, e:
386	- # log it and give the other shares a chance to be processed
387	- f = failure.Failure()
388	- self.log(format="bad share: %(f_value)s", f_value=str(f.value),
389	- failure=f, parent=lp, level=log.WEIRD, umid="h5llHg")
390	- self.notify_server_corruption(peerid, shnum, str(e))
391	- self._bad_peers.add(peerid)
392	- self._last_failure = f
393	- checkstring = data[:SIGNED_PREFIX_LENGTH]
394	- self._servermap.mark_bad_share(peerid, shnum, checkstring)
395	- self._servermap.problems.append(f)
396	- pass
397	+ reader = MDMFSlotReadProxy(ss,
398	+ storage_index,
399	+ shnum,
400	+ data)
401	+ self._readers.setdefault(peerid, dict())[shnum] = reader
402	+ # our goal, with each response, is to validate the version
403	+ # information and share data as best we can at this point --
404	+ # we do this by validating the signature. To do this, we
405	+ # need to do the following:
406	+ # - If we don't already have the public key, fetch the
407	+ # public key. We use this to validate the signature.
408	+ if not self._node.get_pubkey():
409	+ # fetch and set the public key.
410	+ d = reader.get_verification_key(queue=True)
411	+ d.addCallback(lambda results, shnum=shnum, peerid=peerid:
412	+ self._try_to_set_pubkey(results, peerid, shnum, lp))
413	+ # XXX: Make self._pubkey_query_failed?
414	+ d.addErrback(lambda error, shnum=shnum, peerid=peerid:
415	+ self._got_corrupt_share(error, shnum, peerid, data, lp))
416	+ else:
417	+ # we already have the public key.
418	+ d = defer.succeed(None)
419
420	hunk ./src/allmydata/mutable/servermap.py 687
421	- self._status.timings["cumulative_verify"] += (time.time() - now)
422	+ # Neither of these two branches return anything of
423	+ # consequence, so the first entry in our deferredlist will
424	+ # be None.
425
426	hunk ./src/allmydata/mutable/servermap.py 691
427	- if self._need_privkey and last_verinfo:
428	- # send them a request for the privkey. We send one request per
429	- # server.
430	- lp2 = self.log("sending privkey request",
431	- parent=lp, level=log.NOISY)
432	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
433	- offsets_tuple) = last_verinfo
434	- o = dict(offsets_tuple)
435	+ # - Next, we need the version information. We almost
436	+ # certainly got this by reading the first thousand or so
437	+ # bytes of the share on the storage server, so we
438	+ # shouldn't need to fetch anything at this step.
439	+ d2 = reader.get_verinfo()
440	+ d2.addErrback(lambda error, shnum=shnum, peerid=peerid:
441	+ self._got_corrupt_share(error, shnum, peerid, data, lp))
442	+ # - Next, we need the signature. For an SDMF share, it is
443	+ # likely that we fetched this when doing our initial fetch
444	+ # to get the version information. In MDMF, this lives at
445	+ # the end of the share, so unless the file is quite small,
446	+ # we'll need to do a remote fetch to get it.
447	+ d3 = reader.get_signature(queue=True)
448	+ d3.addErrback(lambda error, shnum=shnum, peerid=peerid:
449	+ self._got_corrupt_share(error, shnum, peerid, data, lp))
450	+ # Once we have all three of these responses, we can move on
451	+ # to validating the signature
452
453	hunk ./src/allmydata/mutable/servermap.py 709
454	- self._queries_outstanding.add(peerid)
455	- readv = [ (o['enc_privkey'], (o['EOF'] - o['enc_privkey'])) ]
456	- ss = self._servermap.connections[peerid]
457	- privkey_started = time.time()
458	- d = self._do_read(ss, peerid, self._storage_index,
459	- [last_shnum], readv)
460	- d.addCallback(self._got_privkey_results, peerid, last_shnum,
461	- privkey_started, lp2)
462	- d.addErrback(self._privkey_query_failed, peerid, last_shnum, lp2)
463	- d.addErrback(log.err)
464	- d.addCallback(self._check_for_done)
465	- d.addErrback(self._fatal_error)
466	+ # Does the node already have a privkey? If not, we'll try to
467	+ # fetch it here.
468	+ if self._need_privkey:
469	+ d4 = reader.get_encprivkey(queue=True)
470	+ d4.addCallback(lambda results, shnum=shnum, peerid=peerid:
471	+ self._try_to_validate_privkey(results, peerid, shnum, lp))
472	+ d4.addErrback(lambda error, shnum=shnum, peerid=peerid:
473	+ self._privkey_query_failed(error, shnum, data, lp))
474	+ else:
475	+ d4 = defer.succeed(None)
476	+
477	+
478	+ if self.fetch_update_data:
479	+ # fetch the block hash tree and first + last segment, as
480	+ # configured earlier.
481	+ # Then set them in wherever we happen to want to set
482	+ # them.
483	+ ds = []
484	+ # XXX: We do this above, too. Is there a good way to
485	+ # make the two routines share the value without
486	+ # introducing more roundtrips?
487	+ ds.append(reader.get_verinfo())
488	+ ds.append(reader.get_blockhashes(queue=True))
489	+ ds.append(reader.get_block_and_salt(self.start_segment,
490	+ queue=True))
491	+ ds.append(reader.get_block_and_salt(self.end_segment,
492	+ queue=True))
493	+ d5 = deferredutil.gatherResults(ds)
494	+ d5.addCallback(self._got_update_results_one_share, shnum)
495	+ else:
496	+ d5 = defer.succeed(None)
497
498	hunk ./src/allmydata/mutable/servermap.py 741
499	+ dl = defer.DeferredList([d, d2, d3, d4, d5])
500	+ reader.flush()
501	+ dl.addCallback(lambda results, shnum=shnum, peerid=peerid:
502	+ self._got_signature_one_share(results, shnum, peerid, lp))
503	+ dl.addErrback(lambda error, shnum=shnum, data=data:
504	+ self._got_corrupt_share(error, shnum, peerid, data, lp))
505	+ dl.addCallback(lambda verinfo, shnum=shnum, peerid=peerid, data=data:
506	+ self._cache_good_sharedata(verinfo, shnum, now, data))
507	+ ds.append(dl)
508	+ # dl is a deferred list that will fire when all of the shares
509	+ # that we found on this peer are done processing. When dl fires,
510	+ # we know that processing is done, so we can decrement the
511	+ # semaphore-like thing that we incremented earlier.
512	+ dl = defer.DeferredList(ds, fireOnOneErrback=True)
513	+ # Are we done? Done means that there are no more queries to
514	+ # send, that there are no outstanding queries, and that we
515	+ # haven't received any queries that are still processing. If we
516	+ # are done, self._check_for_done will cause the done deferred
517	+ # that we returned to our caller to fire, which tells them that
518	+ # they have a complete servermap, and that we won't be touching
519	+ # the servermap anymore.
520	+ dl.addCallback(_done_processing)
521	+ dl.addCallback(self._check_for_done)
522	+ dl.addErrback(self._fatal_error)
523	# all done!
524	self.log("_got_results done", parent=lp, level=log.NOISY)
525	hunk ./src/allmydata/mutable/servermap.py 767
526	+ return dl
527	+
528	+
529	+ def _try_to_set_pubkey(self, pubkey_s, peerid, shnum, lp):
530	+ if self._node.get_pubkey():
531	+ return # don't go through this again if we don't have to
532	+ fingerprint = hashutil.ssk_pubkey_fingerprint_hash(pubkey_s)
533	+ assert len(fingerprint) == 32
534	+ if fingerprint != self._node.get_fingerprint():
535	+ raise CorruptShareError(peerid, shnum,
536	+ "pubkey doesn't match fingerprint")
537	+ self._node._populate_pubkey(self._deserialize_pubkey(pubkey_s))
538	+ assert self._node.get_pubkey()
539	+
540
541	def notify_server_corruption(self, peerid, shnum, reason):
542	ss = self._servermap.connections[peerid]
543	hunk ./src/allmydata/mutable/servermap.py 787
544	ss.callRemoteOnly("advise_corrupt_share",
545	"mutable", self._storage_index, shnum, reason)
546
547	- def _got_results_one_share(self, shnum, data, peerid, lp):
548	+
549	+ def _got_signature_one_share(self, results, shnum, peerid, lp):
550	+ # It is our job to give versioninfo to our caller. We need to
551	+ # raise CorruptShareError if the share is corrupt for any
552	+ # reason, something that our caller will handle.
553	self.log(format="_got_results: got shnum #%(shnum)d from peerid %(peerid)s",
554	shnum=shnum,
555	peerid=idlib.shortnodeid_b2a(peerid),
556	hunk ./src/allmydata/mutable/servermap.py 797
557	level=log.NOISY,
558	parent=lp)
559	-
560	- # this might raise NeedMoreDataError, if the pubkey and signature
561	- # live at some weird offset. That shouldn't happen, so I'm going to
562	- # treat it as a bad share.
563	- (seqnum, root_hash, IV, k, N, segsize, datalength,
564	- pubkey_s, signature, prefix) = unpack_prefix_and_signature(data)
565	-
566	- if not self._node.get_pubkey():
567	- fingerprint = hashutil.ssk_pubkey_fingerprint_hash(pubkey_s)
568	- assert len(fingerprint) == 32
569	- if fingerprint != self._node.get_fingerprint():
570	- raise CorruptShareError(peerid, shnum,
571	- "pubkey doesn't match fingerprint")
572	- self._node._populate_pubkey(self._deserialize_pubkey(pubkey_s))
573	-
574	- if self._need_privkey:
575	- self._try_to_extract_privkey(data, peerid, shnum, lp)
576	-
577	- (ig_version, ig_seqnum, ig_root_hash, ig_IV, ig_k, ig_N,
578	- ig_segsize, ig_datalen, offsets) = unpack_header(data)
579	+ _, verinfo, signature, __, ___ = results
580	+ (seqnum,
581	+ root_hash,
582	+ saltish,
583	+ segsize,
584	+ datalen,
585	+ k,
586	+ n,
587	+ prefix,
588	+ offsets) = verinfo[1]
589	offsets_tuple = tuple( [(key,value) for key,value in offsets.items()] )
590
591	hunk ./src/allmydata/mutable/servermap.py 809
592	- verinfo = (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
593	+ # XXX: This should be done for us in the method, so
594	+ # presumably you can go in there and fix it.
595	+ verinfo = (seqnum,
596	+ root_hash,
597	+ saltish,
598	+ segsize,
599	+ datalen,
600	+ k,
601	+ n,
602	+ prefix,
603	offsets_tuple)
604	hunk ./src/allmydata/mutable/servermap.py 820
605	+ # This tuple uniquely identifies a share on the grid; we use it
606	+ # to keep track of the ones that we've already seen.
607
608	if verinfo not in self._valid_versions:
609	hunk ./src/allmydata/mutable/servermap.py 824
610	- # it's a new pair. Verify the signature.
611	- valid = self._node.get_pubkey().verify(prefix, signature)
612	+ # This is a new version tuple, and we need to validate it
613	+ # against the public key before keeping track of it.
614	+ assert self._node.get_pubkey()
615	+ valid = self._node.get_pubkey().verify(prefix, signature[1])
616	if not valid:
617	hunk ./src/allmydata/mutable/servermap.py 829
618	- raise CorruptShareError(peerid, shnum, "signature is invalid")
619	+ raise CorruptShareError(peerid, shnum,
620	+ "signature is invalid")
621
622	hunk ./src/allmydata/mutable/servermap.py 832
623	- # ok, it's a valid verinfo. Add it to the list of validated
624	- # versions.
625	- self.log(" found valid version %d-%s from %s-sh%d: %d-%d/%d/%d"
626	- % (seqnum, base32.b2a(root_hash)[:4],
627	- idlib.shortnodeid_b2a(peerid), shnum,
628	- k, N, segsize, datalength),
629	- parent=lp)
630	- self._valid_versions.add(verinfo)
631	- # We now know that this is a valid candidate verinfo.
632	+ # ok, it's a valid verinfo. Add it to the list of validated
633	+ # versions.
634	+ self.log(" found valid version %d-%s from %s-sh%d: %d-%d/%d/%d"
635	+ % (seqnum, base32.b2a(root_hash)[:4],
636	+ idlib.shortnodeid_b2a(peerid), shnum,
637	+ k, n, segsize, datalen),
638	+ parent=lp)
639	+ self._valid_versions.add(verinfo)
640	+ # We now know that this is a valid candidate verinfo. Whether or
641	+ # not this instance of it is valid is a matter for the next
642	+ # statement; at this point, we just know that if we see this
643	+ # version info again, that its signature checks out and that
644	+ # we're okay to skip the signature-checking step.
645
646	hunk ./src/allmydata/mutable/servermap.py 846
647	+ # (peerid, shnum) are bound in the method invocation.
648	if (peerid, shnum) in self._servermap.bad_shares:
649	# we've been told that the rest of the data in this share is
650	# unusable, so don't add it to the servermap.
651	hunk ./src/allmydata/mutable/servermap.py 861
652	self.versionmap.add(verinfo, (shnum, peerid, timestamp))
653	return verinfo
654
655	- def _deserialize_pubkey(self, pubkey_s):
656	- verifier = rsa.create_verifying_key_from_string(pubkey_s)
657	- return verifier
658
659	hunk ./src/allmydata/mutable/servermap.py 862
660	- def _try_to_extract_privkey(self, data, peerid, shnum, lp):
661	- try:
662	- r = unpack_share(data)
663	- except NeedMoreDataError, e:
664	- # this share won't help us. oh well.
665	- offset = e.encprivkey_offset
666	- length = e.encprivkey_length
667	- self.log("shnum %d on peerid %s: share was too short (%dB) "
668	- "to get the encprivkey; [%d:%d] ought to hold it" %
669	- (shnum, idlib.shortnodeid_b2a(peerid), len(data),
670	- offset, offset+length),
671	- parent=lp)
672	- # NOTE: if uncoordinated writes are taking place, someone might
673	- # change the share (and most probably move the encprivkey) before
674	- # we get a chance to do one of these reads and fetch it. This
675	- # will cause us to see a NotEnoughSharesError(unable to fetch
676	- # privkey) instead of an UncoordinatedWriteError . This is a
677	- # nuisance, but it will go away when we move to DSA-based mutable
678	- # files (since the privkey will be small enough to fit in the
679	- # write cap).
680	+ def _got_update_results_one_share(self, results, share):
681	+ """
682	+ I record the update results in results.
683	+ """
684	+ assert len(results) == 4
685	+ verinfo, blockhashes, start, end = results
686	+ (seqnum,
687	+ root_hash,
688	+ saltish,
689	+ segsize,
690	+ datalen,
691	+ k,
692	+ n,
693	+ prefix,
694	+ offsets) = verinfo
695	+ offsets_tuple = tuple( [(key,value) for key,value in offsets.items()] )
696
697	hunk ./src/allmydata/mutable/servermap.py 879
698	- return
699	+ # XXX: This should be done for us in the method, so
700	+ # presumably you can go in there and fix it.
701	+ verinfo = (seqnum,
702	+ root_hash,
703	+ saltish,
704	+ segsize,
705	+ datalen,
706	+ k,
707	+ n,
708	+ prefix,
709	+ offsets_tuple)
710
711	hunk ./src/allmydata/mutable/servermap.py 891
712	- (seqnum, root_hash, IV, k, N, segsize, datalen,
713	- pubkey, signature, share_hash_chain, block_hash_tree,
714	- share_data, enc_privkey) = r
715	+ update_data = (blockhashes, start, end)
716	+ self._servermap.set_update_data_for_share_and_verinfo(share,
717	+ verinfo,
718	+ update_data)
719
720	hunk ./src/allmydata/mutable/servermap.py 896
721	- return self._try_to_validate_privkey(enc_privkey, peerid, shnum, lp)
722	+
723	+ def _deserialize_pubkey(self, pubkey_s):
724	+ verifier = rsa.create_verifying_key_from_string(pubkey_s)
725	+ return verifier
726
727	hunk ./src/allmydata/mutable/servermap.py 901
728	- def _try_to_validate_privkey(self, enc_privkey, peerid, shnum, lp):
729
730	hunk ./src/allmydata/mutable/servermap.py 902
731	+ def _try_to_validate_privkey(self, enc_privkey, peerid, shnum, lp):
732	+ """
733	+ Given a writekey from a remote server, I validate it against the
734	+ writekey stored in my node. If it is valid, then I set the
735	+ privkey and encprivkey properties of the node.
736	+ """
737	alleged_privkey_s = self._node._decrypt_privkey(enc_privkey)
738	alleged_writekey = hashutil.ssk_writekey_hash(alleged_privkey_s)
739	if alleged_writekey != self._node.get_writekey():
740	hunk ./src/allmydata/mutable/servermap.py 980
741	self._queries_completed += 1
742	self._last_failure = f
743
744	- def _got_privkey_results(self, datavs, peerid, shnum, started, lp):
745	- now = time.time()
746	- elapsed = now - started
747	- self._status.add_per_server_time(peerid, "privkey", started, elapsed)
748	- self._queries_outstanding.discard(peerid)
749	- if not self._need_privkey:
750	- return
751	- if shnum not in datavs:
752	- self.log("privkey wasn't there when we asked it",
753	- level=log.WEIRD, umid="VA9uDQ")
754	- return
755	- datav = datavs[shnum]
756	- enc_privkey = datav[0]
757	- self._try_to_validate_privkey(enc_privkey, peerid, shnum, lp)
758
759	def _privkey_query_failed(self, f, peerid, shnum, lp):
760	self._queries_outstanding.discard(peerid)
761	hunk ./src/allmydata/mutable/servermap.py 994
762	self._servermap.problems.append(f)
763	self._last_failure = f
764
765	+
766	def _check_for_done(self, res):
767	# exit paths:
768	# return self._send_more_queries(outstanding) : send some more queries
769	hunk ./src/allmydata/mutable/servermap.py 1000
770	# return self._done() : all done
771	# return : keep waiting, no new queries
772	-
773	lp = self.log(format=("_check_for_done, mode is '%(mode)s', "
774	"%(outstanding)d queries outstanding, "
775	"%(extra)d extra peers available, "
776	hunk ./src/allmydata/mutable/servermap.py 1205
777	self._servermap.last_update_time = self._started
778	# the servermap will not be touched after this
779	self.log("servermap: %s" % self._servermap.summarize_versions())
780	+
781	eventually(self._done_deferred.callback, self._servermap)
782
783	def _fatal_error(self, f):
784	}
785	[mutable/checker.py and mutable/repair.py: Modify checker and repairer to work with MDMF
786	Kevan Carstensen <kevan@isnotajoke.com>**20100809232514
787	Ignore-this: 1bcef2f262c868f61e57cc19a3cac89a
788
789	The checker and repairer required minimal changes to work with the MDMF
790	modifications made elsewhere. The checker duplicated a lot of the code
791	that was already in the downloader, so I modified the downloader
792	slightly to expose this functionality to the checker and removed the
793	duplicated code. The repairer only required a minor change to deal with
794	data representation.
795	] {
796	hunk ./src/allmydata/mutable/checker.py 12
797	from allmydata.mutable.common import MODE_CHECK, CorruptShareError
798	from allmydata.mutable.servermap import ServerMap, ServermapUpdater
799	from allmydata.mutable.layout import unpack_share, SIGNED_PREFIX_LENGTH
800	+from allmydata.mutable.retrieve import Retrieve # for verifying
801
802	class MutableChecker:
803
804	hunk ./src/allmydata/mutable/checker.py 29
805
806	def check(self, verify=False, add_lease=False):
807	servermap = ServerMap()
808	+ # Updating the servermap in MODE_CHECK will stand a good chance
809	+ # of finding all of the shares, and getting a good idea of
810	+ # recoverability, etc, without verifying.
811	u = ServermapUpdater(self._node, self._storage_broker, self._monitor,
812	servermap, MODE_CHECK, add_lease=add_lease)
813	if self._history:
814	hunk ./src/allmydata/mutable/checker.py 55
815	if num_recoverable:
816	self.best_version = servermap.best_recoverable_version()
817
818	+ # The file is unhealthy and needs to be repaired if:
819	+ # - There are unrecoverable versions.
820	if servermap.unrecoverable_versions():
821	self.need_repair = True
822	hunk ./src/allmydata/mutable/checker.py 59
823	+ # - There isn't a recoverable version.
824	if num_recoverable != 1:
825	self.need_repair = True
826	hunk ./src/allmydata/mutable/checker.py 62
827	+ # - The best recoverable version is missing some shares.
828	if self.best_version:
829	available_shares = servermap.shares_available()
830	(num_distinct_shares, k, N) = available_shares[self.best_version]
831	hunk ./src/allmydata/mutable/checker.py 73
832
833	def _verify_all_shares(self, servermap):
834	# read every byte of each share
835	+ #
836	+ # This logic is going to be very nearly the same as the
837	+ # downloader. I bet we could pass the downloader a flag that
838	+ # makes it do this, and piggyback onto that instead of
839	+ # duplicating a bunch of code.
840	+ #
841	+ # Like:
842	+ # r = Retrieve(blah, blah, blah, verify=True)
843	+ # d = r.download()
844	+ # (wait, wait, wait, d.callback)
845	+ #
846	+ # Then, when it has finished, we can check the servermap (which
847	+ # we provided to Retrieve) to figure out which shares are bad,
848	+ # since the Retrieve process will have updated the servermap as
849	+ # it went along.
850	+ #
851	+ # By passing the verify=True flag to the constructor, we are
852	+ # telling the downloader a few things.
853	+ #
854	+ # 1. It needs to download all N shares, not just K shares.
855	+ # 2. It doesn't need to decrypt or decode the shares, only
856	+ # verify them.
857	if not self.best_version:
858	return
859	hunk ./src/allmydata/mutable/checker.py 97
860	- versionmap = servermap.make_versionmap()
861	- shares = versionmap[self.best_version]
862	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
863	- offsets_tuple) = self.best_version
864	- offsets = dict(offsets_tuple)
865	- readv = [ (0, offsets["EOF"]) ]
866	- dl = []
867	- for (shnum, peerid, timestamp) in shares:
868	- ss = servermap.connections[peerid]
869	- d = self._do_read(ss, peerid, self._storage_index, [shnum], readv)
870	- d.addCallback(self._got_answer, peerid, servermap)
871	- dl.append(d)
872	- return defer.DeferredList(dl, fireOnOneErrback=True, consumeErrors=True)
873
874	hunk ./src/allmydata/mutable/checker.py 98
875	- def _do_read(self, ss, peerid, storage_index, shnums, readv):
876	- # isolate the callRemote to a separate method, so tests can subclass
877	- # Publish and override it
878	- d = ss.callRemote("slot_readv", storage_index, shnums, readv)
879	+ r = Retrieve(self._node, servermap, self.best_version, verify=True)
880	+ d = r.download()
881	+ d.addCallback(self._process_bad_shares)
882	return d
883
884	hunk ./src/allmydata/mutable/checker.py 103
885	- def _got_answer(self, datavs, peerid, servermap):
886	- for shnum,datav in datavs.items():
887	- data = datav[0]
888	- try:
889	- self._got_results_one_share(shnum, peerid, data)
890	- except CorruptShareError:
891	- f = failure.Failure()
892	- self.need_repair = True
893	- self.bad_shares.append( (peerid, shnum, f) )
894	- prefix = data[:SIGNED_PREFIX_LENGTH]
895	- servermap.mark_bad_share(peerid, shnum, prefix)
896	- ss = servermap.connections[peerid]
897	- self.notify_server_corruption(ss, shnum, str(f.value))
898	-
899	- def check_prefix(self, peerid, shnum, data):
900	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
901	- offsets_tuple) = self.best_version
902	- got_prefix = data[:SIGNED_PREFIX_LENGTH]
903	- if got_prefix != prefix:
904	- raise CorruptShareError(peerid, shnum,
905	- "prefix mismatch: share changed while we were reading it")
906	-
907	- def _got_results_one_share(self, shnum, peerid, data):
908	- self.check_prefix(peerid, shnum, data)
909	-
910	- # the [seqnum:signature] pieces are validated by _compare_prefix,
911	- # which checks their signature against the pubkey known to be
912	- # associated with this file.
913
914	hunk ./src/allmydata/mutable/checker.py 104
915	- (seqnum, root_hash, IV, k, N, segsize, datalen, pubkey, signature,
916	- share_hash_chain, block_hash_tree, share_data,
917	- enc_privkey) = unpack_share(data)
918	-
919	- # validate [share_hash_chain,block_hash_tree,share_data]
920	-
921	- leaves = [hashutil.block_hash(share_data)]
922	- t = hashtree.HashTree(leaves)
923	- if list(t) != block_hash_tree:
924	- raise CorruptShareError(peerid, shnum, "block hash tree failure")
925	- share_hash_leaf = t[0]
926	- t2 = hashtree.IncompleteHashTree(N)
927	- # root_hash was checked by the signature
928	- t2.set_hashes({0: root_hash})
929	- try:
930	- t2.set_hashes(hashes=share_hash_chain,
931	- leaves={shnum: share_hash_leaf})
932	- except (hashtree.BadHashError, hashtree.NotEnoughHashesError,
933	- IndexError), e:
934	- msg = "corrupt hashes: %s" % (e,)
935	- raise CorruptShareError(peerid, shnum, msg)
936	-
937	- # validate enc_privkey: only possible if we have a write-cap
938	- if not self._node.is_readonly():
939	- alleged_privkey_s = self._node._decrypt_privkey(enc_privkey)
940	- alleged_writekey = hashutil.ssk_writekey_hash(alleged_privkey_s)
941	- if alleged_writekey != self._node.get_writekey():
942	- raise CorruptShareError(peerid, shnum, "invalid privkey")
943	+ def _process_bad_shares(self, bad_shares):
944	+ if bad_shares:
945	+ self.need_repair = True
946	+ self.bad_shares = bad_shares
947
948	hunk ./src/allmydata/mutable/checker.py 109
949	- def notify_server_corruption(self, ss, shnum, reason):
950	- ss.callRemoteOnly("advise_corrupt_share",
951	- "mutable", self._storage_index, shnum, reason)
952
953	def _count_shares(self, smap, version):
954	available_shares = smap.shares_available()
955	hunk ./src/allmydata/mutable/repairer.py 5
956	from zope.interface import implements
957	from twisted.internet import defer
958	from allmydata.interfaces import IRepairResults, ICheckResults
959	+from allmydata.mutable.publish import MutableData
960
961	class RepairResults:
962	implements(IRepairResults)
963	hunk ./src/allmydata/mutable/repairer.py 108
964	raise RepairRequiresWritecapError("Sorry, repair currently requires a writecap, to set the write-enabler properly.")
965
966	d = self.node.download_version(smap, best_version, fetch_privkey=True)
967	+ d.addCallback(lambda data:
968	+ MutableData(data))
969	d.addCallback(self.node.upload, smap)
970	d.addCallback(self.get_results, smap)
971	return d
972	}
973	[interfaces.py: Add #993 interfaces
974	Kevan Carstensen <kevan@isnotajoke.com>**20100809233244
975	Ignore-this: b58621ac5cc86f1b4b4149f9e6c6a1ce
976	] {
977	hunk ./src/allmydata/interfaces.py 495
978	class MustNotBeUnknownRWError(CapConstraintError):
979	"""Cannot add an unknown child cap specified in a rw_uri field."""
980
981	+
982	+class IReadable(Interface):
983	+ """I represent a readable object -- either an immutable file, or a
984	+ specific version of a mutable file.
985	+ """
986	+
987	+ def is_readonly():
988	+ """Return True if this reference provides mutable access to the given
989	+ file or directory (i.e. if you can modify it), or False if not. Note
990	+ that even if this reference is read-only, someone else may hold a
991	+ read-write reference to it.
992	+
993	+ For an IReadable returned by get_best_readable_version(), this will
994	+ always return True, but for instances of subinterfaces such as
995	+ IMutableFileVersion, it may return False."""
996	+
997	+ def is_mutable():
998	+ """Return True if this file or directory is mutable (by somebody,
999	+ not necessarily you), False if it is is immutable. Note that a file
1000	+ might be mutable overall, but your reference to it might be
1001	+ read-only. On the other hand, all references to an immutable file
1002	+ will be read-only; there are no read-write references to an immutable
1003	+ file."""
1004	+
1005	+ def get_storage_index():
1006	+ """Return the storage index of the file."""
1007	+
1008	+ def get_size():
1009	+ """Return the length (in bytes) of this readable object."""
1010	+
1011	+ def download_to_data():
1012	+ """Download all of the file contents. I return a Deferred that fires
1013	+ with the contents as a byte string."""
1014	+
1015	+ def read(consumer, offset=0, size=None):
1016	+ """Download a portion (possibly all) of the file's contents, making
1017	+ them available to the given IConsumer. Return a Deferred that fires
1018	+ (with the consumer) when the consumer is unregistered (either because
1019	+ the last byte has been given to it, or because the consumer threw an
1020	+ exception during write(), possibly because it no longer wants to
1021	+ receive data). The portion downloaded will start at 'offset' and
1022	+ contain 'size' bytes (or the remainder of the file if size==None).
1023	+
1024	+ The consumer will be used in non-streaming mode: an IPullProducer
1025	+ will be attached to it.
1026	+
1027	+ The consumer will not receive data right away: several network trips
1028	+ must occur first. The order of events will be::
1029	+
1030	+ consumer.registerProducer(p, streaming)
1031	+ (if streaming == False)::
1032	+ consumer does p.resumeProducing()
1033	+ consumer.write(data)
1034	+ consumer does p.resumeProducing()
1035	+ consumer.write(data).. (repeat until all data is written)
1036	+ consumer.unregisterProducer()
1037	+ deferred.callback(consumer)
1038	+
1039	+ If a download error occurs, or an exception is raised by
1040	+ consumer.registerProducer() or consumer.write(), I will call
1041	+ consumer.unregisterProducer() and then deliver the exception via
1042	+ deferred.errback(). To cancel the download, the consumer should call
1043	+ p.stopProducing(), which will result in an exception being delivered
1044	+ via deferred.errback().
1045	+
1046	+ See src/allmydata/util/consumer.py for an example of a simple
1047	+ download-to-memory consumer.
1048	+ """
1049	+
1050	+
1051	+class IWritable(Interface):
1052	+ """
1053	+ I define methods that callers can use to update SDMF and MDMF
1054	+ mutable files on a Tahoe-LAFS grid.
1055	+ """
1056	+ # XXX: For the moment, we have only this. It is possible that we
1057	+ # want to move overwrite() and modify() in here too.
1058	+ def update(data, offset):
1059	+ """
1060	+ I write the data from my data argument to the MDMF file,
1061	+ starting at offset. I continue writing data until my data
1062	+ argument is exhausted, appending data to the file as necessary.
1063	+ """
1064	+ # assert IMutableUploadable.providedBy(data)
1065	+ # to append data: offset=node.get_size_of_best_version()
1066	+ # do we want to support compacting MDMF?
1067	+ # for an MDMF file, this can be done with O(data.get_size())
1068	+ # memory. For an SDMF file, any modification takes
1069	+ # O(node.get_size_of_best_version()).
1070	+
1071	+
1072	+class IMutableFileVersion(IReadable):
1073	+ """I provide access to a particular version of a mutable file. The
1074	+ access is read/write if I was obtained from a filenode derived from
1075	+ a write cap, or read-only if the filenode was derived from a read cap.
1076	+ """
1077	+
1078	+ def get_sequence_number():
1079	+ """Return the sequence number of this version."""
1080	+
1081	+ def get_servermap():
1082	+ """Return the IMutableFileServerMap instance that was used to create
1083	+ this object.
1084	+ """
1085	+
1086	+ def get_writekey():
1087	+ """Return this filenode's writekey, or None if the node does not have
1088	+ write-capability. This may be used to assist with data structures
1089	+ that need to make certain data available only to writers, such as the
1090	+ read-write child caps in dirnodes. The recommended process is to have
1091	+ reader-visible data be submitted to the filenode in the clear (where
1092	+ it will be encrypted by the filenode using the readkey), but encrypt
1093	+ writer-visible data using this writekey.
1094	+ """
1095	+
1096	+ # TODO: Can this be overwrite instead of replace?
1097	+ def replace(new_contents):
1098	+ """Replace the contents of the mutable file, provided that no other
1099	+ node has published (or is attempting to publish, concurrently) a
1100	+ newer version of the file than this one.
1101	+
1102	+ I will avoid modifying any share that is different than the version
1103	+ given by get_sequence_number(). However, if another node is writing
1104	+ to the file at the same time as me, I may manage to update some shares
1105	+ while they update others. If I see any evidence of this, I will signal
1106	+ UncoordinatedWriteError, and the file will be left in an inconsistent
1107	+ state (possibly the version you provided, possibly the old version,
1108	+ possibly somebody else's version, and possibly a mix of shares from
1109	+ all of these).
1110	+
1111	+ The recommended response to UncoordinatedWriteError is to either
1112	+ return it to the caller (since they failed to coordinate their
1113	+ writes), or to attempt some sort of recovery. It may be sufficient to
1114	+ wait a random interval (with exponential backoff) and repeat your
1115	+ operation. If I do not signal UncoordinatedWriteError, then I was
1116	+ able to write the new version without incident.
1117	+
1118	+ I return a Deferred that fires (with a PublishStatus object) when the
1119	+ update has completed.
1120	+ """
1121	+
1122	+ def modify(modifier_cb):
1123	+ """Modify the contents of the file, by downloading this version,
1124	+ applying the modifier function (or bound method), then uploading
1125	+ the new version. This will succeed as long as no other node
1126	+ publishes a version between the download and the upload.
1127	+ I return a Deferred that fires (with a PublishStatus object) when
1128	+ the update is complete.
1129	+
1130	+ The modifier callable will be given three arguments: a string (with
1131	+ the old contents), a 'first_time' boolean, and a servermap. As with
1132	+ download_to_data(), the old contents will be from this version,
1133	+ but the modifier can use the servermap to make other decisions
1134	+ (such as refusing to apply the delta if there are multiple parallel
1135	+ versions, or if there is evidence of a newer unrecoverable version).
1136	+ 'first_time' will be True the first time the modifier is called,
1137	+ and False on any subsequent calls.
1138	+
1139	+ The callable should return a string with the new contents. The
1140	+ callable must be prepared to be called multiple times, and must
1141	+ examine the input string to see if the change that it wants to make
1142	+ is already present in the old version. If it does not need to make
1143	+ any changes, it can either return None, or return its input string.
1144	+
1145	+ If the modifier raises an exception, it will be returned in the
1146	+ errback.
1147	+ """
1148	+
1149	+
1150	# The hierarchy looks like this:
1151	# IFilesystemNode
1152	# IFileNode
1153	hunk ./src/allmydata/interfaces.py 754
1154	def raise_error():
1155	"""Raise any error associated with this node."""
1156
1157	+ # XXX: These may not be appropriate outside the context of an IReadable.
1158	def get_size():
1159	"""Return the length (in bytes) of the data this node represents. For
1160	directory nodes, I return the size of the backing store. I return
1161	hunk ./src/allmydata/interfaces.py 771
1162	class IFileNode(IFilesystemNode):
1163	"""I am a node which represents a file: a sequence of bytes. I am not a
1164	container, like IDirectoryNode."""
1165	+ def get_best_readable_version():
1166	+ """Return a Deferred that fires with an IReadable for the 'best'
1167	+ available version of the file. The IReadable provides only read
1168	+ access, even if this filenode was derived from a write cap.
1169
1170	hunk ./src/allmydata/interfaces.py 776
1171	-class IImmutableFileNode(IFileNode):
1172	- def read(consumer, offset=0, size=None):
1173	- """Download a portion (possibly all) of the file's contents, making
1174	- them available to the given IConsumer. Return a Deferred that fires
1175	- (with the consumer) when the consumer is unregistered (either because
1176	- the last byte has been given to it, or because the consumer threw an
1177	- exception during write(), possibly because it no longer wants to
1178	- receive data). The portion downloaded will start at 'offset' and
1179	- contain 'size' bytes (or the remainder of the file if size==None).
1180	-
1181	- The consumer will be used in non-streaming mode: an IPullProducer
1182	- will be attached to it.
1183	+ For an immutable file, there is only one version. For a mutable
1184	+ file, the 'best' version is the recoverable version with the
1185	+ highest sequence number. If no uncoordinated writes have occurred,
1186	+ and if enough shares are available, then this will be the most
1187	+ recent version that has been uploaded. If no version is recoverable,
1188	+ the Deferred will errback with an UnrecoverableFileError.
1189	+ """
1190
1191	hunk ./src/allmydata/interfaces.py 784
1192	- The consumer will not receive data right away: several network trips
1193	- must occur first. The order of events will be::
1194	+ def download_best_version():
1195	+ """Download the contents of the version that would be returned
1196	+ by get_best_readable_version(). This is equivalent to calling
1197	+ download_to_data() on the IReadable given by that method.
1198
1199	hunk ./src/allmydata/interfaces.py 789
1200	- consumer.registerProducer(p, streaming)
1201	- (if streaming == False)::
1202	- consumer does p.resumeProducing()
1203	- consumer.write(data)
1204	- consumer does p.resumeProducing()
1205	- consumer.write(data).. (repeat until all data is written)
1206	- consumer.unregisterProducer()
1207	- deferred.callback(consumer)
1208	+ I return a Deferred that fires with a byte string when the file
1209	+ has been fully downloaded. To support streaming download, use
1210	+ the 'read' method of IReadable. If no version is recoverable,
1211	+ the Deferred will errback with an UnrecoverableFileError.
1212	+ """
1213
1214	hunk ./src/allmydata/interfaces.py 795
1215	- If a download error occurs, or an exception is raised by
1216	- consumer.registerProducer() or consumer.write(), I will call
1217	- consumer.unregisterProducer() and then deliver the exception via
1218	- deferred.errback(). To cancel the download, the consumer should call
1219	- p.stopProducing(), which will result in an exception being delivered
1220	- via deferred.errback().
1221	+ def get_size_of_best_version():
1222	+ """Find the size of the version that would be returned by
1223	+ get_best_readable_version().
1224
1225	hunk ./src/allmydata/interfaces.py 799
1226	- See src/allmydata/util/consumer.py for an example of a simple
1227	- download-to-memory consumer.
1228	+ I return a Deferred that fires with an integer. If no version
1229	+ is recoverable, the Deferred will errback with an
1230	+ UnrecoverableFileError.
1231	"""
1232
1233	hunk ./src/allmydata/interfaces.py 804
1234	+
1235	+class IImmutableFileNode(IFileNode, IReadable):
1236	+ """I am a node representing an immutable file. Immutable files have
1237	+ only one version"""
1238	+
1239	+
1240	class IMutableFileNode(IFileNode):
1241	"""I provide access to a 'mutable file', which retains its identity
1242	regardless of what contents are put in it.
1243	hunk ./src/allmydata/interfaces.py 869
1244	only be retrieved and updated all-at-once, as a single big string. Future
1245	versions of our mutable files will remove this restriction.
1246	"""
1247	-
1248	- def download_best_version():
1249	- """Download the 'best' available version of the file, meaning one of
1250	- the recoverable versions with the highest sequence number. If no
1251	+ def get_best_mutable_version():
1252	+ """Return a Deferred that fires with an IMutableFileVersion for
1253	+ the 'best' available version of the file. The best version is
1254	+ the recoverable version with the highest sequence number. If no
1255	uncoordinated writes have occurred, and if enough shares are
1256	hunk ./src/allmydata/interfaces.py 874
1257	- available, then this will be the most recent version that has been
1258	- uploaded.
1259	+ available, then this will be the most recent version that has
1260	+ been uploaded.
1261
1262	hunk ./src/allmydata/interfaces.py 877
1263	- I update an internal servermap with MODE_READ, determine which
1264	- version of the file is indicated by
1265	- servermap.best_recoverable_version(), and return a Deferred that
1266	- fires with its contents. If no version is recoverable, the Deferred
1267	- will errback with UnrecoverableFileError.
1268	- """
1269	-
1270	- def get_size_of_best_version():
1271	- """Find the size of the version that would be downloaded with
1272	- download_best_version(), without actually downloading the whole file.
1273	-
1274	- I return a Deferred that fires with an integer.
1275	+ If no version is recoverable, the Deferred will errback with an
1276	+ UnrecoverableFileError.
1277	"""
1278
1279	def overwrite(new_contents):
1280	hunk ./src/allmydata/interfaces.py 917
1281	errback.
1282	"""
1283
1284	-
1285	def get_servermap(mode):
1286	"""Return a Deferred that fires with an IMutableFileServerMap
1287	instance, updated using the given mode.
1288	hunk ./src/allmydata/interfaces.py 970
1289	writer-visible data using this writekey.
1290	"""
1291
1292	+ def set_version(version):
1293	+ """Tahoe-LAFS supports SDMF and MDMF mutable files. By default,
1294	+ we upload in SDMF for reasons of compatibility. If you want to
1295	+ change this, set_version will let you do that.
1296	+
1297	+ To say that this file should be uploaded in SDMF, pass in a 0. To
1298	+ say that the file should be uploaded as MDMF, pass in a 1.
1299	+ """
1300	+
1301	+ def get_version():
1302	+ """Returns the mutable file protocol version."""
1303	+
1304	class NotEnoughSharesError(Exception):
1305	"""Download was unable to get enough shares"""
1306
1307	hunk ./src/allmydata/interfaces.py 1786
1308	"""The upload is finished, and whatever filehandle was in use may be
1309	closed."""
1310
1311	+
1312	+class IMutableUploadable(Interface):
1313	+ """
1314	+ I represent content that is due to be uploaded to a mutable filecap.
1315	+ """
1316	+ # This is somewhat simpler than the IUploadable interface above
1317	+ # because mutable files do not need to be concerned with possibly
1318	+ # generating a CHK, nor with per-file keys. It is a subset of the
1319	+ # methods in IUploadable, though, so we could just as well implement
1320	+ # the mutable uploadables as IUploadables that don't happen to use
1321	+ # those methods (with the understanding that the unused methods will
1322	+ # never be called on such objects)
1323	+ def get_size():
1324	+ """
1325	+ Returns a Deferred that fires with the size of the content held
1326	+ by the uploadable.
1327	+ """
1328	+
1329	+ def read(length):
1330	+ """
1331	+ Returns a list of strings which, when concatenated, are the next
1332	+ length bytes of the file, or fewer if there are fewer bytes
1333	+ between the current location and the end of the file.
1334	+ """
1335	+
1336	+ def close():
1337	+ """
1338	+ The process that used the Uploadable is finished using it, so
1339	+ the uploadable may be closed.
1340	+ """
1341	+
1342	class IUploadResults(Interface):
1343	"""I am returned by upload() methods. I contain a number of public
1344	attributes which can be read to determine the results of the upload. Some
1345	}
1346	[frontends/sftpd.py: Modify the sftp frontend to work with the MDMF changes
1347	Kevan Carstensen <kevan@isnotajoke.com>**20100809233535
1348	Ignore-this: 2d25e2cfcd0d7bbcbba660c7e1da12f
1349	] {
1350	hunk ./src/allmydata/frontends/sftpd.py 33
1351	from allmydata.interfaces import IFileNode, IDirectoryNode, ExistingChildError, \
1352	NoSuchChildError, ChildOfWrongTypeError
1353	from allmydata.mutable.common import NotWriteableError
1354	+from allmydata.mutable.publish import MutableFileHandle
1355	from allmydata.immutable.upload import FileHandle
1356	from allmydata.dirnode import update_metadata
1357	from allmydata.util.fileutil import EncryptedTemporaryFile
1358	hunk ./src/allmydata/frontends/sftpd.py 664
1359	else:
1360	assert IFileNode.providedBy(filenode), filenode
1361
1362	- if filenode.is_mutable():
1363	- self.async.addCallback(lambda ign: filenode.download_best_version())
1364	- def _downloaded(data):
1365	- self.consumer = OverwriteableFileConsumer(len(data), tempfile_maker)
1366	- self.consumer.write(data)
1367	- self.consumer.finish()
1368	- return None
1369	- self.async.addCallback(_downloaded)
1370	- else:
1371	- download_size = filenode.get_size()
1372	- assert download_size is not None, "download_size is None"
1373	+ self.async.addCallback(lambda ignored: filenode.get_best_readable_version())
1374	+
1375	+ def _read(version):
1376	+ if noisy: self.log("_read", level=NOISY)
1377	+ download_size = version.get_size()
1378	+ assert download_size is not None
1379	+
1380	self.consumer = OverwriteableFileConsumer(download_size, tempfile_maker)
1381	hunk ./src/allmydata/frontends/sftpd.py 672
1382	- def _read(ign):
1383	- if noisy: self.log("_read immutable", level=NOISY)
1384	- filenode.read(self.consumer, 0, None)
1385	- self.async.addCallback(_read)
1386	+
1387	+ version.read(self.consumer, 0, None)
1388	+ self.async.addCallback(_read)
1389
1390	eventually(self.async.callback, None)
1391
1392	hunk ./src/allmydata/frontends/sftpd.py 818
1393	assert parent and childname, (parent, childname, self.metadata)
1394	d2.addCallback(lambda ign: parent.set_metadata_for(childname, self.metadata))
1395
1396	- d2.addCallback(lambda ign: self.consumer.get_current_size())
1397	- d2.addCallback(lambda size: self.consumer.read(0, size))
1398	- d2.addCallback(lambda new_contents: self.filenode.overwrite(new_contents))
1399	+ d2.addCallback(lambda ign: self.filenode.overwrite(MutableFileHandle(self.consumer.get_file())))
1400	else:
1401	def _add_file(ign):
1402	self.log("_add_file childname=%r" % (childname,), level=OPERATIONAL)
1403	}
1404	[nodemaker.py: Make nodemaker expose a way to create MDMF files
1405	Kevan Carstensen <kevan@isnotajoke.com>**20100809233623
1406	Ignore-this: a8a7c4283bb94be9fabb6fe3f2ca54b6
1407	] {
1408	hunk ./src/allmydata/nodemaker.py 3
1409	import weakref
1410	from zope.interface import implements
1411	-from allmydata.interfaces import INodeMaker
1412	+from allmydata.util.assertutil import precondition
1413	+from allmydata.interfaces import INodeMaker, MustBeDeepImmutableError, \
1414	+ SDMF_VERSION, MDMF_VERSION
1415	from allmydata.immutable.literal import LiteralFileNode
1416	from allmydata.immutable.filenode import ImmutableFileNode, CiphertextFileNode
1417	from allmydata.immutable.upload import Data
1418	hunk ./src/allmydata/nodemaker.py 10
1419	from allmydata.mutable.filenode import MutableFileNode
1420	+from allmydata.mutable.publish import MutableData
1421	from allmydata.dirnode import DirectoryNode, pack_children
1422	from allmydata.unknown import UnknownNode
1423	from allmydata import uri
1424	hunk ./src/allmydata/nodemaker.py 93
1425	return self._create_dirnode(filenode)
1426	return None
1427
1428	- def create_mutable_file(self, contents=None, keysize=None):
1429	+ def create_mutable_file(self, contents=None, keysize=None,
1430	+ version=SDMF_VERSION):
1431	n = MutableFileNode(self.storage_broker, self.secret_holder,
1432	self.default_encoding_parameters, self.history)
1433	hunk ./src/allmydata/nodemaker.py 97
1434	+ n.set_version(version)
1435	d = self.key_generator.generate(keysize)
1436	d.addCallback(n.create_with_keys, contents)
1437	d.addCallback(lambda res: n)
1438	hunk ./src/allmydata/nodemaker.py 103
1439	return d
1440
1441	- def create_new_mutable_directory(self, initial_children={}):
1442	+ def create_new_mutable_directory(self, initial_children={},
1443	+ version=SDMF_VERSION):
1444	+ # initial_children must have metadata (i.e. {} instead of None)
1445	+ for (name, (node, metadata)) in initial_children.iteritems():
1446	+ precondition(isinstance(metadata, dict),
1447	+ "create_new_mutable_directory requires metadata to be a dict, not None", metadata)
1448	+ node.raise_error()
1449	d = self.create_mutable_file(lambda n:
1450	hunk ./src/allmydata/nodemaker.py 111
1451	- pack_children(initial_children, n.get_writekey()))
1452	+ MutableData(pack_children(initial_children,
1453	+ n.get_writekey())),
1454	+ version)
1455	d.addCallback(self._create_dirnode)
1456	return d
1457
1458	}
1459	[web: Alter the webapi to get along with and take advantage of the MDMF changes
1460	Kevan Carstensen <kevan@isnotajoke.com>**20100809233755
1461	Ignore-this: 724e169319427bb130c1331b30f92686
1462
1463	The main benefit that the webapi gets from MDMF, at least initially, is
1464	the ability to do a streaming download of an MDMF mutable file. It also
1465	exposes a way (through the PUT verb) to append to or otherwise modify
1466	(in-place) an MDMF mutable file.
1467	] {
1468	hunk ./src/allmydata/web/common.py 34
1469	else:
1470	return boolean_of_arg(replace)
1471
1472	+
1473	+def parse_offset_arg(offset):
1474	+ # XXX: This will raise a ValueError when invoked on something that
1475	+ # is not an integer. Is that okay? Or do we want a better error
1476	+ # message? Since this call is going to be used by programmers and
1477	+ # their tools rather than users (through the wui), it is not
1478	+ # inconsistent to return that, I guess.
1479	+ offset = int(offset)
1480	+ return offset
1481	+
1482	+
1483	def get_root(ctx_or_req):
1484	req = IRequest(ctx_or_req)
1485	# the addSlash=True gives us one extra (empty) segment
1486	hunk ./src/allmydata/web/filenode.py 12
1487	from allmydata.interfaces import ExistingChildError
1488	from allmydata.monitor import Monitor
1489	from allmydata.immutable.upload import FileHandle
1490	+from allmydata.mutable.publish import MutableFileHandle
1491	from allmydata.util import log, base32
1492
1493	from allmydata.web.common import text_plain, WebError, RenderMixin, \
1494	hunk ./src/allmydata/web/filenode.py 17
1495	boolean_of_arg, get_arg, should_create_intermediate_directories, \
1496	- MyExceptionHandler, parse_replace_arg
1497	+ MyExceptionHandler, parse_replace_arg, parse_offset_arg
1498	from allmydata.web.check_results import CheckResults, \
1499	CheckAndRepairResults, LiteralCheckResults
1500	from allmydata.web.info import MoreInfo
1501	hunk ./src/allmydata/web/filenode.py 27
1502	# a new file is being uploaded in our place.
1503	mutable = boolean_of_arg(get_arg(req, "mutable", "false"))
1504	if mutable:
1505	- req.content.seek(0)
1506	- data = req.content.read()
1507	+ data = MutableFileHandle(req.content)
1508	d = client.create_mutable_file(data)
1509	def _uploaded(newnode):
1510	d2 = self.parentnode.set_node(self.name, newnode,
1511	hunk ./src/allmydata/web/filenode.py 61
1512	d.addCallback(lambda res: childnode.get_uri())
1513	return d
1514
1515	- def _read_data_from_formpost(self, req):
1516	- # SDMF: files are small, and we can only upload data, so we read
1517	- # the whole file into memory before uploading.
1518	- contents = req.fields["file"]
1519	- contents.file.seek(0)
1520	- data = contents.file.read()
1521	- return data
1522
1523	def replace_me_with_a_formpost(self, req, client, replace):
1524	# create a new file, maybe mutable, maybe immutable
1525	hunk ./src/allmydata/web/filenode.py 66
1526	mutable = boolean_of_arg(get_arg(req, "mutable", "false"))
1527
1528	+ # create an immutable file
1529	+ contents = req.fields["file"]
1530	if mutable:
1531	hunk ./src/allmydata/web/filenode.py 69
1532	- data = self._read_data_from_formpost(req)
1533	- d = client.create_mutable_file(data)
1534	+ uploadable = MutableFileHandle(contents.file)
1535	+ d = client.create_mutable_file(uploadable)
1536	def _uploaded(newnode):
1537	d2 = self.parentnode.set_node(self.name, newnode,
1538	overwrite=replace)
1539	hunk ./src/allmydata/web/filenode.py 78
1540	return d2
1541	d.addCallback(_uploaded)
1542	return d
1543	- # create an immutable file
1544	- contents = req.fields["file"]
1545	+
1546	uploadable = FileHandle(contents.file, convergence=client.convergence)
1547	d = self.parentnode.add_file(self.name, uploadable, overwrite=replace)
1548	d.addCallback(lambda newnode: newnode.get_uri())
1549	hunk ./src/allmydata/web/filenode.py 84
1550	return d
1551
1552	+
1553	class PlaceHolderNodeHandler(RenderMixin, rend.Page, ReplaceMeMixin):
1554	def __init__(self, client, parentnode, name):
1555	rend.Page.__init__(self)
1556	hunk ./src/allmydata/web/filenode.py 167
1557	# properly. So we assume that at least the browser will agree
1558	# with itself, and echo back the same bytes that we were given.
1559	filename = get_arg(req, "filename", self.name) or "unknown"
1560	- if self.node.is_mutable():
1561	- # some day: d = self.node.get_best_version()
1562	- d = makeMutableDownloadable(self.node)
1563	- else:
1564	- d = defer.succeed(self.node)
1565	+ d = self.node.get_best_readable_version()
1566	d.addCallback(lambda dn: FileDownloader(dn, filename))
1567	return d
1568	if t == "json":
1569	hunk ./src/allmydata/web/filenode.py 191
1570	if t:
1571	raise WebError("GET file: bad t=%s" % t)
1572	filename = get_arg(req, "filename", self.name) or "unknown"
1573	- if self.node.is_mutable():
1574	- # some day: d = self.node.get_best_version()
1575	- d = makeMutableDownloadable(self.node)
1576	- else:
1577	- d = defer.succeed(self.node)
1578	+ d = self.node.get_best_readable_version()
1579	d.addCallback(lambda dn: FileDownloader(dn, filename))
1580	return d
1581
1582	hunk ./src/allmydata/web/filenode.py 199
1583	req = IRequest(ctx)
1584	t = get_arg(req, "t", "").strip()
1585	replace = parse_replace_arg(get_arg(req, "replace", "true"))
1586	+ offset = parse_offset_arg(get_arg(req, "offset", -1))
1587
1588	if not t:
1589	hunk ./src/allmydata/web/filenode.py 202
1590	- if self.node.is_mutable():
1591	+ if self.node.is_mutable() and offset >= 0:
1592	+ return self.update_my_contents(req, offset)
1593	+
1594	+ elif self.node.is_mutable():
1595	return self.replace_my_contents(req)
1596	if not replace:
1597	# this is the early trap: if someone else modifies the
1598	hunk ./src/allmydata/web/filenode.py 212
1599	# directory while we're uploading, the add_file(overwrite=)
1600	# call in replace_me_with_a_child will do the late trap.
1601	raise ExistingChildError()
1602	+ if offset >= 0:
1603	+ raise WebError("PUT to a file: append operation invoked "
1604	+ "on an immutable cap")
1605	+
1606	+
1607	assert self.parentnode and self.name
1608	return self.replace_me_with_a_child(req, self.client, replace)
1609	if t == "uri":
1610	hunk ./src/allmydata/web/filenode.py 279
1611
1612	def replace_my_contents(self, req):
1613	req.content.seek(0)
1614	- new_contents = req.content.read()
1615	+ new_contents = MutableFileHandle(req.content)
1616	d = self.node.overwrite(new_contents)
1617	d.addCallback(lambda res: self.node.get_uri())
1618	return d
1619	hunk ./src/allmydata/web/filenode.py 284
1620
1621	+
1622	+ def update_my_contents(self, req, offset):
1623	+ req.content.seek(0)
1624	+ added_contents = MutableFileHandle(req.content)
1625	+
1626	+ d = self.node.get_best_mutable_version()
1627	+ d.addCallback(lambda mv:
1628	+ mv.update(added_contents, offset))
1629	+ d.addCallback(lambda ignored:
1630	+ self.node.get_uri())
1631	+ return d
1632	+
1633	+
1634	def replace_my_contents_with_a_formpost(self, req):
1635	# we have a mutable file. Get the data from the formpost, and replace
1636	# the mutable file's contents with it.
1637	hunk ./src/allmydata/web/filenode.py 300
1638	- new_contents = self._read_data_from_formpost(req)
1639	+ new_contents = req.fields['file']
1640	+ new_contents = MutableFileHandle(new_contents.file)
1641	+
1642	d = self.node.overwrite(new_contents)
1643	d.addCallback(lambda res: self.node.get_uri())
1644	return d
1645	hunk ./src/allmydata/web/filenode.py 307
1646
1647	-class MutableDownloadable:
1648	- #implements(IDownloadable)
1649	- def __init__(self, size, node):
1650	- self.size = size
1651	- self.node = node
1652	- def get_size(self):
1653	- return self.size
1654	- def is_mutable(self):
1655	- return True
1656	- def read(self, consumer, offset=0, size=None):
1657	- d = self.node.download_best_version()
1658	- d.addCallback(self._got_data, consumer, offset, size)
1659	- return d
1660	- def _got_data(self, contents, consumer, offset, size):
1661	- start = offset
1662	- if size is not None:
1663	- end = offset+size
1664	- else:
1665	- end = self.size
1666	- # SDMF: we can write the whole file in one big chunk
1667	- consumer.write(contents[start:end])
1668	- return consumer
1669	-
1670	-def makeMutableDownloadable(n):
1671	- d = defer.maybeDeferred(n.get_size_of_best_version)
1672	- d.addCallback(MutableDownloadable, n)
1673	- return d
1674
1675	class FileDownloader(rend.Page):
1676	# since we override the rendering process (to let the tahoe Downloader
1677	hunk ./src/allmydata/web/unlinked.py 7
1678	from twisted.internet import defer
1679	from nevow import rend, url, tags as T
1680	from allmydata.immutable.upload import FileHandle
1681	+from allmydata.mutable.publish import MutableFileHandle
1682	from allmydata.web.common import getxmlfile, get_arg, boolean_of_arg, \
1683	convert_children_json, WebError
1684	from allmydata.web import status
1685	hunk ./src/allmydata/web/unlinked.py 23
1686	def PUTUnlinkedSSK(req, client):
1687	# SDMF: files are small, and we can only upload data
1688	req.content.seek(0)
1689	- data = req.content.read()
1690	+ data = MutableFileHandle(req.content)
1691	d = client.create_mutable_file(data)
1692	d.addCallback(lambda n: n.get_uri())
1693	return d
1694	hunk ./src/allmydata/web/unlinked.py 87
1695	# "POST /uri", to create an unlinked file.
1696	# SDMF: files are small, and we can only upload data
1697	contents = req.fields["file"]
1698	- contents.file.seek(0)
1699	- data = contents.file.read()
1700	+ data = MutableFileHandle(contents.file)
1701	d = client.create_mutable_file(data)
1702	d.addCallback(lambda n: n.get_uri())
1703	return d
1704	}
1705	[mutable/layout.py and interfaces.py: add MDMF writer and reader
1706	Kevan Carstensen <kevan@isnotajoke.com>**20100809234004
1707	Ignore-this: 90db36ee3318dbbd4397baebc6014f86
1708
1709	The MDMF writer is responsible for keeping state as plaintext is
1710	gradually processed into share data by the upload process. When the
1711	upload finishes, it will write all of its share data to a remote server,
1712	reporting its status back to the publisher.
1713
1714	The MDMF reader is responsible for abstracting an MDMF file as it sits
1715	on the grid from the downloader; specifically, by receiving and
1716	responding to requests for arbitrary data within the MDMF file.
1717
1718	The interfaces.py file has also been modified to contain an interface
1719	for the writer.
1720	] {
1721	hunk ./src/allmydata/interfaces.py 7
1722	ChoiceOf, IntegerConstraint, Any, RemoteInterface, Referenceable
1723
1724	HASH_SIZE=32
1725	+SALT_SIZE=16
1726	+
1727	+SDMF_VERSION=0
1728	+MDMF_VERSION=1
1729
1730	Hash = StringConstraint(maxLength=HASH_SIZE,
1731	minLength=HASH_SIZE)# binary format 32-byte SHA256 hash
1732	hunk ./src/allmydata/interfaces.py 420
1733	"""
1734
1735
1736	+class IMutableSlotWriter(Interface):
1737	+ """
1738	+ The interface for a writer around a mutable slot on a remote server.
1739	+ """
1740	+ def set_checkstring(checkstring, *args):
1741	+ """
1742	+ Set the checkstring that I will pass to the remote server when
1743	+ writing.
1744	+
1745	+ @param checkstring A packed checkstring to use.
1746	+
1747	+ Note that implementations can differ in which semantics they
1748	+ wish to support for set_checkstring -- they can, for example,
1749	+ build the checkstring themselves from its constituents, or
1750	+ some other thing.
1751	+ """
1752	+
1753	+ def get_checkstring():
1754	+ """
1755	+ Get the checkstring that I think currently exists on the remote
1756	+ server.
1757	+ """
1758	+
1759	+ def put_block(data, segnum, salt):
1760	+ """
1761	+ Add a block and salt to the share.
1762	+ """
1763	+
1764	+ def put_encprivey(encprivkey):
1765	+ """
1766	+ Add the encrypted private key to the share.
1767	+ """
1768	+
1769	+ def put_blockhashes(blockhashes=list):
1770	+ """
1771	+ Add the block hash tree to the share.
1772	+ """
1773	+
1774	+ def put_sharehashes(sharehashes=dict):
1775	+ """
1776	+ Add the share hash chain to the share.
1777	+ """
1778	+
1779	+ def get_signable():
1780	+ """
1781	+ Return the part of the share that needs to be signed.
1782	+ """
1783	+
1784	+ def put_signature(signature):
1785	+ """
1786	+ Add the signature to the share.
1787	+ """
1788	+
1789	+ def put_verification_key(verification_key):
1790	+ """
1791	+ Add the verification key to the share.
1792	+ """
1793	+
1794	+ def finish_publishing():
1795	+ """
1796	+ Do anything necessary to finish writing the share to a remote
1797	+ server. I require that no further publishing needs to take place
1798	+ after this method has been called.
1799	+ """
1800	+
1801	+
1802	class IURI(Interface):
1803	def init_from_string(uri):
1804	"""Accept a string (as created by my to_string() method) and populate
1805	hunk ./src/allmydata/mutable/layout.py 4
1806
1807	import struct
1808	from allmydata.mutable.common import NeedMoreDataError, UnknownVersionError
1809	+from allmydata.interfaces import HASH_SIZE, SALT_SIZE, SDMF_VERSION, \
1810	+ MDMF_VERSION, IMutableSlotWriter
1811	+from allmydata.util import mathutil, observer
1812	+from twisted.python import failure
1813	+from twisted.internet import defer
1814	+from zope.interface import implements
1815	+
1816	+
1817	+# These strings describe the format of the packed structs they help process
1818	+# Here's what they mean:
1819	+#
1820	+# PREFIX:
1821	+# >: Big-endian byte order; the most significant byte is first (leftmost).
1822	+# B: The version information; an 8 bit version identifier. Stored as
1823	+# an unsigned char. This is currently 00 00 00 00; our modifications
1824	+# will turn it into 00 00 00 01.
1825	+# Q: The sequence number; this is sort of like a revision history for
1826	+# mutable files; they start at 1 and increase as they are changed after
1827	+# being uploaded. Stored as an unsigned long long, which is 8 bytes in
1828	+# length.
1829	+# 32s: The root hash of the share hash tree. We use sha-256d, so we use 32
1830	+# characters = 32 bytes to store the value.
1831	+# 16s: The salt for the readkey. This is a 16-byte random value, stored as
1832	+# 16 characters.
1833	+#
1834	+# SIGNED_PREFIX additions, things that are covered by the signature:
1835	+# B: The "k" encoding parameter. We store this as an 8-bit character,
1836	+# which is convenient because our erasure coding scheme cannot
1837	+# encode if you ask for more than 255 pieces.
1838	+# B: The "N" encoding parameter. Stored as an 8-bit character for the
1839	+# same reasons as above.
1840	+# Q: The segment size of the uploaded file. This will essentially be the
1841	+# length of the file in SDMF. An unsigned long long, so we can store
1842	+# files of quite large size.
1843	+# Q: The data length of the uploaded file. Modulo padding, this will be
1844	+# the same of the data length field. Like the data length field, it is
1845	+# an unsigned long long and can be quite large.
1846	+#
1847	+# HEADER additions:
1848	+# L: The offset of the signature of this. An unsigned long.
1849	+# L: The offset of the share hash chain. An unsigned long.
1850	+# L: The offset of the block hash tree. An unsigned long.
1851	+# L: The offset of the share data. An unsigned long.
1852	+# Q: The offset of the encrypted private key. An unsigned long long, to
1853	+# account for the possibility of a lot of share data.
1854	+# Q: The offset of the EOF. An unsigned long long, to account for the
1855	+# possibility of a lot of share data.
1856	+#
1857	+# After all of these, we have the following:
1858	+# - The verification key: Occupies the space between the end of the header
1859	+# and the start of the signature (i.e.: data[HEADER_LENGTH:o['signature']].
1860	+# - The signature, which goes from the signature offset to the share hash
1861	+# chain offset.
1862	+# - The share hash chain, which goes from the share hash chain offset to
1863	+# the block hash tree offset.
1864	+# - The share data, which goes from the share data offset to the encrypted
1865	+# private key offset.
1866	+# - The encrypted private key offset, which goes until the end of the file.
1867	+#
1868	+# The block hash tree in this encoding has only one share, so the offset of
1869	+# the share data will be 32 bits more than the offset of the block hash tree.
1870	+# Given this, we may need to check to see how many bytes a reasonably sized
1871	+# block hash tree will take up.
1872
1873	PREFIX = ">BQ32s16s" # each version has a different prefix
1874	SIGNED_PREFIX = ">BQ32s16s BBQQ" # this is covered by the signature
1875	hunk ./src/allmydata/mutable/layout.py 73
1876	SIGNED_PREFIX_LENGTH = struct.calcsize(SIGNED_PREFIX)
1877	HEADER = ">BQ32s16s BBQQ LLLLQQ" # includes offsets
1878	HEADER_LENGTH = struct.calcsize(HEADER)
1879	+OFFSETS = ">LLLLQQ"
1880	+OFFSETS_LENGTH = struct.calcsize(OFFSETS)
1881
1882	def unpack_header(data):
1883	o = {}
1884	hunk ./src/allmydata/mutable/layout.py 194
1885	return (share_hash_chain, block_hash_tree, share_data)
1886
1887
1888	-def pack_checkstring(seqnum, root_hash, IV):
1889	+def pack_checkstring(seqnum, root_hash, IV, version=0):
1890	return struct.pack(PREFIX,
1891	hunk ./src/allmydata/mutable/layout.py 196
1892	- 0, # version,
1893	+ version,
1894	seqnum,
1895	root_hash,
1896	IV)
1897	hunk ./src/allmydata/mutable/layout.py 269
1898	encprivkey])
1899	return final_share
1900
1901	+def pack_prefix(seqnum, root_hash, IV,
1902	+ required_shares, total_shares,
1903	+ segment_size, data_length):
1904	+ prefix = struct.pack(SIGNED_PREFIX,
1905	+ 0, # version,
1906	+ seqnum,
1907	+ root_hash,
1908	+ IV,
1909	+ required_shares,
1910	+ total_shares,
1911	+ segment_size,
1912	+ data_length,
1913	+ )
1914	+ return prefix
1915	+
1916	+
1917	+class SDMFSlotWriteProxy:
1918	+ implements(IMutableSlotWriter)
1919	+ """
1920	+ I represent a remote write slot for an SDMF mutable file. I build a
1921	+ share in memory, and then write it in one piece to the remote
1922	+ server. This mimics how SDMF shares were built before MDMF (and the
1923	+ new MDMF uploader), but provides that functionality in a way that
1924	+ allows the MDMF uploader to be built without much special-casing for
1925	+ file format, which makes the uploader code more readable.
1926	+ """
1927	+ def __init__(self,
1928	+ shnum,
1929	+ rref, # a remote reference to a storage server
1930	+ storage_index,
1931	+ secrets, # (write_enabler, renew_secret, cancel_secret)
1932	+ seqnum, # the sequence number of the mutable file
1933	+ required_shares,
1934	+ total_shares,
1935	+ segment_size,
1936	+ data_length): # the length of the original file
1937	+ self.shnum = shnum
1938	+ self._rref = rref
1939	+ self._storage_index = storage_index
1940	+ self._secrets = secrets
1941	+ self._seqnum = seqnum
1942	+ self._required_shares = required_shares
1943	+ self._total_shares = total_shares
1944	+ self._segment_size = segment_size
1945	+ self._data_length = data_length
1946	+
1947	+ # This is an SDMF file, so it should have only one segment, so,
1948	+ # modulo padding of the data length, the segment size and the
1949	+ # data length should be the same.
1950	+ expected_segment_size = mathutil.next_multiple(data_length,
1951	+ self._required_shares)
1952	+ assert expected_segment_size == segment_size
1953	+
1954	+ self._block_size = self._segment_size / self._required_shares
1955	+
1956	+ # This is meant to mimic how SDMF files were built before MDMF
1957	+ # entered the picture: we generate each share in its entirety,
1958	+ # then push it off to the storage server in one write. When
1959	+ # callers call set_*, they are just populating this dict.
1960	+ # finish_publishing will stitch these pieces together into a
1961	+ # coherent share, and then write the coherent share to the
1962	+ # storage server.
1963	+ self._share_pieces = {}
1964	+
1965	+ # This tells the write logic what checkstring to use when
1966	+ # writing remote shares.
1967	+ self._testvs = []
1968	+
1969	+ self._readvs = [(0, struct.calcsize(PREFIX))]
1970	+
1971	+
1972	+ def set_checkstring(self, checkstring_or_seqnum,
1973	+ root_hash=None,
1974	+ salt=None):
1975	+ """
1976	+ Set the checkstring that I will pass to the remote server when
1977	+ writing.
1978	+
1979	+ @param checkstring_or_seqnum: A packed checkstring to use,
1980	+ or a sequence number. I will treat this as a checkstr
1981	+
1982	+ Note that implementations can differ in which semantics they
1983	+ wish to support for set_checkstring -- they can, for example,
1984	+ build the checkstring themselves from its constituents, or
1985	+ some other thing.
1986	+ """
1987	+ if root_hash and salt:
1988	+ checkstring = struct.pack(PREFIX,
1989	+ 0,
1990	+ checkstring_or_seqnum,
1991	+ root_hash,
1992	+ salt)
1993	+ else:
1994	+ checkstring = checkstring_or_seqnum
1995	+ self._testvs = [(0, len(checkstring), "eq", checkstring)]
1996	+
1997	+
1998	+ def get_checkstring(self):
1999	+ """
2000	+ Get the checkstring that I think currently exists on the remote
2001	+ server.
2002	+ """
2003	+ if self._testvs:
2004	+ return self._testvs[0][3]
2005	+ return ""
2006	+
2007	+
2008	+ def put_block(self, data, segnum, salt):
2009	+ """
2010	+ Add a block and salt to the share.
2011	+ """
2012	+ # SDMF files have only one segment
2013	+ assert segnum == 0
2014	+ assert len(data) == self._block_size
2015	+ assert len(salt) == SALT_SIZE
2016	+
2017	+ self._share_pieces['sharedata'] = data
2018	+ self._share_pieces['salt'] = salt
2019	+
2020	+ # TODO: Figure out something intelligent to return.
2021	+ return defer.succeed(None)
2022	+
2023	+
2024	+ def put_encprivkey(self, encprivkey):
2025	+ """
2026	+ Add the encrypted private key to the share.
2027	+ """
2028	+ self._share_pieces['encprivkey'] = encprivkey
2029	+
2030	+ return defer.succeed(None)
2031	+
2032	+
2033	+ def put_blockhashes(self, blockhashes):
2034	+ """
2035	+ Add the block hash tree to the share.
2036	+ """
2037	+ assert isinstance(blockhashes, list)
2038	+ for h in blockhashes:
2039	+ assert len(h) == HASH_SIZE
2040	+
2041	+ # serialize the blockhashes, then set them.
2042	+ blockhashes_s = "".join(blockhashes)
2043	+ self._share_pieces['block_hash_tree'] = blockhashes_s
2044	+
2045	+ return defer.succeed(None)
2046	+
2047	+
2048	+ def put_sharehashes(self, sharehashes):
2049	+ """
2050	+ Add the share hash chain to the share.
2051	+ """
2052	+ assert isinstance(sharehashes, dict)
2053	+ for h in sharehashes.itervalues():
2054	+ assert len(h) == HASH_SIZE
2055	+
2056	+ # serialize the sharehashes, then set them.
2057	+ sharehashes_s = "".join([struct.pack(">H32s", i, sharehashes[i])
2058	+ for i in sorted(sharehashes.keys())])
2059	+ self._share_pieces['share_hash_chain'] = sharehashes_s
2060	+
2061	+ return defer.succeed(None)
2062	+
2063	+
2064	+ def put_root_hash(self, root_hash):
2065	+ """
2066	+ Add the root hash to the share.
2067	+ """
2068	+ assert len(root_hash) == HASH_SIZE
2069	+
2070	+ self._share_pieces['root_hash'] = root_hash
2071	+
2072	+ return defer.succeed(None)
2073	+
2074	+
2075	+ def put_salt(self, salt):
2076	+ """
2077	+ Add a salt to an empty SDMF file.
2078	+ """
2079	+ assert len(salt) == SALT_SIZE
2080	+
2081	+ self._share_pieces['salt'] = salt
2082	+ self._share_pieces['sharedata'] = ""
2083	+
2084	+
2085	+ def get_signable(self):
2086	+ """
2087	+ Return the part of the share that needs to be signed.
2088	+
2089	+ SDMF writers need to sign the packed representation of the
2090	+ first eight fields of the remote share, that is:
2091	+ - version number (0)
2092	+ - sequence number
2093	+ - root of the share hash tree
2094	+ - salt
2095	+ - k
2096	+ - n
2097	+ - segsize
2098	+ - datalen
2099	+
2100	+ This method is responsible for returning that to callers.
2101	+ """
2102	+ return struct.pack(SIGNED_PREFIX,
2103	+ 0,
2104	+ self._seqnum,
2105	+ self._share_pieces['root_hash'],
2106	+ self._share_pieces['salt'],
2107	+ self._required_shares,
2108	+ self._total_shares,
2109	+ self._segment_size,
2110	+ self._data_length)
2111	+
2112	+
2113	+ def put_signature(self, signature):
2114	+ """
2115	+ Add the signature to the share.
2116	+ """
2117	+ self._share_pieces['signature'] = signature
2118	+
2119	+ return defer.succeed(None)
2120	+
2121	+
2122	+ def put_verification_key(self, verification_key):
2123	+ """
2124	+ Add the verification key to the share.
2125	+ """
2126	+ self._share_pieces['verification_key'] = verification_key
2127	+
2128	+ return defer.succeed(None)
2129	+
2130	+
2131	+ def get_verinfo(self):
2132	+ """
2133	+ I return my verinfo tuple. This is used by the ServermapUpdater
2134	+ to keep track of versions of mutable files.
2135	+
2136	+ The verinfo tuple for MDMF files contains:
2137	+ - seqnum
2138	+ - root hash
2139	+ - a blank (nothing)
2140	+ - segsize
2141	+ - datalen
2142	+ - k
2143	+ - n
2144	+ - prefix (the thing that you sign)
2145	+ - a tuple of offsets
2146	+
2147	+ We include the nonce in MDMF to simplify processing of version
2148	+ information tuples.
2149	+
2150	+ The verinfo tuple for SDMF files is the same, but contains a
2151	+ 16-byte IV instead of a hash of salts.
2152	+ """
2153	+ return (self._seqnum,
2154	+ self._share_pieces['root_hash'],
2155	+ self._share_pieces['salt'],
2156	+ self._segment_size,
2157	+ self._data_length,
2158	+ self._required_shares,
2159	+ self._total_shares,
2160	+ self.get_signable(),
2161	+ self._get_offsets_tuple())
2162	+
2163	+ def _get_offsets_dict(self):
2164	+ post_offset = HEADER_LENGTH
2165	+ offsets = {}
2166	+
2167	+ verification_key_length = len(self._share_pieces['verification_key'])
2168	+ o1 = offsets['signature'] = post_offset + verification_key_length
2169	+
2170	+ signature_length = len(self._share_pieces['signature'])
2171	+ o2 = offsets['share_hash_chain'] = o1 + signature_length
2172	+
2173	+ share_hash_chain_length = len(self._share_pieces['share_hash_chain'])
2174	+ o3 = offsets['block_hash_tree'] = o2 + share_hash_chain_length
2175	+
2176	+ block_hash_tree_length = len(self._share_pieces['block_hash_tree'])
2177	+ o4 = offsets['share_data'] = o3 + block_hash_tree_length
2178	+
2179	+ share_data_length = len(self._share_pieces['sharedata'])
2180	+ o5 = offsets['enc_privkey'] = o4 + share_data_length
2181	+
2182	+ encprivkey_length = len(self._share_pieces['encprivkey'])
2183	+ offsets['EOF'] = o5 + encprivkey_length
2184	+ return offsets
2185	+
2186	+
2187	+ def _get_offsets_tuple(self):
2188	+ offsets = self._get_offsets_dict()
2189	+ return tuple([(key, value) for key, value in offsets.items()])
2190	+
2191	+
2192	+ def _pack_offsets(self):
2193	+ offsets = self._get_offsets_dict()
2194	+ return struct.pack(">LLLLQQ",
2195	+ offsets['signature'],
2196	+ offsets['share_hash_chain'],
2197	+ offsets['block_hash_tree'],
2198	+ offsets['share_data'],
2199	+ offsets['enc_privkey'],
2200	+ offsets['EOF'])
2201	+
2202	+
2203	+ def finish_publishing(self):
2204	+ """
2205	+ Do anything necessary to finish writing the share to a remote
2206	+ server. I require that no further publishing needs to take place
2207	+ after this method has been called.
2208	+ """
2209	+ for k in ["sharedata", "encprivkey", "signature", "verification_key",
2210	+ "share_hash_chain", "block_hash_tree"]:
2211	+ assert k in self._share_pieces
2212	+ # This is the only method that actually writes something to the
2213	+ # remote server.
2214	+ # First, we need to pack the share into data that we can write
2215	+ # to the remote server in one write.
2216	+ offsets = self._pack_offsets()
2217	+ prefix = self.get_signable()
2218	+ final_share = "".join([prefix,
2219	+ offsets,
2220	+ self._share_pieces['verification_key'],
2221	+ self._share_pieces['signature'],
2222	+ self._share_pieces['share_hash_chain'],
2223	+ self._share_pieces['block_hash_tree'],
2224	+ self._share_pieces['sharedata'],
2225	+ self._share_pieces['encprivkey']])
2226	+
2227	+ # Our only data vector is going to be writing the final share,
2228	+ # in its entirely.
2229	+ datavs = [(0, final_share)]
2230	+
2231	+ if not self._testvs:
2232	+ # Our caller has not provided us with another checkstring
2233	+ # yet, so we assume that we are writing a new share, and set
2234	+ # a test vector that will allow a new share to be written.
2235	+ self._testvs = []
2236	+ self._testvs.append(tuple([0, 1, "eq", ""]))
2237	+ new_share = True
2238	+
2239	+ tw_vectors = {}
2240	+ tw_vectors[self.shnum] = (self._testvs, datavs, None)
2241	+ return self._rref.callRemote("slot_testv_and_readv_and_writev",
2242	+ self._storage_index,
2243	+ self._secrets,
2244	+ tw_vectors,
2245	+ # TODO is it useful to read something?
2246	+ self._readvs)
2247	+
2248	+
2249	+MDMFHEADER = ">BQ32sBBQQ QQQQQQ"
2250	+MDMFHEADERWITHOUTOFFSETS = ">BQ32sBBQQ"
2251	+MDMFHEADERSIZE = struct.calcsize(MDMFHEADER)
2252	+MDMFHEADERWITHOUTOFFSETSSIZE = struct.calcsize(MDMFHEADERWITHOUTOFFSETS)
2253	+MDMFCHECKSTRING = ">BQ32s"
2254	+MDMFSIGNABLEHEADER = ">BQ32sBBQQ"
2255	+MDMFOFFSETS = ">QQQQQQ"
2256	+MDMFOFFSETS_LENGTH = struct.calcsize(MDMFOFFSETS)
2257	+
2258	+class MDMFSlotWriteProxy:
2259	+ implements(IMutableSlotWriter)
2260	+
2261	+ """
2262	+ I represent a remote write slot for an MDMF mutable file.
2263	+
2264	+ I abstract away from my caller the details of block and salt
2265	+ management, and the implementation of the on-disk format for MDMF
2266	+ shares.
2267	+ """
2268	+ # Expected layout, MDMF:
2269	+ # offset: size: name:
2270	+ #-- signed part --
2271	+ # 0 1 version number (01)
2272	+ # 1 8 sequence number
2273	+ # 9 32 share tree root hash
2274	+ # 41 1 The "k" encoding parameter
2275	+ # 42 1 The "N" encoding parameter
2276	+ # 43 8 The segment size of the uploaded file
2277	+ # 51 8 The data length of the original plaintext
2278	+ #-- end signed part --
2279	+ # 59 8 The offset of the encrypted private key
2280	+ # 83 8 The offset of the signature
2281	+ # 91 8 The offset of the verification key
2282	+ # 67 8 The offset of the block hash tree
2283	+ # 75 8 The offset of the share hash chain
2284	+ # 99 8 The offset of the EOF
2285	+ #
2286	+ # followed by salts and share data, the encrypted private key, the
2287	+ # block hash tree, the salt hash tree, the share hash chain, a
2288	+ # signature over the first eight fields, and a verification key.
2289	+ #
2290	+ # The checkstring is the first three fields -- the version number,
2291	+ # sequence number, root hash and root salt hash. This is consistent
2292	+ # in meaning to what we have with SDMF files, except now instead of
2293	+ # using the literal salt, we use a value derived from all of the
2294	+ # salts -- the share hash root.
2295	+ #
2296	+ # The salt is stored before the block for each segment. The block
2297	+ # hash tree is computed over the combination of block and salt for
2298	+ # each segment. In this way, we get integrity checking for both
2299	+ # block and salt with the current block hash tree arrangement.
2300	+ #
2301	+ # The ordering of the offsets is different to reflect the dependencies
2302	+ # that we'll run into with an MDMF file. The expected write flow is
2303	+ # something like this:
2304	+ #
2305	+ # 0: Initialize with the sequence number, encoding parameters and
2306	+ # data length. From this, we can deduce the number of segments,
2307	+ # and where they should go.. We can also figure out where the
2308	+ # encrypted private key should go, because we can figure out how
2309	+ # big the share data will be.
2310	+ #
2311	+ # 1: Encrypt, encode, and upload the file in chunks. Do something
2312	+ # like
2313	+ #
2314	+ # put_block(data, segnum, salt)
2315	+ #
2316	+ # to write a block and a salt to the disk. We can do both of
2317	+ # these operations now because we have enough of the offsets to
2318	+ # know where to put them.
2319	+ #
2320	+ # 2: Put the encrypted private key. Use:
2321	+ #
2322	+ # put_encprivkey(encprivkey)
2323	+ #
2324	+ # Now that we know the length of the private key, we can fill
2325	+ # in the offset for the block hash tree.
2326	+ #
2327	+ # 3: We're now in a position to upload the block hash tree for
2328	+ # a share. Put that using something like:
2329	+ #
2330	+ # put_blockhashes(block_hash_tree)
2331	+ #
2332	+ # Note that block_hash_tree is a list of hashes -- we'll take
2333	+ # care of the details of serializing that appropriately. When
2334	+ # we get the block hash tree, we are also in a position to
2335	+ # calculate the offset for the share hash chain, and fill that
2336	+ # into the offsets table.
2337	+ #
2338	+ # 4: At the same time, we're in a position to upload the salt hash
2339	+ # tree. This is a Merkle tree over all of the salts. We use a
2340	+ # Merkle tree so that we can validate each block,salt pair as
2341	+ # we download them later. We do this using
2342	+ #
2343	+ # put_salthashes(salt_hash_tree)
2344	+ #
2345	+ # When you do this, I automatically put the root of the tree
2346	+ # (the hash at index 0 of the list) in its appropriate slot in
2347	+ # the signed prefix of the share.
2348	+ #
2349	+ # 5: We're now in a position to upload the share hash chain for
2350	+ # a share. Do that with something like:
2351	+ #
2352	+ # put_sharehashes(share_hash_chain)
2353	+ #
2354	+ # share_hash_chain should be a dictionary mapping shnums to
2355	+ # 32-byte hashes -- the wrapper handles serialization.
2356	+ # We'll know where to put the signature at this point, also.
2357	+ # The root of this tree will be put explicitly in the next
2358	+ # step.
2359	+ #
2360	+ # TODO: Why? Why not just include it in the tree here?
2361	+ #
2362	+ # 6: Before putting the signature, we must first put the
2363	+ # root_hash. Do this with:
2364	+ #
2365	+ # put_root_hash(root_hash).
2366	+ #
2367	+ # In terms of knowing where to put this value, it was always
2368	+ # possible to place it, but it makes sense semantically to
2369	+ # place it after the share hash tree, so that's why you do it
2370	+ # in this order.
2371	+ #
2372	+ # 6: With the root hash put, we can now sign the header. Use:
2373	+ #
2374	+ # get_signable()
2375	+ #
2376	+ # to get the part of the header that you want to sign, and use:
2377	+ #
2378	+ # put_signature(signature)
2379	+ #
2380	+ # to write your signature to the remote server.
2381	+ #
2382	+ # 6: Add the verification key, and finish. Do:
2383	+ #
2384	+ # put_verification_key(key)
2385	+ #
2386	+ # and
2387	+ #
2388	+ # finish_publish()
2389	+ #
2390	+ # Checkstring management:
2391	+ #
2392	+ # To write to a mutable slot, we have to provide test vectors to ensure
2393	+ # that we are writing to the same data that we think we are. These
2394	+ # vectors allow us to detect uncoordinated writes; that is, writes
2395	+ # where both we and some other shareholder are writing to the
2396	+ # mutable slot, and to report those back to the parts of the program
2397	+ # doing the writing.
2398	+ #
2399	+ # With SDMF, this was easy -- all of the share data was written in
2400	+ # one go, so it was easy to detect uncoordinated writes, and we only
2401	+ # had to do it once. With MDMF, not all of the file is written at
2402	+ # once.
2403	+ #
2404	+ # If a share is new, we write out as much of the header as we can
2405	+ # before writing out anything else. This gives other writers a
2406	+ # canary that they can use to detect uncoordinated writes, and, if
2407	+ # they do the same thing, gives us the same canary. We them update
2408	+ # the share. We won't be able to write out two fields of the header
2409	+ # -- the share tree hash and the salt hash -- until we finish
2410	+ # writing out the share. We only require the writer to provide the
2411	+ # initial checkstring, and keep track of what it should be after
2412	+ # updates ourselves.
2413	+ #
2414	+ # If we haven't written anything yet, then on the first write (which
2415	+ # will probably be a block + salt of a share), we'll also write out
2416	+ # the header. On subsequent passes, we'll expect to see the header.
2417	+ # This changes in two places:
2418	+ #
2419	+ # - When we write out the salt hash
2420	+ # - When we write out the root of the share hash tree
2421	+ #
2422	+ # since these values will change the header. It is possible that we
2423	+ # can just make those be written in one operation to minimize
2424	+ # disruption.
2425	+ def __init__(self,
2426	+ shnum,
2427	+ rref, # a remote reference to a storage server
2428	+ storage_index,
2429	+ secrets, # (write_enabler, renew_secret, cancel_secret)
2430	+ seqnum, # the sequence number of the mutable file
2431	+ required_shares,
2432	+ total_shares,
2433	+ segment_size,
2434	+ data_length): # the length of the original file
2435	+ self.shnum = shnum
2436	+ self._rref = rref
2437	+ self._storage_index = storage_index
2438	+ self._seqnum = seqnum
2439	+ self._required_shares = required_shares
2440	+ assert self.shnum >= 0 and self.shnum < total_shares
2441	+ self._total_shares = total_shares
2442	+ # We build up the offset table as we write things. It is the
2443	+ # last thing we write to the remote server.
2444	+ self._offsets = {}
2445	+ self._testvs = []
2446	+ # This is a list of write vectors that will be sent to our
2447	+ # remote server once we are directed to write things there.
2448	+ self._writevs = []
2449	+ self._secrets = secrets
2450	+ # The segment size needs to be a multiple of the k parameter --
2451	+ # any padding should have been carried out by the publisher
2452	+ # already.
2453	+ assert segment_size % required_shares == 0
2454	+ self._segment_size = segment_size
2455	+ self._data_length = data_length
2456	+
2457	+ # These are set later -- we define them here so that we can
2458	+ # check for their existence easily
2459	+
2460	+ # This is the root of the share hash tree -- the Merkle tree
2461	+ # over the roots of the block hash trees computed for shares in
2462	+ # this upload.
2463	+ self._root_hash = None
2464	+
2465	+ # We haven't yet written anything to the remote bucket. By
2466	+ # setting this, we tell the _write method as much. The write
2467	+ # method will then know that it also needs to add a write vector
2468	+ # for the checkstring (or what we have of it) to the first write
2469	+ # request. We'll then record that value for future use. If
2470	+ # we're expecting something to be there already, we need to call
2471	+ # set_checkstring before we write anything to tell the first
2472	+ # write about that.
2473	+ self._written = False
2474	+
2475	+ # When writing data to the storage servers, we get a read vector
2476	+ # for free. We'll read the checkstring, which will help us
2477	+ # figure out what's gone wrong if a write fails.
2478	+ self._readv = [(0, struct.calcsize(MDMFCHECKSTRING))]
2479	+
2480	+ # We calculate the number of segments because it tells us
2481	+ # where the salt part of the file ends/share segment begins,
2482	+ # and also because it provides a useful amount of bounds checking.
2483	+ self._num_segments = mathutil.div_ceil(self._data_length,
2484	+ self._segment_size)
2485	+ self._block_size = self._segment_size / self._required_shares
2486	+ # We also calculate the share size, to help us with block
2487	+ # constraints later.
2488	+ tail_size = self._data_length % self._segment_size
2489	+ if not tail_size:
2490	+ self._tail_block_size = self._block_size
2491	+ else:
2492	+ self._tail_block_size = mathutil.next_multiple(tail_size,
2493	+ self._required_shares)
2494	+ self._tail_block_size /= self._required_shares
2495	+
2496	+ # We already know where the sharedata starts; right after the end
2497	+ # of the header (which is defined as the signable part + the offsets)
2498	+ # We can also calculate where the encrypted private key begins
2499	+ # from what we know know.
2500	+ self._actual_block_size = self._block_size + SALT_SIZE
2501	+ data_size = self._actual_block_size * (self._num_segments - 1)
2502	+ data_size += self._tail_block_size
2503	+ data_size += SALT_SIZE
2504	+ self._offsets['enc_privkey'] = MDMFHEADERSIZE
2505	+ self._offsets['enc_privkey'] += data_size
2506	+ # We'll wait for the rest. Callers can now call my "put_block" and
2507	+ # "set_checkstring" methods.
2508	+
2509	+
2510	+ def set_checkstring(self,
2511	+ seqnum_or_checkstring,
2512	+ root_hash=None,
2513	+ salt=None):
2514	+ """
2515	+ Set checkstring checkstring for the given shnum.
2516	+
2517	+ This can be invoked in one of two ways.
2518	+
2519	+ With one argument, I assume that you are giving me a literal
2520	+ checkstring -- e.g., the output of get_checkstring. I will then
2521	+ set that checkstring as it is. This form is used by unit tests.
2522	+
2523	+ With two arguments, I assume that you are giving me a sequence
2524	+ number and root hash to make a checkstring from. In that case, I
2525	+ will build a checkstring and set it for you. This form is used
2526	+ by the publisher.
2527	+
2528	+ By default, I assume that I am writing new shares to the grid.
2529	+ If you don't explcitly set your own checkstring, I will use
2530	+ one that requires that the remote share not exist. You will want
2531	+ to use this method if you are updating a share in-place;
2532	+ otherwise, writes will fail.
2533	+ """
2534	+ # You're allowed to overwrite checkstrings with this method;
2535	+ # I assume that users know what they are doing when they call
2536	+ # it.
2537	+ if root_hash:
2538	+ checkstring = struct.pack(MDMFCHECKSTRING,
2539	+ 1,
2540	+ seqnum_or_checkstring,
2541	+ root_hash)
2542	+ else:
2543	+ checkstring = seqnum_or_checkstring
2544	+
2545	+ if checkstring == "":
2546	+ # We special-case this, since len("") = 0, but we need
2547	+ # length of 1 for the case of an empty share to work on the
2548	+ # storage server, which is what a checkstring that is the
2549	+ # empty string means.
2550	+ self._testvs = []
2551	+ else:
2552	+ self._testvs = []
2553	+ self._testvs.append((0, len(checkstring), "eq", checkstring))
2554	+
2555	+
2556	+ def __repr__(self):
2557	+ return "MDMFSlotWriteProxy for share %d" % self.shnum
2558	+
2559	+
2560	+ def get_checkstring(self):
2561	+ """
2562	+ Given a share number, I return a representation of what the
2563	+ checkstring for that share on the server will look like.
2564	+
2565	+ I am mostly used for tests.
2566	+ """
2567	+ if self._root_hash:
2568	+ roothash = self._root_hash
2569	+ else:
2570	+ roothash = "\x00" * 32
2571	+ return struct.pack(MDMFCHECKSTRING,
2572	+ 1,
2573	+ self._seqnum,
2574	+ roothash)
2575	+
2576	+
2577	+ def put_block(self, data, segnum, salt):
2578	+ """
2579	+ I queue a write vector for the data, salt, and segment number
2580	+ provided to me. I return None, as I do not actually cause
2581	+ anything to be written yet.
2582	+ """
2583	+ if segnum >= self._num_segments:
2584	+ raise LayoutInvalid("I won't overwrite the private key")
2585	+ if len(salt) != SALT_SIZE:
2586	+ raise LayoutInvalid("I was given a salt of size %d, but "
2587	+ "I wanted a salt of size %d")
2588	+ if segnum + 1 == self._num_segments:
2589	+ if len(data) != self._tail_block_size:
2590	+ raise LayoutInvalid("I was given the wrong size block to write")
2591	+ elif len(data) != self._block_size:
2592	+ raise LayoutInvalid("I was given the wrong size block to write")
2593	+
2594	+ # We want to write at len(MDMFHEADER) + segnum * block_size.
2595	+
2596	+ offset = MDMFHEADERSIZE + (self._actual_block_size * segnum)
2597	+ data = salt + data
2598	+
2599	+ self._writevs.append(tuple([offset, data]))
2600	+
2601	+
2602	+ def put_encprivkey(self, encprivkey):
2603	+ """
2604	+ I queue a write vector for the encrypted private key provided to
2605	+ me.
2606	+ """
2607	+ assert self._offsets
2608	+ assert self._offsets['enc_privkey']
2609	+ # You shouldn't re-write the encprivkey after the block hash
2610	+ # tree is written, since that could cause the private key to run
2611	+ # into the block hash tree. Before it writes the block hash
2612	+ # tree, the block hash tree writing method writes the offset of
2613	+ # the salt hash tree. So that's a good indicator of whether or
2614	+ # not the block hash tree has been written.
2615	+ if "share_hash_chain" in self._offsets:
2616	+ raise LayoutInvalid("You must write this before the block hash tree")
2617	+
2618	+ self._offsets['block_hash_tree'] = self._offsets['enc_privkey'] + \
2619	+ len(encprivkey)
2620	+ self._writevs.append(tuple([self._offsets['enc_privkey'], encprivkey]))
2621	+
2622	+
2623	+ def put_blockhashes(self, blockhashes):
2624	+ """
2625	+ I queue a write vector to put the block hash tree in blockhashes
2626	+ onto the remote server.
2627	+
2628	+ The encrypted private key must be queued before the block hash
2629	+ tree, since we need to know how large it is to know where the
2630	+ block hash tree should go. The block hash tree must be put
2631	+ before the salt hash tree, since its size determines the
2632	+ offset of the share hash chain.
2633	+ """
2634	+ assert self._offsets
2635	+ assert isinstance(blockhashes, list)
2636	+ if "block_hash_tree" not in self._offsets:
2637	+ raise LayoutInvalid("You must put the encrypted private key "
2638	+ "before you put the block hash tree")
2639	+ # If written, the share hash chain causes the signature offset
2640	+ # to be defined.
2641	+ if "signature" in self._offsets:
2642	+ raise LayoutInvalid("You must put the block hash tree before "
2643	+ "you put the share hash chain")
2644	+ blockhashes_s = "".join(blockhashes)
2645	+ self._offsets['share_hash_chain'] = self._offsets['block_hash_tree'] + len(blockhashes_s)
2646	+
2647	+ self._writevs.append(tuple([self._offsets['block_hash_tree'],
2648	+ blockhashes_s]))
2649	+
2650	+
2651	+ def put_sharehashes(self, sharehashes):
2652	+ """
2653	+ I queue a write vector to put the share hash chain in my
2654	+ argument onto the remote server.
2655	+
2656	+ The salt hash tree must be queued before the share hash chain,
2657	+ since we need to know where the salt hash tree ends before we
2658	+ can know where the share hash chain starts. The share hash chain
2659	+ must be put before the signature, since the length of the packed
2660	+ share hash chain determines the offset of the signature. Also,
2661	+ semantically, you must know what the root of the salt hash tree
2662	+ is before you can generate a valid signature.
2663	+ """
2664	+ assert isinstance(sharehashes, dict)
2665	+ if "share_hash_chain" not in self._offsets:
2666	+ raise LayoutInvalid("You need to put the salt hash tree before "
2667	+ "you can put the share hash chain")
2668	+ # The signature comes after the share hash chain. If the
2669	+ # signature has already been written, we must not write another
2670	+ # share hash chain. The signature writes the verification key
2671	+ # offset when it gets sent to the remote server, so we look for
2672	+ # that.
2673	+ if "verification_key" in self._offsets:
2674	+ raise LayoutInvalid("You must write the share hash chain "
2675	+ "before you write the signature")
2676	+ sharehashes_s = "".join([struct.pack(">H32s", i, sharehashes[i])
2677	+ for i in sorted(sharehashes.keys())])
2678	+ self._offsets['signature'] = self._offsets['share_hash_chain'] + len(sharehashes_s)
2679	+ self._writevs.append(tuple([self._offsets['share_hash_chain'],
2680	+ sharehashes_s]))
2681	+
2682	+
2683	+ def put_root_hash(self, roothash):
2684	+ """
2685	+ Put the root hash (the root of the share hash tree) in the
2686	+ remote slot.
2687	+ """
2688	+ # It does not make sense to be able to put the root
2689	+ # hash without first putting the share hashes, since you need
2690	+ # the share hashes to generate the root hash.
2691	+ #
2692	+ # Signature is defined by the routine that places the share hash
2693	+ # chain, so it's a good thing to look for in finding out whether
2694	+ # or not the share hash chain exists on the remote server.
2695	+ if "signature" not in self._offsets:
2696	+ raise LayoutInvalid("You need to put the share hash chain "
2697	+ "before you can put the root share hash")
2698	+ if len(roothash) != HASH_SIZE:
2699	+ raise LayoutInvalid("hashes and salts must be exactly %d bytes"
2700	+ % HASH_SIZE)
2701	+ self._root_hash = roothash
2702	+ # To write both of these values, we update the checkstring on
2703	+ # the remote server, which includes them
2704	+ checkstring = self.get_checkstring()
2705	+ self._writevs.append(tuple([0, checkstring]))
2706	+ # This write, if successful, changes the checkstring, so we need
2707	+ # to update our internal checkstring to be consistent with the
2708	+ # one on the server.
2709	+
2710	+
2711	+ def get_signable(self):
2712	+ """
2713	+ Get the first seven fields of the mutable file; the parts that
2714	+ are signed.
2715	+ """
2716	+ if not self._root_hash:
2717	+ raise LayoutInvalid("You need to set the root hash "
2718	+ "before getting something to "
2719	+ "sign")
2720	+ return struct.pack(MDMFSIGNABLEHEADER,
2721	+ 1,
2722	+ self._seqnum,
2723	+ self._root_hash,
2724	+ self._required_shares,
2725	+ self._total_shares,
2726	+ self._segment_size,
2727	+ self._data_length)
2728	+
2729	+
2730	+ def put_signature(self, signature):
2731	+ """
2732	+ I queue a write vector for the signature of the MDMF share.
2733	+
2734	+ I require that the root hash and share hash chain have been put
2735	+ to the grid before I will write the signature to the grid.
2736	+ """
2737	+ if "signature" not in self._offsets:
2738	+ raise LayoutInvalid("You must put the share hash chain "
2739	+ # It does not make sense to put a signature without first
2740	+ # putting the root hash and the salt hash (since otherwise
2741	+ # the signature would be incomplete), so we don't allow that.
2742	+ "before putting the signature")
2743	+ if not self._root_hash:
2744	+ raise LayoutInvalid("You must complete the signed prefix "
2745	+ "before computing a signature")
2746	+ # If we put the signature after we put the verification key, we
2747	+ # could end up running into the verification key, and will
2748	+ # probably screw up the offsets as well. So we don't allow that.
2749	+ # The method that writes the verification key defines the EOF
2750	+ # offset before writing the verification key, so look for that.
2751	+ if "EOF" in self._offsets:
2752	+ raise LayoutInvalid("You must write the signature before the verification key")
2753	+
2754	+ self._offsets['verification_key'] = self._offsets['signature'] + len(signature)
2755	+ self._writevs.append(tuple([self._offsets['signature'], signature]))
2756	+
2757	+
2758	+ def put_verification_key(self, verification_key):
2759	+ """
2760	+ I queue a write vector for the verification key.
2761	+
2762	+ I require that the signature have been written to the storage
2763	+ server before I allow the verification key to be written to the
2764	+ remote server.
2765	+ """
2766	+ if "verification_key" not in self._offsets:
2767	+ raise LayoutInvalid("You must put the signature before you "
2768	+ "can put the verification key")
2769	+ self._offsets['EOF'] = self._offsets['verification_key'] + len(verification_key)
2770	+ self._writevs.append(tuple([self._offsets['verification_key'],
2771	+ verification_key]))
2772	+
2773	+
2774	+ def _get_offsets_tuple(self):
2775	+ return tuple([(key, value) for key, value in self._offsets.items()])
2776	+
2777	+
2778	+ def get_verinfo(self):
2779	+ return (self._seqnum,
2780	+ self._root_hash,
2781	+ self._required_shares,
2782	+ self._total_shares,
2783	+ self._segment_size,
2784	+ self._data_length,
2785	+ self.get_signable(),
2786	+ self._get_offsets_tuple())
2787	+
2788	+
2789	+ def finish_publishing(self):
2790	+ """
2791	+ I add a write vector for the offsets table, and then cause all
2792	+ of the write vectors that I've dealt with so far to be published
2793	+ to the remote server, ending the write process.
2794	+ """
2795	+ if "EOF" not in self._offsets:
2796	+ raise LayoutInvalid("You must put the verification key before "
2797	+ "you can publish the offsets")
2798	+ offsets_offset = struct.calcsize(MDMFHEADERWITHOUTOFFSETS)
2799	+ offsets = struct.pack(MDMFOFFSETS,
2800	+ self._offsets['enc_privkey'],
2801	+ self._offsets['block_hash_tree'],
2802	+ self._offsets['share_hash_chain'],
2803	+ self._offsets['signature'],
2804	+ self._offsets['verification_key'],
2805	+ self._offsets['EOF'])
2806	+ self._writevs.append(tuple([offsets_offset, offsets]))
2807	+ encoding_parameters_offset = struct.calcsize(MDMFCHECKSTRING)
2808	+ params = struct.pack(">BBQQ",
2809	+ self._required_shares,
2810	+ self._total_shares,
2811	+ self._segment_size,
2812	+ self._data_length)
2813	+ self._writevs.append(tuple([encoding_parameters_offset, params]))
2814	+ return self._write(self._writevs)
2815	+
2816	+
2817	+ def _write(self, datavs, on_failure=None, on_success=None):
2818	+ """I write the data vectors in datavs to the remote slot."""
2819	+ tw_vectors = {}
2820	+ new_share = False
2821	+ if not self._testvs:
2822	+ self._testvs = []
2823	+ self._testvs.append(tuple([0, 1, "eq", ""]))
2824	+ new_share = True
2825	+ if not self._written:
2826	+ # Write a new checkstring to the share when we write it, so
2827	+ # that we have something to check later.
2828	+ new_checkstring = self.get_checkstring()
2829	+ datavs.append((0, new_checkstring))
2830	+ def _first_write():
2831	+ self._written = True
2832	+ self._testvs = [(0, len(new_checkstring), "eq", new_checkstring)]
2833	+ on_success = _first_write
2834	+ tw_vectors[self.shnum] = (self._testvs, datavs, None)
2835	+ datalength = sum([len(x[1]) for x in datavs])
2836	+ d = self._rref.callRemote("slot_testv_and_readv_and_writev",
2837	+ self._storage_index,
2838	+ self._secrets,
2839	+ tw_vectors,
2840	+ self._readv)
2841	+ def _result(results):
2842	+ if isinstance(results, failure.Failure) or not results[0]:
2843	+ # Do nothing; the write was unsuccessful.
2844	+ if on_failure: on_failure()
2845	+ else:
2846	+ if on_success: on_success()
2847	+ return results
2848	+ d.addCallback(_result)
2849	+ return d
2850	+
2851	+
2852	+class MDMFSlotReadProxy:
2853	+ """
2854	+ I read from a mutable slot filled with data written in the MDMF data
2855	+ format (which is described above).
2856	+
2857	+ I can be initialized with some amount of data, which I will use (if
2858	+ it is valid) to eliminate some of the need to fetch it from servers.
2859	+ """
2860	+ def __init__(self,
2861	+ rref,
2862	+ storage_index,
2863	+ shnum,
2864	+ data=""):
2865	+ # Start the initialization process.
2866	+ self._rref = rref
2867	+ self._storage_index = storage_index
2868	+ self.shnum = shnum
2869	+
2870	+ # Before doing anything, the reader is probably going to want to
2871	+ # verify that the signature is correct. To do that, they'll need
2872	+ # the verification key, and the signature. To get those, we'll
2873	+ # need the offset table. So fetch the offset table on the
2874	+ # assumption that that will be the first thing that a reader is
2875	+ # going to do.
2876	+
2877	+ # The fact that these encoding parameters are None tells us
2878	+ # that we haven't yet fetched them from the remote share, so we
2879	+ # should. We could just not set them, but the checks will be
2880	+ # easier to read if we don't have to use hasattr.
2881	+ self._version_number = None
2882	+ self._sequence_number = None
2883	+ self._root_hash = None
2884	+ # Filled in if we're dealing with an SDMF file. Unused
2885	+ # otherwise.
2886	+ self._salt = None
2887	+ self._required_shares = None
2888	+ self._total_shares = None
2889	+ self._segment_size = None
2890	+ self._data_length = None
2891	+ self._offsets = None
2892	+
2893	+ # If the user has chosen to initialize us with some data, we'll
2894	+ # try to satisfy subsequent data requests with that data before
2895	+ # asking the storage server for it. If
2896	+ self._data = data
2897	+ # The way callers interact with cache in the filenode returns
2898	+ # None if there isn't any cached data, but the way we index the
2899	+ # cached data requires a string, so convert None to "".
2900	+ if self._data == None:
2901	+ self._data = ""
2902	+
2903	+ self._queue_observers = observer.ObserverList()
2904	+ self._queue_errbacks = observer.ObserverList()
2905	+ self._readvs = []
2906	+
2907	+
2908	+ def _maybe_fetch_offsets_and_header(self, force_remote=False):
2909	+ """
2910	+ I fetch the offset table and the header from the remote slot if
2911	+ I don't already have them. If I do have them, I do nothing and
2912	+ return an empty Deferred.
2913	+ """
2914	+ if self._offsets:
2915	+ return defer.succeed(None)
2916	+ # At this point, we may be either SDMF or MDMF. Fetching 107
2917	+ # bytes will be enough to get header and offsets for both SDMF and
2918	+ # MDMF, though we'll be left with 4 more bytes than we
2919	+ # need if this ends up being MDMF. This is probably less
2920	+ # expensive than the cost of a second roundtrip.
2921	+ readvs = [(0, 107)]
2922	+ d = self._read(readvs, force_remote)
2923	+ d.addCallback(self._process_encoding_parameters)
2924	+ d.addCallback(self._process_offsets)
2925	+ return d
2926	+
2927	+
2928	+ def _process_encoding_parameters(self, encoding_parameters):
2929	+ assert self.shnum in encoding_parameters
2930	+ encoding_parameters = encoding_parameters[self.shnum][0]
2931	+ # The first byte is the version number. It will tell us what
2932	+ # to do next.
2933	+ (verno,) = struct.unpack(">B", encoding_parameters[:1])
2934	+ if verno == MDMF_VERSION:
2935	+ read_size = MDMFHEADERWITHOUTOFFSETSSIZE
2936	+ (verno,
2937	+ seqnum,
2938	+ root_hash,
2939	+ k,
2940	+ n,
2941	+ segsize,
2942	+ datalen) = struct.unpack(MDMFHEADERWITHOUTOFFSETS,
2943	+ encoding_parameters[:read_size])
2944	+ if segsize == 0 and datalen == 0:
2945	+ # Empty file, no segments.
2946	+ self._num_segments = 0
2947	+ else:
2948	+ self._num_segments = mathutil.div_ceil(datalen, segsize)
2949	+
2950	+ elif verno == SDMF_VERSION:
2951	+ read_size = SIGNED_PREFIX_LENGTH
2952	+ (verno,
2953	+ seqnum,
2954	+ root_hash,
2955	+ salt,
2956	+ k,
2957	+ n,
2958	+ segsize,
2959	+ datalen) = struct.unpack(">BQ32s16s BBQQ",
2960	+ encoding_parameters[:SIGNED_PREFIX_LENGTH])
2961	+ self._salt = salt
2962	+ if segsize == 0 and datalen == 0:
2963	+ # empty file
2964	+ self._num_segments = 0
2965	+ else:
2966	+ # non-empty SDMF files have one segment.
2967	+ self._num_segments = 1
2968	+ else:
2969	+ raise UnknownVersionError("You asked me to read mutable file "
2970	+ "version %d, but I only understand "
2971	+ "%d and %d" % (verno, SDMF_VERSION,
2972	+ MDMF_VERSION))
2973	+
2974	+ self._version_number = verno
2975	+ self._sequence_number = seqnum
2976	+ self._root_hash = root_hash
2977	+ self._required_shares = k
2978	+ self._total_shares = n
2979	+ self._segment_size = segsize
2980	+ self._data_length = datalen
2981	+
2982	+ self._block_size = self._segment_size / self._required_shares
2983	+ # We can upload empty files, and need to account for this fact
2984	+ # so as to avoid zero-division and zero-modulo errors.
2985	+ if datalen > 0:
2986	+ tail_size = self._data_length % self._segment_size
2987	+ else:
2988	+ tail_size = 0
2989	+ if not tail_size:
2990	+ self._tail_block_size = self._block_size
2991	+ else:
2992	+ self._tail_block_size = mathutil.next_multiple(tail_size,
2993	+ self._required_shares)
2994	+ self._tail_block_size /= self._required_shares
2995	+
2996	+ return encoding_parameters
2997	+
2998	+
2999	+ def _process_offsets(self, offsets):
3000	+ if self._version_number == 0:
3001	+ read_size = OFFSETS_LENGTH
3002	+ read_offset = SIGNED_PREFIX_LENGTH
3003	+ end = read_size + read_offset
3004	+ (signature,
3005	+ share_hash_chain,
3006	+ block_hash_tree,
3007	+ share_data,
3008	+ enc_privkey,
3009	+ EOF) = struct.unpack(">LLLLQQ",
3010	+ offsets[read_offset:end])
3011	+ self._offsets = {}
3012	+ self._offsets['signature'] = signature
3013	+ self._offsets['share_data'] = share_data
3014	+ self._offsets['block_hash_tree'] = block_hash_tree
3015	+ self._offsets['share_hash_chain'] = share_hash_chain
3016	+ self._offsets['enc_privkey'] = enc_privkey
3017	+ self._offsets['EOF'] = EOF
3018	+
3019	+ elif self._version_number == 1:
3020	+ read_offset = MDMFHEADERWITHOUTOFFSETSSIZE
3021	+ read_length = MDMFOFFSETS_LENGTH
3022	+ end = read_offset + read_length
3023	+ (encprivkey,
3024	+ blockhashes,
3025	+ sharehashes,
3026	+ signature,
3027	+ verification_key,
3028	+ eof) = struct.unpack(MDMFOFFSETS,
3029	+ offsets[read_offset:end])
3030	+ self._offsets = {}
3031	+ self._offsets['enc_privkey'] = encprivkey
3032	+ self._offsets['block_hash_tree'] = blockhashes
3033	+ self._offsets['share_hash_chain'] = sharehashes
3034	+ self._offsets['signature'] = signature
3035	+ self._offsets['verification_key'] = verification_key
3036	+ self._offsets['EOF'] = eof
3037	+
3038	+
3039	+ def get_block_and_salt(self, segnum, queue=False):
3040	+ """
3041	+ I return (block, salt), where block is the block data and
3042	+ salt is the salt used to encrypt that segment.
3043	+ """
3044	+ d = self._maybe_fetch_offsets_and_header()
3045	+ def _then(ignored):
3046	+ if self._version_number == 1:
3047	+ base_share_offset = MDMFHEADERSIZE
3048	+ else:
3049	+ base_share_offset = self._offsets['share_data']
3050	+
3051	+ if segnum + 1 > self._num_segments:
3052	+ raise LayoutInvalid("Not a valid segment number")
3053	+
3054	+ if self._version_number == 0:
3055	+ share_offset = base_share_offset + self._block_size * segnum
3056	+ else:
3057	+ share_offset = base_share_offset + (self._block_size + \
3058	+ SALT_SIZE) * segnum
3059	+ if segnum + 1 == self._num_segments:
3060	+ data = self._tail_block_size
3061	+ else:
3062	+ data = self._block_size
3063	+
3064	+ if self._version_number == 1:
3065	+ data += SALT_SIZE
3066	+
3067	+ readvs = [(share_offset, data)]
3068	+ return readvs
3069	+ d.addCallback(_then)
3070	+ d.addCallback(lambda readvs:
3071	+ self._read(readvs, queue=queue))
3072	+ def _process_results(results):
3073	+ assert self.shnum in results
3074	+ if self._version_number == 0:
3075	+ # We only read the share data, but we know the salt from
3076	+ # when we fetched the header
3077	+ data = results[self.shnum]
3078	+ if not data:
3079	+ data = ""
3080	+ else:
3081	+ assert len(data) == 1
3082	+ data = data[0]
3083	+ salt = self._salt
3084	+ else:
3085	+ data = results[self.shnum]
3086	+ if not data:
3087	+ salt = data = ""
3088	+ else:
3089	+ salt_and_data = results[self.shnum][0]
3090	+ salt = salt_and_data[:SALT_SIZE]
3091	+ data = salt_and_data[SALT_SIZE:]
3092	+ return data, salt
3093	+ d.addCallback(_process_results)
3094	+ return d
3095	+
3096	+
3097	+ def get_blockhashes(self, needed=None, queue=False, force_remote=False):
3098	+ """
3099	+ I return the block hash tree
3100	+
3101	+ I take an optional argument, needed, which is a set of indices
3102	+ correspond to hashes that I should fetch. If this argument is
3103	+ missing, I will fetch the entire block hash tree; otherwise, I
3104	+ may attempt to fetch fewer hashes, based on what needed says
3105	+ that I should do. Note that I may fetch as many hashes as I
3106	+ want, so long as the set of hashes that I do fetch is a superset
3107	+ of the ones that I am asked for, so callers should be prepared
3108	+ to tolerate additional hashes.
3109	+ """
3110	+ # TODO: Return only the parts of the block hash tree necessary
3111	+ # to validate the blocknum provided?
3112	+ # This is a good idea, but it is hard to implement correctly. It
3113	+ # is bad to fetch any one block hash more than once, so we
3114	+ # probably just want to fetch the whole thing at once and then
3115	+ # serve it.
3116	+ if needed == set([]):
3117	+ return defer.succeed([])
3118	+ d = self._maybe_fetch_offsets_and_header()
3119	+ def _then(ignored):
3120	+ blockhashes_offset = self._offsets['block_hash_tree']
3121	+ if self._version_number == 1:
3122	+ blockhashes_length = self._offsets['share_hash_chain'] - blockhashes_offset
3123	+ else:
3124	+ blockhashes_length = self._offsets['share_data'] - blockhashes_offset
3125	+ readvs = [(blockhashes_offset, blockhashes_length)]
3126	+ return readvs
3127	+ d.addCallback(_then)
3128	+ d.addCallback(lambda readvs:
3129	+ self._read(readvs, queue=queue, force_remote=force_remote))
3130	+ def _build_block_hash_tree(results):
3131	+ assert self.shnum in results
3132	+
3133	+ rawhashes = results[self.shnum][0]
3134	+ results = [rawhashes[i:i+HASH_SIZE]
3135	+ for i in range(0, len(rawhashes), HASH_SIZE)]
3136	+ return results
3137	+ d.addCallback(_build_block_hash_tree)
3138	+ return d
3139	+
3140	+
3141	+ def get_sharehashes(self, needed=None, queue=False, force_remote=False):
3142	+ """
3143	+ I return the part of the share hash chain placed to validate
3144	+ this share.
3145	+
3146	+ I take an optional argument, needed. Needed is a set of indices
3147	+ that correspond to the hashes that I should fetch. If needed is
3148	+ not present, I will fetch and return the entire share hash
3149	+ chain. Otherwise, I may fetch and return any part of the share
3150	+ hash chain that is a superset of the part that I am asked to
3151	+ fetch. Callers should be prepared to deal with more hashes than
3152	+ they've asked for.
3153	+ """
3154	+ if needed == set([]):
3155	+ return defer.succeed([])
3156	+ d = self._maybe_fetch_offsets_and_header()
3157	+
3158	+ def _make_readvs(ignored):
3159	+ sharehashes_offset = self._offsets['share_hash_chain']
3160	+ if self._version_number == 0:
3161	+ sharehashes_length = self._offsets['block_hash_tree'] - sharehashes_offset
3162	+ else:
3163	+ sharehashes_length = self._offsets['signature'] - sharehashes_offset
3164	+ readvs = [(sharehashes_offset, sharehashes_length)]
3165	+ return readvs
3166	+ d.addCallback(_make_readvs)
3167	+ d.addCallback(lambda readvs:
3168	+ self._read(readvs, queue=queue, force_remote=force_remote))
3169	+ def _build_share_hash_chain(results):
3170	+ assert self.shnum in results
3171	+
3172	+ sharehashes = results[self.shnum][0]
3173	+ results = [sharehashes[i:i+(HASH_SIZE + 2)]
3174	+ for i in range(0, len(sharehashes), HASH_SIZE + 2)]
3175	+ results = dict([struct.unpack(">H32s", data)
3176	+ for data in results])
3177	+ return results
3178	+ d.addCallback(_build_share_hash_chain)
3179	+ return d
3180	+
3181	+
3182	+ def get_encprivkey(self, queue=False):
3183	+ """
3184	+ I return the encrypted private key.
3185	+ """
3186	+ d = self._maybe_fetch_offsets_and_header()
3187	+
3188	+ def _make_readvs(ignored):
3189	+ privkey_offset = self._offsets['enc_privkey']
3190	+ if self._version_number == 0:
3191	+ privkey_length = self._offsets['EOF'] - privkey_offset
3192	+ else:
3193	+ privkey_length = self._offsets['block_hash_tree'] - privkey_offset
3194	+ readvs = [(privkey_offset, privkey_length)]
3195	+ return readvs
3196	+ d.addCallback(_make_readvs)
3197	+ d.addCallback(lambda readvs:
3198	+ self._read(readvs, queue=queue))
3199	+ def _process_results(results):
3200	+ assert self.shnum in results
3201	+ privkey = results[self.shnum][0]
3202	+ return privkey
3203	+ d.addCallback(_process_results)
3204	+ return d
3205	+
3206	+
3207	+ def get_signature(self, queue=False):
3208	+ """
3209	+ I return the signature of my share.
3210	+ """
3211	+ d = self._maybe_fetch_offsets_and_header()
3212	+
3213	+ def _make_readvs(ignored):
3214	+ signature_offset = self._offsets['signature']
3215	+ if self._version_number == 1:
3216	+ signature_length = self._offsets['verification_key'] - signature_offset
3217	+ else:
3218	+ signature_length = self._offsets['share_hash_chain'] - signature_offset
3219	+ readvs = [(signature_offset, signature_length)]
3220	+ return readvs
3221	+ d.addCallback(_make_readvs)
3222	+ d.addCallback(lambda readvs:
3223	+ self._read(readvs, queue=queue))
3224	+ def _process_results(results):
3225	+ assert self.shnum in results
3226	+ signature = results[self.shnum][0]
3227	+ return signature
3228	+ d.addCallback(_process_results)
3229	+ return d
3230	+
3231	+
3232	+ def get_verification_key(self, queue=False):
3233	+ """
3234	+ I return the verification key.
3235	+ """
3236	+ d = self._maybe_fetch_offsets_and_header()
3237	+
3238	+ def _make_readvs(ignored):
3239	+ if self._version_number == 1:
3240	+ vk_offset = self._offsets['verification_key']
3241	+ vk_length = self._offsets['EOF'] - vk_offset
3242	+ else:
3243	+ vk_offset = struct.calcsize(">BQ32s16sBBQQLLLLQQ")
3244	+ vk_length = self._offsets['signature'] - vk_offset
3245	+ readvs = [(vk_offset, vk_length)]
3246	+ return readvs
3247	+ d.addCallback(_make_readvs)
3248	+ d.addCallback(lambda readvs:
3249	+ self._read(readvs, queue=queue))
3250	+ def _process_results(results):
3251	+ assert self.shnum in results
3252	+ verification_key = results[self.shnum][0]
3253	+ return verification_key
3254	+ d.addCallback(_process_results)
3255	+ return d
3256	+
3257	+
3258	+ def get_encoding_parameters(self):
3259	+ """
3260	+ I return (k, n, segsize, datalen)
3261	+ """
3262	+ d = self._maybe_fetch_offsets_and_header()
3263	+ d.addCallback(lambda ignored:
3264	+ (self._required_shares,
3265	+ self._total_shares,
3266	+ self._segment_size,
3267	+ self._data_length))
3268	+ return d
3269	+
3270	+
3271	+ def get_seqnum(self):
3272	+ """
3273	+ I return the sequence number for this share.
3274	+ """
3275	+ d = self._maybe_fetch_offsets_and_header()
3276	+ d.addCallback(lambda ignored:
3277	+ self._sequence_number)
3278	+ return d
3279	+
3280	+
3281	+ def get_root_hash(self):
3282	+ """
3283	+ I return the root of the block hash tree
3284	+ """
3285	+ d = self._maybe_fetch_offsets_and_header()
3286	+ d.addCallback(lambda ignored: self._root_hash)
3287	+ return d
3288	+
3289	+
3290	+ def get_checkstring(self):
3291	+ """
3292	+ I return the packed representation of the following:
3293	+
3294	+ - version number
3295	+ - sequence number
3296	+ - root hash
3297	+ - salt hash
3298	+
3299	+ which my users use as a checkstring to detect other writers.
3300	+ """
3301	+ d = self._maybe_fetch_offsets_and_header()
3302	+ def _build_checkstring(ignored):
3303	+ if self._salt:
3304	+ checkstring = strut.pack(PREFIX,
3305	+ self._version_number,
3306	+ self._sequence_number,
3307	+ self._root_hash,
3308	+ self._salt)
3309	+ else:
3310	+ checkstring = struct.pack(MDMFCHECKSTRING,
3311	+ self._version_number,
3312	+ self._sequence_number,
3313	+ self._root_hash)
3314	+
3315	+ return checkstring
3316	+ d.addCallback(_build_checkstring)
3317	+ return d
3318	+
3319	+
3320	+ def get_prefix(self, force_remote):
3321	+ d = self._maybe_fetch_offsets_and_header(force_remote)
3322	+ d.addCallback(lambda ignored:
3323	+ self._build_prefix())
3324	+ return d
3325	+
3326	+
3327	+ def _build_prefix(self):
3328	+ # The prefix is another name for the part of the remote share
3329	+ # that gets signed. It consists of everything up to and
3330	+ # including the datalength, packed by struct.
3331	+ if self._version_number == SDMF_VERSION:
3332	+ return struct.pack(SIGNED_PREFIX,
3333	+ self._version_number,
3334	+ self._sequence_number,
3335	+ self._root_hash,
3336	+ self._salt,
3337	+ self._required_shares,
3338	+ self._total_shares,
3339	+ self._segment_size,
3340	+ self._data_length)
3341	+
3342	+ else:
3343	+ return struct.pack(MDMFSIGNABLEHEADER,
3344	+ self._version_number,
3345	+ self._sequence_number,
3346	+ self._root_hash,
3347	+ self._required_shares,
3348	+ self._total_shares,
3349	+ self._segment_size,
3350	+ self._data_length)
3351	+
3352	+
3353	+ def _get_offsets_tuple(self):
3354	+ # The offsets tuple is another component of the version
3355	+ # information tuple. It is basically our offsets dictionary,
3356	+ # itemized and in a tuple.
3357	+ return self._offsets.copy()
3358	+
3359	+
3360	+ def get_verinfo(self):
3361	+ """
3362	+ I return my verinfo tuple. This is used by the ServermapUpdater
3363	+ to keep track of versions of mutable files.
3364	+
3365	+ The verinfo tuple for MDMF files contains:
3366	+ - seqnum
3367	+ - root hash
3368	+ - a blank (nothing)
3369	+ - segsize
3370	+ - datalen
3371	+ - k
3372	+ - n
3373	+ - prefix (the thing that you sign)
3374	+ - a tuple of offsets
3375	+
3376	+ We include the nonce in MDMF to simplify processing of version
3377	+ information tuples.
3378	+
3379	+ The verinfo tuple for SDMF files is the same, but contains a
3380	+ 16-byte IV instead of a hash of salts.
3381	+ """
3382	+ d = self._maybe_fetch_offsets_and_header()
3383	+ def _build_verinfo(ignored):
3384	+ if self._version_number == SDMF_VERSION:
3385	+ salt_to_use = self._salt
3386	+ else:
3387	+ salt_to_use = None
3388	+ return (self._sequence_number,
3389	+ self._root_hash,
3390	+ salt_to_use,
3391	+ self._segment_size,
3392	+ self._data_length,
3393	+ self._required_shares,
3394	+ self._total_shares,
3395	+ self._build_prefix(),
3396	+ self._get_offsets_tuple())
3397	+ d.addCallback(_build_verinfo)
3398	+ return d
3399	+
3400	+
3401	+ def flush(self):
3402	+ """
3403	+ I flush my queue of read vectors.
3404	+ """
3405	+ d = self._read(self._readvs)
3406	+ def _then(results):
3407	+ self._readvs = []
3408	+ if isinstance(results, failure.Failure):
3409	+ self._queue_errbacks.notify(results)
3410	+ else:
3411	+ self._queue_observers.notify(results)
3412	+ self._queue_observers = observer.ObserverList()
3413	+ self._queue_errbacks = observer.ObserverList()
3414	+ d.addBoth(_then)
3415	+
3416	+
3417	+ def _read(self, readvs, force_remote=False, queue=False):
3418	+ unsatisfiable = filter(lambda x: x[0] + x[1] > len(self._data), readvs)
3419	+ # TODO: It's entirely possible to tweak this so that it just
3420	+ # fulfills the requests that it can, and not demand that all
3421	+ # requests are satisfiable before running it.
3422	+ if not unsatisfiable and not force_remote:
3423	+ results = [self._data[offset:offset+length]
3424	+ for (offset, length) in readvs]
3425	+ results = {self.shnum: results}
3426	+ return defer.succeed(results)
3427	+ else:
3428	+ if queue:
3429	+ start = len(self._readvs)
3430	+ self._readvs += readvs
3431	+ end = len(self._readvs)
3432	+ def _get_results(results, start, end):
3433	+ if not self.shnum in results:
3434	+ return {self._shnum: [""]}
3435	+ return {self.shnum: results[self.shnum][start:end]}
3436	+ d = defer.Deferred()
3437	+ d.addCallback(_get_results, start, end)
3438	+ self._queue_observers.subscribe(d.callback)
3439	+ self._queue_errbacks.subscribe(d.errback)
3440	+ return d
3441	+ return self._rref.callRemote("slot_readv",
3442	+ self._storage_index,
3443	+ [self.shnum],
3444	+ readvs)
3445	+
3446	+
3447	+ def is_sdmf(self):
3448	+ """I tell my caller whether or not my remote file is SDMF or MDMF
3449	+ """
3450	+ d = self._maybe_fetch_offsets_and_header()
3451	+ d.addCallback(lambda ignored:
3452	+ self._version_number == 0)
3453	+ return d
3454	+
3455	+
3456	+class LayoutInvalid(Exception):
3457	+ """
3458	+ This isn't a valid MDMF mutable file
3459	+ """
3460	hunk ./src/allmydata/test/test_storage.py 2
3461
3462	-import time, os.path, stat, re, simplejson, struct
3463	+import time, os.path, stat, re, simplejson, struct, shutil
3464
3465	from twisted.trial import unittest
3466
3467	hunk ./src/allmydata/test/test_storage.py 22
3468	from allmydata.storage.expirer import LeaseCheckingCrawler
3469	from allmydata.immutable.layout import WriteBucketProxy, WriteBucketProxy_v2, \
3470	ReadBucketProxy
3471	-from allmydata.interfaces import BadWriteEnablerError
3472	-from allmydata.test.common import LoggingServiceParent
3473	+from allmydata.mutable.layout import MDMFSlotWriteProxy, MDMFSlotReadProxy, \
3474	+ LayoutInvalid, MDMFSIGNABLEHEADER, \
3475	+ SIGNED_PREFIX, MDMFHEADER, \
3476	+ MDMFOFFSETS, SDMFSlotWriteProxy
3477	+from allmydata.interfaces import BadWriteEnablerError, MDMF_VERSION, \
3478	+ SDMF_VERSION
3479	+from allmydata.test.common import LoggingServiceParent, ShouldFailMixin
3480	from allmydata.test.common_web import WebRenderingMixin
3481	from allmydata.web.storage import StorageStatus, remove_prefix
3482
3483	hunk ./src/allmydata/test/test_storage.py 106
3484
3485	class RemoteBucket:
3486
3487	+ def __init__(self):
3488	+ self.read_count = 0
3489	+ self.write_count = 0
3490	+
3491	def callRemote(self, methname, args, *kwargs):
3492	def _call():
3493	meth = getattr(self.target, "remote_" + methname)
3494	hunk ./src/allmydata/test/test_storage.py 114
3495	return meth(args, *kwargs)
3496	+
3497	+ if methname == "slot_readv":
3498	+ self.read_count += 1
3499	+ if "writev" in methname:
3500	+ self.write_count += 1
3501	+
3502	return defer.maybeDeferred(_call)
3503
3504	hunk ./src/allmydata/test/test_storage.py 122
3505	+
3506	class BucketProxy(unittest.TestCase):
3507	def make_bucket(self, name, size):
3508	basedir = os.path.join("storage", "BucketProxy", name)
3509	hunk ./src/allmydata/test/test_storage.py 1313
3510	self.failUnless(os.path.exists(prefixdir), prefixdir)
3511	self.failIf(os.path.exists(bucketdir), bucketdir)
3512
3513	+
3514	+class MDMFProxies(unittest.TestCase, ShouldFailMixin):
3515	+ def setUp(self):
3516	+ self.sparent = LoggingServiceParent()
3517	+ self._lease_secret = itertools.count()
3518	+ self.ss = self.create("MDMFProxies storage test server")
3519	+ self.rref = RemoteBucket()
3520	+ self.rref.target = self.ss
3521	+ self.secrets = (self.write_enabler("we_secret"),
3522	+ self.renew_secret("renew_secret"),
3523	+ self.cancel_secret("cancel_secret"))
3524	+ self.segment = "aaaaaa"
3525	+ self.block = "aa"
3526	+ self.salt = "a" * 16
3527	+ self.block_hash = "a" * 32
3528	+ self.block_hash_tree = [self.block_hash for i in xrange(6)]
3529	+ self.share_hash = self.block_hash
3530	+ self.share_hash_chain = dict([(i, self.share_hash) for i in xrange(6)])
3531	+ self.signature = "foobarbaz"
3532	+ self.verification_key = "vvvvvv"
3533	+ self.encprivkey = "private"
3534	+ self.root_hash = self.block_hash
3535	+ self.salt_hash = self.root_hash
3536	+ self.salt_hash_tree = [self.salt_hash for i in xrange(6)]
3537	+ self.block_hash_tree_s = self.serialize_blockhashes(self.block_hash_tree)
3538	+ self.share_hash_chain_s = self.serialize_sharehashes(self.share_hash_chain)
3539	+ # blockhashes and salt hashes are serialized in the same way,
3540	+ # only we lop off the first element and store that in the
3541	+ # header.
3542	+ self.salt_hash_tree_s = self.serialize_blockhashes(self.salt_hash_tree[1:])
3543	+
3544	+
3545	+ def tearDown(self):
3546	+ self.sparent.stopService()
3547	+ shutil.rmtree(self.workdir("MDMFProxies storage test server"))
3548	+
3549	+
3550	+ def write_enabler(self, we_tag):
3551	+ return hashutil.tagged_hash("we_blah", we_tag)
3552	+
3553	+
3554	+ def renew_secret(self, tag):
3555	+ return hashutil.tagged_hash("renew_blah", str(tag))
3556	+
3557	+
3558	+ def cancel_secret(self, tag):
3559	+ return hashutil.tagged_hash("cancel_blah", str(tag))
3560	+
3561	+
3562	+ def workdir(self, name):
3563	+ basedir = os.path.join("storage", "MutableServer", name)
3564	+ return basedir
3565	+
3566	+
3567	+ def create(self, name):
3568	+ workdir = self.workdir(name)
3569	+ ss = StorageServer(workdir, "\x00" * 20)
3570	+ ss.setServiceParent(self.sparent)
3571	+ return ss
3572	+
3573	+
3574	+ def build_test_mdmf_share(self, tail_segment=False, empty=False):
3575	+ # Start with the checkstring
3576	+ data = struct.pack(">BQ32s",
3577	+ 1,
3578	+ 0,
3579	+ self.root_hash)
3580	+ self.checkstring = data
3581	+ # Next, the encoding parameters
3582	+ if tail_segment:
3583	+ data += struct.pack(">BBQQ",
3584	+ 3,
3585	+ 10,
3586	+ 6,
3587	+ 33)
3588	+ elif empty:
3589	+ data += struct.pack(">BBQQ",
3590	+ 3,
3591	+ 10,
3592	+ 0,
3593	+ 0)
3594	+ else:
3595	+ data += struct.pack(">BBQQ",
3596	+ 3,
3597	+ 10,
3598	+ 6,
3599	+ 36)
3600	+ # Now we'll build the offsets.
3601	+ sharedata = ""
3602	+ if not tail_segment and not empty:
3603	+ for i in xrange(6):
3604	+ sharedata += self.salt + self.block
3605	+ elif tail_segment:
3606	+ for i in xrange(5):
3607	+ sharedata += self.salt + self.block
3608	+ sharedata += self.salt + "a"
3609	+
3610	+ # The encrypted private key comes after the shares + salts
3611	+ offset_size = struct.calcsize(MDMFOFFSETS)
3612	+ encrypted_private_key_offset = len(data) + offset_size + len(sharedata)
3613	+ # The blockhashes come after the private key
3614	+ blockhashes_offset = encrypted_private_key_offset + len(self.encprivkey)
3615	+ # The sharehashes come after the salt hashes
3616	+ sharehashes_offset = blockhashes_offset + len(self.block_hash_tree_s)
3617	+ # The signature comes after the share hash chain
3618	+ signature_offset = sharehashes_offset + len(self.share_hash_chain_s)
3619	+ # The verification key comes after the signature
3620	+ verification_offset = signature_offset + len(self.signature)
3621	+ # The EOF comes after the verification key
3622	+ eof_offset = verification_offset + len(self.verification_key)
3623	+ data += struct.pack(MDMFOFFSETS,
3624	+ encrypted_private_key_offset,
3625	+ blockhashes_offset,
3626	+ sharehashes_offset,
3627	+ signature_offset,
3628	+ verification_offset,
3629	+ eof_offset)
3630	+ self.offsets = {}
3631	+ self.offsets['enc_privkey'] = encrypted_private_key_offset
3632	+ self.offsets['block_hash_tree'] = blockhashes_offset
3633	+ self.offsets['share_hash_chain'] = sharehashes_offset
3634	+ self.offsets['signature'] = signature_offset
3635	+ self.offsets['verification_key'] = verification_offset
3636	+ self.offsets['EOF'] = eof_offset
3637	+ # Next, we'll add in the salts and share data,
3638	+ data += sharedata
3639	+ # the private key,
3640	+ data += self.encprivkey
3641	+ # the block hash tree,
3642	+ data += self.block_hash_tree_s
3643	+ # the share hash chain,
3644	+ data += self.share_hash_chain_s
3645	+ # the signature,
3646	+ data += self.signature
3647	+ # and the verification key
3648	+ data += self.verification_key
3649	+ return data
3650	+
3651	+
3652	+ def write_test_share_to_server(self,
3653	+ storage_index,
3654	+ tail_segment=False,
3655	+ empty=False):
3656	+ """
3657	+ I write some data for the read tests to read to self.ss
3658	+
3659	+ If tail_segment=True, then I will write a share that has a
3660	+ smaller tail segment than other segments.
3661	+ """
3662	+ write = self.ss.remote_slot_testv_and_readv_and_writev
3663	+ data = self.build_test_mdmf_share(tail_segment, empty)
3664	+ # Finally, we write the whole thing to the storage server in one
3665	+ # pass.
3666	+ testvs = [(0, 1, "eq", "")]
3667	+ tws = {}
3668	+ tws[0] = (testvs, [(0, data)], None)
3669	+ readv = [(0, 1)]
3670	+ results = write(storage_index, self.secrets, tws, readv)
3671	+ self.failUnless(results[0])
3672	+
3673	+
3674	+ def build_test_sdmf_share(self, empty=False):
3675	+ if empty:
3676	+ sharedata = ""
3677	+ else:
3678	+ sharedata = self.segment * 6
3679	+ self.sharedata = sharedata
3680	+ blocksize = len(sharedata) / 3
3681	+ block = sharedata[:blocksize]
3682	+ self.blockdata = block
3683	+ prefix = struct.pack(">BQ32s16s BBQQ",
3684	+ 0, # version,
3685	+ 0,
3686	+ self.root_hash,
3687	+ self.salt,
3688	+ 3,
3689	+ 10,
3690	+ len(sharedata),
3691	+ len(sharedata),
3692	+ )
3693	+ post_offset = struct.calcsize(">BQ32s16sBBQQLLLLQQ")
3694	+ signature_offset = post_offset + len(self.verification_key)
3695	+ sharehashes_offset = signature_offset + len(self.signature)
3696	+ blockhashes_offset = sharehashes_offset + len(self.share_hash_chain_s)
3697	+ sharedata_offset = blockhashes_offset + len(self.block_hash_tree_s)
3698	+ encprivkey_offset = sharedata_offset + len(block)
3699	+ eof_offset = encprivkey_offset + len(self.encprivkey)
3700	+ offsets = struct.pack(">LLLLQQ",
3701	+ signature_offset,
3702	+ sharehashes_offset,
3703	+ blockhashes_offset,
3704	+ sharedata_offset,
3705	+ encprivkey_offset,
3706	+ eof_offset)
3707	+ final_share = "".join([prefix,
3708	+ offsets,
3709	+ self.verification_key,
3710	+ self.signature,
3711	+ self.share_hash_chain_s,
3712	+ self.block_hash_tree_s,
3713	+ block,
3714	+ self.encprivkey])
3715	+ self.offsets = {}
3716	+ self.offsets['signature'] = signature_offset
3717	+ self.offsets['share_hash_chain'] = sharehashes_offset
3718	+ self.offsets['block_hash_tree'] = blockhashes_offset
3719	+ self.offsets['share_data'] = sharedata_offset
3720	+ self.offsets['enc_privkey'] = encprivkey_offset
3721	+ self.offsets['EOF'] = eof_offset
3722	+ return final_share
3723	+
3724	+
3725	+ def write_sdmf_share_to_server(self,
3726	+ storage_index,
3727	+ empty=False):
3728	+ # Some tests need SDMF shares to verify that we can still
3729	+ # read them. This method writes one, which resembles but is not
3730	+ assert self.rref
3731	+ write = self.ss.remote_slot_testv_and_readv_and_writev
3732	+ share = self.build_test_sdmf_share(empty)
3733	+ testvs = [(0, 1, "eq", "")]
3734	+ tws = {}
3735	+ tws[0] = (testvs, [(0, share)], None)
3736	+ readv = []
3737	+ results = write(storage_index, self.secrets, tws, readv)
3738	+ self.failUnless(results[0])
3739	+
3740	+
3741	+ def test_read(self):
3742	+ self.write_test_share_to_server("si1")
3743	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
3744	+ # Check that every method equals what we expect it to.
3745	+ d = defer.succeed(None)
3746	+ def _check_block_and_salt((block, salt)):
3747	+ self.failUnlessEqual(block, self.block)
3748	+ self.failUnlessEqual(salt, self.salt)
3749	+
3750	+ for i in xrange(6):
3751	+ d.addCallback(lambda ignored, i=i:
3752	+ mr.get_block_and_salt(i))
3753	+ d.addCallback(_check_block_and_salt)
3754	+
3755	+ d.addCallback(lambda ignored:
3756	+ mr.get_encprivkey())
3757	+ d.addCallback(lambda encprivkey:
3758	+ self.failUnlessEqual(self.encprivkey, encprivkey))
3759	+
3760	+ d.addCallback(lambda ignored:
3761	+ mr.get_blockhashes())
3762	+ d.addCallback(lambda blockhashes:
3763	+ self.failUnlessEqual(self.block_hash_tree, blockhashes))
3764	+
3765	+ d.addCallback(lambda ignored:
3766	+ mr.get_sharehashes())
3767	+ d.addCallback(lambda sharehashes:
3768	+ self.failUnlessEqual(self.share_hash_chain, sharehashes))
3769	+
3770	+ d.addCallback(lambda ignored:
3771	+ mr.get_signature())
3772	+ d.addCallback(lambda signature:
3773	+ self.failUnlessEqual(signature, self.signature))
3774	+
3775	+ d.addCallback(lambda ignored:
3776	+ mr.get_verification_key())
3777	+ d.addCallback(lambda verification_key:
3778	+ self.failUnlessEqual(verification_key, self.verification_key))
3779	+
3780	+ d.addCallback(lambda ignored:
3781	+ mr.get_seqnum())
3782	+ d.addCallback(lambda seqnum:
3783	+ self.failUnlessEqual(seqnum, 0))
3784	+
3785	+ d.addCallback(lambda ignored:
3786	+ mr.get_root_hash())
3787	+ d.addCallback(lambda root_hash:
3788	+ self.failUnlessEqual(self.root_hash, root_hash))
3789	+
3790	+ d.addCallback(lambda ignored:
3791	+ mr.get_seqnum())
3792	+ d.addCallback(lambda seqnum:
3793	+ self.failUnlessEqual(0, seqnum))
3794	+
3795	+ d.addCallback(lambda ignored:
3796	+ mr.get_encoding_parameters())
3797	+ def _check_encoding_parameters((k, n, segsize, datalen)):
3798	+ self.failUnlessEqual(k, 3)
3799	+ self.failUnlessEqual(n, 10)
3800	+ self.failUnlessEqual(segsize, 6)
3801	+ self.failUnlessEqual(datalen, 36)
3802	+ d.addCallback(_check_encoding_parameters)
3803	+
3804	+ d.addCallback(lambda ignored:
3805	+ mr.get_checkstring())
3806	+ d.addCallback(lambda checkstring:
3807	+ self.failUnlessEqual(checkstring, checkstring))
3808	+ return d
3809	+
3810	+
3811	+ def test_read_with_different_tail_segment_size(self):
3812	+ self.write_test_share_to_server("si1", tail_segment=True)
3813	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
3814	+ d = mr.get_block_and_salt(5)
3815	+ def _check_tail_segment(results):
3816	+ block, salt = results
3817	+ self.failUnlessEqual(len(block), 1)
3818	+ self.failUnlessEqual(block, "a")
3819	+ d.addCallback(_check_tail_segment)
3820	+ return d
3821	+
3822	+
3823	+ def test_get_block_with_invalid_segnum(self):
3824	+ self.write_test_share_to_server("si1")
3825	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
3826	+ d = defer.succeed(None)
3827	+ d.addCallback(lambda ignored:
3828	+ self.shouldFail(LayoutInvalid, "test invalid segnum",
3829	+ None,
3830	+ mr.get_block_and_salt, 7))
3831	+ return d
3832	+
3833	+
3834	+ def test_get_encoding_parameters_first(self):
3835	+ self.write_test_share_to_server("si1")
3836	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
3837	+ d = mr.get_encoding_parameters()
3838	+ def _check_encoding_parameters((k, n, segment_size, datalen)):
3839	+ self.failUnlessEqual(k, 3)
3840	+ self.failUnlessEqual(n, 10)
3841	+ self.failUnlessEqual(segment_size, 6)
3842	+ self.failUnlessEqual(datalen, 36)
3843	+ d.addCallback(_check_encoding_parameters)
3844	+ return d
3845	+
3846	+
3847	+ def test_get_seqnum_first(self):
3848	+ self.write_test_share_to_server("si1")
3849	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
3850	+ d = mr.get_seqnum()
3851	+ d.addCallback(lambda seqnum:
3852	+ self.failUnlessEqual(seqnum, 0))
3853	+ return d
3854	+
3855	+
3856	+ def test_get_root_hash_first(self):
3857	+ self.write_test_share_to_server("si1")
3858	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
3859	+ d = mr.get_root_hash()
3860	+ d.addCallback(lambda root_hash:
3861	+ self.failUnlessEqual(root_hash, self.root_hash))
3862	+ return d
3863	+
3864	+
3865	+ def test_get_checkstring_first(self):
3866	+ self.write_test_share_to_server("si1")
3867	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
3868	+ d = mr.get_checkstring()
3869	+ d.addCallback(lambda checkstring:
3870	+ self.failUnlessEqual(checkstring, self.checkstring))
3871	+ return d
3872	+
3873	+
3874	+ def test_write_read_vectors(self):
3875	+ # When writing for us, the storage server will return to us a
3876	+ # read vector, along with its result. If a write fails because
3877	+ # the test vectors failed, this read vector can help us to
3878	+ # diagnose the problem. This test ensures that the read vector
3879	+ # is working appropriately.
3880	+ mw = self._make_new_mw("si1", 0)
3881	+
3882	+ for i in xrange(6):
3883	+ mw.put_block(self.block, i, self.salt)
3884	+ mw.put_encprivkey(self.encprivkey)
3885	+ mw.put_blockhashes(self.block_hash_tree)
3886	+ mw.put_sharehashes(self.share_hash_chain)
3887	+ mw.put_root_hash(self.root_hash)
3888	+ mw.put_signature(self.signature)
3889	+ mw.put_verification_key(self.verification_key)
3890	+ d = mw.finish_publishing()
3891	+ def _then(results):
3892	+ self.failUnless(len(results), 2)
3893	+ result, readv = results
3894	+ self.failUnless(result)
3895	+ self.failIf(readv)
3896	+ self.old_checkstring = mw.get_checkstring()
3897	+ mw.set_checkstring("")
3898	+ d.addCallback(_then)
3899	+ d.addCallback(lambda ignored:
3900	+ mw.finish_publishing())
3901	+ def _then_again(results):
3902	+ self.failUnlessEqual(len(results), 2)
3903	+ result, readvs = results
3904	+ self.failIf(result)
3905	+ self.failUnlessIn(0, readvs)
3906	+ readv = readvs[0][0]
3907	+ self.failUnlessEqual(readv, self.old_checkstring)
3908	+ d.addCallback(_then_again)
3909	+ # The checkstring remains the same for the rest of the process.
3910	+ return d
3911	+
3912	+
3913	+ def test_blockhashes_after_share_hash_chain(self):
3914	+ mw = self._make_new_mw("si1", 0)
3915	+ d = defer.succeed(None)
3916	+ # Put everything up to and including the share hash chain
3917	+ for i in xrange(6):
3918	+ d.addCallback(lambda ignored, i=i:
3919	+ mw.put_block(self.block, i, self.salt))
3920	+ d.addCallback(lambda ignored:
3921	+ mw.put_encprivkey(self.encprivkey))
3922	+ d.addCallback(lambda ignored:
3923	+ mw.put_blockhashes(self.block_hash_tree))
3924	+ d.addCallback(lambda ignored:
3925	+ mw.put_sharehashes(self.share_hash_chain))
3926	+
3927	+ # Now try to put the block hash tree again.
3928	+ d.addCallback(lambda ignored:
3929	+ self.shouldFail(LayoutInvalid, "test repeat salthashes",
3930	+ None,
3931	+ mw.put_blockhashes, self.block_hash_tree))
3932	+ return d
3933	+
3934	+
3935	+ def test_encprivkey_after_blockhashes(self):
3936	+ mw = self._make_new_mw("si1", 0)
3937	+ d = defer.succeed(None)
3938	+ # Put everything up to and including the block hash tree
3939	+ for i in xrange(6):
3940	+ d.addCallback(lambda ignored, i=i:
3941	+ mw.put_block(self.block, i, self.salt))
3942	+ d.addCallback(lambda ignored:
3943	+ mw.put_encprivkey(self.encprivkey))
3944	+ d.addCallback(lambda ignored:
3945	+ mw.put_blockhashes(self.block_hash_tree))
3946	+ d.addCallback(lambda ignored:
3947	+ self.shouldFail(LayoutInvalid, "out of order private key",
3948	+ None,
3949	+ mw.put_encprivkey, self.encprivkey))
3950	+ return d
3951	+
3952	+
3953	+ def test_share_hash_chain_after_signature(self):
3954	+ mw = self._make_new_mw("si1", 0)
3955	+ d = defer.succeed(None)
3956	+ # Put everything up to and including the signature
3957	+ for i in xrange(6):
3958	+ d.addCallback(lambda ignored, i=i:
3959	+ mw.put_block(self.block, i, self.salt))
3960	+ d.addCallback(lambda ignored:
3961	+ mw.put_encprivkey(self.encprivkey))
3962	+ d.addCallback(lambda ignored:
3963	+ mw.put_blockhashes(self.block_hash_tree))
3964	+ d.addCallback(lambda ignored:
3965	+ mw.put_sharehashes(self.share_hash_chain))
3966	+ d.addCallback(lambda ignored:
3967	+ mw.put_root_hash(self.root_hash))
3968	+ d.addCallback(lambda ignored:
3969	+ mw.put_signature(self.signature))
3970	+ # Now try to put the share hash chain again. This should fail
3971	+ d.addCallback(lambda ignored:
3972	+ self.shouldFail(LayoutInvalid, "out of order share hash chain",
3973	+ None,
3974	+ mw.put_sharehashes, self.share_hash_chain))
3975	+ return d
3976	+
3977	+
3978	+ def test_signature_after_verification_key(self):
3979	+ mw = self._make_new_mw("si1", 0)
3980	+ d = defer.succeed(None)
3981	+ # Put everything up to and including the verification key.
3982	+ for i in xrange(6):
3983	+ d.addCallback(lambda ignored, i=i:
3984	+ mw.put_block(self.block, i, self.salt))
3985	+ d.addCallback(lambda ignored:
3986	+ mw.put_encprivkey(self.encprivkey))
3987	+ d.addCallback(lambda ignored:
3988	+ mw.put_blockhashes(self.block_hash_tree))
3989	+ d.addCallback(lambda ignored:
3990	+ mw.put_sharehashes(self.share_hash_chain))
3991	+ d.addCallback(lambda ignored:
3992	+ mw.put_root_hash(self.root_hash))
3993	+ d.addCallback(lambda ignored:
3994	+ mw.put_signature(self.signature))
3995	+ d.addCallback(lambda ignored:
3996	+ mw.put_verification_key(self.verification_key))
3997	+ # Now try to put the signature again. This should fail
3998	+ d.addCallback(lambda ignored:
3999	+ self.shouldFail(LayoutInvalid, "signature after verification",
4000	+ None,
4001	+ mw.put_signature, self.signature))
4002	+ return d
4003	+
4004	+
4005	+ def test_uncoordinated_write(self):
4006	+ # Make two mutable writers, both pointing to the same storage
4007	+ # server, both at the same storage index, and try writing to the
4008	+ # same share.
4009	+ mw1 = self._make_new_mw("si1", 0)
4010	+ mw2 = self._make_new_mw("si1", 0)
4011	+
4012	+ def _check_success(results):
4013	+ result, readvs = results
4014	+ self.failUnless(result)
4015	+
4016	+ def _check_failure(results):
4017	+ result, readvs = results
4018	+ self.failIf(result)
4019	+
4020	+ def _write_share(mw):
4021	+ for i in xrange(6):
4022	+ mw.put_block(self.block, i, self.salt)
4023	+ mw.put_encprivkey(self.encprivkey)
4024	+ mw.put_blockhashes(self.block_hash_tree)
4025	+ mw.put_sharehashes(self.share_hash_chain)
4026	+ mw.put_root_hash(self.root_hash)
4027	+ mw.put_signature(self.signature)
4028	+ mw.put_verification_key(self.verification_key)
4029	+ return mw.finish_publishing()
4030	+ d = _write_share(mw1)
4031	+ d.addCallback(_check_success)
4032	+ d.addCallback(lambda ignored:
4033	+ _write_share(mw2))
4034	+ d.addCallback(_check_failure)
4035	+ return d
4036	+
4037	+
4038	+ def test_invalid_salt_size(self):
4039	+ # Salts need to be 16 bytes in size. Writes that attempt to
4040	+ # write more or less than this should be rejected.
4041	+ mw = self._make_new_mw("si1", 0)
4042	+ invalid_salt = "a" * 17 # 17 bytes
4043	+ another_invalid_salt = "b" * 15 # 15 bytes
4044	+ d = defer.succeed(None)
4045	+ d.addCallback(lambda ignored:
4046	+ self.shouldFail(LayoutInvalid, "salt too big",
4047	+ None,
4048	+ mw.put_block, self.block, 0, invalid_salt))
4049	+ d.addCallback(lambda ignored:
4050	+ self.shouldFail(LayoutInvalid, "salt too small",
4051	+ None,
4052	+ mw.put_block, self.block, 0,
4053	+ another_invalid_salt))
4054	+ return d
4055	+
4056	+
4057	+ def test_write_test_vectors(self):
4058	+ # If we give the write proxy a bogus test vector at
4059	+ # any point during the process, it should fail to write when we
4060	+ # tell it to write.
4061	+ def _check_failure(results):
4062	+ self.failUnlessEqual(len(results), 2)
4063	+ res, d = results
4064	+ self.failIf(res)
4065	+
4066	+ def _check_success(results):
4067	+ self.failUnlessEqual(len(results), 2)
4068	+ res, d = results
4069	+ self.failUnless(results)
4070	+
4071	+ mw = self._make_new_mw("si1", 0)
4072	+ mw.set_checkstring("this is a lie")
4073	+ for i in xrange(6):
4074	+ mw.put_block(self.block, i, self.salt)
4075	+ mw.put_encprivkey(self.encprivkey)
4076	+ mw.put_blockhashes(self.block_hash_tree)
4077	+ mw.put_sharehashes(self.share_hash_chain)
4078	+ mw.put_root_hash(self.root_hash)
4079	+ mw.put_signature(self.signature)
4080	+ mw.put_verification_key(self.verification_key)
4081	+ d = mw.finish_publishing()
4082	+ d.addCallback(_check_failure)
4083	+ d.addCallback(lambda ignored:
4084	+ mw.set_checkstring(""))
4085	+ d.addCallback(lambda ignored:
4086	+ mw.finish_publishing())
4087	+ d.addCallback(_check_success)
4088	+ return d
4089	+
4090	+
4091	+ def serialize_blockhashes(self, blockhashes):
4092	+ return "".join(blockhashes)
4093	+
4094	+
4095	+ def serialize_sharehashes(self, sharehashes):
4096	+ ret = "".join([struct.pack(">H32s", i, sharehashes[i])
4097	+ for i in sorted(sharehashes.keys())])
4098	+ return ret
4099	+
4100	+
4101	+ def test_write(self):
4102	+ # This translates to a file with 6 6-byte segments, and with 2-byte
4103	+ # blocks.
4104	+ mw = self._make_new_mw("si1", 0)
4105	+ # Test writing some blocks.
4106	+ read = self.ss.remote_slot_readv
4107	+ expected_sharedata_offset = struct.calcsize(MDMFHEADER)
4108	+ written_block_size = 2 + len(self.salt)
4109	+ written_block = self.block + self.salt
4110	+ for i in xrange(6):
4111	+ mw.put_block(self.block, i, self.salt)
4112	+
4113	+ mw.put_encprivkey(self.encprivkey)
4114	+ mw.put_blockhashes(self.block_hash_tree)
4115	+ mw.put_sharehashes(self.share_hash_chain)
4116	+ mw.put_root_hash(self.root_hash)
4117	+ mw.put_signature(self.signature)
4118	+ mw.put_verification_key(self.verification_key)
4119	+ d = mw.finish_publishing()
4120	+ def _check_publish(results):
4121	+ self.failUnlessEqual(len(results), 2)
4122	+ result, ign = results
4123	+ self.failUnless(result, "publish failed")
4124	+ for i in xrange(6):
4125	+ self.failUnlessEqual(read("si1", [0], [(expected_sharedata_offset + (i * written_block_size), written_block_size)]),
4126	+ {0: [written_block]})
4127	+
4128	+ expected_private_key_offset = expected_sharedata_offset + \
4129	+ len(written_block) * 6
4130	+ self.failUnlessEqual(len(self.encprivkey), 7)
4131	+ self.failUnlessEqual(read("si1", [0], [(expected_private_key_offset, 7)]),
4132	+ {0: [self.encprivkey]})
4133	+
4134	+ expected_block_hash_offset = expected_private_key_offset + len(self.encprivkey)
4135	+ self.failUnlessEqual(len(self.block_hash_tree_s), 32 * 6)
4136	+ self.failUnlessEqual(read("si1", [0], [(expected_block_hash_offset, 32 * 6)]),
4137	+ {0: [self.block_hash_tree_s]})
4138	+
4139	+ expected_share_hash_offset = expected_block_hash_offset + len(self.block_hash_tree_s)
4140	+ self.failUnlessEqual(read("si1", [0],[(expected_share_hash_offset, (32 + 2) * 6)]),
4141	+ {0: [self.share_hash_chain_s]})
4142	+
4143	+ self.failUnlessEqual(read("si1", [0], [(9, 32)]),
4144	+ {0: [self.root_hash]})
4145	+ expected_signature_offset = expected_share_hash_offset + len(self.share_hash_chain_s)
4146	+ self.failUnlessEqual(len(self.signature), 9)
4147	+ self.failUnlessEqual(read("si1", [0], [(expected_signature_offset, 9)]),
4148	+ {0: [self.signature]})
4149	+
4150	+ expected_verification_key_offset = expected_signature_offset + len(self.signature)
4151	+ self.failUnlessEqual(len(self.verification_key), 6)
4152	+ self.failUnlessEqual(read("si1", [0], [(expected_verification_key_offset, 6)]),
4153	+ {0: [self.verification_key]})
4154	+
4155	+ signable = mw.get_signable()
4156	+ verno, seq, roothash, k, n, segsize, datalen = \
4157	+ struct.unpack(">BQ32sBBQQ",
4158	+ signable)
4159	+ self.failUnlessEqual(verno, 1)
4160	+ self.failUnlessEqual(seq, 0)
4161	+ self.failUnlessEqual(roothash, self.root_hash)
4162	+ self.failUnlessEqual(k, 3)
4163	+ self.failUnlessEqual(n, 10)
4164	+ self.failUnlessEqual(segsize, 6)
4165	+ self.failUnlessEqual(datalen, 36)
4166	+ expected_eof_offset = expected_verification_key_offset + len(self.verification_key)
4167	+
4168	+ # Check the version number to make sure that it is correct.
4169	+ expected_version_number = struct.pack(">B", 1)
4170	+ self.failUnlessEqual(read("si1", [0], [(0, 1)]),
4171	+ {0: [expected_version_number]})
4172	+ # Check the sequence number to make sure that it is correct
4173	+ expected_sequence_number = struct.pack(">Q", 0)
4174	+ self.failUnlessEqual(read("si1", [0], [(1, 8)]),
4175	+ {0: [expected_sequence_number]})
4176	+ # Check that the encoding parameters (k, N, segement size, data
4177	+ # length) are what they should be. These are 3, 10, 6, 36
4178	+ expected_k = struct.pack(">B", 3)
4179	+ self.failUnlessEqual(read("si1", [0], [(41, 1)]),
4180	+ {0: [expected_k]})
4181	+ expected_n = struct.pack(">B", 10)
4182	+ self.failUnlessEqual(read("si1", [0], [(42, 1)]),
4183	+ {0: [expected_n]})
4184	+ expected_segment_size = struct.pack(">Q", 6)
4185	+ self.failUnlessEqual(read("si1", [0], [(43, 8)]),
4186	+ {0: [expected_segment_size]})
4187	+ expected_data_length = struct.pack(">Q", 36)
4188	+ self.failUnlessEqual(read("si1", [0], [(51, 8)]),
4189	+ {0: [expected_data_length]})
4190	+ expected_offset = struct.pack(">Q", expected_private_key_offset)
4191	+ self.failUnlessEqual(read("si1", [0], [(59, 8)]),
4192	+ {0: [expected_offset]})
4193	+ expected_offset = struct.pack(">Q", expected_block_hash_offset)
4194	+ self.failUnlessEqual(read("si1", [0], [(67, 8)]),
4195	+ {0: [expected_offset]})
4196	+ expected_offset = struct.pack(">Q", expected_share_hash_offset)
4197	+ self.failUnlessEqual(read("si1", [0], [(75, 8)]),
4198	+ {0: [expected_offset]})
4199	+ expected_offset = struct.pack(">Q", expected_signature_offset)
4200	+ self.failUnlessEqual(read("si1", [0], [(83, 8)]),
4201	+ {0: [expected_offset]})
4202	+ expected_offset = struct.pack(">Q", expected_verification_key_offset)
4203	+ self.failUnlessEqual(read("si1", [0], [(91, 8)]),
4204	+ {0: [expected_offset]})
4205	+ expected_offset = struct.pack(">Q", expected_eof_offset)
4206	+ self.failUnlessEqual(read("si1", [0], [(99, 8)]),
4207	+ {0: [expected_offset]})
4208	+ d.addCallback(_check_publish)
4209	+ return d
4210	+
4211	+ def _make_new_mw(self, si, share, datalength=36):
4212	+ # This is a file of size 36 bytes. Since it has a segment
4213	+ # size of 6, we know that it has 6 byte segments, which will
4214	+ # be split into blocks of 2 bytes because our FEC k
4215	+ # parameter is 3.
4216	+ mw = MDMFSlotWriteProxy(share, self.rref, si, self.secrets, 0, 3, 10,
4217	+ 6, datalength)
4218	+ return mw
4219	+
4220	+
4221	+ def test_write_rejected_with_too_many_blocks(self):
4222	+ mw = self._make_new_mw("si0", 0)
4223	+
4224	+ # Try writing too many blocks. We should not be able to write
4225	+ # more than 6
4226	+ # blocks into each share.
4227	+ d = defer.succeed(None)
4228	+ for i in xrange(6):
4229	+ d.addCallback(lambda ignored, i=i:
4230	+ mw.put_block(self.block, i, self.salt))
4231	+ d.addCallback(lambda ignored:
4232	+ self.shouldFail(LayoutInvalid, "too many blocks",
4233	+ None,
4234	+ mw.put_block, self.block, 7, self.salt))
4235	+ return d
4236	+
4237	+
4238	+ def test_write_rejected_with_invalid_salt(self):
4239	+ # Try writing an invalid salt. Salts are 16 bytes -- any more or
4240	+ # less should cause an error.
4241	+ mw = self._make_new_mw("si1", 0)
4242	+ bad_salt = "a" * 17 # 17 bytes
4243	+ d = defer.succeed(None)
4244	+ d.addCallback(lambda ignored:
4245	+ self.shouldFail(LayoutInvalid, "test_invalid_salt",
4246	+ None, mw.put_block, self.block, 7, bad_salt))
4247	+ return d
4248	+
4249	+
4250	+ def test_write_rejected_with_invalid_root_hash(self):
4251	+ # Try writing an invalid root hash. This should be SHA256d, and
4252	+ # 32 bytes long as a result.
4253	+ mw = self._make_new_mw("si2", 0)
4254	+ # 17 bytes != 32 bytes
4255	+ invalid_root_hash = "a" * 17
4256	+ d = defer.succeed(None)
4257	+ # Before this test can work, we need to put some blocks + salts,
4258	+ # a block hash tree, and a share hash tree. Otherwise, we'll see
4259	+ # failures that match what we are looking for, but are caused by
4260	+ # the constraints imposed on operation ordering.
4261	+ for i in xrange(6):
4262	+ d.addCallback(lambda ignored, i=i:
4263	+ mw.put_block(self.block, i, self.salt))
4264	+ d.addCallback(lambda ignored:
4265	+ mw.put_encprivkey(self.encprivkey))
4266	+ d.addCallback(lambda ignored:
4267	+ mw.put_blockhashes(self.block_hash_tree))
4268	+ d.addCallback(lambda ignored:
4269	+ mw.put_sharehashes(self.share_hash_chain))
4270	+ d.addCallback(lambda ignored:
4271	+ self.shouldFail(LayoutInvalid, "invalid root hash",
4272	+ None, mw.put_root_hash, invalid_root_hash))
4273	+ return d
4274	+
4275	+
4276	+ def test_write_rejected_with_invalid_blocksize(self):
4277	+ # The blocksize implied by the writer that we get from
4278	+ # _make_new_mw is 2bytes -- any more or any less than this
4279	+ # should be cause for failure, unless it is the tail segment, in
4280	+ # which case it may not be failure.
4281	+ invalid_block = "a"
4282	+ mw = self._make_new_mw("si3", 0, 33) # implies a tail segment with
4283	+ # one byte blocks
4284	+ # 1 bytes != 2 bytes
4285	+ d = defer.succeed(None)
4286	+ d.addCallback(lambda ignored, invalid_block=invalid_block:
4287	+ self.shouldFail(LayoutInvalid, "test blocksize too small",
4288	+ None, mw.put_block, invalid_block, 0,
4289	+ self.salt))
4290	+ invalid_block = invalid_block * 3
4291	+ # 3 bytes != 2 bytes
4292	+ d.addCallback(lambda ignored:
4293	+ self.shouldFail(LayoutInvalid, "test blocksize too large",
4294	+ None,
4295	+ mw.put_block, invalid_block, 0, self.salt))
4296	+ for i in xrange(5):
4297	+ d.addCallback(lambda ignored, i=i:
4298	+ mw.put_block(self.block, i, self.salt))
4299	+ # Try to put an invalid tail segment
4300	+ d.addCallback(lambda ignored:
4301	+ self.shouldFail(LayoutInvalid, "test invalid tail segment",
4302	+ None,
4303	+ mw.put_block, self.block, 5, self.salt))
4304	+ valid_block = "a"
4305	+ d.addCallback(lambda ignored:
4306	+ mw.put_block(valid_block, 5, self.salt))
4307	+ return d
4308	+
4309	+
4310	+ def test_write_enforces_order_constraints(self):
4311	+ # We require that the MDMFSlotWriteProxy be interacted with in a
4312	+ # specific way.
4313	+ # That way is:
4314	+ # 0: __init__
4315	+ # 1: write blocks and salts
4316	+ # 2: Write the encrypted private key
4317	+ # 3: Write the block hashes
4318	+ # 4: Write the share hashes
4319	+ # 5: Write the root hash and salt hash
4320	+ # 6: Write the signature and verification key
4321	+ # 7: Write the file.
4322	+ #
4323	+ # Some of these can be performed out-of-order, and some can't.
4324	+ # The dependencies that I want to test here are:
4325	+ # - Private key before block hashes
4326	+ # - share hashes and block hashes before root hash
4327	+ # - root hash before signature
4328	+ # - signature before verification key
4329	+ mw0 = self._make_new_mw("si0", 0)
4330	+ # Write some shares
4331	+ d = defer.succeed(None)
4332	+ for i in xrange(6):
4333	+ d.addCallback(lambda ignored, i=i:
4334	+ mw0.put_block(self.block, i, self.salt))
4335	+ # Try to write the block hashes before writing the encrypted
4336	+ # private key
4337	+ d.addCallback(lambda ignored:
4338	+ self.shouldFail(LayoutInvalid, "block hashes before key",
4339	+ None, mw0.put_blockhashes,
4340	+ self.block_hash_tree))
4341	+
4342	+ # Write the private key.
4343	+ d.addCallback(lambda ignored:
4344	+ mw0.put_encprivkey(self.encprivkey))
4345	+
4346	+
4347	+ # Try to write the share hash chain without writing the block
4348	+ # hash tree
4349	+ d.addCallback(lambda ignored:
4350	+ self.shouldFail(LayoutInvalid, "share hash chain before "
4351	+ "salt hash tree",
4352	+ None,
4353	+ mw0.put_sharehashes, self.share_hash_chain))
4354	+
4355	+ # Try to write the root hash and without writing either the
4356	+ # block hashes or the or the share hashes
4357	+ d.addCallback(lambda ignored:
4358	+ self.shouldFail(LayoutInvalid, "root hash before share hashes",
4359	+ None,
4360	+ mw0.put_root_hash, self.root_hash))
4361	+
4362	+ # Now write the block hashes and try again
4363	+ d.addCallback(lambda ignored:
4364	+ mw0.put_blockhashes(self.block_hash_tree))
4365	+
4366	+ d.addCallback(lambda ignored:
4367	+ self.shouldFail(LayoutInvalid, "root hash before share hashes",
4368	+ None, mw0.put_root_hash, self.root_hash))
4369	+
4370	+ # We haven't yet put the root hash on the share, so we shouldn't
4371	+ # be able to sign it.
4372	+ d.addCallback(lambda ignored:
4373	+ self.shouldFail(LayoutInvalid, "signature before root hash",
4374	+ None, mw0.put_signature, self.signature))
4375	+
4376	+ d.addCallback(lambda ignored:
4377	+ self.failUnlessRaises(LayoutInvalid, mw0.get_signable))
4378	+
4379	+ # ..and, since that fails, we also shouldn't be able to put the
4380	+ # verification key.
4381	+ d.addCallback(lambda ignored:
4382	+ self.shouldFail(LayoutInvalid, "key before signature",
4383	+ None, mw0.put_verification_key,
4384	+ self.verification_key))
4385	+
4386	+ # Now write the share hashes.
4387	+ d.addCallback(lambda ignored:
4388	+ mw0.put_sharehashes(self.share_hash_chain))
4389	+ # We should be able to write the root hash now too
4390	+ d.addCallback(lambda ignored:
4391	+ mw0.put_root_hash(self.root_hash))
4392	+
4393	+ # We should still be unable to put the verification key
4394	+ d.addCallback(lambda ignored:
4395	+ self.shouldFail(LayoutInvalid, "key before signature",
4396	+ None, mw0.put_verification_key,
4397	+ self.verification_key))
4398	+
4399	+ d.addCallback(lambda ignored:
4400	+ mw0.put_signature(self.signature))
4401	+
4402	+ # We shouldn't be able to write the offsets to the remote server
4403	+ # until the offset table is finished; IOW, until we have written
4404	+ # the verification key.
4405	+ d.addCallback(lambda ignored:
4406	+ self.shouldFail(LayoutInvalid, "offsets before verification key",
4407	+ None,
4408	+ mw0.finish_publishing))
4409	+
4410	+ d.addCallback(lambda ignored:
4411	+ mw0.put_verification_key(self.verification_key))
4412	+ return d
4413	+
4414	+
4415	+ def test_end_to_end(self):
4416	+ mw = self._make_new_mw("si1", 0)
4417	+ # Write a share using the mutable writer, and make sure that the
4418	+ # reader knows how to read everything back to us.
4419	+ d = defer.succeed(None)
4420	+ for i in xrange(6):
4421	+ d.addCallback(lambda ignored, i=i:
4422	+ mw.put_block(self.block, i, self.salt))
4423	+ d.addCallback(lambda ignored:
4424	+ mw.put_encprivkey(self.encprivkey))
4425	+ d.addCallback(lambda ignored:
4426	+ mw.put_blockhashes(self.block_hash_tree))
4427	+ d.addCallback(lambda ignored:
4428	+ mw.put_sharehashes(self.share_hash_chain))
4429	+ d.addCallback(lambda ignored:
4430	+ mw.put_root_hash(self.root_hash))
4431	+ d.addCallback(lambda ignored:
4432	+ mw.put_signature(self.signature))
4433	+ d.addCallback(lambda ignored:
4434	+ mw.put_verification_key(self.verification_key))
4435	+ d.addCallback(lambda ignored:
4436	+ mw.finish_publishing())
4437	+
4438	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4439	+ def _check_block_and_salt((block, salt)):
4440	+ self.failUnlessEqual(block, self.block)
4441	+ self.failUnlessEqual(salt, self.salt)
4442	+
4443	+ for i in xrange(6):
4444	+ d.addCallback(lambda ignored, i=i:
4445	+ mr.get_block_and_salt(i))
4446	+ d.addCallback(_check_block_and_salt)
4447	+
4448	+ d.addCallback(lambda ignored:
4449	+ mr.get_encprivkey())
4450	+ d.addCallback(lambda encprivkey:
4451	+ self.failUnlessEqual(self.encprivkey, encprivkey))
4452	+
4453	+ d.addCallback(lambda ignored:
4454	+ mr.get_blockhashes())
4455	+ d.addCallback(lambda blockhashes:
4456	+ self.failUnlessEqual(self.block_hash_tree, blockhashes))
4457	+
4458	+ d.addCallback(lambda ignored:
4459	+ mr.get_sharehashes())
4460	+ d.addCallback(lambda sharehashes:
4461	+ self.failUnlessEqual(self.share_hash_chain, sharehashes))
4462	+
4463	+ d.addCallback(lambda ignored:
4464	+ mr.get_signature())
4465	+ d.addCallback(lambda signature:
4466	+ self.failUnlessEqual(signature, self.signature))
4467	+
4468	+ d.addCallback(lambda ignored:
4469	+ mr.get_verification_key())
4470	+ d.addCallback(lambda verification_key:
4471	+ self.failUnlessEqual(verification_key, self.verification_key))
4472	+
4473	+ d.addCallback(lambda ignored:
4474	+ mr.get_seqnum())
4475	+ d.addCallback(lambda seqnum:
4476	+ self.failUnlessEqual(seqnum, 0))
4477	+
4478	+ d.addCallback(lambda ignored:
4479	+ mr.get_root_hash())
4480	+ d.addCallback(lambda root_hash:
4481	+ self.failUnlessEqual(self.root_hash, root_hash))
4482	+
4483	+ d.addCallback(lambda ignored:
4484	+ mr.get_encoding_parameters())
4485	+ def _check_encoding_parameters((k, n, segsize, datalen)):
4486	+ self.failUnlessEqual(k, 3)
4487	+ self.failUnlessEqual(n, 10)
4488	+ self.failUnlessEqual(segsize, 6)
4489	+ self.failUnlessEqual(datalen, 36)
4490	+ d.addCallback(_check_encoding_parameters)
4491	+
4492	+ d.addCallback(lambda ignored:
4493	+ mr.get_checkstring())
4494	+ d.addCallback(lambda checkstring:
4495	+ self.failUnlessEqual(checkstring, mw.get_checkstring()))
4496	+ return d
4497	+
4498	+
4499	+ def test_is_sdmf(self):
4500	+ # The MDMFSlotReadProxy should also know how to read SDMF files,
4501	+ # since it will encounter them on the grid. Callers use the
4502	+ # is_sdmf method to test this.
4503	+ self.write_sdmf_share_to_server("si1")
4504	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4505	+ d = mr.is_sdmf()
4506	+ d.addCallback(lambda issdmf:
4507	+ self.failUnless(issdmf))
4508	+ return d
4509	+
4510	+
4511	+ def test_reads_sdmf(self):
4512	+ # The slot read proxy should, naturally, know how to tell us
4513	+ # about data in the SDMF format
4514	+ self.write_sdmf_share_to_server("si1")
4515	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4516	+ d = defer.succeed(None)
4517	+ d.addCallback(lambda ignored:
4518	+ mr.is_sdmf())
4519	+ d.addCallback(lambda issdmf:
4520	+ self.failUnless(issdmf))
4521	+
4522	+ # What do we need to read?
4523	+ # - The sharedata
4524	+ # - The salt
4525	+ d.addCallback(lambda ignored:
4526	+ mr.get_block_and_salt(0))
4527	+ def _check_block_and_salt(results):
4528	+ block, salt = results
4529	+ # Our original file is 36 bytes long. Then each share is 12
4530	+ # bytes in size. The share is composed entirely of the
4531	+ # letter a. self.block contains 2 as, so 6 * self.block is
4532	+ # what we are looking for.
4533	+ self.failUnlessEqual(block, self.block * 6)
4534	+ self.failUnlessEqual(salt, self.salt)
4535	+ d.addCallback(_check_block_and_salt)
4536	+
4537	+ # - The blockhashes
4538	+ d.addCallback(lambda ignored:
4539	+ mr.get_blockhashes())
4540	+ d.addCallback(lambda blockhashes:
4541	+ self.failUnlessEqual(self.block_hash_tree,
4542	+ blockhashes,
4543	+ blockhashes))
4544	+ # - The sharehashes
4545	+ d.addCallback(lambda ignored:
4546	+ mr.get_sharehashes())
4547	+ d.addCallback(lambda sharehashes:
4548	+ self.failUnlessEqual(self.share_hash_chain,
4549	+ sharehashes))
4550	+ # - The keys
4551	+ d.addCallback(lambda ignored:
4552	+ mr.get_encprivkey())
4553	+ d.addCallback(lambda encprivkey:
4554	+ self.failUnlessEqual(encprivkey, self.encprivkey, encprivkey))
4555	+ d.addCallback(lambda ignored:
4556	+ mr.get_verification_key())
4557	+ d.addCallback(lambda verification_key:
4558	+ self.failUnlessEqual(verification_key,
4559	+ self.verification_key,
4560	+ verification_key))
4561	+ # - The signature
4562	+ d.addCallback(lambda ignored:
4563	+ mr.get_signature())
4564	+ d.addCallback(lambda signature:
4565	+ self.failUnlessEqual(signature, self.signature, signature))
4566	+
4567	+ # - The sequence number
4568	+ d.addCallback(lambda ignored:
4569	+ mr.get_seqnum())
4570	+ d.addCallback(lambda seqnum:
4571	+ self.failUnlessEqual(seqnum, 0, seqnum))
4572	+
4573	+ # - The root hash
4574	+ d.addCallback(lambda ignored:
4575	+ mr.get_root_hash())
4576	+ d.addCallback(lambda root_hash:
4577	+ self.failUnlessEqual(root_hash, self.root_hash, root_hash))
4578	+ return d
4579	+
4580	+
4581	+ def test_only_reads_one_segment_sdmf(self):
4582	+ # SDMF shares have only one segment, so it doesn't make sense to
4583	+ # read more segments than that. The reader should know this and
4584	+ # complain if we try to do that.
4585	+ self.write_sdmf_share_to_server("si1")
4586	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4587	+ d = defer.succeed(None)
4588	+ d.addCallback(lambda ignored:
4589	+ mr.is_sdmf())
4590	+ d.addCallback(lambda issdmf:
4591	+ self.failUnless(issdmf))
4592	+ d.addCallback(lambda ignored:
4593	+ self.shouldFail(LayoutInvalid, "test bad segment",
4594	+ None,
4595	+ mr.get_block_and_salt, 1))
4596	+ return d
4597	+
4598	+
4599	+ def test_read_with_prefetched_mdmf_data(self):
4600	+ # The MDMFSlotReadProxy will prefill certain fields if you pass
4601	+ # it data that you have already fetched. This is useful for
4602	+ # cases like the Servermap, which prefetches ~2kb of data while
4603	+ # finding out which shares are on the remote peer so that it
4604	+ # doesn't waste round trips.
4605	+ mdmf_data = self.build_test_mdmf_share()
4606	+ self.write_test_share_to_server("si1")
4607	+ def _make_mr(ignored, length):
4608	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0, mdmf_data[:length])
4609	+ return mr
4610	+
4611	+ d = defer.succeed(None)
4612	+ # This should be enough to fill in both the encoding parameters
4613	+ # and the table of offsets, which will complete the version
4614	+ # information tuple.
4615	+ d.addCallback(_make_mr, 107)
4616	+ d.addCallback(lambda mr:
4617	+ mr.get_verinfo())
4618	+ def _check_verinfo(verinfo):
4619	+ self.failUnless(verinfo)
4620	+ self.failUnlessEqual(len(verinfo), 9)
4621	+ (seqnum,
4622	+ root_hash,
4623	+ salt_hash,
4624	+ segsize,
4625	+ datalen,
4626	+ k,
4627	+ n,
4628	+ prefix,
4629	+ offsets) = verinfo
4630	+ self.failUnlessEqual(seqnum, 0)
4631	+ self.failUnlessEqual(root_hash, self.root_hash)
4632	+ self.failUnlessEqual(segsize, 6)
4633	+ self.failUnlessEqual(datalen, 36)
4634	+ self.failUnlessEqual(k, 3)
4635	+ self.failUnlessEqual(n, 10)
4636	+ expected_prefix = struct.pack(MDMFSIGNABLEHEADER,
4637	+ 1,
4638	+ seqnum,
4639	+ root_hash,
4640	+ k,
4641	+ n,
4642	+ segsize,
4643	+ datalen)
4644	+ self.failUnlessEqual(expected_prefix, prefix)
4645	+ self.failUnlessEqual(self.rref.read_count, 0)
4646	+ d.addCallback(_check_verinfo)
4647	+ # This is not enough data to read a block and a share, so the
4648	+ # wrapper should attempt to read this from the remote server.
4649	+ d.addCallback(_make_mr, 107)
4650	+ d.addCallback(lambda mr:
4651	+ mr.get_block_and_salt(0))
4652	+ def _check_block_and_salt((block, salt)):
4653	+ self.failUnlessEqual(block, self.block)
4654	+ self.failUnlessEqual(salt, self.salt)
4655	+ self.failUnlessEqual(self.rref.read_count, 1)
4656	+ # This should be enough data to read one block.
4657	+ d.addCallback(_make_mr, 249)
4658	+ d.addCallback(lambda mr:
4659	+ mr.get_block_and_salt(0))
4660	+ d.addCallback(_check_block_and_salt)
4661	+ return d
4662	+
4663	+
4664	+ def test_read_with_prefetched_sdmf_data(self):
4665	+ sdmf_data = self.build_test_sdmf_share()
4666	+ self.write_sdmf_share_to_server("si1")
4667	+ def _make_mr(ignored, length):
4668	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0, sdmf_data[:length])
4669	+ return mr
4670	+
4671	+ d = defer.succeed(None)
4672	+ # This should be enough to get us the encoding parameters,
4673	+ # offset table, and everything else we need to build a verinfo
4674	+ # string.
4675	+ d.addCallback(_make_mr, 107)
4676	+ d.addCallback(lambda mr:
4677	+ mr.get_verinfo())
4678	+ def _check_verinfo(verinfo):
4679	+ self.failUnless(verinfo)
4680	+ self.failUnlessEqual(len(verinfo), 9)
4681	+ (seqnum,
4682	+ root_hash,
4683	+ salt,
4684	+ segsize,
4685	+ datalen,
4686	+ k,
4687	+ n,
4688	+ prefix,
4689	+ offsets) = verinfo
4690	+ self.failUnlessEqual(seqnum, 0)
4691	+ self.failUnlessEqual(root_hash, self.root_hash)
4692	+ self.failUnlessEqual(salt, self.salt)
4693	+ self.failUnlessEqual(segsize, 36)
4694	+ self.failUnlessEqual(datalen, 36)
4695	+ self.failUnlessEqual(k, 3)
4696	+ self.failUnlessEqual(n, 10)
4697	+ expected_prefix = struct.pack(SIGNED_PREFIX,
4698	+ 0,
4699	+ seqnum,
4700	+ root_hash,
4701	+ salt,
4702	+ k,
4703	+ n,
4704	+ segsize,
4705	+ datalen)
4706	+ self.failUnlessEqual(expected_prefix, prefix)
4707	+ self.failUnlessEqual(self.rref.read_count, 0)
4708	+ d.addCallback(_check_verinfo)
4709	+ # This shouldn't be enough to read any share data.
4710	+ d.addCallback(_make_mr, 107)
4711	+ d.addCallback(lambda mr:
4712	+ mr.get_block_and_salt(0))
4713	+ def _check_block_and_salt((block, salt)):
4714	+ self.failUnlessEqual(block, self.block * 6)
4715	+ self.failUnlessEqual(salt, self.salt)
4716	+ # TODO: Fix the read routine so that it reads only the data
4717	+ # that it has cached if it can't read all of it.
4718	+ self.failUnlessEqual(self.rref.read_count, 2)
4719	+
4720	+ # This should be enough to read share data.
4721	+ d.addCallback(_make_mr, self.offsets['share_data'])
4722	+ d.addCallback(lambda mr:
4723	+ mr.get_block_and_salt(0))
4724	+ d.addCallback(_check_block_and_salt)
4725	+ return d
4726	+
4727	+
4728	+ def test_read_with_empty_mdmf_file(self):
4729	+ # Some tests upload a file with no contents to test things
4730	+ # unrelated to the actual handling of the content of the file.
4731	+ # The reader should behave intelligently in these cases.
4732	+ self.write_test_share_to_server("si1", empty=True)
4733	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4734	+ # We should be able to get the encoding parameters, and they
4735	+ # should be correct.
4736	+ d = defer.succeed(None)
4737	+ d.addCallback(lambda ignored:
4738	+ mr.get_encoding_parameters())
4739	+ def _check_encoding_parameters(params):
4740	+ self.failUnlessEqual(len(params), 4)
4741	+ k, n, segsize, datalen = params
4742	+ self.failUnlessEqual(k, 3)
4743	+ self.failUnlessEqual(n, 10)
4744	+ self.failUnlessEqual(segsize, 0)
4745	+ self.failUnlessEqual(datalen, 0)
4746	+ d.addCallback(_check_encoding_parameters)
4747	+
4748	+ # We should not be able to fetch a block, since there are no
4749	+ # blocks to fetch
4750	+ d.addCallback(lambda ignored:
4751	+ self.shouldFail(LayoutInvalid, "get block on empty file",
4752	+ None,
4753	+ mr.get_block_and_salt, 0))
4754	+ return d
4755	+
4756	+
4757	+ def test_read_with_empty_sdmf_file(self):
4758	+ self.write_sdmf_share_to_server("si1", empty=True)
4759	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4760	+ # We should be able to get the encoding parameters, and they
4761	+ # should be correct
4762	+ d = defer.succeed(None)
4763	+ d.addCallback(lambda ignored:
4764	+ mr.get_encoding_parameters())
4765	+ def _check_encoding_parameters(params):
4766	+ self.failUnlessEqual(len(params), 4)
4767	+ k, n, segsize, datalen = params
4768	+ self.failUnlessEqual(k, 3)
4769	+ self.failUnlessEqual(n, 10)
4770	+ self.failUnlessEqual(segsize, 0)
4771	+ self.failUnlessEqual(datalen, 0)
4772	+ d.addCallback(_check_encoding_parameters)
4773	+
4774	+ # It does not make sense to get a block in this format, so we
4775	+ # should not be able to.
4776	+ d.addCallback(lambda ignored:
4777	+ self.shouldFail(LayoutInvalid, "get block on an empty file",
4778	+ None,
4779	+ mr.get_block_and_salt, 0))
4780	+ return d
4781	+
4782	+
4783	+ def test_verinfo_with_sdmf_file(self):
4784	+ self.write_sdmf_share_to_server("si1")
4785	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4786	+ # We should be able to get the version information.
4787	+ d = defer.succeed(None)
4788	+ d.addCallback(lambda ignored:
4789	+ mr.get_verinfo())
4790	+ def _check_verinfo(verinfo):
4791	+ self.failUnless(verinfo)
4792	+ self.failUnlessEqual(len(verinfo), 9)
4793	+ (seqnum,
4794	+ root_hash,
4795	+ salt,
4796	+ segsize,
4797	+ datalen,
4798	+ k,
4799	+ n,
4800	+ prefix,
4801	+ offsets) = verinfo
4802	+ self.failUnlessEqual(seqnum, 0)
4803	+ self.failUnlessEqual(root_hash, self.root_hash)
4804	+ self.failUnlessEqual(salt, self.salt)
4805	+ self.failUnlessEqual(segsize, 36)
4806	+ self.failUnlessEqual(datalen, 36)
4807	+ self.failUnlessEqual(k, 3)
4808	+ self.failUnlessEqual(n, 10)
4809	+ expected_prefix = struct.pack(">BQ32s16s BBQQ",
4810	+ 0,
4811	+ seqnum,
4812	+ root_hash,
4813	+ salt,
4814	+ k,
4815	+ n,
4816	+ segsize,
4817	+ datalen)
4818	+ self.failUnlessEqual(prefix, expected_prefix)
4819	+ self.failUnlessEqual(offsets, self.offsets)
4820	+ d.addCallback(_check_verinfo)
4821	+ return d
4822	+
4823	+
4824	+ def test_verinfo_with_mdmf_file(self):
4825	+ self.write_test_share_to_server("si1")
4826	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4827	+ d = defer.succeed(None)
4828	+ d.addCallback(lambda ignored:
4829	+ mr.get_verinfo())
4830	+ def _check_verinfo(verinfo):
4831	+ self.failUnless(verinfo)
4832	+ self.failUnlessEqual(len(verinfo), 9)
4833	+ (seqnum,
4834	+ root_hash,
4835	+ IV,
4836	+ segsize,
4837	+ datalen,
4838	+ k,
4839	+ n,
4840	+ prefix,
4841	+ offsets) = verinfo
4842	+ self.failUnlessEqual(seqnum, 0)
4843	+ self.failUnlessEqual(root_hash, self.root_hash)
4844	+ self.failIf(IV)
4845	+ self.failUnlessEqual(segsize, 6)
4846	+ self.failUnlessEqual(datalen, 36)
4847	+ self.failUnlessEqual(k, 3)
4848	+ self.failUnlessEqual(n, 10)
4849	+ expected_prefix = struct.pack(">BQ32s BBQQ",
4850	+ 1,
4851	+ seqnum,
4852	+ root_hash,
4853	+ k,
4854	+ n,
4855	+ segsize,
4856	+ datalen)
4857	+ self.failUnlessEqual(prefix, expected_prefix)
4858	+ self.failUnlessEqual(offsets, self.offsets)
4859	+ d.addCallback(_check_verinfo)
4860	+ return d
4861	+
4862	+
4863	+ def test_reader_queue(self):
4864	+ self.write_test_share_to_server('si1')
4865	+ mr = MDMFSlotReadProxy(self.rref, "si1", 0)
4866	+ d1 = mr.get_block_and_salt(0, queue=True)
4867	+ d2 = mr.get_blockhashes(queue=True)
4868	+ d3 = mr.get_sharehashes(queue=True)
4869	+ d4 = mr.get_signature(queue=True)
4870	+ d5 = mr.get_verification_key(queue=True)
4871	+ dl = defer.DeferredList([d1, d2, d3, d4, d5])
4872	+ mr.flush()
4873	+ def _print(results):
4874	+ self.failUnlessEqual(len(results), 5)
4875	+ # We have one read for version information and offsets, and
4876	+ # one for everything else.
4877	+ self.failUnlessEqual(self.rref.read_count, 2)
4878	+ block, salt = results[0][1] # results[0] is a boolean that says
4879	+ # whether or not the operation
4880	+ # worked.
4881	+ self.failUnlessEqual(self.block, block)
4882	+ self.failUnlessEqual(self.salt, salt)
4883	+
4884	+ blockhashes = results[1][1]
4885	+ self.failUnlessEqual(self.block_hash_tree, blockhashes)
4886	+
4887	+ sharehashes = results[2][1]
4888	+ self.failUnlessEqual(self.share_hash_chain, sharehashes)
4889	+
4890	+ signature = results[3][1]
4891	+ self.failUnlessEqual(self.signature, signature)
4892	+
4893	+ verification_key = results[4][1]
4894	+ self.failUnlessEqual(self.verification_key, verification_key)
4895	+ dl.addCallback(_print)
4896	+ return dl
4897	+
4898	+
4899	+ def test_sdmf_writer(self):
4900	+ # Go through the motions of writing an SDMF share to the storage
4901	+ # server. Then read the storage server to see that the share got
4902	+ # written in the way that we think it should have.
4903	+
4904	+ # We do this first so that the necessary instance variables get
4905	+ # set the way we want them for the tests below.
4906	+ data = self.build_test_sdmf_share()
4907	+ sdmfr = SDMFSlotWriteProxy(0,
4908	+ self.rref,
4909	+ "si1",
4910	+ self.secrets,
4911	+ 0, 3, 10, 36, 36)
4912	+ # Put the block and salt.
4913	+ sdmfr.put_block(self.blockdata, 0, self.salt)
4914	+
4915	+ # Put the encprivkey
4916	+ sdmfr.put_encprivkey(self.encprivkey)
4917	+
4918	+ # Put the block and share hash chains
4919	+ sdmfr.put_blockhashes(self.block_hash_tree)
4920	+ sdmfr.put_sharehashes(self.share_hash_chain)
4921	+ sdmfr.put_root_hash(self.root_hash)
4922	+
4923	+ # Put the signature
4924	+ sdmfr.put_signature(self.signature)
4925	+
4926	+ # Put the verification key
4927	+ sdmfr.put_verification_key(self.verification_key)
4928	+
4929	+ # Now check to make sure that nothing has been written yet.
4930	+ self.failUnlessEqual(self.rref.write_count, 0)
4931	+
4932	+ # Now finish publishing
4933	+ d = sdmfr.finish_publishing()
4934	+ def _then(ignored):
4935	+ self.failUnlessEqual(self.rref.write_count, 1)
4936	+ read = self.ss.remote_slot_readv
4937	+ self.failUnlessEqual(read("si1", [0], [(0, len(data))]),
4938	+ {0: [data]})
4939	+ d.addCallback(_then)
4940	+ return d
4941	+
4942	+
4943	+ def test_sdmf_writer_preexisting_share(self):
4944	+ data = self.build_test_sdmf_share()
4945	+ self.write_sdmf_share_to_server("si1")
4946	+
4947	+ # Now there is a share on the storage server. To successfully
4948	+ # write, we need to set the checkstring correctly. When we
4949	+ # don't, no write should occur.
4950	+ sdmfw = SDMFSlotWriteProxy(0,
4951	+ self.rref,
4952	+ "si1",
4953	+ self.secrets,
4954	+ 1, 3, 10, 36, 36)
4955	+ sdmfw.put_block(self.blockdata, 0, self.salt)
4956	+
4957	+ # Put the encprivkey
4958	+ sdmfw.put_encprivkey(self.encprivkey)
4959	+
4960	+ # Put the block and share hash chains
4961	+ sdmfw.put_blockhashes(self.block_hash_tree)
4962	+ sdmfw.put_sharehashes(self.share_hash_chain)
4963	+
4964	+ # Put the root hash
4965	+ sdmfw.put_root_hash(self.root_hash)
4966	+
4967	+ # Put the signature
4968	+ sdmfw.put_signature(self.signature)
4969	+
4970	+ # Put the verification key
4971	+ sdmfw.put_verification_key(self.verification_key)
4972	+
4973	+ # We shouldn't have a checkstring yet
4974	+ self.failUnlessEqual(sdmfw.get_checkstring(), "")
4975	+
4976	+ d = sdmfw.finish_publishing()
4977	+ def _then(results):
4978	+ self.failIf(results[0])
4979	+ # this is the correct checkstring
4980	+ self._expected_checkstring = results[1][0][0]
4981	+ return self._expected_checkstring
4982	+
4983	+ d.addCallback(_then)
4984	+ d.addCallback(sdmfw.set_checkstring)
4985	+ d.addCallback(lambda ignored:
4986	+ sdmfw.get_checkstring())
4987	+ d.addCallback(lambda checkstring:
4988	+ self.failUnlessEqual(checkstring, self._expected_checkstring))
4989	+ d.addCallback(lambda ignored:
4990	+ sdmfw.finish_publishing())
4991	+ def _then_again(results):
4992	+ self.failUnless(results[0])
4993	+ read = self.ss.remote_slot_readv
4994	+ self.failUnlessEqual(read("si1", [0], [(1, 8)]),
4995	+ {0: [struct.pack(">Q", 1)]})
4996	+ self.failUnlessEqual(read("si1", [0], [(9, len(data) - 9)]),
4997	+ {0: [data[9:]]})
4998	+ d.addCallback(_then_again)
4999	+ return d
5000	+
5001	+
5002	class Stats(unittest.TestCase):
5003
5004	def setUp(self):
5005	}
5006	[immutable/filenode.py: Make the immutable file node implement the same interfaces as the mutable one
5007	Kevan Carstensen <kevan@isnotajoke.com>**20100810000619
5008	Ignore-this: 93e536c0f8efb705310f13ff64621527
5009	] {
5010	hunk ./src/allmydata/immutable/filenode.py 8
5011	now = time.time
5012	from zope.interface import implements, Interface
5013	from twisted.internet import defer
5014	-from twisted.internet.interfaces import IConsumer
5015
5016	hunk ./src/allmydata/immutable/filenode.py 9
5017	-from allmydata.interfaces import IImmutableFileNode, IUploadResults
5018	from allmydata import uri
5019	hunk ./src/allmydata/immutable/filenode.py 10
5020	+from twisted.internet.interfaces import IConsumer
5021	+from twisted.protocols import basic
5022	+from foolscap.api import eventually
5023	+from allmydata.interfaces import IImmutableFileNode, ICheckable, \
5024	+ IDownloadTarget, IUploadResults
5025	+from allmydata.util import dictutil, log, base32, consumer
5026	+from allmydata.immutable.checker import Checker
5027	from allmydata.check_results import CheckResults, CheckAndRepairResults
5028	from allmydata.util.dictutil import DictOfSets
5029	from pycryptopp.cipher.aes import AES
5030	hunk ./src/allmydata/immutable/filenode.py 296
5031	return self._cnode.check_and_repair(monitor, verify, add_lease)
5032	def check(self, monitor, verify=False, add_lease=False):
5033	return self._cnode.check(monitor, verify, add_lease)
5034	+
5035	+ def get_best_readable_version(self):
5036	+ """
5037	+ Return an IReadable of the best version of this file. Since
5038	+ immutable files can have only one version, we just return the
5039	+ current filenode.
5040	+ """
5041	+ return defer.succeed(self)
5042	+
5043	+
5044	+ def download_best_version(self):
5045	+ """
5046	+ Download the best version of this file, returning its contents
5047	+ as a bytestring. Since there is only one version of an immutable
5048	+ file, we download and return the contents of this file.
5049	+ """
5050	+ d = consumer.download_to_data(self)
5051	+ return d
5052	+
5053	+ # for an immutable file, download_to_data (specified in IReadable)
5054	+ # is the same as download_best_version (specified in IFileNode). For
5055	+ # mutable files, the difference is more meaningful, since they can
5056	+ # have multiple versions.
5057	+ download_to_data = download_best_version
5058	+
5059	+
5060	+ # get_size() (IReadable), get_current_size() (IFilesystemNode), and
5061	+ # get_size_of_best_version(IFileNode) are all the same for immutable
5062	+ # files.
5063	+ get_size_of_best_version = get_current_size
5064	}
5065	[immutable/literal.py: implement the same interfaces as other filenodes
5066	Kevan Carstensen <kevan@isnotajoke.com>**20100810000633
5067	Ignore-this: b50dd5df2d34ecd6477b8499a27aef13
5068	] hunk ./src/allmydata/immutable/literal.py 106
5069	d.addCallback(lambda lastSent: consumer)
5070	return d
5071
5072	+ # IReadable, IFileNode, IFilesystemNode
5073	+ def get_best_readable_version(self):
5074	+ return defer.succeed(self)
5075	+
5076	+
5077	+ def download_best_version(self):
5078	+ return defer.succeed(self.u.data)
5079	+
5080	+
5081	+ download_to_data = download_best_version
5082	+ get_size_of_best_version = get_current_size
5083	+
5084	[mutable/publish.py: Modify the publish process to support MDMF
5085	Kevan Carstensen <kevan@isnotajoke.com>**20100811001915
5086	Ignore-this: e48601884d4a238ea28b56980f8c42b1
5087
5088	The inner workings of the publishing process needed to be reworked to a
5089	large extend to cope with segmented mutable files, and to cope with
5090	partial-file updates of mutable files. This patch does that. It also
5091	introduces wrappers for uploadable data, allowing the use of
5092	filehandle-like objects as data sources, in addition to strings. This
5093	reduces memory inefficiency when dealing with large files through the
5094	webapi, and clarifies update code there.
5095	] {
5096	hunk ./src/allmydata/mutable/publish.py 4
5097
5098
5099	import os, struct, time
5100	+from StringIO import StringIO
5101	from itertools import count
5102	from zope.interface import implements
5103	from twisted.internet import defer
5104	hunk ./src/allmydata/mutable/publish.py 9
5105	from twisted.python import failure
5106	-from allmydata.interfaces import IPublishStatus
5107	+from allmydata.interfaces import IPublishStatus, SDMF_VERSION, MDMF_VERSION, \
5108	+ IMutableUploadable
5109	from allmydata.util import base32, hashutil, mathutil, idlib, log
5110	from allmydata import hashtree, codec
5111	from allmydata.storage.server import si_b2a
5112	hunk ./src/allmydata/mutable/publish.py 21
5113	UncoordinatedWriteError, NotEnoughServersError
5114	from allmydata.mutable.servermap import ServerMap
5115	from allmydata.mutable.layout import pack_prefix, pack_share, unpack_header, pack_checkstring, \
5116	- unpack_checkstring, SIGNED_PREFIX
5117	+ unpack_checkstring, SIGNED_PREFIX, MDMFSlotWriteProxy, \
5118	+ SDMFSlotWriteProxy
5119	+
5120	+KiB = 1024
5121	+DEFAULT_MAX_SEGMENT_SIZE = 128 * KiB
5122	+PUSHING_BLOCKS_STATE = 0
5123	+PUSHING_EVERYTHING_ELSE_STATE = 1
5124	+DONE_STATE = 2
5125
5126	class PublishStatus:
5127	implements(IPublishStatus)
5128	hunk ./src/allmydata/mutable/publish.py 118
5129	self._status.set_helper(False)
5130	self._status.set_progress(0.0)
5131	self._status.set_active(True)
5132	+ self._version = self._node.get_version()
5133	+ assert self._version in (SDMF_VERSION, MDMF_VERSION)
5134	+
5135
5136	def get_status(self):
5137	return self._status
5138	hunk ./src/allmydata/mutable/publish.py 132
5139	kwargs["facility"] = "tahoe.mutable.publish"
5140	return log.msg(args, *kwargs)
5141
5142	+
5143	+ def update(self, data, offset, blockhashes, version):
5144	+ """
5145	+ I replace the contents of this file with the contents of data,
5146	+ starting at offset. I return a Deferred that fires with None
5147	+ when the replacement has been completed, or with an error if
5148	+ something went wrong during the process.
5149	+
5150	+ Note that this process will not upload new shares. If the file
5151	+ being updated is in need of repair, callers will have to repair
5152	+ it on their own.
5153	+ """
5154	+ # How this works:
5155	+ # 1: Make peer assignments. We'll assign each share that we know
5156	+ # about on the grid to that peer that currently holds that
5157	+ # share, and will not place any new shares.
5158	+ # 2: Setup encoding parameters. Most of these will stay the same
5159	+ # -- datalength will change, as will some of the offsets.
5160	+ # 3. Upload the new segments.
5161	+ # 4. Be done.
5162	+ assert IMutableUploadable.providedBy(data)
5163	+
5164	+ self.data = data
5165	+
5166	+ # XXX: Use the MutableFileVersion instead.
5167	+ self.datalength = self._node.get_size()
5168	+ if data.get_size() > self.datalength:
5169	+ self.datalength = data.get_size()
5170	+
5171	+ self.log("starting update")
5172	+ self.log("adding new data of length %d at offset %d" % \
5173	+ (data.get_size(), offset))
5174	+ self.log("new data length is %d" % self.datalength)
5175	+ self._status.set_size(self.datalength)
5176	+ self._status.set_status("Started")
5177	+ self._started = time.time()
5178	+
5179	+ self.done_deferred = defer.Deferred()
5180	+
5181	+ self._writekey = self._node.get_writekey()
5182	+ assert self._writekey, "need write capability to publish"
5183	+
5184	+ # first, which servers will we publish to? We require that the
5185	+ # servermap was updated in MODE_WRITE, so we can depend upon the
5186	+ # peerlist computed by that process instead of computing our own.
5187	+ assert self._servermap
5188	+ assert self._servermap.last_update_mode in (MODE_WRITE, MODE_CHECK)
5189	+ # we will push a version that is one larger than anything present
5190	+ # in the grid, according to the servermap.
5191	+ self._new_seqnum = self._servermap.highest_seqnum() + 1
5192	+ self._status.set_servermap(self._servermap)
5193	+
5194	+ self.log(format="new seqnum will be %(seqnum)d",
5195	+ seqnum=self._new_seqnum, level=log.NOISY)
5196	+
5197	+ # We're updating an existing file, so all of the following
5198	+ # should be available.
5199	+ self.readkey = self._node.get_readkey()
5200	+ self.required_shares = self._node.get_required_shares()
5201	+ assert self.required_shares is not None
5202	+ self.total_shares = self._node.get_total_shares()
5203	+ assert self.total_shares is not None
5204	+ self._status.set_encoding(self.required_shares, self.total_shares)
5205	+
5206	+ self._pubkey = self._node.get_pubkey()
5207	+ assert self._pubkey
5208	+ self._privkey = self._node.get_privkey()
5209	+ assert self._privkey
5210	+ self._encprivkey = self._node.get_encprivkey()
5211	+
5212	+ sb = self._storage_broker
5213	+ full_peerlist = sb.get_servers_for_index(self._storage_index)
5214	+ self.full_peerlist = full_peerlist # for use later, immutable
5215	+ self.bad_peers = set() # peerids who have errbacked/refused requests
5216	+
5217	+ # This will set self.segment_size, self.num_segments, and
5218	+ # self.fec. TODO: Does it know how to do the offset? Probably
5219	+ # not. So do that part next.
5220	+ self.setup_encoding_parameters(offset=offset)
5221	+
5222	+ # if we experience any surprises (writes which were rejected because
5223	+ # our test vector did not match, or shares which we didn't expect to
5224	+ # see), we set this flag and report an UncoordinatedWriteError at the
5225	+ # end of the publish process.
5226	+ self.surprised = False
5227	+
5228	+ # we keep track of three tables. The first is our goal: which share
5229	+ # we want to see on which servers. This is initially populated by the
5230	+ # existing servermap.
5231	+ self.goal = set() # pairs of (peerid, shnum) tuples
5232	+
5233	+ # the second table is our list of outstanding queries: those which
5234	+ # are in flight and may or may not be delivered, accepted, or
5235	+ # acknowledged. Items are added to this table when the request is
5236	+ # sent, and removed when the response returns (or errbacks).
5237	+ self.outstanding = set() # (peerid, shnum) tuples
5238	+
5239	+ # the third is a table of successes: share which have actually been
5240	+ # placed. These are populated when responses come back with success.
5241	+ # When self.placed == self.goal, we're done.
5242	+ self.placed = set() # (peerid, shnum) tuples
5243	+
5244	+ # we also keep a mapping from peerid to RemoteReference. Each time we
5245	+ # pull a connection out of the full peerlist, we add it to this for
5246	+ # use later.
5247	+ self.connections = {}
5248	+
5249	+ self.bad_share_checkstrings = {}
5250	+
5251	+ # This is set at the last step of the publishing process.
5252	+ self.versioninfo = ""
5253	+
5254	+ # we use the servermap to populate the initial goal: this way we will
5255	+ # try to update each existing share in place. Since we're
5256	+ # updating, we ignore damaged and missing shares -- callers must
5257	+ # do a repair to repair and recreate these.
5258	+ for (peerid, shnum) in self._servermap.servermap:
5259	+ self.goal.add( (peerid, shnum) )
5260	+ self.connections[peerid] = self._servermap.connections[peerid]
5261	+ self.writers = {}
5262	+
5263	+ # SDMF files are updated differently.
5264	+ self._version = MDMF_VERSION
5265	+ writer_class = MDMFSlotWriteProxy
5266	+
5267	+ # For each (peerid, shnum) in self.goal, we make a
5268	+ # write proxy for that peer. We'll use this to write
5269	+ # shares to the peer.
5270	+ for key in self.goal:
5271	+ peerid, shnum = key
5272	+ write_enabler = self._node.get_write_enabler(peerid)
5273	+ renew_secret = self._node.get_renewal_secret(peerid)
5274	+ cancel_secret = self._node.get_cancel_secret(peerid)
5275	+ secrets = (write_enabler, renew_secret, cancel_secret)
5276	+
5277	+ self.writers[shnum] = writer_class(shnum,
5278	+ self.connections[peerid],
5279	+ self._storage_index,
5280	+ secrets,
5281	+ self._new_seqnum,
5282	+ self.required_shares,
5283	+ self.total_shares,
5284	+ self.segment_size,
5285	+ self.datalength)
5286	+ self.writers[shnum].peerid = peerid
5287	+ assert (peerid, shnum) in self._servermap.servermap
5288	+ old_versionid, old_timestamp = self._servermap.servermap[key]
5289	+ (old_seqnum, old_root_hash, old_salt, old_segsize,
5290	+ old_datalength, old_k, old_N, old_prefix,
5291	+ old_offsets_tuple) = old_versionid
5292	+ self.writers[shnum].set_checkstring(old_seqnum,
5293	+ old_root_hash,
5294	+ old_salt)
5295	+
5296	+ # Our remote shares will not have a complete checkstring until
5297	+ # after we are done writing share data and have started to write
5298	+ # blocks. In the meantime, we need to know what to look for when
5299	+ # writing, so that we can detect UncoordinatedWriteErrors.
5300	+ self._checkstring = self.writers.values()[0].get_checkstring()
5301	+
5302	+ # Now, we start pushing shares.
5303	+ self._status.timings["setup"] = time.time() - self._started
5304	+ # First, we encrypt, encode, and publish the shares that we need
5305	+ # to encrypt, encode, and publish.
5306	+
5307	+ # Our update process fetched these for us. We need to update
5308	+ # them in place as publishing happens.
5309	+ self.blockhashes = {} # (shnum, [blochashes])
5310	+ for (i, bht) in blockhashes.iteritems():
5311	+ # We need to extract the leaves from our old hash tree.
5312	+ old_segcount = mathutil.div_ceil(version[4],
5313	+ version[3])
5314	+ h = hashtree.IncompleteHashTree(old_segcount)
5315	+ bht = dict(enumerate(bht))
5316	+ h.set_hashes(bht)
5317	+ leaves = h[h.get_leaf_index(0):]
5318	+ for j in xrange(self.num_segments - len(leaves)):
5319	+ leaves.append(None)
5320	+
5321	+ assert len(leaves) >= self.num_segments
5322	+ self.blockhashes[i] = leaves
5323	+ # This list will now be the leaves that were set during the
5324	+ # initial upload + enough empty hashes to make it a
5325	+ # power-of-two. If we exceed a power of two boundary, we
5326	+ # should be encoding the file over again, and should not be
5327	+ # here. So, we have
5328	+ #assert len(self.blockhashes[i]) == \
5329	+ # hashtree.roundup_pow2(self.num_segments), \
5330	+ # len(self.blockhashes[i])
5331	+ # XXX: Except this doesn't work. Figure out why.
5332	+
5333	+ # These are filled in later, after we've modified the block hash
5334	+ # tree suitably.
5335	+ self.sharehash_leaves = None # eventually [sharehashes]
5336	+ self.sharehashes = {} # shnum -> [sharehash leaves necessary to
5337	+ # validate the share]
5338	+
5339	+ d = defer.succeed(None)
5340	+ self.log("Starting push")
5341	+
5342	+ self._state = PUSHING_BLOCKS_STATE
5343	+ self._push()
5344	+
5345	+ return self.done_deferred
5346	+
5347	+
5348	def publish(self, newdata):
5349	"""Publish the filenode's current contents. Returns a Deferred that
5350	fires (with None) when the publish has done as much work as it's ever
5351	hunk ./src/allmydata/mutable/publish.py 345
5352	simultaneous write.
5353	"""
5354
5355	- # 1: generate shares (SDMF: files are small, so we can do it in RAM)
5356	- # 2: perform peer selection, get candidate servers
5357	- # 2a: send queries to n+epsilon servers, to determine current shares
5358	- # 2b: based upon responses, create target map
5359	- # 3: send slot_testv_and_readv_and_writev messages
5360	- # 4: as responses return, update share-dispatch table
5361	- # 4a: may need to run recovery algorithm
5362	- # 5: when enough responses are back, we're done
5363	+ # 0. Setup encoding parameters, encoder, and other such things.
5364	+ # 1. Encrypt, encode, and publish segments.
5365	+ assert IMutableUploadable.providedBy(newdata)
5366
5367	hunk ./src/allmydata/mutable/publish.py 349
5368	- self.log("starting publish, datalen is %s" % len(newdata))
5369	- self._status.set_size(len(newdata))
5370	+ self.data = newdata
5371	+ self.datalength = newdata.get_size()
5372	+ if self.datalength >= DEFAULT_MAX_SEGMENT_SIZE:
5373	+ self._version = MDMF_VERSION
5374	+ else:
5375	+ self._version = SDMF_VERSION
5376	+
5377	+ self.log("starting publish, datalen is %s" % self.datalength)
5378	+ self._status.set_size(self.datalength)
5379	self._status.set_status("Started")
5380	self._started = time.time()
5381
5382	hunk ./src/allmydata/mutable/publish.py 405
5383	self.full_peerlist = full_peerlist # for use later, immutable
5384	self.bad_peers = set() # peerids who have errbacked/refused requests
5385
5386	- self.newdata = newdata
5387	- self.salt = os.urandom(16)
5388	-
5389	+ # This will set self.segment_size, self.num_segments, and
5390	+ # self.fec.
5391	self.setup_encoding_parameters()
5392
5393	# if we experience any surprises (writes which were rejected because
5394	hunk ./src/allmydata/mutable/publish.py 415
5395	# end of the publish process.
5396	self.surprised = False
5397
5398	- # as a failsafe, refuse to iterate through self.loop more than a
5399	- # thousand times.
5400	- self.looplimit = 1000
5401	-
5402	# we keep track of three tables. The first is our goal: which share
5403	# we want to see on which servers. This is initially populated by the
5404	# existing servermap.
5405	hunk ./src/allmydata/mutable/publish.py 438
5406
5407	self.bad_share_checkstrings = {}
5408
5409	+ # This is set at the last step of the publishing process.
5410	+ self.versioninfo = ""
5411	+
5412	# we use the servermap to populate the initial goal: this way we will
5413	# try to update each existing share in place.
5414	for (peerid, shnum) in self._servermap.servermap:
5415	hunk ./src/allmydata/mutable/publish.py 454
5416	self.bad_share_checkstrings[key] = old_checkstring
5417	self.connections[peerid] = self._servermap.connections[peerid]
5418
5419	- # create the shares. We'll discard these as they are delivered. SDMF:
5420	- # we're allowed to hold everything in memory.
5421	+ # TODO: Make this part do peer selection.
5422	+ self.update_goal()
5423	+ self.writers = {}
5424	+ if self._version == MDMF_VERSION:
5425	+ writer_class = MDMFSlotWriteProxy
5426	+ else:
5427	+ writer_class = SDMFSlotWriteProxy
5428
5429	hunk ./src/allmydata/mutable/publish.py 462
5430	+ # For each (peerid, shnum) in self.goal, we make a
5431	+ # write proxy for that peer. We'll use this to write
5432	+ # shares to the peer.
5433	+ for key in self.goal:
5434	+ peerid, shnum = key
5435	+ write_enabler = self._node.get_write_enabler(peerid)
5436	+ renew_secret = self._node.get_renewal_secret(peerid)
5437	+ cancel_secret = self._node.get_cancel_secret(peerid)
5438	+ secrets = (write_enabler, renew_secret, cancel_secret)
5439	+
5440	+ self.writers[shnum] = writer_class(shnum,
5441	+ self.connections[peerid],
5442	+ self._storage_index,
5443	+ secrets,
5444	+ self._new_seqnum,
5445	+ self.required_shares,
5446	+ self.total_shares,
5447	+ self.segment_size,
5448	+ self.datalength)
5449	+ self.writers[shnum].peerid = peerid
5450	+ if (peerid, shnum) in self._servermap.servermap:
5451	+ old_versionid, old_timestamp = self._servermap.servermap[key]
5452	+ (old_seqnum, old_root_hash, old_salt, old_segsize,
5453	+ old_datalength, old_k, old_N, old_prefix,
5454	+ old_offsets_tuple) = old_versionid
5455	+ self.writers[shnum].set_checkstring(old_seqnum,
5456	+ old_root_hash,
5457	+ old_salt)
5458	+ elif (peerid, shnum) in self.bad_share_checkstrings:
5459	+ old_checkstring = self.bad_share_checkstrings[(peerid, shnum)]
5460	+ self.writers[shnum].set_checkstring(old_checkstring)
5461	+
5462	+ # Our remote shares will not have a complete checkstring until
5463	+ # after we are done writing share data and have started to write
5464	+ # blocks. In the meantime, we need to know what to look for when
5465	+ # writing, so that we can detect UncoordinatedWriteErrors.
5466	+ self._checkstring = self.writers.values()[0].get_checkstring()
5467	+
5468	+ # Now, we start pushing shares.
5469	self._status.timings["setup"] = time.time() - self._started
5470	hunk ./src/allmydata/mutable/publish.py 502
5471	- d = self._encrypt_and_encode()
5472	- d.addCallback(self._generate_shares)
5473	- def _start_pushing(res):
5474	- self._started_pushing = time.time()
5475	- return res
5476	- d.addCallback(_start_pushing)
5477	- d.addCallback(self.loop) # trigger delivery
5478	- d.addErrback(self._fatal_error)
5479	+ # First, we encrypt, encode, and publish the shares that we need
5480	+ # to encrypt, encode, and publish.
5481	+
5482	+ # This will eventually hold the block hash chain for each share
5483	+ # that we publish. We define it this way so that empty publishes
5484	+ # will still have something to write to the remote slot.
5485	+ self.blockhashes = dict([(i, []) for i in xrange(self.total_shares)])
5486	+ for i in xrange(self.total_shares):
5487	+ blocks = self.blockhashes[i]
5488	+ for j in xrange(self.num_segments):
5489	+ blocks.append(None)
5490	+ self.sharehash_leaves = None # eventually [sharehashes]
5491	+ self.sharehashes = {} # shnum -> [sharehash leaves necessary to
5492	+ # validate the share]
5493	+
5494	+ d = defer.succeed(None)
5495	+ self.log("Starting push")
5496	+
5497	+ self._state = PUSHING_BLOCKS_STATE
5498	+ self._push()
5499
5500	return self.done_deferred
5501
5502	hunk ./src/allmydata/mutable/publish.py 525
5503	- def setup_encoding_parameters(self):
5504	- segment_size = len(self.newdata)
5505	+
5506	+ def _update_status(self):
5507	+ self._status.set_status("Sending Shares: %d placed out of %d, "
5508	+ "%d messages outstanding" %
5509	+ (len(self.placed),
5510	+ len(self.goal),
5511	+ len(self.outstanding)))
5512	+ self._status.set_progress(1.0 * len(self.placed) / len(self.goal))
5513	+
5514	+
5515	+ def setup_encoding_parameters(self, offset=0):
5516	+ if self._version == MDMF_VERSION:
5517	+ segment_size = DEFAULT_MAX_SEGMENT_SIZE # 128 KiB by default
5518	+ else:
5519	+ segment_size = self.datalength # SDMF is only one segment
5520	# this must be a multiple of self.required_shares
5521	segment_size = mathutil.next_multiple(segment_size,
5522	self.required_shares)
5523	hunk ./src/allmydata/mutable/publish.py 544
5524	self.segment_size = segment_size
5525	+
5526	+ # Calculate the starting segment for the upload.
5527	if segment_size:
5528	hunk ./src/allmydata/mutable/publish.py 547
5529	- self.num_segments = mathutil.div_ceil(len(self.newdata),
5530	+ self.num_segments = mathutil.div_ceil(self.datalength,
5531	segment_size)
5532	hunk ./src/allmydata/mutable/publish.py 549
5533	+ self.starting_segment = mathutil.div_ceil(offset,
5534	+ segment_size)
5535	+ self.starting_segment -= 1
5536	+ if offset == 0:
5537	+ self.starting_segment = 0
5538	+
5539	else:
5540	self.num_segments = 0
5541	hunk ./src/allmydata/mutable/publish.py 557
5542	- assert self.num_segments in [0, 1,] # SDMF restrictions
5543	+ self.starting_segment = 0
5544	+
5545	+
5546	+ self.log("building encoding parameters for file")
5547	+ self.log("got segsize %d" % self.segment_size)
5548	+ self.log("got %d segments" % self.num_segments)
5549	+
5550	+ if self._version == SDMF_VERSION:
5551	+ assert self.num_segments in (0, 1) # SDMF
5552	+ # calculate the tail segment size.
5553	+
5554	+ if segment_size and self.datalength:
5555	+ self.tail_segment_size = self.datalength % segment_size
5556	+ self.log("got tail segment size %d" % self.tail_segment_size)
5557	+ else:
5558	+ self.tail_segment_size = 0
5559	+
5560	+ if self.tail_segment_size == 0 and segment_size:
5561	+ # The tail segment is the same size as the other segments.
5562	+ self.tail_segment_size = segment_size
5563	+
5564	+ # Make FEC encoders
5565	+ fec = codec.CRSEncoder()
5566	+ fec.set_params(self.segment_size,
5567	+ self.required_shares, self.total_shares)
5568	+ self.piece_size = fec.get_block_size()
5569	+ self.fec = fec
5570	+
5571	+ if self.tail_segment_size == self.segment_size:
5572	+ self.tail_fec = self.fec
5573	+ else:
5574	+ tail_fec = codec.CRSEncoder()
5575	+ tail_fec.set_params(self.tail_segment_size,
5576	+ self.required_shares,
5577	+ self.total_shares)
5578	+ self.tail_fec = tail_fec
5579	+
5580	+ self._current_segment = self.starting_segment
5581	+ self.end_segment = self.num_segments - 1
5582	+ # Now figure out where the last segment should be.
5583	+ if self.data.get_size() != self.datalength:
5584	+ end = self.data.get_size()
5585	+ self.end_segment = mathutil.div_ceil(end,
5586	+ segment_size)
5587	+ self.end_segment -= 1
5588	+ self.log("got start segment %d" % self.starting_segment)
5589	+ self.log("got end segment %d" % self.end_segment)
5590	+
5591	+
5592	+ def _push(self, ignored=None):
5593	+ """
5594	+ I manage state transitions. In particular, I see that we still
5595	+ have a good enough number of writers to complete the upload
5596	+ successfully.
5597	+ """
5598	+ # Can we still successfully publish this file?
5599	+ # TODO: Keep track of outstanding queries before aborting the
5600	+ # process.
5601	+ if len(self.writers) <= self.required_shares or self.surprised:
5602	+ return self._failure()
5603	+
5604	+ # Figure out what we need to do next. Each of these needs to
5605	+ # return a deferred so that we don't block execution when this
5606	+ # is first called in the upload method.
5607	+ if self._state == PUSHING_BLOCKS_STATE:
5608	+ return self.push_segment(self._current_segment)
5609	+
5610	+ elif self._state == PUSHING_EVERYTHING_ELSE_STATE:
5611	+ return self.push_everything_else()
5612	+
5613	+ # If we make it to this point, we were successful in placing the
5614	+ # file.
5615	+ return self._done(None)
5616	+
5617	+
5618	+ def push_segment(self, segnum):
5619	+ if self.num_segments == 0 and self._version == SDMF_VERSION:
5620	+ self._add_dummy_salts()
5621
5622	hunk ./src/allmydata/mutable/publish.py 636
5623	- def _fatal_error(self, f):
5624	- self.log("error during loop", failure=f, level=log.UNUSUAL)
5625	- self._done(f)
5626	+ if segnum > self.end_segment:
5627	+ # We don't have any more segments to push.
5628	+ self._state = PUSHING_EVERYTHING_ELSE_STATE
5629	+ return self._push()
5630	+
5631	+ d = self._encode_segment(segnum)
5632	+ d.addCallback(self._push_segment, segnum)
5633	+ def _increment_segnum(ign):
5634	+ self._current_segment += 1
5635	+ # XXX: I don't think we need to do addBoth here -- any errBacks
5636	+ # should be handled within push_segment.
5637	+ d.addBoth(_increment_segnum)
5638	+ d.addBoth(self._push)
5639	+
5640	+
5641	+ def _add_dummy_salts(self):
5642	+ """
5643	+ SDMF files need a salt even if they're empty, or the signature
5644	+ won't make sense. This method adds a dummy salt to each of our
5645	+ SDMF writers so that they can write the signature later.
5646	+ """
5647	+ salt = os.urandom(16)
5648	+ assert self._version == SDMF_VERSION
5649	+
5650	+ for writer in self.writers.itervalues():
5651	+ writer.put_salt(salt)
5652	+
5653	+
5654	+ def _encode_segment(self, segnum):
5655	+ """
5656	+ I encrypt and encode the segment segnum.
5657	+ """
5658	+ started = time.time()
5659	+
5660	+ if segnum + 1 == self.num_segments:
5661	+ segsize = self.tail_segment_size
5662	+ else:
5663	+ segsize = self.segment_size
5664	+
5665	+
5666	+ self.log("Pushing segment %d of %d" % (segnum + 1, self.num_segments))
5667	+ data = self.data.read(segsize)
5668	+ # XXX: This is dumb. Why return a list?
5669	+ data = "".join(data)
5670	+
5671	+ assert len(data) == segsize, len(data)
5672	+
5673	+ salt = os.urandom(16)
5674	+
5675	+ key = hashutil.ssk_readkey_data_hash(salt, self.readkey)
5676	+ self._status.set_status("Encrypting")
5677	+ enc = AES(key)
5678	+ crypttext = enc.process(data)
5679	+ assert len(crypttext) == len(data)
5680	+
5681	+ now = time.time()
5682	+ self._status.timings["encrypt"] = now - started
5683	+ started = now
5684	+
5685	+ # now apply FEC
5686	+ if segnum + 1 == self.num_segments:
5687	+ fec = self.tail_fec
5688	+ else:
5689	+ fec = self.fec
5690	+
5691	+ self._status.set_status("Encoding")
5692	+ crypttext_pieces = [None] * self.required_shares
5693	+ piece_size = fec.get_block_size()
5694	+ for i in range(len(crypttext_pieces)):
5695	+ offset = i * piece_size
5696	+ piece = crypttext[offset:offset+piece_size]
5697	+ piece = piece + "\x00"*(piece_size - len(piece)) # padding
5698	+ crypttext_pieces[i] = piece
5699	+ assert len(piece) == piece_size
5700	+ d = fec.encode(crypttext_pieces)
5701	+ def _done_encoding(res):
5702	+ elapsed = time.time() - started
5703	+ self._status.timings["encode"] = elapsed
5704	+ return (res, salt)
5705	+ d.addCallback(_done_encoding)
5706	+ return d
5707	+
5708	+
5709	+ def _push_segment(self, encoded_and_salt, segnum):
5710	+ """
5711	+ I push (data, salt) as segment number segnum.
5712	+ """
5713	+ results, salt = encoded_and_salt
5714	+ shares, shareids = results
5715	+ started = time.time()
5716	+ self._status.set_status("Pushing segment")
5717	+ for i in xrange(len(shares)):
5718	+ sharedata = shares[i]
5719	+ shareid = shareids[i]
5720	+ if self._version == MDMF_VERSION:
5721	+ hashed = salt + sharedata
5722	+ else:
5723	+ hashed = sharedata
5724	+ block_hash = hashutil.block_hash(hashed)
5725	+ old_hash = self.blockhashes[shareid][segnum]
5726	+ self.blockhashes[shareid][segnum] = block_hash
5727	+ # find the writer for this share
5728	+ writer = self.writers[shareid]
5729	+ writer.put_block(sharedata, segnum, salt)
5730	+
5731	+
5732	+ def push_everything_else(self):
5733	+ """
5734	+ I put everything else associated with a share.
5735	+ """
5736	+ self._pack_started = time.time()
5737	+ self.push_encprivkey()
5738	+ self.push_blockhashes()
5739	+ self.push_sharehashes()
5740	+ self.push_toplevel_hashes_and_signature()
5741	+ d = self.finish_publishing()
5742	+ def _change_state(ignored):
5743	+ self._state = DONE_STATE
5744	+ d.addCallback(_change_state)
5745	+ d.addCallback(self._push)
5746	+ return d
5747	+
5748	+
5749	+ def push_encprivkey(self):
5750	+ encprivkey = self._encprivkey
5751	+ self._status.set_status("Pushing encrypted private key")
5752	+ for writer in self.writers.itervalues():
5753	+ writer.put_encprivkey(encprivkey)
5754	+
5755	+
5756	+ def push_blockhashes(self):
5757	+ self.sharehash_leaves = [None] * len(self.blockhashes)
5758	+ self.log("%s" % self.blockhashes)
5759	+ self._status.set_status("Building and pushing block hash tree")
5760	+ for shnum, blockhashes in self.blockhashes.iteritems():
5761	+ t = hashtree.HashTree(blockhashes)
5762	+ self.blockhashes[shnum] = list(t)
5763	+ # set the leaf for future use.
5764	+ self.sharehash_leaves[shnum] = t[0]
5765	+
5766	+ writer = self.writers[shnum]
5767	+ writer.put_blockhashes(self.blockhashes[shnum])
5768	+
5769	+
5770	+ def push_sharehashes(self):
5771	+ self._status.set_status("Building and pushing share hash chain")
5772	+ share_hash_tree = hashtree.HashTree(self.sharehash_leaves)
5773	+ share_hash_chain = {}
5774	+ for shnum in xrange(len(self.sharehash_leaves)):
5775	+ needed_indices = share_hash_tree.needed_hashes(shnum)
5776	+ self.sharehashes[shnum] = dict( [ (i, share_hash_tree[i])
5777	+ for i in needed_indices] )
5778	+ writer = self.writers[shnum]
5779	+ writer.put_sharehashes(self.sharehashes[shnum])
5780	+ self.root_hash = share_hash_tree[0]
5781	+
5782	+
5783	+ def push_toplevel_hashes_and_signature(self):
5784	+ # We need to to three things here:
5785	+ # - Push the root hash and salt hash
5786	+ # - Get the checkstring of the resulting layout; sign that.
5787	+ # - Push the signature
5788	+ self._status.set_status("Pushing root hashes and signature")
5789	+ for shnum in xrange(self.total_shares):
5790	+ writer = self.writers[shnum]
5791	+ writer.put_root_hash(self.root_hash)
5792	+ self._update_checkstring()
5793	+ self._make_and_place_signature()
5794	+
5795	+
5796	+ def _update_checkstring(self):
5797	+ """
5798	+ After putting the root hash, MDMF files will have the
5799	+ checkstring written to the storage server. This means that we
5800	+ can update our copy of the checkstring so we can detect
5801	+ uncoordinated writes. SDMF files will have the same checkstring,
5802	+ so we need not do anything.
5803	+ """
5804	+ self._checkstring = self.writers.values()[0].get_checkstring()
5805	+
5806	+
5807	+ def _make_and_place_signature(self):
5808	+ """
5809	+ I create and place the signature.
5810	+ """
5811	+ started = time.time()
5812	+ self._status.set_status("Signing prefix")
5813	+ signable = self.writers[0].get_signable()
5814	+ self.signature = self._privkey.sign(signable)
5815	+
5816	+ for (shnum, writer) in self.writers.iteritems():
5817	+ writer.put_signature(self.signature)
5818	+ self._status.timings['sign'] = time.time() - started
5819	+
5820	+
5821	+ def finish_publishing(self):
5822	+ # We're almost done -- we just need to put the verification key
5823	+ # and the offsets
5824	+ started = time.time()
5825	+ self._status.set_status("Pushing shares")
5826	+ self._started_pushing = started
5827	+ ds = []
5828	+ verification_key = self._pubkey.serialize()
5829	+
5830	+
5831	+ # TODO: Bad, since we remove from this same dict. We need to
5832	+ # make a copy, or just use a non-iterated value.
5833	+ for (shnum, writer) in self.writers.iteritems():
5834	+ writer.put_verification_key(verification_key)
5835	+ d = writer.finish_publishing()
5836	+ # Add the (peerid, shnum) tuple to our list of outstanding
5837	+ # queries. This gets used by _loop if some of our queries
5838	+ # fail to place shares.
5839	+ self.outstanding.add((writer.peerid, writer.shnum))
5840	+ d.addCallback(self._got_write_answer, writer, started)
5841	+ d.addErrback(self._connection_problem, writer)
5842	+ ds.append(d)
5843	+ self._record_verinfo()
5844	+ self._status.timings['pack'] = time.time() - started
5845	+ return defer.DeferredList(ds)
5846	+
5847	+
5848	+ def _record_verinfo(self):
5849	+ self.versioninfo = self.writers.values()[0].get_verinfo()
5850	+
5851	+
5852	+ def _connection_problem(self, f, writer):
5853	+ """
5854	+ We ran into a connection problem while working with writer, and
5855	+ need to deal with that.
5856	+ """
5857	+ self.log("found problem: %s" % str(f))
5858	+ self._last_failure = f
5859	+ del(self.writers[writer.shnum])
5860
5861	hunk ./src/allmydata/mutable/publish.py 871
5862	- def _update_status(self):
5863	- self._status.set_status("Sending Shares: %d placed out of %d, "
5864	- "%d messages outstanding" %
5865	- (len(self.placed),
5866	- len(self.goal),
5867	- len(self.outstanding)))
5868	- self._status.set_progress(1.0 * len(self.placed) / len(self.goal))
5869
5870	hunk ./src/allmydata/mutable/publish.py 872
5871	- def loop(self, ignored=None):
5872	- self.log("entering loop", level=log.NOISY)
5873	- if not self._running:
5874	- return
5875	-
5876	- self.looplimit -= 1
5877	- if self.looplimit <= 0:
5878	- raise LoopLimitExceededError("loop limit exceeded")
5879	-
5880	- if self.surprised:
5881	- # don't send out any new shares, just wait for the outstanding
5882	- # ones to be retired.
5883	- self.log("currently surprised, so don't send any new shares",
5884	- level=log.NOISY)
5885	- else:
5886	- self.update_goal()
5887	- # how far are we from our goal?
5888	- needed = self.goal - self.placed - self.outstanding
5889	- self._update_status()
5890	-
5891	- if needed:
5892	- # we need to send out new shares
5893	- self.log(format="need to send %(needed)d new shares",
5894	- needed=len(needed), level=log.NOISY)
5895	- self._send_shares(needed)
5896	- return
5897	-
5898	- if self.outstanding:
5899	- # queries are still pending, keep waiting
5900	- self.log(format="%(outstanding)d queries still outstanding",
5901	- outstanding=len(self.outstanding),
5902	- level=log.NOISY)
5903	- return
5904	-
5905	- # no queries outstanding, no placements needed: we're done
5906	- self.log("no queries outstanding, no placements needed: done",
5907	- level=log.OPERATIONAL)
5908	- now = time.time()
5909	- elapsed = now - self._started_pushing
5910	- self._status.timings["push"] = elapsed
5911	- return self._done(None)
5912	-
5913	def log_goal(self, goal, message=""):
5914	logmsg = [message]
5915	for (shnum, peerid) in sorted([(s,p) for (p,s) in goal]):
5916	hunk ./src/allmydata/mutable/publish.py 953
5917	self.log_goal(self.goal, "after update: ")
5918
5919
5920	+ def _got_write_answer(self, answer, writer, started):
5921	+ if not answer:
5922	+ # SDMF writers only pretend to write when readers set their
5923	+ # blocks, salts, and so on -- they actually just write once,
5924	+ # at the end of the upload process. In fake writes, they
5925	+ # return defer.succeed(None). If we see that, we shouldn't
5926	+ # bother checking it.
5927	+ return
5928
5929	hunk ./src/allmydata/mutable/publish.py 962
5930	- def _encrypt_and_encode(self):
5931	- # this returns a Deferred that fires with a list of (sharedata,
5932	- # sharenum) tuples. TODO: cache the ciphertext, only produce the
5933	- # shares that we care about.
5934	- self.log("_encrypt_and_encode")
5935	-
5936	- self._status.set_status("Encrypting")
5937	- started = time.time()
5938	-
5939	- key = hashutil.ssk_readkey_data_hash(self.salt, self.readkey)
5940	- enc = AES(key)
5941	- crypttext = enc.process(self.newdata)
5942	- assert len(crypttext) == len(self.newdata)
5943	+ peerid = writer.peerid
5944	+ lp = self.log("_got_write_answer from %s, share %d" %
5945	+ (idlib.shortnodeid_b2a(peerid), writer.shnum))
5946
5947	now = time.time()
5948	hunk ./src/allmydata/mutable/publish.py 967
5949	- self._status.timings["encrypt"] = now - started
5950	- started = now
5951	-
5952	- # now apply FEC
5953	-
5954	- self._status.set_status("Encoding")
5955	- fec = codec.CRSEncoder()
5956	- fec.set_params(self.segment_size,
5957	- self.required_shares, self.total_shares)
5958	- piece_size = fec.get_block_size()
5959	- crypttext_pieces = [None] * self.required_shares
5960	- for i in range(len(crypttext_pieces)):
5961	- offset = i * piece_size
5962	- piece = crypttext[offset:offset+piece_size]
5963	- piece = piece + "\x00"*(piece_size - len(piece)) # padding
5964	- crypttext_pieces[i] = piece
5965	- assert len(piece) == piece_size
5966	-
5967	- d = fec.encode(crypttext_pieces)
5968	- def _done_encoding(res):
5969	- elapsed = time.time() - started
5970	- self._status.timings["encode"] = elapsed
5971	- return res
5972	- d.addCallback(_done_encoding)
5973	- return d
5974	-
5975	- def _generate_shares(self, shares_and_shareids):
5976	- # this sets self.shares and self.root_hash
5977	- self.log("_generate_shares")
5978	- self._status.set_status("Generating Shares")
5979	- started = time.time()
5980	-
5981	- # we should know these by now
5982	- privkey = self._privkey
5983	- encprivkey = self._encprivkey
5984	- pubkey = self._pubkey
5985	-
5986	- (shares, share_ids) = shares_and_shareids
5987	-
5988	- assert len(shares) == len(share_ids)
5989	- assert len(shares) == self.total_shares
5990	- all_shares = {}
5991	- block_hash_trees = {}
5992	- share_hash_leaves = [None] * len(shares)
5993	- for i in range(len(shares)):
5994	- share_data = shares[i]
5995	- shnum = share_ids[i]
5996	- all_shares[shnum] = share_data
5997	-
5998	- # build the block hash tree. SDMF has only one leaf.
5999	- leaves = [hashutil.block_hash(share_data)]
6000	- t = hashtree.HashTree(leaves)
6001	- block_hash_trees[shnum] = list(t)
6002	- share_hash_leaves[shnum] = t[0]
6003	- for leaf in share_hash_leaves:
6004	- assert leaf is not None
6005	- share_hash_tree = hashtree.HashTree(share_hash_leaves)
6006	- share_hash_chain = {}
6007	- for shnum in range(self.total_shares):
6008	- needed_hashes = share_hash_tree.needed_hashes(shnum)
6009	- share_hash_chain[shnum] = dict( [ (i, share_hash_tree[i])
6010	- for i in needed_hashes ] )
6011	- root_hash = share_hash_tree[0]
6012	- assert len(root_hash) == 32
6013	- self.log("my new root_hash is %s" % base32.b2a(root_hash))
6014	- self._new_version_info = (self._new_seqnum, root_hash, self.salt)
6015	-
6016	- prefix = pack_prefix(self._new_seqnum, root_hash, self.salt,
6017	- self.required_shares, self.total_shares,
6018	- self.segment_size, len(self.newdata))
6019	-
6020	- # now pack the beginning of the share. All shares are the same up
6021	- # to the signature, then they have divergent share hash chains,
6022	- # then completely different block hash trees + salt + share data,
6023	- # then they all share the same encprivkey at the end. The sizes
6024	- # of everything are the same for all shares.
6025	-
6026	- sign_started = time.time()
6027	- signature = privkey.sign(prefix)
6028	- self._status.timings["sign"] = time.time() - sign_started
6029	-
6030	- verification_key = pubkey.serialize()
6031	-
6032	- final_shares = {}
6033	- for shnum in range(self.total_shares):
6034	- final_share = pack_share(prefix,
6035	- verification_key,
6036	- signature,
6037	- share_hash_chain[shnum],
6038	- block_hash_trees[shnum],
6039	- all_shares[shnum],
6040	- encprivkey)
6041	- final_shares[shnum] = final_share
6042	- elapsed = time.time() - started
6043	- self._status.timings["pack"] = elapsed
6044	- self.shares = final_shares
6045	- self.root_hash = root_hash
6046	-
6047	- # we also need to build up the version identifier for what we're
6048	- # pushing. Extract the offsets from one of our shares.
6049	- assert final_shares
6050	- offsets = unpack_header(final_shares.values()[0])[-1]
6051	- offsets_tuple = tuple( [(key,value) for key,value in offsets.items()] )
6052	- verinfo = (self._new_seqnum, root_hash, self.salt,
6053	- self.segment_size, len(self.newdata),
6054	- self.required_shares, self.total_shares,
6055	- prefix, offsets_tuple)
6056	- self.versioninfo = verinfo
6057	-
6058	-
6059	-
6060	- def _send_shares(self, needed):
6061	- self.log("_send_shares")
6062	-
6063	- # we're finally ready to send out our shares. If we encounter any
6064	- # surprises here, it's because somebody else is writing at the same
6065	- # time. (Note: in the future, when we remove the _query_peers() step
6066	- # and instead speculate about [or remember] which shares are where,
6067	- # surprises here are not indications of UncoordinatedWriteError,
6068	- # and we'll need to respond to them more gracefully.)
6069	-
6070	- # needed is a set of (peerid, shnum) tuples. The first thing we do is
6071	- # organize it by peerid.
6072	-
6073	- peermap = DictOfSets()
6074	- for (peerid, shnum) in needed:
6075	- peermap.add(peerid, shnum)
6076	-
6077	- # the next thing is to build up a bunch of test vectors. The
6078	- # semantics of Publish are that we perform the operation if the world
6079	- # hasn't changed since the ServerMap was constructed (more or less).
6080	- # For every share we're trying to place, we create a test vector that
6081	- # tests to see if the server*share still corresponds to the
6082	- # map.
6083	-
6084	- all_tw_vectors = {} # maps peerid to tw_vectors
6085	- sm = self._servermap.servermap
6086	-
6087	- for key in needed:
6088	- (peerid, shnum) = key
6089	-
6090	- if key in sm:
6091	- # an old version of that share already exists on the
6092	- # server, according to our servermap. We will create a
6093	- # request that attempts to replace it.
6094	- old_versionid, old_timestamp = sm[key]
6095	- (old_seqnum, old_root_hash, old_salt, old_segsize,
6096	- old_datalength, old_k, old_N, old_prefix,
6097	- old_offsets_tuple) = old_versionid
6098	- old_checkstring = pack_checkstring(old_seqnum,
6099	- old_root_hash,
6100	- old_salt)
6101	- testv = (0, len(old_checkstring), "eq", old_checkstring)
6102	-
6103	- elif key in self.bad_share_checkstrings:
6104	- old_checkstring = self.bad_share_checkstrings[key]
6105	- testv = (0, len(old_checkstring), "eq", old_checkstring)
6106	-
6107	- else:
6108	- # add a testv that requires the share not exist
6109	-
6110	- # Unfortunately, foolscap-0.2.5 has a bug in the way inbound
6111	- # constraints are handled. If the same object is referenced
6112	- # multiple times inside the arguments, foolscap emits a
6113	- # 'reference' token instead of a distinct copy of the
6114	- # argument. The bug is that these 'reference' tokens are not
6115	- # accepted by the inbound constraint code. To work around
6116	- # this, we need to prevent python from interning the
6117	- # (constant) tuple, by creating a new copy of this vector
6118	- # each time.
6119	-
6120	- # This bug is fixed in foolscap-0.2.6, and even though this
6121	- # version of Tahoe requires foolscap-0.3.1 or newer, we are
6122	- # supposed to be able to interoperate with older versions of
6123	- # Tahoe which are allowed to use older versions of foolscap,
6124	- # including foolscap-0.2.5 . In addition, I've seen other
6125	- # foolscap problems triggered by 'reference' tokens (see #541
6126	- # for details). So we must keep this workaround in place.
6127	-
6128	- #testv = (0, 1, 'eq', "")
6129	- testv = tuple([0, 1, 'eq', ""])
6130	-
6131	- testvs = [testv]
6132	- # the write vector is simply the share
6133	- writev = [(0, self.shares[shnum])]
6134	-
6135	- if peerid not in all_tw_vectors:
6136	- all_tw_vectors[peerid] = {}
6137	- # maps shnum to (testvs, writevs, new_length)
6138	- assert shnum not in all_tw_vectors[peerid]
6139	-
6140	- all_tw_vectors[peerid][shnum] = (testvs, writev, None)
6141	-
6142	- # we read the checkstring back from each share, however we only use
6143	- # it to detect whether there was a new share that we didn't know
6144	- # about. The success or failure of the write will tell us whether
6145	- # there was a collision or not. If there is a collision, the first
6146	- # thing we'll do is update the servermap, which will find out what
6147	- # happened. We could conceivably reduce a roundtrip by using the
6148	- # readv checkstring to populate the servermap, but really we'd have
6149	- # to read enough data to validate the signatures too, so it wouldn't
6150	- # be an overall win.
6151	- read_vector = [(0, struct.calcsize(SIGNED_PREFIX))]
6152	-
6153	- # ok, send the messages!
6154	- self.log("sending %d shares" % len(all_tw_vectors), level=log.NOISY)
6155	- started = time.time()
6156	- for (peerid, tw_vectors) in all_tw_vectors.items():
6157	-
6158	- write_enabler = self._node.get_write_enabler(peerid)
6159	- renew_secret = self._node.get_renewal_secret(peerid)
6160	- cancel_secret = self._node.get_cancel_secret(peerid)
6161	- secrets = (write_enabler, renew_secret, cancel_secret)
6162	- shnums = tw_vectors.keys()
6163	-
6164	- for shnum in shnums:
6165	- self.outstanding.add( (peerid, shnum) )
6166	+ elapsed = now - started
6167
6168	hunk ./src/allmydata/mutable/publish.py 969
6169	- d = self._do_testreadwrite(peerid, secrets,
6170	- tw_vectors, read_vector)
6171	- d.addCallbacks(self._got_write_answer, self._got_write_error,
6172	- callbackArgs=(peerid, shnums, started),
6173	- errbackArgs=(peerid, shnums, started))
6174	- # tolerate immediate errback, like with DeadReferenceError
6175	- d.addBoth(fireEventually)
6176	- d.addCallback(self.loop)
6177	- d.addErrback(self._fatal_error)
6178	+ self._status.add_per_server_time(peerid, elapsed)
6179
6180	hunk ./src/allmydata/mutable/publish.py 971
6181	- self._update_status()
6182	- self.log("%d shares sent" % len(all_tw_vectors), level=log.NOISY)
6183	+ wrote, read_data = answer
6184
6185	hunk ./src/allmydata/mutable/publish.py 973
6186	- def _do_testreadwrite(self, peerid, secrets,
6187	- tw_vectors, read_vector):
6188	- storage_index = self._storage_index
6189	- ss = self.connections[peerid]
6190	+ surprise_shares = set(read_data.keys()) - set([writer.shnum])
6191
6192	hunk ./src/allmydata/mutable/publish.py 975
6193	- #print "SS[%s] is %s" % (idlib.shortnodeid_b2a(peerid), ss), ss.tracker.interfaceName
6194	- d = ss.callRemote("slot_testv_and_readv_and_writev",
6195	- storage_index,
6196	- secrets,
6197	- tw_vectors,
6198	- read_vector)
6199	- return d
6200	+ # We need to remove from surprise_shares any shares that we are
6201	+ # knowingly also writing to that peer from other writers.
6202
6203	hunk ./src/allmydata/mutable/publish.py 978
6204	- def _got_write_answer(self, answer, peerid, shnums, started):
6205	- lp = self.log("_got_write_answer from %s" %
6206	- idlib.shortnodeid_b2a(peerid))
6207	- for shnum in shnums:
6208	- self.outstanding.discard( (peerid, shnum) )
6209	+ # TODO: Precompute this.
6210	+ known_shnums = [x.shnum for x in self.writers.values()
6211	+ if x.peerid == peerid]
6212	+ surprise_shares -= set(known_shnums)
6213	+ self.log("found the following surprise shares: %s" %
6214	+ str(surprise_shares))
6215
6216	hunk ./src/allmydata/mutable/publish.py 985
6217	- now = time.time()
6218	- elapsed = now - started
6219	- self._status.add_per_server_time(peerid, elapsed)
6220	-
6221	- wrote, read_data = answer
6222	-
6223	- surprise_shares = set(read_data.keys()) - set(shnums)
6224	+ # Now surprise shares contains all of the shares that we did not
6225	+ # expect to be there.
6226
6227	surprised = False
6228	for shnum in surprise_shares:
6229	hunk ./src/allmydata/mutable/publish.py 992
6230	# read_data is a dict mapping shnum to checkstring (SIGNED_PREFIX)
6231	checkstring = read_data[shnum][0]
6232	- their_version_info = unpack_checkstring(checkstring)
6233	- if their_version_info == self._new_version_info:
6234	+ # What we want to do here is to see if their (seqnum,
6235	+ # roothash, salt) is the same as our (seqnum, roothash,
6236	+ # salt), or the equivalent for MDMF. The best way to do this
6237	+ # is to store a packed representation of our checkstring
6238	+ # somewhere, then not bother unpacking the other
6239	+ # checkstring.
6240	+ if checkstring == self._checkstring:
6241	# they have the right share, somehow
6242
6243	if (peerid,shnum) in self.goal:
6244	hunk ./src/allmydata/mutable/publish.py 1077
6245	self.log("our testv failed, so the write did not happen",
6246	parent=lp, level=log.WEIRD, umid="8sc26g")
6247	self.surprised = True
6248	- self.bad_peers.add(peerid) # don't ask them again
6249	+ self.bad_peers.add(writer) # don't ask them again
6250	# use the checkstring to add information to the log message
6251	for (shnum,readv) in read_data.items():
6252	checkstring = readv[0]
6253	hunk ./src/allmydata/mutable/publish.py 1099
6254	# if expected_version==None, then we didn't expect to see a
6255	# share on that peer, and the 'surprise_shares' clause above
6256	# will have logged it.
6257	- # self.loop() will take care of finding new homes
6258	return
6259
6260	hunk ./src/allmydata/mutable/publish.py 1101
6261	- for shnum in shnums:
6262	- self.placed.add( (peerid, shnum) )
6263	- # and update the servermap
6264	- self._servermap.add_new_share(peerid, shnum,
6265	+ # and update the servermap
6266	+ # self.versioninfo is set during the last phase of publishing.
6267	+ # If we get there, we know that responses correspond to placed
6268	+ # shares, and can safely execute these statements.
6269	+ if self.versioninfo:
6270	+ self.log("wrote successfully: adding new share to servermap")
6271	+ self._servermap.add_new_share(peerid, writer.shnum,
6272	self.versioninfo, started)
6273	hunk ./src/allmydata/mutable/publish.py 1109
6274	-
6275	- # self.loop() will take care of checking to see if we're done
6276	+ self.placed.add( (peerid, writer.shnum) )
6277	+ self._update_status()
6278	+ # the next method in the deferred chain will check to see if
6279	+ # we're done and successful.
6280	return
6281
6282	hunk ./src/allmydata/mutable/publish.py 1115
6283	- def _got_write_error(self, f, peerid, shnums, started):
6284	- for shnum in shnums:
6285	- self.outstanding.discard( (peerid, shnum) )
6286	- self.bad_peers.add(peerid)
6287	- if self._first_write_error is None:
6288	- self._first_write_error = f
6289	- self.log(format="error while writing shares %(shnums)s to peerid %(peerid)s",
6290	- shnums=list(shnums), peerid=idlib.shortnodeid_b2a(peerid),
6291	- failure=f,
6292	- level=log.UNUSUAL)
6293	- # self.loop() will take care of checking to see if we're done
6294	- return
6295	-
6296
6297	def _done(self, res):
6298	if not self._running:
6299	hunk ./src/allmydata/mutable/publish.py 1122
6300	self._running = False
6301	now = time.time()
6302	self._status.timings["total"] = now - self._started
6303	+
6304	+ elapsed = now - self._started_pushing
6305	+ self._status.timings['push'] = elapsed
6306	+
6307	self._status.set_active(False)
6308	hunk ./src/allmydata/mutable/publish.py 1127
6309	- if isinstance(res, failure.Failure):
6310	- self.log("Publish done, with failure", failure=res,
6311	- level=log.WEIRD, umid="nRsR9Q")
6312	- self._status.set_status("Failed")
6313	- elif self.surprised:
6314	- self.log("Publish done, UncoordinatedWriteError", level=log.UNUSUAL)
6315	- self._status.set_status("UncoordinatedWriteError")
6316	- # deliver a failure
6317	- res = failure.Failure(UncoordinatedWriteError())
6318	- # TODO: recovery
6319	- else:
6320	- self.log("Publish done, success")
6321	- self._status.set_status("Finished")
6322	- self._status.set_progress(1.0)
6323	+ self.log("Publish done, success")
6324	+ self._status.set_status("Finished")
6325	+ self._status.set_progress(1.0)
6326	eventually(self.done_deferred.callback, res)
6327
6328	hunk ./src/allmydata/mutable/publish.py 1132
6329	+ def _failure(self):
6330	+
6331	+ if not self.surprised:
6332	+ # We ran out of servers
6333	+ self.log("Publish ran out of good servers, "
6334	+ "last failure was: %s" % str(self._last_failure))
6335	+ e = NotEnoughServersError("Ran out of non-bad servers, "
6336	+ "last failure was %s" %
6337	+ str(self._last_failure))
6338	+ else:
6339	+ # We ran into shares that we didn't recognize, which means
6340	+ # that we need to return an UncoordinatedWriteError.
6341	+ self.log("Publish failed with UncoordinatedWriteError")
6342	+ e = UncoordinatedWriteError()
6343	+ f = failure.Failure(e)
6344	+ eventually(self.done_deferred.callback, f)
6345	+
6346	+
6347	+class MutableFileHandle:
6348	+ """
6349	+ I am a mutable uploadable built around a filehandle-like object,
6350	+ usually either a StringIO instance or a handle to an actual file.
6351	+ """
6352	+ implements(IMutableUploadable)
6353	+
6354	+ def __init__(self, filehandle):
6355	+ # The filehandle is defined as a generally file-like object that
6356	+ # has these two methods. We don't care beyond that.
6357	+ assert hasattr(filehandle, "read")
6358	+ assert hasattr(filehandle, "close")
6359	+
6360	+ self._filehandle = filehandle
6361	+ # We must start reading at the beginning of the file, or we risk
6362	+ # encountering errors when the data read does not match the size
6363	+ # reported to the uploader.
6364	+ self._filehandle.seek(0)
6365	+
6366	+ # We have not yet read anything, so our position is 0.
6367	+ self._marker = 0
6368	+
6369	+
6370	+ def get_size(self):
6371	+ """
6372	+ I return the amount of data in my filehandle.
6373	+ """
6374	+ if not hasattr(self, "_size"):
6375	+ old_position = self._filehandle.tell()
6376	+ # Seek to the end of the file by seeking 0 bytes from the
6377	+ # file's end
6378	+ self._filehandle.seek(0, 2) # 2 == os.SEEK_END in 2.5+
6379	+ self._size = self._filehandle.tell()
6380	+ # Restore the previous position, in case this was called
6381	+ # after a read.
6382	+ self._filehandle.seek(old_position)
6383	+ assert self._filehandle.tell() == old_position
6384	+
6385	+ assert hasattr(self, "_size")
6386	+ return self._size
6387	+
6388	+
6389	+ def pos(self):
6390	+ """
6391	+ I return the position of my read marker -- i.e., how much data I
6392	+ have already read and returned to callers.
6393	+ """
6394	+ return self._marker
6395	+
6396	+
6397	+ def read(self, length):
6398	+ """
6399	+ I return some data (up to length bytes) from my filehandle.
6400	+
6401	+ In most cases, I return length bytes, but sometimes I won't --
6402	+ for example, if I am asked to read beyond the end of a file, or
6403	+ an error occurs.
6404	+ """
6405	+ results = self._filehandle.read(length)
6406	+ self._marker += len(results)
6407	+ return [results]
6408	+
6409	+
6410	+ def close(self):
6411	+ """
6412	+ I close the underlying filehandle. Any further operations on the
6413	+ filehandle fail at this point.
6414	+ """
6415	+ self._filehandle.close()
6416	+
6417	+
6418	+class MutableData(MutableFileHandle):
6419	+ """
6420	+ I am a mutable uploadable built around a string, which I then cast
6421	+ into a StringIO and treat as a filehandle.
6422	+ """
6423	+
6424	+ def __init__(self, s):
6425	+ # Take a string and return a file-like uploadable.
6426	+ assert isinstance(s, str)
6427	+
6428	+ MutableFileHandle.__init__(self, StringIO(s))
6429	+
6430	+
6431	+class TransformingUploadable:
6432	+ """
6433	+ I am an IMutableUploadable that wraps another IMutableUploadable,
6434	+ and some segments that are already on the grid. When I am called to
6435	+ read, I handle merging of boundary segments.
6436	+ """
6437	+ implements(IMutableUploadable)
6438	+
6439	+
6440	+ def __init__(self, data, offset, segment_size, start, end):
6441	+ assert IMutableUploadable.providedBy(data)
6442	+
6443	+ self._newdata = data
6444	+ self._offset = offset
6445	+ self._segment_size = segment_size
6446	+ self._start = start
6447	+ self._end = end
6448	+
6449	+ self._read_marker = 0
6450	+
6451	+ self._first_segment_offset = offset % segment_size
6452	+
6453	+ num = self.log("TransformingUploadable: starting", parent=None)
6454	+ self._log_number = num
6455	+ self.log("got fso: %d" % self._first_segment_offset)
6456	+ self.log("got offset: %d" % self._offset)
6457	+
6458	+
6459	+ def log(self, args, *kwargs):
6460	+ if 'parent' not in kwargs:
6461	+ kwargs['parent'] = self._log_number
6462	+ if "facility" not in kwargs:
6463	+ kwargs["facility"] = "tahoe.mutable.transforminguploadable"
6464	+ return log.msg(args, *kwargs)
6465	+
6466	+
6467	+ def get_size(self):
6468	+ return self._offset + self._newdata.get_size()
6469	+
6470	+
6471	+ def read(self, length):
6472	+ # We can get data from 3 sources here.
6473	+ # 1. The first of the segments provided to us.
6474	+ # 2. The data that we're replacing things with.
6475	+ # 3. The last of the segments provided to us.
6476	+
6477	+ # are we in state 0?
6478	+ self.log("reading %d bytes" % length)
6479	+
6480	+ old_start_data = ""
6481	+ old_data_length = self._first_segment_offset - self._read_marker
6482	+ if old_data_length > 0:
6483	+ if old_data_length > length:
6484	+ old_data_length = length
6485	+ self.log("returning %d bytes of old start data" % old_data_length)
6486	+
6487	+ old_data_end = old_data_length + self._read_marker
6488	+ old_start_data = self._start[self._read_marker:old_data_end]
6489	+ length -= old_data_length
6490	+ else:
6491	+ # otherwise calculations later get screwed up.
6492	+ old_data_length = 0
6493	+
6494	+ # Is there enough new data to satisfy this read? If not, we need
6495	+ # to pad the end of the data with data from our last segment.
6496	+ old_end_length = length - \
6497	+ (self._newdata.get_size() - self._newdata.pos())
6498	+ old_end_data = ""
6499	+ if old_end_length > 0:
6500	+ self.log("reading %d bytes of old end data" % old_end_length)
6501	+
6502	+ # TODO: We're not explicitly checking for tail segment size
6503	+ # here. Is that a problem?
6504	+ old_data_offset = (length - old_end_length + \
6505	+ old_data_length) % self._segment_size
6506	+ self.log("reading at offset %d" % old_data_offset)
6507	+ old_end = old_data_offset + old_end_length
6508	+ old_end_data = self._end[old_data_offset:old_end]
6509	+ length -= old_end_length
6510	+ assert length == self._newdata.get_size() - self._newdata.pos()
6511	+
6512	+ self.log("reading %d bytes of new data" % length)
6513	+ new_data = self._newdata.read(length)
6514	+ new_data = "".join(new_data)
6515	+
6516	+ self._read_marker += len(old_start_data + new_data + old_end_data)
6517	+
6518	+ return old_start_data + new_data + old_end_data
6519
6520	hunk ./src/allmydata/mutable/publish.py 1323
6521	+ def close(self):
6522	+ pass
6523	}
6524	[mutable/retrieve.py: Modify the retrieval process to support MDMF
6525	Kevan Carstensen <kevan@isnotajoke.com>**20100811002000
6526	Ignore-this: 123259424d6e5748730c08d72a48d601
6527
6528	The logic behind a mutable file download had to be adapted to work with
6529	segmented mutable files; this patch performs those adaptations. It also
6530	exposes some decoding and decrypting functionality to make partial-file
6531	updates a little easier, and supports efficient random-access downloads
6532	of parts of an MDMF file.
6533	] {
6534	hunk ./src/allmydata/mutable/retrieve.py 7
6535	from zope.interface import implements
6536	from twisted.internet import defer
6537	from twisted.python import failure
6538	+from twisted.internet.interfaces import IPushProducer, IConsumer
6539	from foolscap.api import DeadReferenceError, eventually, fireEventually
6540	hunk ./src/allmydata/mutable/retrieve.py 9
6541	-from allmydata.interfaces import IRetrieveStatus, NotEnoughSharesError
6542	-from allmydata.util import hashutil, idlib, log
6543	+from allmydata.interfaces import IRetrieveStatus, NotEnoughSharesError, \
6544	+ MDMF_VERSION, SDMF_VERSION
6545	+from allmydata.util import hashutil, idlib, log, mathutil
6546	from allmydata import hashtree, codec
6547	from allmydata.storage.server import si_b2a
6548	from pycryptopp.cipher.aes import AES
6549	hunk ./src/allmydata/mutable/retrieve.py 18
6550	from pycryptopp.publickey import rsa
6551
6552	from allmydata.mutable.common import DictOfSets, CorruptShareError, UncoordinatedWriteError
6553	-from allmydata.mutable.layout import SIGNED_PREFIX, unpack_share_data
6554	+from allmydata.mutable.layout import SIGNED_PREFIX, unpack_share_data, \
6555	+ MDMFSlotReadProxy
6556
6557	class RetrieveStatus:
6558	implements(IRetrieveStatus)
6559	hunk ./src/allmydata/mutable/retrieve.py 86
6560	# times, and each will have a separate response chain. However the
6561	# Retrieve object will remain tied to a specific version of the file, and
6562	# will use a single ServerMap instance.
6563	+ implements(IPushProducer)
6564
6565	hunk ./src/allmydata/mutable/retrieve.py 88
6566	- def __init__(self, filenode, servermap, verinfo, fetch_privkey=False):
6567	+ def __init__(self, filenode, servermap, verinfo, fetch_privkey=False,
6568	+ verify=False):
6569	self._node = filenode
6570	assert self._node.get_pubkey()
6571	self._storage_index = filenode.get_storage_index()
6572	hunk ./src/allmydata/mutable/retrieve.py 107
6573	self.verinfo = verinfo
6574	# during repair, we may be called upon to grab the private key, since
6575	# it wasn't picked up during a verify=False checker run, and we'll
6576	- # need it for repair to generate the a new version.
6577	- self._need_privkey = fetch_privkey
6578	- if self._node.get_privkey():
6579	+ # need it for repair to generate a new version.
6580	+ self._need_privkey = fetch_privkey or verify
6581	+ if self._node.get_privkey() and not verify:
6582	self._need_privkey = False
6583
6584	hunk ./src/allmydata/mutable/retrieve.py 112
6585	+ if self._need_privkey:
6586	+ # TODO: Evaluate the need for this. We'll use it if we want
6587	+ # to limit how many queries are on the wire for the privkey
6588	+ # at once.
6589	+ self._privkey_query_markers = [] # one Marker for each time we've
6590	+ # tried to get the privkey.
6591	+
6592	+ # verify means that we are using the downloader logic to verify all
6593	+ # of our shares. This tells the downloader a few things.
6594	+ #
6595	+ # 1. We need to download all of the shares.
6596	+ # 2. We don't need to decode or decrypt the shares, since our
6597	+ # caller doesn't care about the plaintext, only the
6598	+ # information about which shares are or are not valid.
6599	+ # 3. When we are validating readers, we need to validate the
6600	+ # signature on the prefix. Do we? We already do this in the
6601	+ # servermap update?
6602	+ self._verify = False
6603	+ if verify:
6604	+ self._verify = True
6605	+
6606	self._status = RetrieveStatus()
6607	self._status.set_storage_index(self._storage_index)
6608	self._status.set_helper(False)
6609	hunk ./src/allmydata/mutable/retrieve.py 142
6610	offsets_tuple) = self.verinfo
6611	self._status.set_size(datalength)
6612	self._status.set_encoding(k, N)
6613	+ self.readers = {}
6614	+ self._paused = False
6615	+ self._paused_deferred = None
6616	+ self._offset = None
6617	+ self._read_length = None
6618	+ self.log("got seqnum %d" % self.verinfo[0])
6619	+
6620
6621	def get_status(self):
6622	return self._status
6623	hunk ./src/allmydata/mutable/retrieve.py 160
6624	kwargs["facility"] = "tahoe.mutable.retrieve"
6625	return log.msg(args, *kwargs)
6626
6627	- def download(self):
6628	+
6629	+ ###################
6630	+ # IPushProducer
6631	+
6632	+ def pauseProducing(self):
6633	+ """
6634	+ I am called by my download target if we have produced too much
6635	+ data for it to handle. I make the downloader stop producing new
6636	+ data until my resumeProducing method is called.
6637	+ """
6638	+ if self._paused:
6639	+ return
6640	+
6641	+ # fired when the download is unpaused.
6642	+ self._old_status = self._status.get_status()
6643	+ self._status.set_status("Paused")
6644	+
6645	+ self._pause_deferred = defer.Deferred()
6646	+ self._paused = True
6647	+
6648	+
6649	+ def resumeProducing(self):
6650	+ """
6651	+ I am called by my download target once it is ready to begin
6652	+ receiving data again.
6653	+ """
6654	+ if not self._paused:
6655	+ return
6656	+
6657	+ self._paused = False
6658	+ p = self._pause_deferred
6659	+ self._pause_deferred = None
6660	+ self._status.set_status(self._old_status)
6661	+
6662	+ eventually(p.callback, None)
6663	+
6664	+
6665	+ def _check_for_paused(self, res):
6666	+ """
6667	+ I am called just before a write to the consumer. I return a
6668	+ Deferred that eventually fires with the data that is to be
6669	+ written to the consumer. If the download has not been paused,
6670	+ the Deferred fires immediately. Otherwise, the Deferred fires
6671	+ when the downloader is unpaused.
6672	+ """
6673	+ if self._paused:
6674	+ d = defer.Deferred()
6675	+ self._pause_defered.addCallback(lambda ignored: d.callback(res))
6676	+ return d
6677	+ return defer.succeed(res)
6678	+
6679	+
6680	+ def download(self, consumer=None, offset=0, size=None):
6681	+ assert IConsumer.providedBy(consumer) or self._verify
6682	+
6683	+ if consumer:
6684	+ self._consumer = consumer
6685	+ # we provide IPushProducer, so streaming=True, per
6686	+ # IConsumer.
6687	+ self._consumer.registerProducer(self, streaming=True)
6688	+
6689	self._done_deferred = defer.Deferred()
6690	self._started = time.time()
6691	self._status.set_status("Retrieving Shares")
6692	hunk ./src/allmydata/mutable/retrieve.py 225
6693
6694	+ self._offset = offset
6695	+ self._read_length = size
6696	+
6697	# first, which servers can we use?
6698	versionmap = self.servermap.make_versionmap()
6699	shares = versionmap[self.verinfo]
6700	hunk ./src/allmydata/mutable/retrieve.py 235
6701	self.remaining_sharemap = DictOfSets()
6702	for (shnum, peerid, timestamp) in shares:
6703	self.remaining_sharemap.add(shnum, peerid)
6704	+ # If the servermap update fetched anything, it fetched at least 1
6705	+ # KiB, so we ask for that much.
6706	+ # TODO: Change the cache methods to allow us to fetch all of the
6707	+ # data that they have, then change this method to do that.
6708	+ any_cache, timestamp = self._node._read_from_cache(self.verinfo,
6709	+ shnum,
6710	+ 0,
6711	+ 1000)
6712	+ ss = self.servermap.connections[peerid]
6713	+ reader = MDMFSlotReadProxy(ss,
6714	+ self._storage_index,
6715	+ shnum,
6716	+ any_cache)
6717	+ reader.peerid = peerid
6718	+ self.readers[shnum] = reader
6719	+
6720
6721	self.shares = {} # maps shnum to validated blocks
6722	hunk ./src/allmydata/mutable/retrieve.py 253
6723	+ self._active_readers = [] # list of active readers for this dl.
6724	+ self._validated_readers = set() # set of readers that we have
6725	+ # validated the prefix of
6726	+ self._block_hash_trees = {} # shnum => hashtree
6727
6728	# how many shares do we need?
6729	hunk ./src/allmydata/mutable/retrieve.py 259
6730	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
6731	+ (seqnum,
6732	+ root_hash,
6733	+ IV,
6734	+ segsize,
6735	+ datalength,
6736	+ k,
6737	+ N,
6738	+ prefix,
6739	offsets_tuple) = self.verinfo
6740	hunk ./src/allmydata/mutable/retrieve.py 268
6741	- assert len(self.remaining_sharemap) >= k
6742	- # we start with the lowest shnums we have available, since FEC is
6743	- # faster if we're using "primary shares"
6744	- self.active_shnums = set(sorted(self.remaining_sharemap.keys())[:k])
6745	- for shnum in self.active_shnums:
6746	- # we use an arbitrary peer who has the share. If shares are
6747	- # doubled up (more than one share per peer), we could make this
6748	- # run faster by spreading the load among multiple peers. But the
6749	- # algorithm to do that is more complicated than I want to write
6750	- # right now, and a well-provisioned grid shouldn't have multiple
6751	- # shares per peer.
6752	- peerid = list(self.remaining_sharemap[shnum])[0]
6753	- self.get_data(shnum, peerid)
6754
6755	hunk ./src/allmydata/mutable/retrieve.py 269
6756	- # control flow beyond this point: state machine. Receiving responses
6757	- # from queries is the input. We might send out more queries, or we
6758	- # might produce a result.
6759
6760	hunk ./src/allmydata/mutable/retrieve.py 270
6761	+ # We need one share hash tree for the entire file; its leaves
6762	+ # are the roots of the block hash trees for the shares that
6763	+ # comprise it, and its root is in the verinfo.
6764	+ self.share_hash_tree = hashtree.IncompleteHashTree(N)
6765	+ self.share_hash_tree.set_hashes({0: root_hash})
6766	+
6767	+ # This will set up both the segment decoder and the tail segment
6768	+ # decoder, as well as a variety of other instance variables that
6769	+ # the download process will use.
6770	+ self._setup_encoding_parameters()
6771	+ assert len(self.remaining_sharemap) >= k
6772	+
6773	+ self.log("starting download")
6774	+ self._paused = False
6775	+ self._started_fetching = time.time()
6776	+
6777	+ self._add_active_peers()
6778	+ # The download process beyond this is a state machine.
6779	+ # _add_active_peers will select the peers that we want to use
6780	+ # for the download, and then attempt to start downloading. After
6781	+ # each segment, it will check for doneness, reacting to broken
6782	+ # peers and corrupt shares as necessary. If it runs out of good
6783	+ # peers before downloading all of the segments, _done_deferred
6784	+ # will errback. Otherwise, it will eventually callback with the
6785	+ # contents of the mutable file.
6786	return self._done_deferred
6787
6788	hunk ./src/allmydata/mutable/retrieve.py 297
6789	- def get_data(self, shnum, peerid):
6790	- self.log(format="sending sh#%(shnum)d request to [%(peerid)s]",
6791	- shnum=shnum,
6792	- peerid=idlib.shortnodeid_b2a(peerid),
6793	- level=log.NOISY)
6794	- ss = self.servermap.connections[peerid]
6795	- started = time.time()
6796	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
6797	+
6798	+ def decode(self, blocks_and_salts, segnum):
6799	+ """
6800	+ I am a helper method that the mutable file update process uses
6801	+ as a shortcut to decode and decrypt the segments that it needs
6802	+ to fetch in order to perform a file update. I take in a
6803	+ collection of blocks and salts, and pick some of those to make a
6804	+ segment with. I return the plaintext associated with that
6805	+ segment.
6806	+ """
6807	+ # shnum => block hash tree. Unusued, but setup_encoding_parameters will
6808	+ # want to set this.
6809	+ # XXX: Make it so that it won't set this if we're just decoding.
6810	+ self._block_hash_trees = {}
6811	+ self._setup_encoding_parameters()
6812	+ # This is the form expected by decode.
6813	+ blocks_and_salts = blocks_and_salts.items()
6814	+ blocks_and_salts = [(True, [d]) for d in blocks_and_salts]
6815	+
6816	+ d = self._decode_blocks(blocks_and_salts, segnum)
6817	+ d.addCallback(self._decrypt_segment)
6818	+ return d
6819	+
6820	+
6821	+ def _setup_encoding_parameters(self):
6822	+ """
6823	+ I set up the encoding parameters, including k, n, the number
6824	+ of segments associated with this file, and the segment decoder.
6825	+ """
6826	+ (seqnum,
6827	+ root_hash,
6828	+ IV,
6829	+ segsize,
6830	+ datalength,
6831	+ k,
6832	+ n,
6833	+ known_prefix,
6834	offsets_tuple) = self.verinfo
6835	hunk ./src/allmydata/mutable/retrieve.py 335
6836	- offsets = dict(offsets_tuple)
6837	+ self._required_shares = k
6838	+ self._total_shares = n
6839	+ self._segment_size = segsize
6840	+ self._data_length = datalength
6841
6842	hunk ./src/allmydata/mutable/retrieve.py 340
6843	- # we read the checkstring, to make sure that the data we grab is from
6844	- # the right version.
6845	- readv = [ (0, struct.calcsize(SIGNED_PREFIX)) ]
6846	+ if not IV:
6847	+ self._version = MDMF_VERSION
6848	+ else:
6849	+ self._version = SDMF_VERSION
6850
6851	hunk ./src/allmydata/mutable/retrieve.py 345
6852	- # We also read the data, and the hashes necessary to validate them
6853	- # (share_hash_chain, block_hash_tree, share_data). We don't read the
6854	- # signature or the pubkey, since that was handled during the
6855	- # servermap phase, and we'll be comparing the share hash chain
6856	- # against the roothash that was validated back then.
6857	+ if datalength and segsize:
6858	+ self._num_segments = mathutil.div_ceil(datalength, segsize)
6859	+ self._tail_data_size = datalength % segsize
6860	+ else:
6861	+ self._num_segments = 0
6862	+ self._tail_data_size = 0
6863
6864	hunk ./src/allmydata/mutable/retrieve.py 352
6865	- readv.append( (offsets['share_hash_chain'],
6866	- offsets['enc_privkey'] - offsets['share_hash_chain'] ) )
6867	+ self._segment_decoder = codec.CRSDecoder()
6868	+ self._segment_decoder.set_params(segsize, k, n)
6869
6870	hunk ./src/allmydata/mutable/retrieve.py 355
6871	- # if we need the private key (for repair), we also fetch that
6872	- if self._need_privkey:
6873	- readv.append( (offsets['enc_privkey'],
6874	- offsets['EOF'] - offsets['enc_privkey']) )
6875	+ if not self._tail_data_size:
6876	+ self._tail_data_size = segsize
6877	+
6878	+ self._tail_segment_size = mathutil.next_multiple(self._tail_data_size,
6879	+ self._required_shares)
6880	+ if self._tail_segment_size == self._segment_size:
6881	+ self._tail_decoder = self._segment_decoder
6882	+ else:
6883	+ self._tail_decoder = codec.CRSDecoder()
6884	+ self._tail_decoder.set_params(self._tail_segment_size,
6885	+ self._required_shares,
6886	+ self._total_shares)
6887
6888	hunk ./src/allmydata/mutable/retrieve.py 368
6889	- m = Marker()
6890	- self._outstanding_queries[m] = (peerid, shnum, started)
6891	+ self.log("got encoding parameters: "
6892	+ "k: %d "
6893	+ "n: %d "
6894	+ "%d segments of %d bytes each (%d byte tail segment)" % \
6895	+ (k, n, self._num_segments, self._segment_size,
6896	+ self._tail_segment_size))
6897
6898	hunk ./src/allmydata/mutable/retrieve.py 375
6899	- # ask the cache first
6900	- got_from_cache = False
6901	- datavs = []
6902	- for (offset, length) in readv:
6903	- (data, timestamp) = self._node._read_from_cache(self.verinfo, shnum,
6904	- offset, length)
6905	- if data is not None:
6906	- datavs.append(data)
6907	- if len(datavs) == len(readv):
6908	- self.log("got data from cache")
6909	- got_from_cache = True
6910	- d = fireEventually({shnum: datavs})
6911	- # datavs is a dict mapping shnum to a pair of strings
6912	+ for i in xrange(self._total_shares):
6913	+ # So we don't have to do this later.
6914	+ self._block_hash_trees[i] = hashtree.IncompleteHashTree(self._num_segments)
6915	+
6916	+ # Our last task is to tell the downloader where to start and
6917	+ # where to stop. We use three parameters for that:
6918	+ # - self._start_segment: the segment that we need to start
6919	+ # downloading from.
6920	+ # - self._current_segment: the next segment that we need to
6921	+ # download.
6922	+ # - self._last_segment: The last segment that we were asked to
6923	+ # download.
6924	+ #
6925	+ # We say that the download is complete when
6926	+ # self._current_segment > self._last_segment. We use
6927	+ # self._start_segment and self._last_segment to know when to
6928	+ # strip things off of segments, and how much to strip.
6929	+ if self._offset:
6930	+ self.log("got offset: %d" % self._offset)
6931	+ # our start segment is the first segment containing the
6932	+ # offset we were given.
6933	+ start = mathutil.div_ceil(self._offset,
6934	+ self._segment_size)
6935	+ # this gets us the first segment after self._offset. Then
6936	+ # our start segment is the one before it.
6937	+ start -= 1
6938	+
6939	+ assert start < self._num_segments
6940	+ self._start_segment = start
6941	+ self.log("got start segment: %d" % self._start_segment)
6942	else:
6943	hunk ./src/allmydata/mutable/retrieve.py 406
6944	- d = self._do_read(ss, peerid, self._storage_index, [shnum], readv)
6945	- self.remaining_sharemap.discard(shnum, peerid)
6946	+ self._start_segment = 0
6947
6948	hunk ./src/allmydata/mutable/retrieve.py 408
6949	- d.addCallback(self._got_results, m, peerid, started, got_from_cache)
6950	- d.addErrback(self._query_failed, m, peerid)
6951	- # errors that aren't handled by _query_failed (and errors caused by
6952	- # _query_failed) get logged, but we still want to check for doneness.
6953	- def _oops(f):
6954	- self.log(format="problem in _query_failed for sh#%(shnum)d to %(peerid)s",
6955	- shnum=shnum,
6956	- peerid=idlib.shortnodeid_b2a(peerid),
6957	- failure=f,
6958	- level=log.WEIRD, umid="W0xnQA")
6959	- d.addErrback(_oops)
6960	- d.addBoth(self._check_for_done)
6961	- # any error during _check_for_done means the download fails. If the
6962	- # download is successful, _check_for_done will fire _done by itself.
6963	- d.addErrback(self._done)
6964	- d.addErrback(log.err)
6965	- return d # purely for testing convenience
6966
6967	hunk ./src/allmydata/mutable/retrieve.py 409
6968	- def _do_read(self, ss, peerid, storage_index, shnums, readv):
6969	- # isolate the callRemote to a separate method, so tests can subclass
6970	- # Publish and override it
6971	- d = ss.callRemote("slot_readv", storage_index, shnums, readv)
6972	- return d
6973	+ if self._read_length:
6974	+ # our end segment is the last segment containing part of the
6975	+ # segment that we were asked to read.
6976	+ self.log("got read length %d" % self._read_length)
6977	+ end_data = self._offset + self._read_length
6978	+ end = mathutil.div_ceil(end_data,
6979	+ self._segment_size)
6980	+ end -= 1
6981	+ assert end < self._num_segments
6982	+ self._last_segment = end
6983	+ self.log("got end segment: %d" % self._last_segment)
6984	+ else:
6985	+ self._last_segment = self._num_segments - 1
6986
6987	hunk ./src/allmydata/mutable/retrieve.py 423
6988	- def remove_peer(self, peerid):
6989	- for shnum in list(self.remaining_sharemap.keys()):
6990	- self.remaining_sharemap.discard(shnum, peerid)
6991	+ self._current_segment = self._start_segment
6992
6993	hunk ./src/allmydata/mutable/retrieve.py 425
6994	- def _got_results(self, datavs, marker, peerid, started, got_from_cache):
6995	- now = time.time()
6996	- elapsed = now - started
6997	- if not got_from_cache:
6998	- self._status.add_fetch_timing(peerid, elapsed)
6999	- self.log(format="got results (%(shares)d shares) from [%(peerid)s]",
7000	- shares=len(datavs),
7001	- peerid=idlib.shortnodeid_b2a(peerid),
7002	- level=log.NOISY)
7003	- self._outstanding_queries.pop(marker, None)
7004	- if not self._running:
7005	- return
7006	+ def _add_active_peers(self):
7007	+ """
7008	+ I populate self._active_readers with enough active readers to
7009	+ retrieve the contents of this mutable file. I am called before
7010	+ downloading starts, and (eventually) after each validation
7011	+ error, connection error, or other problem in the download.
7012	+ """
7013	+ # TODO: It would be cool to investigate other heuristics for
7014	+ # reader selection. For instance, the cost (in time the user
7015	+ # spends waiting for their file) of selecting a really slow peer
7016	+ # that happens to have a primary share is probably more than
7017	+ # selecting a really fast peer that doesn't have a primary
7018	+ # share. Maybe the servermap could be extended to provide this
7019	+ # information; it could keep track of latency information while
7020	+ # it gathers more important data, and then this routine could
7021	+ # use that to select active readers.
7022	+ #
7023	+ # (these and other questions would be easier to answer with a
7024	+ # robust, configurable tahoe-lafs simulator, which modeled node
7025	+ # failures, differences in node speed, and other characteristics
7026	+ # that we expect storage servers to have. You could have
7027	+ # presets for really stable grids (like allmydata.com),
7028	+ # friendnets, make it easy to configure your own settings, and
7029	+ # then simulate the effect of big changes on these use cases
7030	+ # instead of just reasoning about what the effect might be. Out
7031	+ # of scope for MDMF, though.)
7032
7033	hunk ./src/allmydata/mutable/retrieve.py 452
7034	- # note that we only ask for a single share per query, so we only
7035	- # expect a single share back. On the other hand, we use the extra
7036	- # shares if we get them.. seems better than an assert().
7037	+ # We need at least self._required_shares readers to download a
7038	+ # segment.
7039	+ if self._verify:
7040	+ needed = self._total_shares
7041	+ else:
7042	+ needed = self._required_shares - len(self._active_readers)
7043	+ # XXX: Why don't format= log messages work here?
7044	+ self.log("adding %d peers to the active peers list" % needed)
7045
7046	hunk ./src/allmydata/mutable/retrieve.py 461
7047	- for shnum,datav in datavs.items():
7048	- (prefix, hash_and_data) = datav[:2]
7049	- try:
7050	- self._got_results_one_share(shnum, peerid,
7051	- prefix, hash_and_data)
7052	- except CorruptShareError, e:
7053	- # log it and give the other shares a chance to be processed
7054	- f = failure.Failure()
7055	- self.log(format="bad share: %(f_value)s",
7056	- f_value=str(f.value), failure=f,
7057	- level=log.WEIRD, umid="7fzWZw")
7058	- self.notify_server_corruption(peerid, shnum, str(e))
7059	- self.remove_peer(peerid)
7060	- self.servermap.mark_bad_share(peerid, shnum, prefix)
7061	- self._bad_shares.add( (peerid, shnum) )
7062	- self._status.problems[peerid] = f
7063	- self._last_failure = f
7064	- pass
7065	- if self._need_privkey and len(datav) > 2:
7066	- lp = None
7067	- self._try_to_validate_privkey(datav[2], peerid, shnum, lp)
7068	- # all done!
7069	+ # We favor lower numbered shares, since FEC is faster with
7070	+ # primary shares than with other shares, and lower-numbered
7071	+ # shares are more likely to be primary than higher numbered
7072	+ # shares.
7073	+ active_shnums = set(sorted(self.remaining_sharemap.keys()))
7074	+ # We shouldn't consider adding shares that we already have; this
7075	+ # will cause problems later.
7076	+ active_shnums -= set([reader.shnum for reader in self._active_readers])
7077	+ active_shnums = list(active_shnums)[:needed]
7078	+ if len(active_shnums) < needed and not self._verify:
7079	+ # We don't have enough readers to retrieve the file; fail.
7080	+ return self._failed()
7081
7082	hunk ./src/allmydata/mutable/retrieve.py 474
7083	- def notify_server_corruption(self, peerid, shnum, reason):
7084	- ss = self.servermap.connections[peerid]
7085	- ss.callRemoteOnly("advise_corrupt_share",
7086	- "mutable", self._storage_index, shnum, reason)
7087	+ for shnum in active_shnums:
7088	+ self._active_readers.append(self.readers[shnum])
7089	+ self.log("added reader for share %d" % shnum)
7090	+ assert len(self._active_readers) >= self._required_shares
7091	+ # Conceptually, this is part of the _add_active_peers step. It
7092	+ # validates the prefixes of newly added readers to make sure
7093	+ # that they match what we are expecting for self.verinfo. If
7094	+ # validation is successful, _validate_active_prefixes will call
7095	+ # _download_current_segment for us. If validation is
7096	+ # unsuccessful, then _validate_prefixes will remove the peer and
7097	+ # call _add_active_peers again, where we will attempt to rectify
7098	+ # the problem by choosing another peer.
7099	+ return self._validate_active_prefixes()
7100
7101	hunk ./src/allmydata/mutable/retrieve.py 488
7102	- def _got_results_one_share(self, shnum, peerid,
7103	- got_prefix, got_hash_and_data):
7104	- self.log("_got_results: got shnum #%d from peerid %s"
7105	- % (shnum, idlib.shortnodeid_b2a(peerid)))
7106	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
7107	- offsets_tuple) = self.verinfo
7108	- assert len(got_prefix) == len(prefix), (len(got_prefix), len(prefix))
7109	- if got_prefix != prefix:
7110	- msg = "someone wrote to the data since we read the servermap: prefix changed"
7111	- raise UncoordinatedWriteError(msg)
7112	- (share_hash_chain, block_hash_tree,
7113	- share_data) = unpack_share_data(self.verinfo, got_hash_and_data)
7114
7115	hunk ./src/allmydata/mutable/retrieve.py 489
7116	- assert isinstance(share_data, str)
7117	- # build the block hash tree. SDMF has only one leaf.
7118	- leaves = [hashutil.block_hash(share_data)]
7119	- t = hashtree.HashTree(leaves)
7120	- if list(t) != block_hash_tree:
7121	- raise CorruptShareError(peerid, shnum, "block hash tree failure")
7122	- share_hash_leaf = t[0]
7123	- t2 = hashtree.IncompleteHashTree(N)
7124	- # root_hash was checked by the signature
7125	- t2.set_hashes({0: root_hash})
7126	- try:
7127	- t2.set_hashes(hashes=share_hash_chain,
7128	- leaves={shnum: share_hash_leaf})
7129	- except (hashtree.BadHashError, hashtree.NotEnoughHashesError,
7130	- IndexError), e:
7131	- msg = "corrupt hashes: %s" % (e,)
7132	- raise CorruptShareError(peerid, shnum, msg)
7133	- self.log(" data valid! len=%d" % len(share_data))
7134	- # each query comes down to this: placing validated share data into
7135	- # self.shares
7136	- self.shares[shnum] = share_data
7137	+ def _validate_active_prefixes(self):
7138	+ """
7139	+ I check to make sure that the prefixes on the peers that I am
7140	+ currently reading from match the prefix that we want to see, as
7141	+ said in self.verinfo.
7142
7143	hunk ./src/allmydata/mutable/retrieve.py 495
7144	- def _try_to_validate_privkey(self, enc_privkey, peerid, shnum, lp):
7145	+ If I find that all of the active peers have acceptable prefixes,
7146	+ I pass control to _download_current_segment, which will use
7147	+ those peers to do cool things. If I find that some of the active
7148	+ peers have unacceptable prefixes, I will remove them from active
7149	+ peers (and from further consideration) and call
7150	+ _add_active_peers to attempt to rectify the situation. I keep
7151	+ track of which peers I have already validated so that I don't
7152	+ need to do so again.
7153	+ """
7154	+ assert self._active_readers, "No more active readers"
7155
7156	hunk ./src/allmydata/mutable/retrieve.py 506
7157	- alleged_privkey_s = self._node._decrypt_privkey(enc_privkey)
7158	- alleged_writekey = hashutil.ssk_writekey_hash(alleged_privkey_s)
7159	- if alleged_writekey != self._node.get_writekey():
7160	- self.log("invalid privkey from %s shnum %d" %
7161	- (idlib.nodeid_b2a(peerid)[:8], shnum),
7162	- parent=lp, level=log.WEIRD, umid="YIw4tA")
7163	- return
7164	+ ds = []
7165	+ new_readers = set(self._active_readers) - self._validated_readers
7166	+ self.log('validating %d newly-added active readers' % len(new_readers))
7167
7168	hunk ./src/allmydata/mutable/retrieve.py 510
7169	- # it's good
7170	- self.log("got valid privkey from shnum %d on peerid %s" %
7171	- (shnum, idlib.shortnodeid_b2a(peerid)),
7172	- parent=lp)
7173	- privkey = rsa.create_signing_key_from_string(alleged_privkey_s)
7174	- self._node._populate_encprivkey(enc_privkey)
7175	- self._node._populate_privkey(privkey)
7176	- self._need_privkey = False
7177	+ for reader in new_readers:
7178	+ # We force a remote read here -- otherwise, we are relying
7179	+ # on cached data that we already verified as valid, and we
7180	+ # won't detect an uncoordinated write that has occurred
7181	+ # since the last servermap update.
7182	+ d = reader.get_prefix(force_remote=True)
7183	+ d.addCallback(self._try_to_validate_prefix, reader)
7184	+ ds.append(d)
7185	+ dl = defer.DeferredList(ds, consumeErrors=True)
7186	+ def _check_results(results):
7187	+ # Each result in results will be of the form (success, msg).
7188	+ # We don't care about msg, but success will tell us whether
7189	+ # or not the checkstring validated. If it didn't, we need to
7190	+ # remove the offending (peer,share) from our active readers,
7191	+ # and ensure that active readers is again populated.
7192	+ bad_readers = []
7193	+ for i, result in enumerate(results):
7194	+ if not result[0]:
7195	+ reader = self._active_readers[i]
7196	+ f = result[1]
7197	+ assert isinstance(f, failure.Failure)
7198
7199	hunk ./src/allmydata/mutable/retrieve.py 532
7200	- def _query_failed(self, f, marker, peerid):
7201	- self.log(format="query to [%(peerid)s] failed",
7202	- peerid=idlib.shortnodeid_b2a(peerid),
7203	- level=log.NOISY)
7204	- self._status.problems[peerid] = f
7205	- self._outstanding_queries.pop(marker, None)
7206	- if not self._running:
7207	- return
7208	- self._last_failure = f
7209	- self.remove_peer(peerid)
7210	- level = log.WEIRD
7211	- if f.check(DeadReferenceError):
7212	- level = log.UNUSUAL
7213	- self.log(format="error during query: %(f_value)s",
7214	- f_value=str(f.value), failure=f, level=level, umid="gOJB5g")
7215	+ self.log("The reader %s failed to "
7216	+ "properly validate: %s" % \
7217	+ (reader, str(f.value)))
7218	+ bad_readers.append((reader, f))
7219	+ else:
7220	+ reader = self._active_readers[i]
7221	+ self.log("the reader %s checks out, so we'll use it" % \
7222	+ reader)
7223	+ self._validated_readers.add(reader)
7224	+ # Each time we validate a reader, we check to see if
7225	+ # we need the private key. If we do, we politely ask
7226	+ # for it and then continue computing. If we find
7227	+ # that we haven't gotten it at the end of
7228	+ # segment decoding, then we'll take more drastic
7229	+ # measures.
7230	+ if self._need_privkey and not self._node.is_readonly():
7231	+ d = reader.get_encprivkey()
7232	+ d.addCallback(self._try_to_validate_privkey, reader)
7233	+ if bad_readers:
7234	+ # We do them all at once, or else we screw up list indexing.
7235	+ for (reader, f) in bad_readers:
7236	+ self._mark_bad_share(reader, f)
7237	+ if self._verify:
7238	+ if len(self._active_readers) >= self._required_shares:
7239	+ return self._download_current_segment()
7240	+ else:
7241	+ return self._failed()
7242	+ else:
7243	+ return self._add_active_peers()
7244	+ else:
7245	+ return self._download_current_segment()
7246	+ # The next step will assert that it has enough active
7247	+ # readers to fetch shares; we just need to remove it.
7248	+ dl.addCallback(_check_results)
7249	+ return dl
7250
7251	hunk ./src/allmydata/mutable/retrieve.py 568
7252	- def _check_for_done(self, res):
7253	- # exit paths:
7254	- # return : keep waiting, no new queries
7255	- # return self._send_more_queries(outstanding) : send some more queries
7256	- # fire self._done(plaintext) : download successful
7257	- # raise exception : download fails
7258
7259	hunk ./src/allmydata/mutable/retrieve.py 569
7260	- self.log(format="_check_for_done: running=%(running)s, decoding=%(decoding)s",
7261	- running=self._running, decoding=self._decoding,
7262	- level=log.NOISY)
7263	- if not self._running:
7264	- return
7265	- if self._decoding:
7266	- return
7267	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
7268	+ def _try_to_validate_prefix(self, prefix, reader):
7269	+ """
7270	+ I check that the prefix returned by a candidate server for
7271	+ retrieval matches the prefix that the servermap knows about
7272	+ (and, hence, the prefix that was validated earlier). If it does,
7273	+ I return True, which means that I approve of the use of the
7274	+ candidate server for segment retrieval. If it doesn't, I return
7275	+ False, which means that another server must be chosen.
7276	+ """
7277	+ (seqnum,
7278	+ root_hash,
7279	+ IV,
7280	+ segsize,
7281	+ datalength,
7282	+ k,
7283	+ N,
7284	+ known_prefix,
7285	offsets_tuple) = self.verinfo
7286	hunk ./src/allmydata/mutable/retrieve.py 587
7287	+ if known_prefix != prefix:
7288	+ self.log("prefix from share %d doesn't match" % reader.shnum)
7289	+ raise UncoordinatedWriteError("Mismatched prefix -- this could "
7290	+ "indicate an uncoordinated write")
7291	+ # Otherwise, we're okay -- no issues.
7292
7293	hunk ./src/allmydata/mutable/retrieve.py 593
7294	- if len(self.shares) < k:
7295	- # we don't have enough shares yet
7296	- return self._maybe_send_more_queries(k)
7297	- if self._need_privkey:
7298	- # we got k shares, but none of them had a valid privkey. TODO:
7299	- # look further. Adding code to do this is a bit complicated, and
7300	- # I want to avoid that complication, and this should be pretty
7301	- # rare (k shares with bitflips in the enc_privkey but not in the
7302	- # data blocks). If we actually do get here, the subsequent repair
7303	- # will fail for lack of a privkey.
7304	- self.log("got k shares but still need_privkey, bummer",
7305	- level=log.WEIRD, umid="MdRHPA")
7306
7307	hunk ./src/allmydata/mutable/retrieve.py 594
7308	- # we have enough to finish. All the shares have had their hashes
7309	- # checked, so if something fails at this point, we don't know how
7310	- # to fix it, so the download will fail.
7311	+ def _remove_reader(self, reader):
7312	+ """
7313	+ At various points, we will wish to remove a peer from
7314	+ consideration and/or use. These include, but are not necessarily
7315	+ limited to:
7316
7317	hunk ./src/allmydata/mutable/retrieve.py 600
7318	- self._decoding = True # avoid reentrancy
7319	- self._status.set_status("decoding")
7320	- now = time.time()
7321	- elapsed = now - self._started
7322	- self._status.timings["fetch"] = elapsed
7323	+ - A connection error.
7324	+ - A mismatched prefix (that is, a prefix that does not match
7325	+ our conception of the version information string).
7326	+ - A failing block hash, salt hash, or share hash, which can
7327	+ indicate disk failure/bit flips, or network trouble.
7328
7329	hunk ./src/allmydata/mutable/retrieve.py 606
7330	- d = defer.maybeDeferred(self._decode)
7331	- d.addCallback(self._decrypt, IV, self._node.get_readkey())
7332	- d.addBoth(self._done)
7333	- return d # purely for test convenience
7334	+ This method will do that. I will make sure that the
7335	+ (shnum,reader) combination represented by my reader argument is
7336	+ not used for anything else during this download. I will not
7337	+ advise the reader of any corruption, something that my callers
7338	+ may wish to do on their own.
7339	+ """
7340	+ # TODO: When you're done writing this, see if this is ever
7341	+ # actually used for something that _mark_bad_share isn't. I have
7342	+ # a feeling that they will be used for very similar things, and
7343	+ # that having them both here is just going to be an epic amount
7344	+ # of code duplication.
7345	+ #
7346	+ # (well, okay, not epic, but meaningful)
7347	+ self.log("removing reader %s" % reader)
7348	+ # Remove the reader from _active_readers
7349	+ self._active_readers.remove(reader)
7350	+ # TODO: self.readers.remove(reader)?
7351	+ for shnum in list(self.remaining_sharemap.keys()):
7352	+ self.remaining_sharemap.discard(shnum, reader.peerid)
7353
7354	hunk ./src/allmydata/mutable/retrieve.py 626
7355	- def _maybe_send_more_queries(self, k):
7356	- # we don't have enough shares yet. Should we send out more queries?
7357	- # There are some number of queries outstanding, each for a single
7358	- # share. If we can generate 'needed_shares' additional queries, we do
7359	- # so. If we can't, then we know this file is a goner, and we raise
7360	- # NotEnoughSharesError.
7361	- self.log(format=("_maybe_send_more_queries, have=%(have)d, k=%(k)d, "
7362	- "outstanding=%(outstanding)d"),
7363	- have=len(self.shares), k=k,
7364	- outstanding=len(self._outstanding_queries),
7365	- level=log.NOISY)
7366
7367	hunk ./src/allmydata/mutable/retrieve.py 627
7368	- remaining_shares = k - len(self.shares)
7369	- needed = remaining_shares - len(self._outstanding_queries)
7370	- if not needed:
7371	- # we have enough queries in flight already
7372	+ def _mark_bad_share(self, reader, f):
7373	+ """
7374	+ I mark the (peerid, shnum) encapsulated by my reader argument as
7375	+ a bad share, which means that it will not be used anywhere else.
7376
7377	hunk ./src/allmydata/mutable/retrieve.py 632
7378	- # TODO: but if they've been in flight for a long time, and we
7379	- # have reason to believe that new queries might respond faster
7380	- # (i.e. we've seen other queries come back faster, then consider
7381	- # sending out new queries. This could help with peers which have
7382	- # silently gone away since the servermap was updated, for which
7383	- # we're still waiting for the 15-minute TCP disconnect to happen.
7384	- self.log("enough queries are in flight, no more are needed",
7385	- level=log.NOISY)
7386	- return
7387	+ There are several reasons to want to mark something as a bad
7388	+ share. These include:
7389	+
7390	+ - A connection error to the peer.
7391	+ - A mismatched prefix (that is, a prefix that does not match
7392	+ our local conception of the version information string).
7393	+ - A failing block hash, salt hash, share hash, or other
7394	+ integrity check.
7395
7396	hunk ./src/allmydata/mutable/retrieve.py 641
7397	- outstanding_shnums = set([shnum
7398	- for (peerid, shnum, started)
7399	- in self._outstanding_queries.values()])
7400	- # prefer low-numbered shares, they are more likely to be primary
7401	- available_shnums = sorted(self.remaining_sharemap.keys())
7402	- for shnum in available_shnums:
7403	- if shnum in outstanding_shnums:
7404	- # skip ones that are already in transit
7405	- continue
7406	- if shnum not in self.remaining_sharemap:
7407	- # no servers for that shnum. note that DictOfSets removes
7408	- # empty sets from the dict for us.
7409	- continue
7410	- peerid = list(self.remaining_sharemap[shnum])[0]
7411	- # get_data will remove that peerid from the sharemap, and add the
7412	- # query to self._outstanding_queries
7413	- self._status.set_status("Retrieving More Shares")
7414	- self.get_data(shnum, peerid)
7415	- needed -= 1
7416	- if not needed:
7417	+ This method will ensure that readers that we wish to mark bad
7418	+ (for these reasons or other reasons) are not used for the rest
7419	+ of the download. Additionally, it will attempt to tell the
7420	+ remote peer (with no guarantee of success) that its share is
7421	+ corrupt.
7422	+ """
7423	+ self.log("marking share %d on server %s as bad" % \
7424	+ (reader.shnum, reader))
7425	+ prefix = self.verinfo[-2]
7426	+ self.servermap.mark_bad_share(reader.peerid,
7427	+ reader.shnum,
7428	+ prefix)
7429	+ self._remove_reader(reader)
7430	+ self._bad_shares.add((reader.peerid, reader.shnum, f))
7431	+ self._status.problems[reader.peerid] = f
7432	+ self._last_failure = f
7433	+ self.notify_server_corruption(reader.peerid, reader.shnum,
7434	+ str(f.value))
7435	+
7436	+
7437	+ def _download_current_segment(self):
7438	+ """
7439	+ I download, validate, decode, decrypt, and assemble the segment
7440	+ that this Retrieve is currently responsible for downloading.
7441	+ """
7442	+ assert len(self._active_readers) >= self._required_shares
7443	+ if self._current_segment <= self._last_segment:
7444	+ d = self._process_segment(self._current_segment)
7445	+ else:
7446	+ d = defer.succeed(None)
7447	+ d.addCallback(self._check_for_done)
7448	+ return d
7449	+
7450	+
7451	+ def _process_segment(self, segnum):
7452	+ """
7453	+ I download, validate, decode, and decrypt one segment of the
7454	+ file that this Retrieve is retrieving. This means coordinating
7455	+ the process of getting k blocks of that file, validating them,
7456	+ assembling them into one segment with the decoder, and then
7457	+ decrypting them.
7458	+ """
7459	+ self.log("processing segment %d" % segnum)
7460	+
7461	+ # TODO: The old code uses a marker. Should this code do that
7462	+ # too? What did the Marker do?
7463	+ assert len(self._active_readers) >= self._required_shares
7464	+
7465	+ # We need to ask each of our active readers for its block and
7466	+ # salt. We will then validate those. If validation is
7467	+ # successful, we will assemble the results into plaintext.
7468	+ ds = []
7469	+ for reader in self._active_readers:
7470	+ started = time.time()
7471	+ d = reader.get_block_and_salt(segnum, queue=True)
7472	+ d2 = self._get_needed_hashes(reader, segnum)
7473	+ dl = defer.DeferredList([d, d2], consumeErrors=True)
7474	+ dl.addCallback(self._validate_block, segnum, reader, started)
7475	+ dl.addErrback(self._validation_or_decoding_failed, [reader])
7476	+ ds.append(dl)
7477	+ reader.flush()
7478	+ dl = defer.DeferredList(ds)
7479	+ if self._verify:
7480	+ dl.addCallback(lambda ignored: "")
7481	+ dl.addCallback(self._set_segment)
7482	+ else:
7483	+ dl.addCallback(self._maybe_decode_and_decrypt_segment, segnum)
7484	+ return dl
7485	+
7486	+
7487	+ def _maybe_decode_and_decrypt_segment(self, blocks_and_salts, segnum):
7488	+ """
7489	+ I take the results of fetching and validating the blocks from a
7490	+ callback chain in another method. If the results are such that
7491	+ they tell me that validation and fetching succeeded without
7492	+ incident, I will proceed with decoding and decryption.
7493	+ Otherwise, I will do nothing.
7494	+ """
7495	+ self.log("trying to decode and decrypt segment %d" % segnum)
7496	+ failures = False
7497	+ for block_and_salt in blocks_and_salts:
7498	+ if not block_and_salt[0] or block_and_salt[1] == None:
7499	+ self.log("some validation operations failed; not proceeding")
7500	+ failures = True
7501	break
7502	hunk ./src/allmydata/mutable/retrieve.py 726
7503	+ if not failures:
7504	+ self.log("everything looks ok, building segment %d" % segnum)
7505	+ d = self._decode_blocks(blocks_and_salts, segnum)
7506	+ d.addCallback(self._decrypt_segment)
7507	+ d.addErrback(self._validation_or_decoding_failed,
7508	+ self._active_readers)
7509	+ # check to see whether we've been paused before writing
7510	+ # anything.
7511	+ d.addCallback(self._check_for_paused)
7512	+ d.addCallback(self._set_segment)
7513	+ return d
7514	+ else:
7515	+ return defer.succeed(None)
7516	+
7517	+
7518	+ def _set_segment(self, segment):
7519	+ """
7520	+ Given a plaintext segment, I register that segment with the
7521	+ target that is handling the file download.
7522	+ """
7523	+ self.log("got plaintext for segment %d" % self._current_segment)
7524	+ if self._current_segment == self._start_segment:
7525	+ # We're on the first segment. It's possible that we want
7526	+ # only some part of the end of this segment, and that we
7527	+ # just downloaded the whole thing to get that part. If so,
7528	+ # we need to account for that and give the reader just the
7529	+ # data that they want.
7530	+ n = self._offset % self._segment_size
7531	+ self.log("stripping %d bytes off of the first segment" % n)
7532	+ self.log("original segment length: %d" % len(segment))
7533	+ segment = segment[n:]
7534	+ self.log("new segment length: %d" % len(segment))
7535	+
7536	+ if self._current_segment == self._last_segment and self._read_length is not None:
7537	+ # We're on the last segment. It's possible that we only want
7538	+ # part of the beginning of this segment, and that we
7539	+ # downloaded the whole thing anyway. Make sure to give the
7540	+ # caller only the portion of the segment that they want to
7541	+ # receive.
7542	+ extra = self._read_length
7543	+ if self._start_segment != self._last_segment:
7544	+ extra -= self._segment_size - \
7545	+ (self._offset % self._segment_size)
7546	+ extra %= self._segment_size
7547	+ self.log("original segment length: %d" % len(segment))
7548	+ segment = segment[:extra]
7549	+ self.log("new segment length: %d" % len(segment))
7550	+ self.log("only taking %d bytes of the last segment" % extra)
7551	+
7552	+ if not self._verify:
7553	+ self._consumer.write(segment)
7554	+ else:
7555	+ # we don't care about the plaintext if we are doing a verify.
7556	+ segment = None
7557	+ self._current_segment += 1
7558
7559	hunk ./src/allmydata/mutable/retrieve.py 782
7560	- # at this point, we have as many outstanding queries as we can. If
7561	- # needed!=0 then we might not have enough to recover the file.
7562	- if needed:
7563	- format = ("ran out of peers: "
7564	- "have %(have)d shares (k=%(k)d), "
7565	- "%(outstanding)d queries in flight, "
7566	- "need %(need)d more, "
7567	- "found %(bad)d bad shares")
7568	- args = {"have": len(self.shares),
7569	- "k": k,
7570	- "outstanding": len(self._outstanding_queries),
7571	- "need": needed,
7572	- "bad": len(self._bad_shares),
7573	- }
7574	- self.log(format=format,
7575	- level=log.WEIRD, umid="ezTfjw", **args)
7576	- err = NotEnoughSharesError("%s, last failure: %s" %
7577	- (format % args, self._last_failure))
7578	- if self._bad_shares:
7579	- self.log("We found some bad shares this pass. You should "
7580	- "update the servermap and try again to check "
7581	- "more peers",
7582	- level=log.WEIRD, umid="EFkOlA")
7583	- err.servermap = self.servermap
7584	- raise err
7585
7586	hunk ./src/allmydata/mutable/retrieve.py 783
7587	+ def _validation_or_decoding_failed(self, f, readers):
7588	+ """
7589	+ I am called when a block or a salt fails to correctly validate, or when
7590	+ the decryption or decoding operation fails for some reason. I react to
7591	+ this failure by notifying the remote server of corruption, and then
7592	+ removing the remote peer from further activity.
7593	+ """
7594	+ assert isinstance(readers, list)
7595	+ bad_shnums = [reader.shnum for reader in readers]
7596	+
7597	+ self.log("validation or decoding failed on share(s) %s, peer(s) %s "
7598	+ ", segment %d: %s" % \
7599	+ (bad_shnums, readers, self._current_segment, str(f)))
7600	+ for reader in readers:
7601	+ self._mark_bad_share(reader, f)
7602	return
7603
7604	hunk ./src/allmydata/mutable/retrieve.py 800
7605	- def _decode(self):
7606	- started = time.time()
7607	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
7608	- offsets_tuple) = self.verinfo
7609
7610	hunk ./src/allmydata/mutable/retrieve.py 801
7611	- # shares_dict is a dict mapping shnum to share data, but the codec
7612	- # wants two lists.
7613	- shareids = []; shares = []
7614	- for shareid, share in self.shares.items():
7615	+ def _validate_block(self, results, segnum, reader, started):
7616	+ """
7617	+ I validate a block from one share on a remote server.
7618	+ """
7619	+ # Grab the part of the block hash tree that is necessary to
7620	+ # validate this block, then generate the block hash root.
7621	+ self.log("validating share %d for segment %d" % (reader.shnum,
7622	+ segnum))
7623	+ self._status.add_fetch_timing(reader.peerid, started)
7624	+ self._status.set_status("Valdiating blocks for segment %d" % segnum)
7625	+ # Did we fail to fetch either of the things that we were
7626	+ # supposed to? Fail if so.
7627	+ if not results[0][0] and results[1][0]:
7628	+ # handled by the errback handler.
7629	+
7630	+ # These all get batched into one query, so the resulting
7631	+ # failure should be the same for all of them, so we can just
7632	+ # use the first one.
7633	+ assert isinstance(results[0][1], failure.Failure)
7634	+
7635	+ f = results[0][1]
7636	+ raise CorruptShareError(reader.peerid,
7637	+ reader.shnum,
7638	+ "Connection error: %s" % str(f))
7639	+
7640	+ block_and_salt, block_and_sharehashes = results
7641	+ block, salt = block_and_salt[1]
7642	+ blockhashes, sharehashes = block_and_sharehashes[1]
7643	+
7644	+ blockhashes = dict(enumerate(blockhashes[1]))
7645	+ self.log("the reader gave me the following blockhashes: %s" % \
7646	+ blockhashes.keys())
7647	+ self.log("the reader gave me the following sharehashes: %s" % \
7648	+ sharehashes[1].keys())
7649	+ bht = self._block_hash_trees[reader.shnum]
7650	+
7651	+ if bht.needed_hashes(segnum, include_leaf=True):
7652	+ try:
7653	+ bht.set_hashes(blockhashes)
7654	+ except (hashtree.BadHashError, hashtree.NotEnoughHashesError, \
7655	+ IndexError), e:
7656	+ raise CorruptShareError(reader.peerid,
7657	+ reader.shnum,
7658	+ "block hash tree failure: %s" % e)
7659	+
7660	+ if self._version == MDMF_VERSION:
7661	+ blockhash = hashutil.block_hash(salt + block)
7662	+ else:
7663	+ blockhash = hashutil.block_hash(block)
7664	+ # If this works without an error, then validation is
7665	+ # successful.
7666	+ try:
7667	+ bht.set_hashes(leaves={segnum: blockhash})
7668	+ except (hashtree.BadHashError, hashtree.NotEnoughHashesError, \
7669	+ IndexError), e:
7670	+ raise CorruptShareError(reader.peerid,
7671	+ reader.shnum,
7672	+ "block hash tree failure: %s" % e)
7673	+
7674	+ # Reaching this point means that we know that this segment
7675	+ # is correct. Now we need to check to see whether the share
7676	+ # hash chain is also correct.
7677	+ # SDMF wrote share hash chains that didn't contain the
7678	+ # leaves, which would be produced from the block hash tree.
7679	+ # So we need to validate the block hash tree first. If
7680	+ # successful, then bht[0] will contain the root for the
7681	+ # shnum, which will be a leaf in the share hash tree, which
7682	+ # will allow us to validate the rest of the tree.
7683	+ if self.share_hash_tree.needed_hashes(reader.shnum,
7684	+ include_leaf=True) or \
7685	+ self._verify:
7686	+ try:
7687	+ self.share_hash_tree.set_hashes(hashes=sharehashes[1],
7688	+ leaves={reader.shnum: bht[0]})
7689	+ except (hashtree.BadHashError, hashtree.NotEnoughHashesError, \
7690	+ IndexError), e:
7691	+ raise CorruptShareError(reader.peerid,
7692	+ reader.shnum,
7693	+ "corrupt hashes: %s" % e)
7694	+
7695	+ self.log('share %d is valid for segment %d' % (reader.shnum,
7696	+ segnum))
7697	+ return {reader.shnum: (block, salt)}
7698	+
7699	+
7700	+ def _get_needed_hashes(self, reader, segnum):
7701	+ """
7702	+ I get the hashes needed to validate segnum from the reader, then return
7703	+ to my caller when this is done.
7704	+ """
7705	+ bht = self._block_hash_trees[reader.shnum]
7706	+ needed = bht.needed_hashes(segnum, include_leaf=True)
7707	+ # The root of the block hash tree is also a leaf in the share
7708	+ # hash tree. So we don't need to fetch it from the remote
7709	+ # server. In the case of files with one segment, this means that
7710	+ # we won't fetch any block hash tree from the remote server,
7711	+ # since the hash of each share of the file is the entire block
7712	+ # hash tree, and is a leaf in the share hash tree. This is fine,
7713	+ # since any share corruption will be detected in the share hash
7714	+ # tree.
7715	+ #needed.discard(0)
7716	+ self.log("getting blockhashes for segment %d, share %d: %s" % \
7717	+ (segnum, reader.shnum, str(needed)))
7718	+ d1 = reader.get_blockhashes(needed, queue=True, force_remote=True)
7719	+ if self.share_hash_tree.needed_hashes(reader.shnum):
7720	+ need = self.share_hash_tree.needed_hashes(reader.shnum)
7721	+ self.log("also need sharehashes for share %d: %s" % (reader.shnum,
7722	+ str(need)))
7723	+ d2 = reader.get_sharehashes(need, queue=True, force_remote=True)
7724	+ else:
7725	+ d2 = defer.succeed({}) # the logic in the next method
7726	+ # expects a dict
7727	+ dl = defer.DeferredList([d1, d2], consumeErrors=True)
7728	+ return dl
7729	+
7730	+
7731	+ def _decode_blocks(self, blocks_and_salts, segnum):
7732	+ """
7733	+ I take a list of k blocks and salts, and decode that into a
7734	+ single encrypted segment.
7735	+ """
7736	+ d = {}
7737	+ # We want to merge our dictionaries to the form
7738	+ # {shnum: blocks_and_salts}
7739	+ #
7740	+ # The dictionaries come from validate block that way, so we just
7741	+ # need to merge them.
7742	+ for block_and_salt in blocks_and_salts:
7743	+ d.update(block_and_salt[1])
7744	+
7745	+ # All of these blocks should have the same salt; in SDMF, it is
7746	+ # the file-wide IV, while in MDMF it is the per-segment salt. In
7747	+ # either case, we just need to get one of them and use it.
7748	+ #
7749	+ # d.items()[0] is like (shnum, (block, salt))
7750	+ # d.items()[0][1] is like (block, salt)
7751	+ # d.items()[0][1][1] is the salt.
7752	+ salt = d.items()[0][1][1]
7753	+ # Next, extract just the blocks from the dict. We'll use the
7754	+ # salt in the next step.
7755	+ share_and_shareids = [(k, v[0]) for k, v in d.items()]
7756	+ d2 = dict(share_and_shareids)
7757	+ shareids = []
7758	+ shares = []
7759	+ for shareid, share in d2.items():
7760	shareids.append(shareid)
7761	shares.append(share)
7762
7763	hunk ./src/allmydata/mutable/retrieve.py 949
7764	- assert len(shareids) >= k, len(shareids)
7765	+ self._status.set_status("Decoding")
7766	+ started = time.time()
7767	+ assert len(shareids) >= self._required_shares, len(shareids)
7768	# zfec really doesn't want extra shares
7769	hunk ./src/allmydata/mutable/retrieve.py 953
7770	- shareids = shareids[:k]
7771	- shares = shares[:k]
7772	-
7773	- fec = codec.CRSDecoder()
7774	- fec.set_params(segsize, k, N)
7775	-
7776	- self.log("params %s, we have %d shares" % ((segsize, k, N), len(shares)))
7777	- self.log("about to decode, shareids=%s" % (shareids,))
7778	- d = defer.maybeDeferred(fec.decode, shares, shareids)
7779	- def _done(buffers):
7780	- self._status.timings["decode"] = time.time() - started
7781	- self.log(" decode done, %d buffers" % len(buffers))
7782	+ shareids = shareids[:self._required_shares]
7783	+ shares = shares[:self._required_shares]
7784	+ self.log("decoding segment %d" % segnum)
7785	+ if segnum == self._num_segments - 1:
7786	+ d = defer.maybeDeferred(self._tail_decoder.decode, shares, shareids)
7787	+ else:
7788	+ d = defer.maybeDeferred(self._segment_decoder.decode, shares, shareids)
7789	+ def _process(buffers):
7790	segment = "".join(buffers)
7791	hunk ./src/allmydata/mutable/retrieve.py 962
7792	+ self.log(format="now decoding segment %(segnum)s of %(numsegs)s",
7793	+ segnum=segnum,
7794	+ numsegs=self._num_segments,
7795	+ level=log.NOISY)
7796	self.log(" joined length %d, datalength %d" %
7797	hunk ./src/allmydata/mutable/retrieve.py 967
7798	- (len(segment), datalength))
7799	- segment = segment[:datalength]
7800	+ (len(segment), self._data_length))
7801	+ if segnum == self._num_segments - 1:
7802	+ size_to_use = self._tail_data_size
7803	+ else:
7804	+ size_to_use = self._segment_size
7805	+ segment = segment[:size_to_use]
7806	self.log(" segment len=%d" % len(segment))
7807	hunk ./src/allmydata/mutable/retrieve.py 974
7808	- return segment
7809	- def _err(f):
7810	- self.log(" decode failed: %s" % f)
7811	- return f
7812	- d.addCallback(_done)
7813	- d.addErrback(_err)
7814	+ self._status.timings.setdefault("decode", 0)
7815	+ self._status.timings['decode'] = time.time() - started
7816	+ return segment, salt
7817	+ d.addCallback(_process)
7818	return d
7819
7820	hunk ./src/allmydata/mutable/retrieve.py 980
7821	- def _decrypt(self, crypttext, IV, readkey):
7822	+
7823	+ def _decrypt_segment(self, segment_and_salt):
7824	+ """
7825	+ I take a single segment and its salt, and decrypt it. I return
7826	+ the plaintext of the segment that is in my argument.
7827	+ """
7828	+ segment, salt = segment_and_salt
7829	self._status.set_status("decrypting")
7830	hunk ./src/allmydata/mutable/retrieve.py 988
7831	+ self.log("decrypting segment %d" % self._current_segment)
7832	started = time.time()
7833	hunk ./src/allmydata/mutable/retrieve.py 990
7834	- key = hashutil.ssk_readkey_data_hash(IV, readkey)
7835	+ key = hashutil.ssk_readkey_data_hash(salt, self._node.get_readkey())
7836	decryptor = AES(key)
7837	hunk ./src/allmydata/mutable/retrieve.py 992
7838	- plaintext = decryptor.process(crypttext)
7839	- self._status.timings["decrypt"] = time.time() - started
7840	+ plaintext = decryptor.process(segment)
7841	+ self._status.timings.setdefault("decrypt", 0)
7842	+ self._status.timings['decrypt'] = time.time() - started
7843	return plaintext
7844
7845	hunk ./src/allmydata/mutable/retrieve.py 997
7846	- def _done(self, res):
7847	- if not self._running:
7848	+
7849	+ def notify_server_corruption(self, peerid, shnum, reason):
7850	+ ss = self.servermap.connections[peerid]
7851	+ ss.callRemoteOnly("advise_corrupt_share",
7852	+ "mutable", self._storage_index, shnum, reason)
7853	+
7854	+
7855	+ def _try_to_validate_privkey(self, enc_privkey, reader):
7856	+ alleged_privkey_s = self._node._decrypt_privkey(enc_privkey)
7857	+ alleged_writekey = hashutil.ssk_writekey_hash(alleged_privkey_s)
7858	+ if alleged_writekey != self._node.get_writekey():
7859	+ self.log("invalid privkey from %s shnum %d" %
7860	+ (reader, reader.shnum),
7861	+ level=log.WEIRD, umid="YIw4tA")
7862	+ if self._verify:
7863	+ self.servermap.mark_bad_share(reader.peerid, reader.shnum,
7864	+ self.verinfo[-2])
7865	+ e = CorruptShareError(reader.peerid,
7866	+ reader.shnum,
7867	+ "invalid privkey")
7868	+ f = failure.Failure(e)
7869	+ self._bad_shares.add((reader.peerid, reader.shnum, f))
7870	return
7871	hunk ./src/allmydata/mutable/retrieve.py 1020
7872	+
7873	+ # it's good
7874	+ self.log("got valid privkey from shnum %d on reader %s" %
7875	+ (reader.shnum, reader))
7876	+ privkey = rsa.create_signing_key_from_string(alleged_privkey_s)
7877	+ self._node._populate_encprivkey(enc_privkey)
7878	+ self._node._populate_privkey(privkey)
7879	+ self._need_privkey = False
7880	+
7881	+
7882	+ def _check_for_done(self, res):
7883	+ """
7884	+ I check to see if this Retrieve object has successfully finished
7885	+ its work.
7886	+
7887	+ I can exit in the following ways:
7888	+ - If there are no more segments to download, then I exit by
7889	+ causing self._done_deferred to fire with the plaintext
7890	+ content requested by the caller.
7891	+ - If there are still segments to be downloaded, and there
7892	+ are enough active readers (readers which have not broken
7893	+ and have not given us corrupt data) to continue
7894	+ downloading, I send control back to
7895	+ _download_current_segment.
7896	+ - If there are still segments to be downloaded but there are
7897	+ not enough active peers to download them, I ask
7898	+ _add_active_peers to add more peers. If it is successful,
7899	+ it will call _download_current_segment. If there are not
7900	+ enough peers to retrieve the file, then that will cause
7901	+ _done_deferred to errback.
7902	+ """
7903	+ self.log("checking for doneness")
7904	+ if self._current_segment > self._last_segment:
7905	+ # No more segments to download, we're done.
7906	+ self.log("got plaintext, done")
7907	+ return self._done()
7908	+
7909	+ if len(self._active_readers) >= self._required_shares:
7910	+ # More segments to download, but we have enough good peers
7911	+ # in self._active_readers that we can do that without issue,
7912	+ # so go nab the next segment.
7913	+ self.log("not done yet: on segment %d of %d" % \
7914	+ (self._current_segment + 1, self._num_segments))
7915	+ return self._download_current_segment()
7916	+
7917	+ self.log("not done yet: on segment %d of %d, need to add peers" % \
7918	+ (self._current_segment + 1, self._num_segments))
7919	+ return self._add_active_peers()
7920	+
7921	+
7922	+ def _done(self):
7923	+ """
7924	+ I am called by _check_for_done when the download process has
7925	+ finished successfully. After making some useful logging
7926	+ statements, I return the decrypted contents to the owner of this
7927	+ Retrieve object through self._done_deferred.
7928	+ """
7929	self._running = False
7930	self._status.set_active(False)
7931	hunk ./src/allmydata/mutable/retrieve.py 1079
7932	- self._status.timings["total"] = time.time() - self._started
7933	- # res is either the new contents, or a Failure
7934	- if isinstance(res, failure.Failure):
7935	- self.log("Retrieve done, with failure", failure=res,
7936	- level=log.UNUSUAL)
7937	- self._status.set_status("Failed")
7938	+ now = time.time()
7939	+ self._status.timings['total'] = now - self._started
7940	+ self._status.timings['fetch'] = now - self._started_fetching
7941	+
7942	+ if self._verify:
7943	+ ret = list(self._bad_shares)
7944	+ self.log("done verifying, found %d bad shares" % len(ret))
7945	else:
7946	hunk ./src/allmydata/mutable/retrieve.py 1087
7947	- self.log("Retrieve done, success!")
7948	- self._status.set_status("Finished")
7949	- self._status.set_progress(1.0)
7950	- # remember the encoding parameters, use them again next time
7951	- (seqnum, root_hash, IV, segsize, datalength, k, N, prefix,
7952	- offsets_tuple) = self.verinfo
7953	- self._node._populate_required_shares(k)
7954	- self._node._populate_total_shares(N)
7955	- eventually(self._done_deferred.callback, res)
7956	+ # TODO: upload status here?
7957	+ ret = self._consumer
7958	+ self._consumer.unregisterProducer()
7959	+ eventually(self._done_deferred.callback, ret)
7960	+
7961
7962	hunk ./src/allmydata/mutable/retrieve.py 1093
7963	+ def _failed(self):
7964	+ """
7965	+ I am called by _add_active_peers when there are not enough
7966	+ active peers left to complete the download. After making some
7967	+ useful logging statements, I return an exception to that effect
7968	+ to the caller of this Retrieve object through
7969	+ self._done_deferred.
7970	+ """
7971	+ self._running = False
7972	+ self._status.set_active(False)
7973	+ now = time.time()
7974	+ self._status.timings['total'] = now - self._started
7975	+ self._status.timings['fetch'] = now - self._started_fetching
7976	+
7977	+ if self._verify:
7978	+ ret = list(self._bad_shares)
7979	+ else:
7980	+ format = ("ran out of peers: "
7981	+ "have %(have)d of %(total)d segments "
7982	+ "found %(bad)d bad shares "
7983	+ "encoding %(k)d-of-%(n)d")
7984	+ args = {"have": self._current_segment,
7985	+ "total": self._num_segments,
7986	+ "need": self._last_segment,
7987	+ "k": self._required_shares,
7988	+ "n": self._total_shares,
7989	+ "bad": len(self._bad_shares)}
7990	+ e = NotEnoughSharesError("%s, last failure: %s" % \
7991	+ (format % args, str(self._last_failure)))
7992	+ f = failure.Failure(e)
7993	+ ret = f
7994	+ eventually(self._done_deferred.callback, ret)
7995	}
7996	[mutable/filenode.py: add versions and partial-file updates to the mutable file node
7997	Kevan Carstensen <kevan@isnotajoke.com>**20100811002030
7998	Ignore-this: a8041b0ad1b46070a9a78dc142dbd61d
7999
8000	One of the goals of MDMF as a GSoC project is to lay the groundwork for
8001	LDMF, a format that will allow Tahoe-LAFS to deal with and encourage
8002	multiple versions of a single cap on the grid. In line with this, there
8003	is a now a distinction between an overriding mutable file (which can be
8004	thought to correspond to the cap/unique identifier for that mutable
8005	file) and versions of the mutable file (which we can download, update,
8006	and so on). All download, upload, and modification operations end up
8007	happening on a particular version of a mutable file, but there are
8008	shortcut methods on the object representing the overriding mutable file
8009	that perform these operations on the best version of the mutable file
8010	(which is what code should be doing until we have LDMF and better
8011	support for other paradigms).
8012
8013	Another goal of MDMF was to take advantage of segmentation to give
8014	callers more efficient partial file updates or appends. This patch
8015	implements methods that do that, too.
8016
8017	] {
8018	hunk ./src/allmydata/mutable/filenode.py 7
8019	from zope.interface import implements
8020	from twisted.internet import defer, reactor
8021	from foolscap.api import eventually
8022	-from allmydata.interfaces import IMutableFileNode, \
8023	- ICheckable, ICheckResults, NotEnoughSharesError
8024	-from allmydata.util import hashutil, log
8025	+from allmydata.interfaces import IMutableFileNode, ICheckable, ICheckResults, \
8026	+ NotEnoughSharesError, MDMF_VERSION, SDMF_VERSION, IMutableUploadable, \
8027	+ IMutableFileVersion, IWritable
8028	+from allmydata import hashtree
8029	+from allmydata.util import hashutil, log, consumer, deferredutil, mathutil
8030	from allmydata.util.assertutil import precondition
8031	from allmydata.uri import WriteableSSKFileURI, ReadonlySSKFileURI
8032	from allmydata.monitor import Monitor
8033	hunk ./src/allmydata/mutable/filenode.py 17
8034	from pycryptopp.cipher.aes import AES
8035
8036	-from allmydata.mutable.publish import Publish
8037	+from allmydata.mutable.publish import Publish, MutableFileHandle, \
8038	+ MutableData,\
8039	+ DEFAULT_MAX_SEGMENT_SIZE, \
8040	+ TransformingUploadable
8041	from allmydata.mutable.common import MODE_READ, MODE_WRITE, UnrecoverableFileError, \
8042	ResponseCache, UncoordinatedWriteError
8043	from allmydata.mutable.servermap import ServerMap, ServermapUpdater
8044	hunk ./src/allmydata/mutable/filenode.py 72
8045	self._sharemap = {} # known shares, shnum-to-[nodeids]
8046	self._cache = ResponseCache()
8047	self._most_recent_size = None
8048	+ # filled in after __init__ if we're being created for the first time;
8049	+ # filled in by the servermap updater before publishing, otherwise.
8050	+ # set to this default value in case neither of those things happen,
8051	+ # or in case the servermap can't find any shares to tell us what
8052	+ # to publish as.
8053	+ # TODO: Set this back to None, and find out why the tests fail
8054	+ # with it set to None.
8055	+ self._protocol_version = SDMF_VERSION
8056
8057	# all users of this MutableFileNode go through the serializer. This
8058	# takes advantage of the fact that Deferreds discard the callbacks
8059	hunk ./src/allmydata/mutable/filenode.py 136
8060	return self._upload(initial_contents, None)
8061
8062	def _get_initial_contents(self, contents):
8063	- if isinstance(contents, str):
8064	- return contents
8065	if contents is None:
8066	hunk ./src/allmydata/mutable/filenode.py 137
8067	- return ""
8068	+ return MutableData("")
8069	+
8070	+ if IMutableUploadable.providedBy(contents):
8071	+ return contents
8072	+
8073	assert callable(contents), "%s should be callable, not %s" % \
8074	(contents, type(contents))
8075	return contents(self)
8076	hunk ./src/allmydata/mutable/filenode.py 211
8077
8078	def get_size(self):
8079	return self._most_recent_size
8080	+
8081	def get_current_size(self):
8082	d = self.get_size_of_best_version()
8083	d.addCallback(self._stash_size)
8084	hunk ./src/allmydata/mutable/filenode.py 216
8085	return d
8086	+
8087	def _stash_size(self, size):
8088	self._most_recent_size = size
8089	return size
8090	hunk ./src/allmydata/mutable/filenode.py 275
8091	return cmp(self.__class__, them.__class__)
8092	return cmp(self._uri, them._uri)
8093
8094	- def _do_serialized(self, cb, args, *kwargs):
8095	- # note: to avoid deadlock, this callable is not allowed to invoke
8096	- # other serialized methods within this (or any other)
8097	- # MutableFileNode. The callable should be a bound method of this same
8098	- # MFN instance.
8099	- d = defer.Deferred()
8100	- self._serializer.addCallback(lambda ignore: cb(args, *kwargs))
8101	- # we need to put off d.callback until this Deferred is finished being
8102	- # processed. Otherwise the caller's subsequent activities (like,
8103	- # doing other things with this node) can cause reentrancy problems in
8104	- # the Deferred code itself
8105	- self._serializer.addBoth(lambda res: eventually(d.callback, res))
8106	- # add a log.err just in case something really weird happens, because
8107	- # self._serializer stays around forever, therefore we won't see the
8108	- # usual Unhandled Error in Deferred that would give us a hint.
8109	- self._serializer.addErrback(log.err)
8110	- return d
8111
8112	#################################
8113	# ICheckable
8114	hunk ./src/allmydata/mutable/filenode.py 300
8115
8116
8117	#################################
8118	- # IMutableFileNode
8119	+ # IFileNode
8120	+
8121	+ def get_best_readable_version(self):
8122	+ """
8123	+ I return a Deferred that fires with a MutableFileVersion
8124	+ representing the best readable version of the file that I
8125	+ represent
8126	+ """
8127	+ return self.get_readable_version()
8128	+
8129	+
8130	+ def get_readable_version(self, servermap=None, version=None):
8131	+ """
8132	+ I return a Deferred that fires with an MutableFileVersion for my
8133	+ version argument, if there is a recoverable file of that version
8134	+ on the grid. If there is no recoverable version, I fire with an
8135	+ UnrecoverableFileError.
8136	+
8137	+ If a servermap is provided, I look in there for the requested
8138	+ version. If no servermap is provided, I create and update a new
8139	+ one.
8140	+
8141	+ If no version is provided, then I return a MutableFileVersion
8142	+ representing the best recoverable version of the file.
8143	+ """
8144	+ d = self._get_version_from_servermap(MODE_READ, servermap, version)
8145	+ def _build_version((servermap, their_version)):
8146	+ assert their_version in servermap.recoverable_versions()
8147	+ assert their_version in servermap.make_versionmap()
8148	+
8149	+ mfv = MutableFileVersion(self,
8150	+ servermap,
8151	+ their_version,
8152	+ self._storage_index,
8153	+ self._storage_broker,
8154	+ self._readkey,
8155	+ history=self._history)
8156	+ assert mfv.is_readonly()
8157	+ # our caller can use this to download the contents of the
8158	+ # mutable file.
8159	+ return mfv
8160	+ return d.addCallback(_build_version)
8161	+
8162	+
8163	+ def _get_version_from_servermap(self,
8164	+ mode,
8165	+ servermap=None,
8166	+ version=None):
8167	+ """
8168	+ I return a Deferred that fires with (servermap, version).
8169	+
8170	+ This function performs validation and a servermap update. If it
8171	+ returns (servermap, version), the caller can assume that:
8172	+ - servermap was last updated in mode.
8173	+ - version is recoverable, and corresponds to the servermap.
8174	+
8175	+ If version and servermap are provided to me, I will validate
8176	+ that version exists in the servermap, and that the servermap was
8177	+ updated correctly.
8178	+
8179	+ If version is not provided, but servermap is, I will validate
8180	+ the servermap and return the best recoverable version that I can
8181	+ find in the servermap.
8182	+
8183	+ If the version is provided but the servermap isn't, I will
8184	+ obtain a servermap that has been updated in the correct mode and
8185	+ validate that version is found and recoverable.
8186	+
8187	+ If neither servermap nor version are provided, I will obtain a
8188	+ servermap updated in the correct mode, and return the best
8189	+ recoverable version that I can find in there.
8190	+ """
8191	+ # XXX: wording ^^^^
8192	+ if servermap and servermap.last_update_mode == mode:
8193	+ d = defer.succeed(servermap)
8194	+ else:
8195	+ d = self._get_servermap(mode)
8196	+
8197	+ def _get_version(servermap, v):
8198	+ if v and v not in servermap.recoverable_versions():
8199	+ v = None
8200	+ elif not v:
8201	+ v = servermap.best_recoverable_version()
8202	+ if not v:
8203	+ raise UnrecoverableFileError("no recoverable versions")
8204	+
8205	+ return (servermap, v)
8206	+ return d.addCallback(_get_version, version)
8207	+
8208
8209	def download_best_version(self):
8210	hunk ./src/allmydata/mutable/filenode.py 391
8211	+ """
8212	+ I return a Deferred that fires with the contents of the best
8213	+ version of this mutable file.
8214	+ """
8215	return self._do_serialized(self._download_best_version)
8216	hunk ./src/allmydata/mutable/filenode.py 396
8217	+
8218	+
8219	def _download_best_version(self):
8220	hunk ./src/allmydata/mutable/filenode.py 399
8221	- servermap = ServerMap()
8222	- d = self._try_once_to_download_best_version(servermap, MODE_READ)
8223	- def _maybe_retry(f):
8224	- f.trap(NotEnoughSharesError)
8225	- # the download is worth retrying once. Make sure to use the
8226	- # old servermap, since it is what remembers the bad shares,
8227	- # but use MODE_WRITE to make it look for even more shares.
8228	- # TODO: consider allowing this to retry multiple times.. this
8229	- # approach will let us tolerate about 8 bad shares, I think.
8230	- return self._try_once_to_download_best_version(servermap,
8231	- MODE_WRITE)
8232	+ """
8233	+ I am the serialized sibling of download_best_version.
8234	+ """
8235	+ d = self.get_best_readable_version()
8236	+ d.addCallback(self._record_size)
8237	+ d.addCallback(lambda version: version.download_to_data())
8238	+
8239	+ # It is possible that the download will fail because there
8240	+ # aren't enough shares to be had. If so, we will try again after
8241	+ # updating the servermap in MODE_WRITE, which may find more
8242	+ # shares than updating in MODE_READ, as we just did. We can do
8243	+ # this by getting the best mutable version and downloading from
8244	+ # that -- the best mutable version will be a MutableFileVersion
8245	+ # with a servermap that was last updated in MODE_WRITE, as we
8246	+ # want. If this fails, then we give up.
8247	+ def _maybe_retry(failure):
8248	+ failure.trap(NotEnoughSharesError)
8249	+
8250	+ d = self.get_best_mutable_version()
8251	+ d.addCallback(self._record_size)
8252	+ d.addCallback(lambda version: version.download_to_data())
8253	+ return d
8254	+
8255	d.addErrback(_maybe_retry)
8256	return d
8257	hunk ./src/allmydata/mutable/filenode.py 424
8258	- def _try_once_to_download_best_version(self, servermap, mode):
8259	- d = self._update_servermap(servermap, mode)
8260	- d.addCallback(self._once_updated_download_best_version, servermap)
8261	- return d
8262	- def _once_updated_download_best_version(self, ignored, servermap):
8263	- goal = servermap.best_recoverable_version()
8264	- if not goal:
8265	- raise UnrecoverableFileError("no recoverable versions")
8266	- return self._try_once_to_download_version(servermap, goal)
8267	+
8268	+
8269	+ def _record_size(self, mfv):
8270	+ """
8271	+ I record the size of a mutable file version.
8272	+ """
8273	+ self._most_recent_size = mfv.get_size()
8274	+ return mfv
8275	+
8276
8277	def get_size_of_best_version(self):
8278	hunk ./src/allmydata/mutable/filenode.py 435
8279	- d = self.get_servermap(MODE_READ)
8280	- def _got_servermap(smap):
8281	- ver = smap.best_recoverable_version()
8282	- if not ver:
8283	- raise UnrecoverableFileError("no recoverable version")
8284	- return smap.size_of_version(ver)
8285	- d.addCallback(_got_servermap)
8286	- return d
8287	+ """
8288	+ I return the size of the best version of this mutable file.
8289
8290	hunk ./src/allmydata/mutable/filenode.py 438
8291	+ This is equivalent to calling get_size() on the result of
8292	+ get_best_readable_version().
8293	+ """
8294	+ d = self.get_best_readable_version()
8295	+ return d.addCallback(lambda mfv: mfv.get_size())
8296	+
8297	+
8298	+ #################################
8299	+ # IMutableFileNode
8300	+
8301	+ def get_best_mutable_version(self, servermap=None):
8302	+ """
8303	+ I return a Deferred that fires with a MutableFileVersion
8304	+ representing the best readable version of the file that I
8305	+ represent. I am like get_best_readable_version, except that I
8306	+ will try to make a writable version if I can.
8307	+ """
8308	+ return self.get_mutable_version(servermap=servermap)
8309	+
8310	+
8311	+ def get_mutable_version(self, servermap=None, version=None):
8312	+ """
8313	+ I return a version of this mutable file. I return a Deferred
8314	+ that fires with a MutableFileVersion
8315	+
8316	+ If version is provided, the Deferred will fire with a
8317	+ MutableFileVersion initailized with that version. Otherwise, it
8318	+ will fire with the best version that I can recover.
8319	+
8320	+ If servermap is provided, I will use that to find versions
8321	+ instead of performing my own servermap update.
8322	+ """
8323	+ if self.is_readonly():
8324	+ return self.get_readable_version(servermap=servermap,
8325	+ version=version)
8326	+
8327	+ # get_mutable_version => write intent, so we require that the
8328	+ # servermap is updated in MODE_WRITE
8329	+ d = self._get_version_from_servermap(MODE_WRITE, servermap, version)
8330	+ def _build_version((servermap, smap_version)):
8331	+ # these should have been set by the servermap update.
8332	+ assert self._secret_holder
8333	+ assert self._writekey
8334	+
8335	+ mfv = MutableFileVersion(self,
8336	+ servermap,
8337	+ smap_version,
8338	+ self._storage_index,
8339	+ self._storage_broker,
8340	+ self._readkey,
8341	+ self._writekey,
8342	+ self._secret_holder,
8343	+ history=self._history)
8344	+ assert not mfv.is_readonly()
8345	+ return mfv
8346	+
8347	+ return d.addCallback(_build_version)
8348	+
8349	+
8350	+ # XXX: I'm uncomfortable with the difference between upload and
8351	+ # overwrite, which, FWICT, is basically that you don't have to
8352	+ # do a servermap update before you overwrite. We split them up
8353	+ # that way anyway, so I guess there's no real difficulty in
8354	+ # offering both ways to callers, but it also makes the
8355	+ # public-facing API cluttery, and makes it hard to discern the
8356	+ # right way of doing things.
8357	+
8358	+ # In general, we leave it to callers to ensure that they aren't
8359	+ # going to cause UncoordinatedWriteErrors when working with
8360	+ # MutableFileVersions. We know that the next three operations
8361	+ # (upload, overwrite, and modify) will all operate on the same
8362	+ # version, so we say that only one of them can be going on at once,
8363	+ # and serialize them to ensure that that actually happens, since as
8364	+ # the caller in this situation it is our job to do that.
8365	def overwrite(self, new_contents):
8366	hunk ./src/allmydata/mutable/filenode.py 513
8367	+ """
8368	+ I overwrite the contents of the best recoverable version of this
8369	+ mutable file with new_contents. This is equivalent to calling
8370	+ overwrite on the result of get_best_mutable_version with
8371	+ new_contents as an argument. I return a Deferred that eventually
8372	+ fires with the results of my replacement process.
8373	+ """
8374	return self._do_serialized(self._overwrite, new_contents)
8375	hunk ./src/allmydata/mutable/filenode.py 521
8376	+
8377	+
8378	def _overwrite(self, new_contents):
8379	hunk ./src/allmydata/mutable/filenode.py 524
8380	+ """
8381	+ I am the serialized sibling of overwrite.
8382	+ """
8383	+ d = self.get_best_mutable_version()
8384	+ return d.addCallback(lambda mfv: mfv.overwrite(new_contents))
8385	+
8386	+
8387	+
8388	+ def upload(self, new_contents, servermap):
8389	+ """
8390	+ I overwrite the contents of the best recoverable version of this
8391	+ mutable file with new_contents, using servermap instead of
8392	+ creating/updating our own servermap. I return a Deferred that
8393	+ fires with the results of my upload.
8394	+ """
8395	+ return self._do_serialized(self._upload, new_contents, servermap)
8396	+
8397	+
8398	+ def _upload(self, new_contents, servermap):
8399	+ """
8400	+ I am the serialized sibling of upload.
8401	+ """
8402	+ d = self.get_best_mutable_version(servermap)
8403	+ return d.addCallback(lambda mfv: mfv.overwrite(new_contents))
8404	+
8405	+
8406	+ def modify(self, modifier, backoffer=None):
8407	+ """
8408	+ I modify the contents of the best recoverable version of this
8409	+ mutable file with the modifier. This is equivalent to calling
8410	+ modify on the result of get_best_mutable_version. I return a
8411	+ Deferred that eventually fires with an UploadResults instance
8412	+ describing this process.
8413	+ """
8414	+ return self._do_serialized(self._modify, modifier, backoffer)
8415	+
8416	+
8417	+ def _modify(self, modifier, backoffer):
8418	+ """
8419	+ I am the serialized sibling of modify.
8420	+ """
8421	+ d = self.get_best_mutable_version()
8422	+ return d.addCallback(lambda mfv: mfv.modify(modifier, backoffer))
8423	+
8424	+
8425	+ def download_version(self, servermap, version, fetch_privkey=False):
8426	+ """
8427	+ Download the specified version of this mutable file. I return a
8428	+ Deferred that fires with the contents of the specified version
8429	+ as a bytestring, or errbacks if the file is not recoverable.
8430	+ """
8431	+ d = self.get_readable_version(servermap, version)
8432	+ return d.addCallback(lambda mfv: mfv.download_to_data(fetch_privkey))
8433	+
8434	+
8435	+ def get_servermap(self, mode):
8436	+ """
8437	+ I return a servermap that has been updated in mode.
8438	+
8439	+ mode should be one of MODE_READ, MODE_WRITE, MODE_CHECK or
8440	+ MODE_ANYTHING. See servermap.py for more on what these mean.
8441	+ """
8442	+ return self._do_serialized(self._get_servermap, mode)
8443	+
8444	+
8445	+ def _get_servermap(self, mode):
8446	+ """
8447	+ I am a serialized twin to get_servermap.
8448	+ """
8449	servermap = ServerMap()
8450	hunk ./src/allmydata/mutable/filenode.py 594
8451	- d = self._update_servermap(servermap, mode=MODE_WRITE)
8452	- d.addCallback(lambda ignored: self._upload(new_contents, servermap))
8453	+ return self._update_servermap(servermap, mode)
8454	+
8455	+
8456	+ def _update_servermap(self, servermap, mode):
8457	+ u = ServermapUpdater(self, self._storage_broker, Monitor(), servermap,
8458	+ mode)
8459	+ if self._history:
8460	+ self._history.notify_mapupdate(u.get_status())
8461	+ return u.update()
8462	+
8463	+
8464	+ def set_version(self, version):
8465	+ # I can be set in two ways:
8466	+ # 1. When the node is created.
8467	+ # 2. (for an existing share) when the Servermap is updated
8468	+ # before I am read.
8469	+ assert version in (MDMF_VERSION, SDMF_VERSION)
8470	+ self._protocol_version = version
8471	+
8472	+
8473	+ def get_version(self):
8474	+ return self._protocol_version
8475	+
8476	+
8477	+ def _do_serialized(self, cb, args, *kwargs):
8478	+ # note: to avoid deadlock, this callable is not allowed to invoke
8479	+ # other serialized methods within this (or any other)
8480	+ # MutableFileNode. The callable should be a bound method of this same
8481	+ # MFN instance.
8482	+ d = defer.Deferred()
8483	+ self._serializer.addCallback(lambda ignore: cb(args, *kwargs))
8484	+ # we need to put off d.callback until this Deferred is finished being
8485	+ # processed. Otherwise the caller's subsequent activities (like,
8486	+ # doing other things with this node) can cause reentrancy problems in
8487	+ # the Deferred code itself
8488	+ self._serializer.addBoth(lambda res: eventually(d.callback, res))
8489	+ # add a log.err just in case something really weird happens, because
8490	+ # self._serializer stays around forever, therefore we won't see the
8491	+ # usual Unhandled Error in Deferred that would give us a hint.
8492	+ self._serializer.addErrback(log.err)
8493	return d
8494
8495
8496	hunk ./src/allmydata/mutable/filenode.py 637
8497	+ def _upload(self, new_contents, servermap):
8498	+ """
8499	+ A MutableFileNode still has to have some way of getting
8500	+ published initially, which is what I am here for. After that,
8501	+ all publishing, updating, modifying and so on happens through
8502	+ MutableFileVersions.
8503	+ """
8504	+ assert self._pubkey, "update_servermap must be called before publish"
8505	+
8506	+ p = Publish(self, self._storage_broker, servermap)
8507	+ if self._history:
8508	+ self._history.notify_publish(p.get_status(),
8509	+ new_contents.get_size())
8510	+ d = p.publish(new_contents)
8511	+ d.addCallback(self._did_upload, new_contents.get_size())
8512	+ return d
8513	+
8514	+
8515	+ def _did_upload(self, res, size):
8516	+ self._most_recent_size = size
8517	+ return res
8518	+
8519	+
8520	+class MutableFileVersion:
8521	+ """
8522	+ I represent a specific version (most likely the best version) of a
8523	+ mutable file.
8524	+
8525	+ Since I implement IReadable, instances which hold a
8526	+ reference to an instance of me are guaranteed the ability (absent
8527	+ connection difficulties or unrecoverable versions) to read the file
8528	+ that I represent. Depending on whether I was initialized with a
8529	+ write capability or not, I may also provide callers the ability to
8530	+ overwrite or modify the contents of the mutable file that I
8531	+ reference.
8532	+ """
8533	+ implements(IMutableFileVersion, IWritable)
8534	+
8535	+ def __init__(self,
8536	+ node,
8537	+ servermap,
8538	+ version,
8539	+ storage_index,
8540	+ storage_broker,
8541	+ readcap,
8542	+ writekey=None,
8543	+ write_secrets=None,
8544	+ history=None):
8545	+
8546	+ self._node = node
8547	+ self._servermap = servermap
8548	+ self._version = version
8549	+ self._storage_index = storage_index
8550	+ self._write_secrets = write_secrets
8551	+ self._history = history
8552	+ self._storage_broker = storage_broker
8553	+
8554	+ #assert isinstance(readcap, IURI)
8555	+ self._readcap = readcap
8556	+
8557	+ self._writekey = writekey
8558	+ self._serializer = defer.succeed(None)
8559	+ self._size = None
8560	+
8561	+
8562	+ def get_sequence_number(self):
8563	+ """
8564	+ Get the sequence number of the mutable version that I represent.
8565	+ """
8566	+ return self._version[0] # verinfo[0] == the sequence number
8567	+
8568	+
8569	+ # TODO: Terminology?
8570	+ def get_writekey(self):
8571	+ """
8572	+ I return a writekey or None if I don't have a writekey.
8573	+ """
8574	+ return self._writekey
8575	+
8576	+
8577	+ def overwrite(self, new_contents):
8578	+ """
8579	+ I overwrite the contents of this mutable file version with the
8580	+ data in new_contents.
8581	+ """
8582	+ assert not self.is_readonly()
8583	+
8584	+ return self._do_serialized(self._overwrite, new_contents)
8585	+
8586	+
8587	+ def _overwrite(self, new_contents):
8588	+ assert IMutableUploadable.providedBy(new_contents)
8589	+ assert self._servermap.last_update_mode == MODE_WRITE
8590	+
8591	+ return self._upload(new_contents)
8592	+
8593	+
8594	def modify(self, modifier, backoffer=None):
8595	"""I use a modifier callback to apply a change to the mutable file.
8596	I implement the following pseudocode::
8597	hunk ./src/allmydata/mutable/filenode.py 774
8598	backoffer should not invoke any methods on this MutableFileNode
8599	instance, and it needs to be highly conscious of deadlock issues.
8600	"""
8601	+ assert not self.is_readonly()
8602	+
8603	return self._do_serialized(self._modify, modifier, backoffer)
8604	hunk ./src/allmydata/mutable/filenode.py 777
8605	+
8606	+
8607	def _modify(self, modifier, backoffer):
8608	hunk ./src/allmydata/mutable/filenode.py 780
8609	- servermap = ServerMap()
8610	if backoffer is None:
8611	backoffer = BackoffAgent().delay
8612	hunk ./src/allmydata/mutable/filenode.py 782
8613	- return self._modify_and_retry(servermap, modifier, backoffer, True)
8614	- def _modify_and_retry(self, servermap, modifier, backoffer, first_time):
8615	- d = self._modify_once(servermap, modifier, first_time)
8616	+ return self._modify_and_retry(modifier, backoffer, True)
8617	+
8618	+
8619	+ def _modify_and_retry(self, modifier, backoffer, first_time):
8620	+ """
8621	+ I try to apply modifier to the contents of this version of the
8622	+ mutable file. If I succeed, I return an UploadResults instance
8623	+ describing my success. If I fail, I try again after waiting for
8624	+ a little bit.
8625	+ """
8626	+ log.msg("doing modify")
8627	+ d = self._modify_once(modifier, first_time)
8628	def _retry(f):
8629	f.trap(UncoordinatedWriteError)
8630	d2 = defer.maybeDeferred(backoffer, self, f)
8631	hunk ./src/allmydata/mutable/filenode.py 798
8632	d2.addCallback(lambda ignored:
8633	- self._modify_and_retry(servermap, modifier,
8634	+ self._modify_and_retry(modifier,
8635	backoffer, False))
8636	return d2
8637	d.addErrback(_retry)
8638	hunk ./src/allmydata/mutable/filenode.py 803
8639	return d
8640	- def _modify_once(self, servermap, modifier, first_time):
8641	- d = self._update_servermap(servermap, MODE_WRITE)
8642	- d.addCallback(self._once_updated_download_best_version, servermap)
8643	+
8644	+
8645	+ def _modify_once(self, modifier, first_time):
8646	+ """
8647	+ I attempt to apply a modifier to the contents of the mutable
8648	+ file.
8649	+ """
8650	+ # XXX: This is wrong -- we could get more servers if we updated
8651	+ # in MODE_ANYTHING and possibly MODE_CHECK. Probably we want to
8652	+ # assert that the last update wasn't MODE_READ
8653	+ assert self._servermap.last_update_mode == MODE_WRITE
8654	+
8655	+ # download_to_data is serialized, so we have to call this to
8656	+ # avoid deadlock.
8657	+ d = self._try_to_download_data()
8658	def _apply(old_contents):
8659	hunk ./src/allmydata/mutable/filenode.py 819
8660	- new_contents = modifier(old_contents, servermap, first_time)
8661	+ new_contents = modifier(old_contents, self._servermap, first_time)
8662	+ precondition((isinstance(new_contents, str) or
8663	+ new_contents is None),
8664	+ "Modifier function must return a string "
8665	+ "or None")
8666	+
8667	if new_contents is None or new_contents == old_contents:
8668	hunk ./src/allmydata/mutable/filenode.py 826
8669	+ log.msg("no changes")
8670	# no changes need to be made
8671	if first_time:
8672	return
8673	hunk ./src/allmydata/mutable/filenode.py 834
8674	# recovery when it observes UCWE, we need to do a second
8675	# publish. See #551 for details. We'll basically loop until
8676	# we managed an uncontested publish.
8677	- new_contents = old_contents
8678	- precondition(isinstance(new_contents, str),
8679	- "Modifier function must return a string or None")
8680	- return self._upload(new_contents, servermap)
8681	+ old_uploadable = MutableData(old_contents)
8682	+ new_contents = old_uploadable
8683	+ else:
8684	+ new_contents = MutableData(new_contents)
8685	+
8686	+ return self._upload(new_contents)
8687	d.addCallback(_apply)
8688	return d
8689
8690	hunk ./src/allmydata/mutable/filenode.py 843
8691	- def get_servermap(self, mode):
8692	- return self._do_serialized(self._get_servermap, mode)
8693	- def _get_servermap(self, mode):
8694	- servermap = ServerMap()
8695	- return self._update_servermap(servermap, mode)
8696	- def _update_servermap(self, servermap, mode):
8697	- u = ServermapUpdater(self, self._storage_broker, Monitor(), servermap,
8698	- mode)
8699	- if self._history:
8700	- self._history.notify_mapupdate(u.get_status())
8701	- return u.update()
8702
8703	hunk ./src/allmydata/mutable/filenode.py 844
8704	- def download_version(self, servermap, version, fetch_privkey=False):
8705	- return self._do_serialized(self._try_once_to_download_version,
8706	- servermap, version, fetch_privkey)
8707	- def _try_once_to_download_version(self, servermap, version,
8708	- fetch_privkey=False):
8709	- r = Retrieve(self, servermap, version, fetch_privkey)
8710	+ def is_readonly(self):
8711	+ """
8712	+ I return True if this MutableFileVersion provides no write
8713	+ access to the file that it encapsulates, and False if it
8714	+ provides the ability to modify the file.
8715	+ """
8716	+ return self._writekey is None
8717	+
8718	+
8719	+ def is_mutable(self):
8720	+ """
8721	+ I return True, since mutable files are always mutable by
8722	+ somebody.
8723	+ """
8724	+ return True
8725	+
8726	+
8727	+ def get_storage_index(self):
8728	+ """
8729	+ I return the storage index of the reference that I encapsulate.
8730	+ """
8731	+ return self._storage_index
8732	+
8733	+
8734	+ def get_size(self):
8735	+ """
8736	+ I return the length, in bytes, of this readable object.
8737	+ """
8738	+ return self._servermap.size_of_version(self._version)
8739	+
8740	+
8741	+ def download_to_data(self, fetch_privkey=False):
8742	+ """
8743	+ I return a Deferred that fires with the contents of this
8744	+ readable object as a byte string.
8745	+
8746	+ """
8747	+ c = consumer.MemoryConsumer()
8748	+ d = self.read(c, fetch_privkey=fetch_privkey)
8749	+ d.addCallback(lambda mc: "".join(mc.chunks))
8750	+ return d
8751	+
8752	+
8753	+ def _try_to_download_data(self):
8754	+ """
8755	+ I am an unserialized cousin of download_to_data; I am called
8756	+ from the children of modify() to download the data associated
8757	+ with this mutable version.
8758	+ """
8759	+ c = consumer.MemoryConsumer()
8760	+ # modify will almost certainly write, so we need the privkey.
8761	+ d = self._read(c, fetch_privkey=True)
8762	+ d.addCallback(lambda mc: "".join(mc.chunks))
8763	+ return d
8764	+
8765	+
8766	+ def _update_servermap(self, mode=MODE_READ):
8767	+ """
8768	+ I update our Servermap according to my mode argument. I return a
8769	+ Deferred that fires with None when this has finished. The
8770	+ updated Servermap will be at self._servermap in that case.
8771	+ """
8772	+ d = self._node.get_servermap(mode)
8773	+
8774	+ def _got_servermap(servermap):
8775	+ assert servermap.last_update_mode == mode
8776	+
8777	+ self._servermap = servermap
8778	+ d.addCallback(_got_servermap)
8779	+ return d
8780	+
8781	+
8782	+ def read(self, consumer, offset=0, size=None, fetch_privkey=False):
8783	+ """
8784	+ I read a portion (possibly all) of the mutable file that I
8785	+ reference into consumer.
8786	+ """
8787	+ return self._do_serialized(self._read, consumer, offset, size,
8788	+ fetch_privkey)
8789	+
8790	+
8791	+ def _read(self, consumer, offset=0, size=None, fetch_privkey=False):
8792	+ """
8793	+ I am the serialized companion of read.
8794	+ """
8795	+ r = Retrieve(self._node, self._servermap, self._version, fetch_privkey)
8796	if self._history:
8797	self._history.notify_retrieve(r.get_status())
8798	hunk ./src/allmydata/mutable/filenode.py 932
8799	- d = r.download()
8800	- d.addCallback(self._downloaded_version)
8801	+ d = r.download(consumer, offset, size)
8802	return d
8803	hunk ./src/allmydata/mutable/filenode.py 934
8804	- def _downloaded_version(self, data):
8805	- self._most_recent_size = len(data)
8806	- return data
8807
8808	hunk ./src/allmydata/mutable/filenode.py 935
8809	- def upload(self, new_contents, servermap):
8810	- return self._do_serialized(self._upload, new_contents, servermap)
8811	- def _upload(self, new_contents, servermap):
8812	- assert self._pubkey, "update_servermap must be called before publish"
8813	- p = Publish(self, self._storage_broker, servermap)
8814	+
8815	+ def _do_serialized(self, cb, args, *kwargs):
8816	+ # note: to avoid deadlock, this callable is not allowed to invoke
8817	+ # other serialized methods within this (or any other)
8818	+ # MutableFileNode. The callable should be a bound method of this same
8819	+ # MFN instance.
8820	+ d = defer.Deferred()
8821	+ self._serializer.addCallback(lambda ignore: cb(args, *kwargs))
8822	+ # we need to put off d.callback until this Deferred is finished being
8823	+ # processed. Otherwise the caller's subsequent activities (like,
8824	+ # doing other things with this node) can cause reentrancy problems in
8825	+ # the Deferred code itself
8826	+ self._serializer.addBoth(lambda res: eventually(d.callback, res))
8827	+ # add a log.err just in case something really weird happens, because
8828	+ # self._serializer stays around forever, therefore we won't see the
8829	+ # usual Unhandled Error in Deferred that would give us a hint.
8830	+ self._serializer.addErrback(log.err)
8831	+ return d
8832	+
8833	+
8834	+ def _upload(self, new_contents):
8835	+ #assert self._pubkey, "update_servermap must be called before publish"
8836	+ p = Publish(self._node, self._storage_broker, self._servermap)
8837	if self._history:
8838	hunk ./src/allmydata/mutable/filenode.py 959
8839	- self._history.notify_publish(p.get_status(), len(new_contents))
8840	+ self._history.notify_publish(p.get_status(),
8841	+ new_contents.get_size())
8842	d = p.publish(new_contents)
8843	hunk ./src/allmydata/mutable/filenode.py 962
8844	- d.addCallback(self._did_upload, len(new_contents))
8845	+ d.addCallback(self._did_upload, new_contents.get_size())
8846	return d
8847	hunk ./src/allmydata/mutable/filenode.py 964
8848	+
8849	+
8850	def _did_upload(self, res, size):
8851	hunk ./src/allmydata/mutable/filenode.py 967
8852	- self._most_recent_size = size
8853	+ self._size = size
8854	return res
8855	hunk ./src/allmydata/mutable/filenode.py 969
8856	+
8857	+ def update(self, data, offset):
8858	+ """
8859	+ Do an update of this mutable file version by inserting data at
8860	+ offset within the file. If offset is the EOF, this is an append
8861	+ operation. I return a Deferred that fires with the results of
8862	+ the update operation when it has completed.
8863	+
8864	+ In cases where update does not append any data, or where it does
8865	+ not append so many blocks that the block count crosses a
8866	+ power-of-two boundary, this operation will use roughly
8867	+ O(data.get_size()) memory/bandwidth/CPU to perform the update.
8868	+ Otherwise, it must download, re-encode, and upload the entire
8869	+ file again, which will use O(filesize) resources.
8870	+ """
8871	+ return self._do_serialized(self._update, data, offset)
8872	+
8873	+
8874	+ def _update(self, data, offset):
8875	+ """
8876	+ I update the mutable file version represented by this particular
8877	+ IMutableVersion by inserting the data in data at the offset
8878	+ offset. I return a Deferred that fires when this has been
8879	+ completed.
8880	+ """
8881	+ # We have two cases here:
8882	+ # 1. The new data will add few enough segments so that it does
8883	+ # not cross into the next power-of-two boundary.
8884	+ # 2. It doesn't.
8885	+ #
8886	+ # In the former case, we can modify the file in place. In the
8887	+ # latter case, we need to re-encode the file.
8888	+ new_size = data.get_size() + offset
8889	+ old_size = self.get_size()
8890	+ segment_size = self._version[3]
8891	+ num_old_segments = mathutil.div_ceil(old_size,
8892	+ segment_size)
8893	+ num_new_segments = mathutil.div_ceil(new_size,
8894	+ segment_size)
8895	+ log.msg("got %d old segments, %d new segments" % \
8896	+ (num_old_segments, num_new_segments))
8897	+
8898	+ # We also do a whole file re-encode if the file is an SDMF file.
8899	+ if self._version[2]: # version[2] == SDMF salt, which MDMF lacks
8900	+ log.msg("doing re-encode instead of in-place update")
8901	+ return self._do_modify_update(data, offset)
8902	+
8903	+ log.msg("updating in place")
8904	+ d = self._do_update_update(data, offset)
8905	+ d.addCallback(self._decode_and_decrypt_segments, data, offset)
8906	+ d.addCallback(self._build_uploadable_and_finish, data, offset)
8907	+ return d
8908	+
8909	+
8910	+ def _do_modify_update(self, data, offset):
8911	+ """
8912	+ I perform a file update by modifying the contents of the file
8913	+ after downloading it, then reuploading it. I am less efficient
8914	+ than _do_update_update, but am necessary for certain updates.
8915	+ """
8916	+ def m(old, servermap, first_time):
8917	+ start = offset
8918	+ rest = offset + data.get_size()
8919	+ new = old[:start]
8920	+ new += "".join(data.read(data.get_size()))
8921	+ new += old[rest:]
8922	+ return new
8923	+ return self._modify(m, None)
8924	+
8925	+
8926	+ def _do_update_update(self, data, offset):
8927	+ """
8928	+ I start the Servermap update that gets us the data we need to
8929	+ continue the update process. I return a Deferred that fires when
8930	+ the servermap update is done.
8931	+ """
8932	+ assert IMutableUploadable.providedBy(data)
8933	+ assert self.is_mutable()
8934	+ # offset == self.get_size() is valid and means that we are
8935	+ # appending data to the file.
8936	+ assert offset <= self.get_size()
8937	+
8938	+ datasize = data.get_size()
8939	+ # We'll need the segment that the data starts in, regardless of
8940	+ # what we'll do later.
8941	+ start_segment = mathutil.div_ceil(offset, DEFAULT_MAX_SEGMENT_SIZE)
8942	+ start_segment -= 1
8943	+
8944	+ # We only need the end segment if the data we append does not go
8945	+ # beyond the current end-of-file.
8946	+ end_segment = start_segment
8947	+ if offset + data.get_size() < self.get_size():
8948	+ end_data = offset + data.get_size()
8949	+ end_segment = mathutil.div_ceil(end_data, DEFAULT_MAX_SEGMENT_SIZE)
8950	+ end_segment -= 1
8951	+ self._start_segment = start_segment
8952	+ self._end_segment = end_segment
8953	+
8954	+ # Now ask for the servermap to be updated in MODE_WRITE with
8955	+ # this update range.
8956	+ u = ServermapUpdater(self._node, self._storage_broker, Monitor(),
8957	+ self._servermap,
8958	+ mode=MODE_WRITE,
8959	+ update_range=(start_segment, end_segment))
8960	+ return u.update()
8961	+
8962	+
8963	+ def _decode_and_decrypt_segments(self, ignored, data, offset):
8964	+ """
8965	+ After the servermap update, I take the encrypted and encoded
8966	+ data that the servermap fetched while doing its update and
8967	+ transform it into decoded-and-decrypted plaintext that can be
8968	+ used by the new uploadable. I return a Deferred that fires with
8969	+ the segments.
8970	+ """
8971	+ r = Retrieve(self._node, self._servermap, self._version)
8972	+ # decode: takes in our blocks and salts from the servermap,
8973	+ # returns a Deferred that fires with the corresponding plaintext
8974	+ # segments. Does not download -- simply takes advantage of
8975	+ # existing infrastructure within the Retrieve class to avoid
8976	+ # duplicating code.
8977	+ sm = self._servermap
8978	+ # XXX: If the methods in the servermap don't work as
8979	+ # abstractions, you should rewrite them instead of going around
8980	+ # them.
8981	+ update_data = sm.update_data
8982	+ start_segments = {} # shnum -> start segment
8983	+ end_segments = {} # shnum -> end segment
8984	+ blockhashes = {} # shnum -> blockhash tree
8985	+ for (shnum, data) in update_data.iteritems():
8986	+ data = [d[1] for d in data if d[0] == self._version]
8987	+
8988	+ # Every data entry in our list should now be share shnum for
8989	+ # a particular version of the mutable file, so all of the
8990	+ # entries should be identical.
8991	+ datum = data[0]
8992	+ assert filter(lambda x: x != datum, data) == []
8993	+
8994	+ blockhashes[shnum] = datum[0]
8995	+ start_segments[shnum] = datum[1]
8996	+ end_segments[shnum] = datum[2]
8997	+
8998	+ d1 = r.decode(start_segments, self._start_segment)
8999	+ d2 = r.decode(end_segments, self._end_segment)
9000	+ d3 = defer.succeed(blockhashes)
9001	+ return deferredutil.gatherResults([d1, d2, d3])
9002	+
9003	+
9004	+ def _build_uploadable_and_finish(self, segments_and_bht, data, offset):
9005	+ """
9006	+ After the process has the plaintext segments, I build the
9007	+ TransformingUploadable that the publisher will eventually
9008	+ re-upload to the grid. I then invoke the publisher with that
9009	+ uploadable, and return a Deferred when the publish operation has
9010	+ completed without issue.
9011	+ """
9012	+ u = TransformingUploadable(data, offset,
9013	+ self._version[3],
9014	+ segments_and_bht[0],
9015	+ segments_and_bht[1])
9016	+ p = Publish(self._node, self._storage_broker, self._servermap)
9017	+ return p.update(u, offset, segments_and_bht[2], self._version)
9018	}
9019	[tests:
9020	Kevan Carstensen <kevan@isnotajoke.com>**20100811002109
9021	Ignore-this: 67224a8f957d31265ba82589103946ae
9022
9023	- A lot of existing tests relied on aspects of the mutable file
9024	implementation that were changed. This patch updates those tests
9025	to work with the changes.
9026	- This patch also adds tests for new features.
9027	] {
9028	hunk ./src/allmydata/test/common.py 12
9029	from allmydata import uri, dirnode, client
9030	from allmydata.introducer.server import IntroducerNode
9031	from allmydata.interfaces import IMutableFileNode, IImmutableFileNode, \
9032	- FileTooLargeError, NotEnoughSharesError, ICheckable
9033	+ FileTooLargeError, NotEnoughSharesError, ICheckable, \
9034	+ IMutableUploadable
9035	from allmydata.check_results import CheckResults, CheckAndRepairResults, \
9036	DeepCheckResults, DeepCheckAndRepairResults
9037	from allmydata.mutable.common import CorruptShareError
9038	hunk ./src/allmydata/test/common.py 18
9039	from allmydata.mutable.layout import unpack_header
9040	+from allmydata.mutable.publish import MutableData
9041	from allmydata.storage.server import storage_index_to_dir
9042	from allmydata.storage.mutable import MutableShareFile
9043	from allmydata.util import hashutil, log, fileutil, pollmixin
9044	hunk ./src/allmydata/test/common.py 152
9045	consumer.write(data[start:end])
9046	return consumer
9047
9048	+
9049	+ def get_best_readable_version(self):
9050	+ return defer.succeed(self)
9051	+
9052	+
9053	+ download_best_version = download_to_data
9054	+
9055	+
9056	+ def download_to_data(self):
9057	+ return download_to_data(self)
9058	+
9059	+
9060	+ def get_size_of_best_version(self):
9061	+ return defer.succeed(self.get_size)
9062	+
9063	+
9064	def make_chk_file_cap(size):
9065	return uri.CHKFileURI(key=os.urandom(16),
9066	uri_extension_hash=os.urandom(32),
9067	hunk ./src/allmydata/test/common.py 198
9068	self.init_from_cap(make_mutable_file_cap())
9069	def create(self, contents, key_generator=None, keysize=None):
9070	initial_contents = self._get_initial_contents(contents)
9071	- if len(initial_contents) > self.MUTABLE_SIZELIMIT:
9072	- raise FileTooLargeError("SDMF is limited to one segment, and "
9073	- "%d > %d" % (len(initial_contents),
9074	- self.MUTABLE_SIZELIMIT))
9075	- self.all_contents[self.storage_index] = initial_contents
9076	+ data = initial_contents.read(initial_contents.get_size())
9077	+ data = "".join(data)
9078	+ self.all_contents[self.storage_index] = data
9079	return defer.succeed(self)
9080	def _get_initial_contents(self, contents):
9081	hunk ./src/allmydata/test/common.py 203
9082	- if isinstance(contents, str):
9083	- return contents
9084	if contents is None:
9085	hunk ./src/allmydata/test/common.py 204
9086	- return ""
9087	+ return MutableData("")
9088	+
9089	+ if IMutableUploadable.providedBy(contents):
9090	+ return contents
9091	+
9092	assert callable(contents), "%s should be callable, not %s" % \
9093	(contents, type(contents))
9094	return contents(self)
9095	hunk ./src/allmydata/test/common.py 314
9096	return d
9097
9098	def download_best_version(self):
9099	+ return defer.succeed(self._download_best_version())
9100	+
9101	+
9102	+ def _download_best_version(self, ignored=None):
9103	if isinstance(self.my_uri, uri.LiteralFileURI):
9104	hunk ./src/allmydata/test/common.py 319
9105	- return defer.succeed(self.my_uri.data)
9106	+ return self.my_uri.data
9107	if self.storage_index not in self.all_contents:
9108	hunk ./src/allmydata/test/common.py 321
9109	- return defer.fail(NotEnoughSharesError(None, 0, 3))
9110	- return defer.succeed(self.all_contents[self.storage_index])
9111	+ raise NotEnoughSharesError(None, 0, 3)
9112	+ return self.all_contents[self.storage_index]
9113	+
9114
9115	def overwrite(self, new_contents):
9116	hunk ./src/allmydata/test/common.py 326
9117	- if len(new_contents) > self.MUTABLE_SIZELIMIT:
9118	- raise FileTooLargeError("SDMF is limited to one segment, and "
9119	- "%d > %d" % (len(new_contents),
9120	- self.MUTABLE_SIZELIMIT))
9121	assert not self.is_readonly()
9122	hunk ./src/allmydata/test/common.py 327
9123	- self.all_contents[self.storage_index] = new_contents
9124	+ new_data = new_contents.read(new_contents.get_size())
9125	+ new_data = "".join(new_data)
9126	+ self.all_contents[self.storage_index] = new_data
9127	return defer.succeed(None)
9128	def modify(self, modifier):
9129	# this does not implement FileTooLargeError, but the real one does
9130	hunk ./src/allmydata/test/common.py 337
9131	def _modify(self, modifier):
9132	assert not self.is_readonly()
9133	old_contents = self.all_contents[self.storage_index]
9134	- self.all_contents[self.storage_index] = modifier(old_contents, None, True)
9135	+ new_data = modifier(old_contents, None, True)
9136	+ self.all_contents[self.storage_index] = new_data
9137	return None
9138
9139	hunk ./src/allmydata/test/common.py 341
9140	+ # As actually implemented, MutableFilenode and MutableFileVersion
9141	+ # are distinct. However, nothing in the webapi uses (yet) that
9142	+ # distinction -- it just uses the unified download interface
9143	+ # provided by get_best_readable_version and read. When we start
9144	+ # doing cooler things like LDMF, we will want to revise this code to
9145	+ # be less simplistic.
9146	+ def get_best_readable_version(self):
9147	+ return defer.succeed(self)
9148	+
9149	+
9150	+ def get_best_mutable_version(self):
9151	+ return defer.succeed(self)
9152	+
9153	+ # Ditto for this, which is an implementation of IWritable.
9154	+ # XXX: Declare that the same is implemented.
9155	+ def update(self, data, offset):
9156	+ assert not self.is_readonly()
9157	+ def modifier(old, servermap, first_time):
9158	+ new = old[:offset] + "".join(data.read(data.get_size()))
9159	+ new += old[len(new):]
9160	+ return new
9161	+ return self.modify(modifier)
9162	+
9163	+
9164	+ def read(self, consumer, offset=0, size=None):
9165	+ data = self._download_best_version()
9166	+ if size:
9167	+ data = data[offset:offset+size]
9168	+ consumer.write(data)
9169	+ return defer.succeed(consumer)
9170	+
9171	+
9172	def make_mutable_file_cap():
9173	return uri.WriteableSSKFileURI(writekey=os.urandom(16),
9174	fingerprint=os.urandom(32))
9175	hunk ./src/allmydata/test/test_checker.py 11
9176	from allmydata.test.no_network import GridTestMixin
9177	from allmydata.immutable.upload import Data
9178	from allmydata.test.common_web import WebRenderingMixin
9179	+from allmydata.mutable.publish import MutableData
9180
9181	class FakeClient:
9182	def get_storage_broker(self):
9183	hunk ./src/allmydata/test/test_checker.py 291
9184	def _stash_immutable(ur):
9185	self.imm = c0.create_node_from_uri(ur.uri)
9186	d.addCallback(_stash_immutable)
9187	- d.addCallback(lambda ign: c0.create_mutable_file("contents"))
9188	+ d.addCallback(lambda ign:
9189	+ c0.create_mutable_file(MutableData("contents")))
9190	def _stash_mutable(node):
9191	self.mut = node
9192	d.addCallback(_stash_mutable)
9193	hunk ./src/allmydata/test/test_cli.py 11
9194	from allmydata.util import fileutil, hashutil, base32
9195	from allmydata import uri
9196	from allmydata.immutable import upload
9197	+from allmydata.mutable.publish import MutableData
9198	from allmydata.dirnode import normalize
9199
9200	# Test that the scripts can be imported -- although the actual tests of their
9201	hunk ./src/allmydata/test/test_cli.py 644
9202
9203	d = self.do_cli("create-alias", etudes_arg)
9204	def _check_create_unicode((rc, out, err)):
9205	- self.failUnlessReallyEqual(rc, 0)
9206	+ #self.failUnlessReallyEqual(rc, 0)
9207	self.failUnlessReallyEqual(err, "")
9208	self.failUnlessIn("Alias %s created" % quote_output(u"\u00E9tudes"), out)
9209
9210	hunk ./src/allmydata/test/test_cli.py 1975
9211	self.set_up_grid()
9212	c0 = self.g.clients[0]
9213	DATA = "data" * 100
9214	- d = c0.create_mutable_file(DATA)
9215	+ DATA_uploadable = MutableData(DATA)
9216	+ d = c0.create_mutable_file(DATA_uploadable)
9217	def _stash_uri(n):
9218	self.uri = n.get_uri()
9219	d.addCallback(_stash_uri)
9220	hunk ./src/allmydata/test/test_cli.py 2077
9221	upload.Data("literal",
9222	convergence="")))
9223	d.addCallback(_stash_uri, "small")
9224	- d.addCallback(lambda ign: c0.create_mutable_file(DATA+"1"))
9225	+ d.addCallback(lambda ign:
9226	+ c0.create_mutable_file(MutableData(DATA+"1")))
9227	d.addCallback(lambda fn: self.rootnode.set_node(u"mutable", fn))
9228	d.addCallback(_stash_uri, "mutable")
9229
9230	hunk ./src/allmydata/test/test_cli.py 2096
9231	# root/small
9232	# root/mutable
9233
9234	+ # We haven't broken anything yet, so this should all be healthy.
9235	d.addCallback(lambda ign: self.do_cli("deep-check", "--verbose",
9236	self.rooturi))
9237	def _check2((rc, out, err)):
9238	hunk ./src/allmydata/test/test_cli.py 2111
9239	in lines, out)
9240	d.addCallback(_check2)
9241
9242	+ # Similarly, all of these results should be as we expect them to
9243	+ # be for a healthy file layout.
9244	d.addCallback(lambda ign: self.do_cli("stats", self.rooturi))
9245	def _check_stats((rc, out, err)):
9246	self.failUnlessReallyEqual(err, "")
9247	hunk ./src/allmydata/test/test_cli.py 2128
9248	self.failUnlessIn(" 317-1000 : 1 (1000 B, 1000 B)", lines)
9249	d.addCallback(_check_stats)
9250
9251	+ # Now we break things.
9252	def _clobber_shares(ignored):
9253	shares = self.find_uri_shares(self.uris[u"g\u00F6\u00F6d"])
9254	self.failUnlessReallyEqual(len(shares), 10)
9255	hunk ./src/allmydata/test/test_cli.py 2153
9256
9257	d.addCallback(lambda ign:
9258	self.do_cli("deep-check", "--verbose", self.rooturi))
9259	+ # This should reveal the missing share, but not the corrupt
9260	+ # share, since we didn't tell the deep check operation to also
9261	+ # verify.
9262	def _check3((rc, out, err)):
9263	self.failUnlessReallyEqual(err, "")
9264	self.failUnlessReallyEqual(rc, 0)
9265	hunk ./src/allmydata/test/test_cli.py 2204
9266	"--verbose", "--verify", "--repair",
9267	self.rooturi))
9268	def _check6((rc, out, err)):
9269	+ # We've just repaired the directory. There is no reason for
9270	+ # that repair to be unsuccessful.
9271	self.failUnlessReallyEqual(err, "")
9272	self.failUnlessReallyEqual(rc, 0)
9273	lines = out.splitlines()
9274	hunk ./src/allmydata/test/test_deepcheck.py 9
9275	from twisted.internet import threads # CLI tests use deferToThread
9276	from allmydata.immutable import upload
9277	from allmydata.mutable.common import UnrecoverableFileError
9278	+from allmydata.mutable.publish import MutableData
9279	from allmydata.util import idlib
9280	from allmydata.util import base32
9281	from allmydata.scripts import runner
9282	hunk ./src/allmydata/test/test_deepcheck.py 38
9283	self.basedir = "deepcheck/MutableChecker/good"
9284	self.set_up_grid()
9285	CONTENTS = "a little bit of data"
9286	- d = self.g.clients[0].create_mutable_file(CONTENTS)
9287	+ CONTENTS_uploadable = MutableData(CONTENTS)
9288	+ d = self.g.clients[0].create_mutable_file(CONTENTS_uploadable)
9289	def _created(node):
9290	self.node = node
9291	self.fileurl = "uri/" + urllib.quote(node.get_uri())
9292	hunk ./src/allmydata/test/test_deepcheck.py 61
9293	self.basedir = "deepcheck/MutableChecker/corrupt"
9294	self.set_up_grid()
9295	CONTENTS = "a little bit of data"
9296	- d = self.g.clients[0].create_mutable_file(CONTENTS)
9297	+ CONTENTS_uploadable = MutableData(CONTENTS)
9298	+ d = self.g.clients[0].create_mutable_file(CONTENTS_uploadable)
9299	def _stash_and_corrupt(node):
9300	self.node = node
9301	self.fileurl = "uri/" + urllib.quote(node.get_uri())
9302	hunk ./src/allmydata/test/test_deepcheck.py 99
9303	self.basedir = "deepcheck/MutableChecker/delete_share"
9304	self.set_up_grid()
9305	CONTENTS = "a little bit of data"
9306	- d = self.g.clients[0].create_mutable_file(CONTENTS)
9307	+ CONTENTS_uploadable = MutableData(CONTENTS)
9308	+ d = self.g.clients[0].create_mutable_file(CONTENTS_uploadable)
9309	def _stash_and_delete(node):
9310	self.node = node
9311	self.fileurl = "uri/" + urllib.quote(node.get_uri())
9312	hunk ./src/allmydata/test/test_deepcheck.py 223
9313	self.root = n
9314	self.root_uri = n.get_uri()
9315	d.addCallback(_created_root)
9316	- d.addCallback(lambda ign: c0.create_mutable_file("mutable file contents"))
9317	+ d.addCallback(lambda ign:
9318	+ c0.create_mutable_file(MutableData("mutable file contents")))
9319	d.addCallback(lambda n: self.root.set_node(u"mutable", n))
9320	def _created_mutable(n):
9321	self.mutable = n
9322	hunk ./src/allmydata/test/test_deepcheck.py 965
9323	def create_mangled(self, ignored, name):
9324	nodetype, mangletype = name.split("-", 1)
9325	if nodetype == "mutable":
9326	- d = self.g.clients[0].create_mutable_file("mutable file contents")
9327	+ mutable_uploadable = MutableData("mutable file contents")
9328	+ d = self.g.clients[0].create_mutable_file(mutable_uploadable)
9329	d.addCallback(lambda n: self.root.set_node(unicode(name), n))
9330	elif nodetype == "large":
9331	large = upload.Data("Lots of data\n" * 1000 + name + "\n", None)
9332	hunk ./src/allmydata/test/test_dirnode.py 1304
9333	implements(IMutableFileNode)
9334	counter = 0
9335	def __init__(self, initial_contents=""):
9336	- self.data = self._get_initial_contents(initial_contents)
9337	+ data = self._get_initial_contents(initial_contents)
9338	+ self.data = data.read(data.get_size())
9339	+ self.data = "".join(self.data)
9340	+
9341	counter = FakeMutableFile.counter
9342	FakeMutableFile.counter += 1
9343	writekey = hashutil.ssk_writekey_hash(str(counter))
9344	hunk ./src/allmydata/test/test_dirnode.py 1354
9345	pass
9346
9347	def modify(self, modifier):
9348	- self.data = modifier(self.data, None, True)
9349	+ data = modifier(self.data, None, True)
9350	+ self.data = data
9351	return defer.succeed(None)
9352
9353	class FakeNodeMaker(NodeMaker):
9354	hunk ./src/allmydata/test/test_filenode.py 98
9355	def _check_segment(res):
9356	self.failUnlessEqual(res, DATA[1:1+5])
9357	d.addCallback(_check_segment)
9358	+ d.addCallback(lambda ignored: fn1.get_best_readable_version())
9359	+ d.addCallback(lambda fn2: self.failUnlessEqual(fn1, fn2))
9360	+ d.addCallback(lambda ignored:
9361	+ fn1.get_size_of_best_version())
9362	+ d.addCallback(lambda size:
9363	+ self.failUnlessEqual(size, len(DATA)))
9364	+ d.addCallback(lambda ignored:
9365	+ fn1.download_to_data())
9366	+ d.addCallback(lambda data:
9367	+ self.failUnlessEqual(data, DATA))
9368	+ d.addCallback(lambda ignored:
9369	+ fn1.download_best_version())
9370	+ d.addCallback(lambda data:
9371	+ self.failUnlessEqual(data, DATA))
9372
9373	return d
9374
9375	hunk ./src/allmydata/test/test_hung_server.py 10
9376	from allmydata.util.consumer import download_to_data
9377	from allmydata.immutable import upload
9378	from allmydata.mutable.common import UnrecoverableFileError
9379	+from allmydata.mutable.publish import MutableData
9380	from allmydata.storage.common import storage_index_to_dir
9381	from allmydata.test.no_network import GridTestMixin
9382	from allmydata.test.common import ShouldFailMixin
9383	hunk ./src/allmydata/test/test_hung_server.py 108
9384	self.servers = [(id, ss) for (id, ss) in nm.storage_broker.get_all_servers()]
9385
9386	if mutable:
9387	- d = nm.create_mutable_file(mutable_plaintext)
9388	+ uploadable = MutableData(mutable_plaintext)
9389	+ d = nm.create_mutable_file(uploadable)
9390	def _uploaded_mutable(node):
9391	self.uri = node.get_uri()
9392	self.shares = self.find_uri_shares(self.uri)
9393	hunk ./src/allmydata/test/test_immutable.py 4
9394	from allmydata.test import common
9395	from allmydata.interfaces import NotEnoughSharesError
9396	from allmydata.util.consumer import download_to_data
9397	-from twisted.internet import defer
9398	+from twisted.internet import defer, base
9399	from twisted.trial import unittest
9400	import random
9401
9402	hunk ./src/allmydata/test/test_immutable.py 143
9403	d.addCallback(_after_attempt)
9404	return d
9405
9406	+ def test_download_to_data(self):
9407	+ d = self.n.download_to_data()
9408	+ d.addCallback(lambda data:
9409	+ self.failUnlessEqual(data, common.TEST_DATA))
9410	+ return d
9411
9412	hunk ./src/allmydata/test/test_immutable.py 149
9413	+
9414	+ def test_download_best_version(self):
9415	+ d = self.n.download_best_version()
9416	+ d.addCallback(lambda data:
9417	+ self.failUnlessEqual(data, common.TEST_DATA))
9418	+ return d
9419	+
9420	+
9421	+ def test_get_best_readable_version(self):
9422	+ d = self.n.get_best_readable_version()
9423	+ d.addCallback(lambda n2:
9424	+ self.failUnlessEqual(n2, self.n))
9425	+ return d
9426	+
9427	+ def test_get_size_of_best_version(self):
9428	+ d = self.n.get_size_of_best_version()
9429	+ d.addCallback(lambda size:
9430	+ self.failUnlessEqual(size, len(common.TEST_DATA)))
9431	+ return d
9432	+
9433	+
9434	# XXX extend these tests to show bad behavior of various kinds from servers:
9435	# raising exception from each remove_foo() method, for example
9436
9437	hunk ./src/allmydata/test/test_mutable.py 2
9438
9439	-import struct
9440	+import struct, os
9441	from cStringIO import StringIO
9442	from twisted.trial import unittest
9443	from twisted.internet import defer, reactor
9444	hunk ./src/allmydata/test/test_mutable.py 8
9445	from allmydata import uri, client
9446	from allmydata.nodemaker import NodeMaker
9447	-from allmydata.util import base32
9448	+from allmydata.util import base32, consumer, mathutil
9449	from allmydata.util.hashutil import tagged_hash, ssk_writekey_hash, \
9450	ssk_pubkey_fingerprint_hash
9451	hunk ./src/allmydata/test/test_mutable.py 11
9452	+from allmydata.util.deferredutil import gatherResults
9453	from allmydata.interfaces import IRepairResults, ICheckAndRepairResults, \
9454	hunk ./src/allmydata/test/test_mutable.py 13
9455	- NotEnoughSharesError
9456	+ NotEnoughSharesError, SDMF_VERSION, MDMF_VERSION
9457	from allmydata.monitor import Monitor
9458	from allmydata.test.common import ShouldFailMixin
9459	from allmydata.test.no_network import GridTestMixin
9460	hunk ./src/allmydata/test/test_mutable.py 27
9461	NeedMoreDataError, UnrecoverableFileError, UncoordinatedWriteError, \
9462	NotEnoughServersError, CorruptShareError
9463	from allmydata.mutable.retrieve import Retrieve
9464	-from allmydata.mutable.publish import Publish
9465	+from allmydata.mutable.publish import Publish, MutableFileHandle, \
9466	+ MutableData, \
9467	+ DEFAULT_MAX_SEGMENT_SIZE
9468	from allmydata.mutable.servermap import ServerMap, ServermapUpdater
9469	hunk ./src/allmydata/test/test_mutable.py 31
9470	-from allmydata.mutable.layout import unpack_header, unpack_share
9471	+from allmydata.mutable.layout import unpack_header, unpack_share, \
9472	+ MDMFSlotReadProxy
9473	from allmydata.mutable.repairer import MustForceRepairError
9474
9475	import allmydata.test.common_util as testutil
9476	hunk ./src/allmydata/test/test_mutable.py 101
9477	self.storage = storage
9478	self.queries = 0
9479	def callRemote(self, methname, args, *kwargs):
9480	+ self.queries += 1
9481	def _call():
9482	meth = getattr(self, methname)
9483	return meth(args, *kwargs)
9484	hunk ./src/allmydata/test/test_mutable.py 108
9485	d = fireEventually()
9486	d.addCallback(lambda res: _call())
9487	return d
9488	+
9489	def callRemoteOnly(self, methname, args, *kwargs):
9490	hunk ./src/allmydata/test/test_mutable.py 110
9491	+ self.queries += 1
9492	d = self.callRemote(methname, args, *kwargs)
9493	d.addBoth(lambda ignore: None)
9494	pass
9495	hunk ./src/allmydata/test/test_mutable.py 158
9496	chr(ord(original[byte_offset]) ^ 0x01) +
9497	original[byte_offset+1:])
9498
9499	+def add_two(original, byte_offset):
9500	+ # It isn't enough to simply flip the bit for the version number,
9501	+ # because 1 is a valid version number. So we add two instead.
9502	+ return (original[:byte_offset] +
9503	+ chr(ord(original[byte_offset]) ^ 0x02) +
9504	+ original[byte_offset+1:])
9505	+
9506	def corrupt(res, s, offset, shnums_to_corrupt=None, offset_offset=0):
9507	# if shnums_to_corrupt is None, corrupt all shares. Otherwise it is a
9508	# list of shnums to corrupt.
9509	hunk ./src/allmydata/test/test_mutable.py 168
9510	+ ds = []
9511	for peerid in s._peers:
9512	shares = s._peers[peerid]
9513	for shnum in shares:
9514	hunk ./src/allmydata/test/test_mutable.py 176
9515	and shnum not in shnums_to_corrupt):
9516	continue
9517	data = shares[shnum]
9518	- (version,
9519	- seqnum,
9520	- root_hash,
9521	- IV,
9522	- k, N, segsize, datalen,
9523	- o) = unpack_header(data)
9524	- if isinstance(offset, tuple):
9525	- offset1, offset2 = offset
9526	- else:
9527	- offset1 = offset
9528	- offset2 = 0
9529	- if offset1 == "pubkey":
9530	- real_offset = 107
9531	- elif offset1 in o:
9532	- real_offset = o[offset1]
9533	- else:
9534	- real_offset = offset1
9535	- real_offset = int(real_offset) + offset2 + offset_offset
9536	- assert isinstance(real_offset, int), offset
9537	- shares[shnum] = flip_bit(data, real_offset)
9538	- return res
9539	+ # We're feeding the reader all of the share data, so it
9540	+ # won't need to use the rref that we didn't provide, nor the
9541	+ # storage index that we didn't provide. We do this because
9542	+ # the reader will work for both MDMF and SDMF.
9543	+ reader = MDMFSlotReadProxy(None, None, shnum, data)
9544	+ # We need to get the offsets for the next part.
9545	+ d = reader.get_verinfo()
9546	+ def _do_corruption(verinfo, data, shnum):
9547	+ (seqnum,
9548	+ root_hash,
9549	+ IV,
9550	+ segsize,
9551	+ datalen,
9552	+ k, n, prefix, o) = verinfo
9553	+ if isinstance(offset, tuple):
9554	+ offset1, offset2 = offset
9555	+ else:
9556	+ offset1 = offset
9557	+ offset2 = 0
9558	+ if offset1 == "pubkey" and IV:
9559	+ real_offset = 107
9560	+ elif offset1 == "share_data" and not IV:
9561	+ real_offset = 107
9562	+ elif offset1 in o:
9563	+ real_offset = o[offset1]
9564	+ else:
9565	+ real_offset = offset1
9566	+ real_offset = int(real_offset) + offset2 + offset_offset
9567	+ assert isinstance(real_offset, int), offset
9568	+ if offset1 == 0: # verbyte
9569	+ f = add_two
9570	+ else:
9571	+ f = flip_bit
9572	+ shares[shnum] = f(data, real_offset)
9573	+ d.addCallback(_do_corruption, data, shnum)
9574	+ ds.append(d)
9575	+ dl = defer.DeferredList(ds)
9576	+ dl.addCallback(lambda ignored: res)
9577	+ return dl
9578
9579	def make_storagebroker(s=None, num_peers=10):
9580	if not s:
9581	hunk ./src/allmydata/test/test_mutable.py 257
9582	self.failUnlessEqual(len(shnums), 1)
9583	d.addCallback(_created)
9584	return d
9585	+ test_create.timeout = 15
9586	+
9587	+
9588	+ def test_create_mdmf(self):
9589	+ d = self.nodemaker.create_mutable_file(version=MDMF_VERSION)
9590	+ def _created(n):
9591	+ self.failUnless(isinstance(n, MutableFileNode))
9592	+ self.failUnlessEqual(n.get_storage_index(), n._storage_index)
9593	+ sb = self.nodemaker.storage_broker
9594	+ peer0 = sorted(sb.get_all_serverids())[0]
9595	+ shnums = self._storage._peers[peer0].keys()
9596	+ self.failUnlessEqual(len(shnums), 1)
9597	+ d.addCallback(_created)
9598	+ return d
9599	+
9600
9601	def test_serialize(self):
9602	n = MutableFileNode(None, None, {"k": 3, "n": 10}, None)
9603	hunk ./src/allmydata/test/test_mutable.py 302
9604	d.addCallback(lambda smap: smap.dump(StringIO()))
9605	d.addCallback(lambda sio:
9606	self.failUnless("3-of-10" in sio.getvalue()))
9607	- d.addCallback(lambda res: n.overwrite("contents 1"))
9608	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 1")))
9609	d.addCallback(lambda res: self.failUnlessIdentical(res, None))
9610	d.addCallback(lambda res: n.download_best_version())
9611	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 1"))
9612	hunk ./src/allmydata/test/test_mutable.py 309
9613	d.addCallback(lambda res: n.get_size_of_best_version())
9614	d.addCallback(lambda size:
9615	self.failUnlessEqual(size, len("contents 1")))
9616	- d.addCallback(lambda res: n.overwrite("contents 2"))
9617	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 2")))
9618	d.addCallback(lambda res: n.download_best_version())
9619	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 2"))
9620	d.addCallback(lambda res: n.get_servermap(MODE_WRITE))
9621	hunk ./src/allmydata/test/test_mutable.py 313
9622	- d.addCallback(lambda smap: n.upload("contents 3", smap))
9623	+ d.addCallback(lambda smap: n.upload(MutableData("contents 3"), smap))
9624	d.addCallback(lambda res: n.download_best_version())
9625	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 3"))
9626	d.addCallback(lambda res: n.get_servermap(MODE_ANYTHING))
9627	hunk ./src/allmydata/test/test_mutable.py 325
9628	# mapupdate-to-retrieve data caching (i.e. make the shares larger
9629	# than the default readsize, which is 2000 bytes). A 15kB file
9630	# will have 5kB shares.
9631	- d.addCallback(lambda res: n.overwrite("large size file" * 1000))
9632	+ d.addCallback(lambda res: n.overwrite(MutableData("large size file" * 1000)))
9633	d.addCallback(lambda res: n.download_best_version())
9634	d.addCallback(lambda res:
9635	self.failUnlessEqual(res, "large size file" * 1000))
9636	hunk ./src/allmydata/test/test_mutable.py 333
9637	d.addCallback(_created)
9638	return d
9639
9640	+
9641	+ def test_upload_and_download_mdmf(self):
9642	+ d = self.nodemaker.create_mutable_file(version=MDMF_VERSION)
9643	+ def _created(n):
9644	+ d = defer.succeed(None)
9645	+ d.addCallback(lambda ignored:
9646	+ n.get_servermap(MODE_READ))
9647	+ def _then(servermap):
9648	+ dumped = servermap.dump(StringIO())
9649	+ self.failUnlessIn("3-of-10", dumped.getvalue())
9650	+ d.addCallback(_then)
9651	+ # Now overwrite the contents with some new contents. We want
9652	+ # to make them big enough to force the file to be uploaded
9653	+ # in more than one segment.
9654	+ big_contents = "contents1" * 100000 # about 900 KiB
9655	+ big_contents_uploadable = MutableData(big_contents)
9656	+ d.addCallback(lambda ignored:
9657	+ n.overwrite(big_contents_uploadable))
9658	+ d.addCallback(lambda ignored:
9659	+ n.download_best_version())
9660	+ d.addCallback(lambda data:
9661	+ self.failUnlessEqual(data, big_contents))
9662	+ # Overwrite the contents again with some new contents. As
9663	+ # before, they need to be big enough to force multiple
9664	+ # segments, so that we make the downloader deal with
9665	+ # multiple segments.
9666	+ bigger_contents = "contents2" * 1000000 # about 9MiB
9667	+ bigger_contents_uploadable = MutableData(bigger_contents)
9668	+ d.addCallback(lambda ignored:
9669	+ n.overwrite(bigger_contents_uploadable))
9670	+ d.addCallback(lambda ignored:
9671	+ n.download_best_version())
9672	+ d.addCallback(lambda data:
9673	+ self.failUnlessEqual(data, bigger_contents))
9674	+ return d
9675	+ d.addCallback(_created)
9676	+ return d
9677	+
9678	+
9679	+ def test_mdmf_write_count(self):
9680	+ # Publishing an MDMF file should only cause one write for each
9681	+ # share that is to be published. Otherwise, we introduce
9682	+ # undesirable semantics that are a regression from SDMF
9683	+ upload = MutableData("MDMF" * 100000) # about 400 KiB
9684	+ d = self.nodemaker.create_mutable_file(upload,
9685	+ version=MDMF_VERSION)
9686	+ def _check_server_write_counts(ignored):
9687	+ sb = self.nodemaker.storage_broker
9688	+ peers = sb.test_servers.values()
9689	+ for peer in peers:
9690	+ self.failUnlessEqual(peer.queries, 1)
9691	+ d.addCallback(_check_server_write_counts)
9692	+ return d
9693	+
9694	+
9695	def test_create_with_initial_contents(self):
9696	hunk ./src/allmydata/test/test_mutable.py 389
9697	- d = self.nodemaker.create_mutable_file("contents 1")
9698	+ upload1 = MutableData("contents 1")
9699	+ d = self.nodemaker.create_mutable_file(upload1)
9700	def _created(n):
9701	d = n.download_best_version()
9702	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 1"))
9703	hunk ./src/allmydata/test/test_mutable.py 394
9704	- d.addCallback(lambda res: n.overwrite("contents 2"))
9705	+ upload2 = MutableData("contents 2")
9706	+ d.addCallback(lambda res: n.overwrite(upload2))
9707	d.addCallback(lambda res: n.download_best_version())
9708	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 2"))
9709	return d
9710	hunk ./src/allmydata/test/test_mutable.py 401
9711	d.addCallback(_created)
9712	return d
9713	+ test_create_with_initial_contents.timeout = 15
9714	+
9715	+
9716	+ def test_create_mdmf_with_initial_contents(self):
9717	+ initial_contents = "foobarbaz" * 131072 # 900KiB
9718	+ initial_contents_uploadable = MutableData(initial_contents)
9719	+ d = self.nodemaker.create_mutable_file(initial_contents_uploadable,
9720	+ version=MDMF_VERSION)
9721	+ def _created(n):
9722	+ d = n.download_best_version()
9723	+ d.addCallback(lambda data:
9724	+ self.failUnlessEqual(data, initial_contents))
9725	+ uploadable2 = MutableData(initial_contents + "foobarbaz")
9726	+ d.addCallback(lambda ignored:
9727	+ n.overwrite(uploadable2))
9728	+ d.addCallback(lambda ignored:
9729	+ n.download_best_version())
9730	+ d.addCallback(lambda data:
9731	+ self.failUnlessEqual(data, initial_contents +
9732	+ "foobarbaz"))
9733	+ return d
9734	+ d.addCallback(_created)
9735	+ return d
9736	+ test_create_mdmf_with_initial_contents.timeout = 20
9737	+
9738
9739	def test_create_with_initial_contents_function(self):
9740	data = "initial contents"
9741	hunk ./src/allmydata/test/test_mutable.py 434
9742	key = n.get_writekey()
9743	self.failUnless(isinstance(key, str), key)
9744	self.failUnlessEqual(len(key), 16) # AES key size
9745	- return data
9746	+ return MutableData(data)
9747	d = self.nodemaker.create_mutable_file(_make_contents)
9748	def _created(n):
9749	return n.download_best_version()
9750	hunk ./src/allmydata/test/test_mutable.py 442
9751	d.addCallback(lambda data2: self.failUnlessEqual(data2, data))
9752	return d
9753
9754	+
9755	+ def test_create_mdmf_with_initial_contents_function(self):
9756	+ data = "initial contents" * 100000
9757	+ def _make_contents(n):
9758	+ self.failUnless(isinstance(n, MutableFileNode))
9759	+ key = n.get_writekey()
9760	+ self.failUnless(isinstance(key, str), key)
9761	+ self.failUnlessEqual(len(key), 16)
9762	+ return MutableData(data)
9763	+ d = self.nodemaker.create_mutable_file(_make_contents,
9764	+ version=MDMF_VERSION)
9765	+ d.addCallback(lambda n:
9766	+ n.download_best_version())
9767	+ d.addCallback(lambda data2:
9768	+ self.failUnlessEqual(data2, data))
9769	+ return d
9770	+
9771	+
9772	def test_create_with_too_large_contents(self):
9773	BIG = "a" * (self.OLD_MAX_SEGMENT_SIZE + 1)
9774	hunk ./src/allmydata/test/test_mutable.py 462
9775	- d = self.nodemaker.create_mutable_file(BIG)
9776	+ BIG_uploadable = MutableData(BIG)
9777	+ d = self.nodemaker.create_mutable_file(BIG_uploadable)
9778	def _created(n):
9779	hunk ./src/allmydata/test/test_mutable.py 465
9780	- d = n.overwrite(BIG)
9781	+ other_BIG_uploadable = MutableData(BIG)
9782	+ d = n.overwrite(other_BIG_uploadable)
9783	return d
9784	d.addCallback(_created)
9785	return d
9786	hunk ./src/allmydata/test/test_mutable.py 480
9787
9788	def test_modify(self):
9789	def _modifier(old_contents, servermap, first_time):
9790	- return old_contents + "line2"
9791	+ new_contents = old_contents + "line2"
9792	+ return new_contents
9793	def _non_modifier(old_contents, servermap, first_time):
9794	return old_contents
9795	def _none_modifier(old_contents, servermap, first_time):
9796	hunk ./src/allmydata/test/test_mutable.py 489
9797	def _error_modifier(old_contents, servermap, first_time):
9798	raise ValueError("oops")
9799	def _toobig_modifier(old_contents, servermap, first_time):
9800	- return "b" * (self.OLD_MAX_SEGMENT_SIZE+1)
9801	+ new_content = "b" * (self.OLD_MAX_SEGMENT_SIZE + 1)
9802	+ return new_content
9803	calls = []
9804	def _ucw_error_modifier(old_contents, servermap, first_time):
9805	# simulate an UncoordinatedWriteError once
9806	hunk ./src/allmydata/test/test_mutable.py 497
9807	calls.append(1)
9808	if len(calls) <= 1:
9809	raise UncoordinatedWriteError("simulated")
9810	- return old_contents + "line3"
9811	+ new_contents = old_contents + "line3"
9812	+ return new_contents
9813	def _ucw_error_non_modifier(old_contents, servermap, first_time):
9814	# simulate an UncoordinatedWriteError once, and don't actually
9815	# modify the contents on subsequent invocations
9816	hunk ./src/allmydata/test/test_mutable.py 507
9817	raise UncoordinatedWriteError("simulated")
9818	return old_contents
9819
9820	- d = self.nodemaker.create_mutable_file("line1")
9821	+ initial_contents = "line1"
9822	+ d = self.nodemaker.create_mutable_file(MutableData(initial_contents))
9823	def _created(n):
9824	d = n.modify(_modifier)
9825	d.addCallback(lambda res: n.download_best_version())
9826	hunk ./src/allmydata/test/test_mutable.py 565
9827	return d
9828	d.addCallback(_created)
9829	return d
9830	+ test_modify.timeout = 15
9831	+
9832
9833	def test_modify_backoffer(self):
9834	def _modifier(old_contents, servermap, first_time):
9835	hunk ./src/allmydata/test/test_mutable.py 592
9836	giveuper._delay = 0.1
9837	giveuper.factor = 1
9838
9839	- d = self.nodemaker.create_mutable_file("line1")
9840	+ d = self.nodemaker.create_mutable_file(MutableData("line1"))
9841	def _created(n):
9842	d = n.modify(_modifier)
9843	d.addCallback(lambda res: n.download_best_version())
9844	hunk ./src/allmydata/test/test_mutable.py 642
9845	d.addCallback(lambda smap: smap.dump(StringIO()))
9846	d.addCallback(lambda sio:
9847	self.failUnless("3-of-10" in sio.getvalue()))
9848	- d.addCallback(lambda res: n.overwrite("contents 1"))
9849	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 1")))
9850	d.addCallback(lambda res: self.failUnlessIdentical(res, None))
9851	d.addCallback(lambda res: n.download_best_version())
9852	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 1"))
9853	hunk ./src/allmydata/test/test_mutable.py 646
9854	- d.addCallback(lambda res: n.overwrite("contents 2"))
9855	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 2")))
9856	d.addCallback(lambda res: n.download_best_version())
9857	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 2"))
9858	d.addCallback(lambda res: n.get_servermap(MODE_WRITE))
9859	hunk ./src/allmydata/test/test_mutable.py 650
9860	- d.addCallback(lambda smap: n.upload("contents 3", smap))
9861	+ d.addCallback(lambda smap: n.upload(MutableData("contents 3"), smap))
9862	d.addCallback(lambda res: n.download_best_version())
9863	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 3"))
9864	d.addCallback(lambda res: n.get_servermap(MODE_ANYTHING))
9865	hunk ./src/allmydata/test/test_mutable.py 663
9866	return d
9867
9868
9869	-class MakeShares(unittest.TestCase):
9870	- def test_encrypt(self):
9871	- nm = make_nodemaker()
9872	- CONTENTS = "some initial contents"
9873	- d = nm.create_mutable_file(CONTENTS)
9874	- def _created(fn):
9875	- p = Publish(fn, nm.storage_broker, None)
9876	- p.salt = "SALT" * 4
9877	- p.readkey = "\x00" * 16
9878	- p.newdata = CONTENTS
9879	- p.required_shares = 3
9880	- p.total_shares = 10
9881	- p.setup_encoding_parameters()
9882	- return p._encrypt_and_encode()
9883	+class PublishMixin:
9884	+ def publish_one(self):
9885	+ # publish a file and create shares, which can then be manipulated
9886	+ # later.
9887	+ self.CONTENTS = "New contents go here" * 1000
9888	+ self.uploadable = MutableData(self.CONTENTS)
9889	+ self._storage = FakeStorage()
9890	+ self._nodemaker = make_nodemaker(self._storage)
9891	+ self._storage_broker = self._nodemaker.storage_broker
9892	+ d = self._nodemaker.create_mutable_file(self.uploadable)
9893	+ def _created(node):
9894	+ self._fn = node
9895	+ self._fn2 = self._nodemaker.create_from_cap(node.get_uri())
9896	d.addCallback(_created)
9897	hunk ./src/allmydata/test/test_mutable.py 677
9898	- def _done(shares_and_shareids):
9899	- (shares, share_ids) = shares_and_shareids
9900	- self.failUnlessEqual(len(shares), 10)
9901	- for sh in shares:
9902	- self.failUnless(isinstance(sh, str))
9903	- self.failUnlessEqual(len(sh), 7)
9904	- self.failUnlessEqual(len(share_ids), 10)
9905	- d.addCallback(_done)
9906	return d
9907
9908	hunk ./src/allmydata/test/test_mutable.py 679
9909	- def test_generate(self):
9910	- nm = make_nodemaker()
9911	- CONTENTS = "some initial contents"
9912	- d = nm.create_mutable_file(CONTENTS)
9913	- def _created(fn):
9914	- self._fn = fn
9915	- p = Publish(fn, nm.storage_broker, None)
9916	- self._p = p
9917	- p.newdata = CONTENTS
9918	- p.required_shares = 3
9919	- p.total_shares = 10
9920	- p.setup_encoding_parameters()
9921	- p._new_seqnum = 3
9922	- p.salt = "SALT" * 4
9923	- # make some fake shares
9924	- shares_and_ids = ( ["%07d" % i for i in range(10)], range(10) )
9925	- p._privkey = fn.get_privkey()
9926	- p._encprivkey = fn.get_encprivkey()
9927	- p._pubkey = fn.get_pubkey()
9928	- return p._generate_shares(shares_and_ids)
9929	+ def publish_mdmf(self):
9930	+ # like publish_one, except that the result is guaranteed to be
9931	+ # an MDMF file.
9932	+ # self.CONTENTS should have more than one segment.
9933	+ self.CONTENTS = "This is an MDMF file" * 100000
9934	+ self.uploadable = MutableData(self.CONTENTS)
9935	+ self._storage = FakeStorage()
9936	+ self._nodemaker = make_nodemaker(self._storage)
9937	+ self._storage_broker = self._nodemaker.storage_broker
9938	+ d = self._nodemaker.create_mutable_file(self.uploadable, version=MDMF_VERSION)
9939	+ def _created(node):
9940	+ self._fn = node
9941	+ self._fn2 = self._nodemaker.create_from_cap(node.get_uri())
9942	d.addCallback(_created)
9943	hunk ./src/allmydata/test/test_mutable.py 693
9944	- def _generated(res):
9945	- p = self._p
9946	- final_shares = p.shares
9947	- root_hash = p.root_hash
9948	- self.failUnlessEqual(len(root_hash), 32)
9949	- self.failUnless(isinstance(final_shares, dict))
9950	- self.failUnlessEqual(len(final_shares), 10)
9951	- self.failUnlessEqual(sorted(final_shares.keys()), range(10))
9952	- for i,sh in final_shares.items():
9953	- self.failUnless(isinstance(sh, str))
9954	- # feed the share through the unpacker as a sanity-check
9955	- pieces = unpack_share(sh)
9956	- (u_seqnum, u_root_hash, IV, k, N, segsize, datalen,
9957	- pubkey, signature, share_hash_chain, block_hash_tree,
9958	- share_data, enc_privkey) = pieces
9959	- self.failUnlessEqual(u_seqnum, 3)
9960	- self.failUnlessEqual(u_root_hash, root_hash)
9961	- self.failUnlessEqual(k, 3)
9962	- self.failUnlessEqual(N, 10)
9963	- self.failUnlessEqual(segsize, 21)
9964	- self.failUnlessEqual(datalen, len(CONTENTS))
9965	- self.failUnlessEqual(pubkey, p._pubkey.serialize())
9966	- sig_material = struct.pack(">BQ32s16s BBQQ",
9967	- 0, p._new_seqnum, root_hash, IV,
9968	- k, N, segsize, datalen)
9969	- self.failUnless(p._pubkey.verify(sig_material, signature))
9970	- #self.failUnlessEqual(signature, p._privkey.sign(sig_material))
9971	- self.failUnless(isinstance(share_hash_chain, dict))
9972	- self.failUnlessEqual(len(share_hash_chain), 4) # ln2(10)++
9973	- for shnum,share_hash in share_hash_chain.items():
9974	- self.failUnless(isinstance(shnum, int))
9975	- self.failUnless(isinstance(share_hash, str))
9976	- self.failUnlessEqual(len(share_hash), 32)
9977	- self.failUnless(isinstance(block_hash_tree, list))
9978	- self.failUnlessEqual(len(block_hash_tree), 1) # very small tree
9979	- self.failUnlessEqual(IV, "SALT"*4)
9980	- self.failUnlessEqual(len(share_data), len("%07d" % 1))
9981	- self.failUnlessEqual(enc_privkey, self._fn.get_encprivkey())
9982	- d.addCallback(_generated)
9983	return d
9984
9985	hunk ./src/allmydata/test/test_mutable.py 695
9986	- # TODO: when we publish to 20 peers, we should get one share per peer on 10
9987	- # when we publish to 3 peers, we should get either 3 or 4 shares per peer
9988	- # when we publish to zero peers, we should get a NotEnoughSharesError
9989
9990	hunk ./src/allmydata/test/test_mutable.py 696
9991	-class PublishMixin:
9992	- def publish_one(self):
9993	- # publish a file and create shares, which can then be manipulated
9994	- # later.
9995	- self.CONTENTS = "New contents go here" * 1000
9996	+ def publish_sdmf(self):
9997	+ # like publish_one, except that the result is guaranteed to be
9998	+ # an SDMF file
9999	+ self.CONTENTS = "This is an SDMF file" * 1000
10000	+ self.uploadable = MutableData(self.CONTENTS)
10001	self._storage = FakeStorage()
10002	self._nodemaker = make_nodemaker(self._storage)
10003	self._storage_broker = self._nodemaker.storage_broker
10004	hunk ./src/allmydata/test/test_mutable.py 704
10005	- d = self._nodemaker.create_mutable_file(self.CONTENTS)
10006	+ d = self._nodemaker.create_mutable_file(self.uploadable, version=SDMF_VERSION)
10007	def _created(node):
10008	self._fn = node
10009	self._fn2 = self._nodemaker.create_from_cap(node.get_uri())
10010	hunk ./src/allmydata/test/test_mutable.py 711
10011	d.addCallback(_created)
10012	return d
10013
10014	- def publish_multiple(self):
10015	+
10016	+ def publish_multiple(self, version=0):
10017	self.CONTENTS = ["Contents 0",
10018	"Contents 1",
10019	"Contents 2",
10020	hunk ./src/allmydata/test/test_mutable.py 718
10021	"Contents 3a",
10022	"Contents 3b"]
10023	+ self.uploadables = [MutableData(d) for d in self.CONTENTS]
10024	self._copied_shares = {}
10025	self._storage = FakeStorage()
10026	self._nodemaker = make_nodemaker(self._storage)
10027	hunk ./src/allmydata/test/test_mutable.py 722
10028	- d = self._nodemaker.create_mutable_file(self.CONTENTS[0]) # seqnum=1
10029	+ d = self._nodemaker.create_mutable_file(self.uploadables[0], version=version) # seqnum=1
10030	def _created(node):
10031	self._fn = node
10032	# now create multiple versions of the same file, and accumulate
10033	hunk ./src/allmydata/test/test_mutable.py 729
10034	# their shares, so we can mix and match them later.
10035	d = defer.succeed(None)
10036	d.addCallback(self._copy_shares, 0)
10037	- d.addCallback(lambda res: node.overwrite(self.CONTENTS[1])) #s2
10038	+ d.addCallback(lambda res: node.overwrite(self.uploadables[1])) #s2
10039	d.addCallback(self._copy_shares, 1)
10040	hunk ./src/allmydata/test/test_mutable.py 731
10041	- d.addCallback(lambda res: node.overwrite(self.CONTENTS[2])) #s3
10042	+ d.addCallback(lambda res: node.overwrite(self.uploadables[2])) #s3
10043	d.addCallback(self._copy_shares, 2)
10044	hunk ./src/allmydata/test/test_mutable.py 733
10045	- d.addCallback(lambda res: node.overwrite(self.CONTENTS[3])) #s4a
10046	+ d.addCallback(lambda res: node.overwrite(self.uploadables[3])) #s4a
10047	d.addCallback(self._copy_shares, 3)
10048	# now we replace all the shares with version s3, and upload a new
10049	# version to get s4b.
10050	hunk ./src/allmydata/test/test_mutable.py 739
10051	rollback = dict([(i,2) for i in range(10)])
10052	d.addCallback(lambda res: self._set_versions(rollback))
10053	- d.addCallback(lambda res: node.overwrite(self.CONTENTS[4])) #s4b
10054	+ d.addCallback(lambda res: node.overwrite(self.uploadables[4])) #s4b
10055	d.addCallback(self._copy_shares, 4)
10056	# we leave the storage in state 4
10057	return d
10058	hunk ./src/allmydata/test/test_mutable.py 746
10059	d.addCallback(_created)
10060	return d
10061
10062	+
10063	def _copy_shares(self, ignored, index):
10064	shares = self._storage._peers
10065	# we need a deep copy
10066	hunk ./src/allmydata/test/test_mutable.py 770
10067	shares[peerid][shnum] = oldshares[index][peerid][shnum]
10068
10069
10070	+
10071	+
10072	class Servermap(unittest.TestCase, PublishMixin):
10073	def setUp(self):
10074	return self.publish_one()
10075	hunk ./src/allmydata/test/test_mutable.py 776
10076
10077	- def make_servermap(self, mode=MODE_CHECK, fn=None, sb=None):
10078	+ def make_servermap(self, mode=MODE_CHECK, fn=None, sb=None,
10079	+ update_range=None):
10080	if fn is None:
10081	fn = self._fn
10082	if sb is None:
10083	hunk ./src/allmydata/test/test_mutable.py 783
10084	sb = self._storage_broker
10085	smu = ServermapUpdater(fn, sb, Monitor(),
10086	- ServerMap(), mode)
10087	+ ServerMap(), mode, update_range=update_range)
10088	d = smu.update()
10089	return d
10090
10091	hunk ./src/allmydata/test/test_mutable.py 849
10092	# create a new file, which is large enough to knock the privkey out
10093	# of the early part of the file
10094	LARGE = "These are Larger contents" * 200 # about 5KB
10095	- d.addCallback(lambda res: self._nodemaker.create_mutable_file(LARGE))
10096	+ LARGE_uploadable = MutableData(LARGE)
10097	+ d.addCallback(lambda res: self._nodemaker.create_mutable_file(LARGE_uploadable))
10098	def _created(large_fn):
10099	large_fn2 = self._nodemaker.create_from_cap(large_fn.get_uri())
10100	return self.make_servermap(MODE_WRITE, large_fn2)
10101	hunk ./src/allmydata/test/test_mutable.py 858
10102	d.addCallback(lambda sm: self.failUnlessOneRecoverable(sm, 10))
10103	return d
10104
10105	+
10106	def test_mark_bad(self):
10107	d = defer.succeed(None)
10108	ms = self.make_servermap
10109	hunk ./src/allmydata/test/test_mutable.py 904
10110	self._storage._peers = {} # delete all shares
10111	ms = self.make_servermap
10112	d = defer.succeed(None)
10113	-
10114	+#
10115	d.addCallback(lambda res: ms(mode=MODE_CHECK))
10116	d.addCallback(lambda sm: self.failUnlessNoneRecoverable(sm))
10117
10118	hunk ./src/allmydata/test/test_mutable.py 956
10119	return d
10120
10121
10122	+ def test_servermapupdater_finds_mdmf_files(self):
10123	+ # setUp already published an MDMF file for us. We just need to
10124	+ # make sure that when we run the ServermapUpdater, the file is
10125	+ # reported to have one recoverable version.
10126	+ d = defer.succeed(None)
10127	+ d.addCallback(lambda ignored:
10128	+ self.publish_mdmf())
10129	+ d.addCallback(lambda ignored:
10130	+ self.make_servermap(mode=MODE_CHECK))
10131	+ # Calling make_servermap also updates the servermap in the mode
10132	+ # that we specify, so we just need to see what it says.
10133	+ def _check_servermap(sm):
10134	+ self.failUnlessEqual(len(sm.recoverable_versions()), 1)
10135	+ d.addCallback(_check_servermap)
10136	+ return d
10137	+
10138	+
10139	+ def test_fetch_update(self):
10140	+ d = defer.succeed(None)
10141	+ d.addCallback(lambda ignored:
10142	+ self.publish_mdmf())
10143	+ d.addCallback(lambda ignored:
10144	+ self.make_servermap(mode=MODE_WRITE, update_range=(1, 2)))
10145	+ def _check_servermap(sm):
10146	+ # 10 shares
10147	+ self.failUnlessEqual(len(sm.update_data), 10)
10148	+ # one version
10149	+ for data in sm.update_data.itervalues():
10150	+ self.failUnlessEqual(len(data), 1)
10151	+ d.addCallback(_check_servermap)
10152	+ return d
10153	+
10154	+
10155	+ def test_servermapupdater_finds_sdmf_files(self):
10156	+ d = defer.succeed(None)
10157	+ d.addCallback(lambda ignored:
10158	+ self.publish_sdmf())
10159	+ d.addCallback(lambda ignored:
10160	+ self.make_servermap(mode=MODE_CHECK))
10161	+ d.addCallback(lambda servermap:
10162	+ self.failUnlessEqual(len(servermap.recoverable_versions()), 1))
10163	+ return d
10164	+
10165
10166	class Roundtrip(unittest.TestCase, testutil.ShouldFailMixin, PublishMixin):
10167	def setUp(self):
10168	hunk ./src/allmydata/test/test_mutable.py 1039
10169	if version is None:
10170	version = servermap.best_recoverable_version()
10171	r = Retrieve(self._fn, servermap, version)
10172	- return r.download()
10173	+ c = consumer.MemoryConsumer()
10174	+ d = r.download(consumer=c)
10175	+ d.addCallback(lambda mc: "".join(mc.chunks))
10176	+ return d
10177	+
10178
10179	def test_basic(self):
10180	d = self.make_servermap()
10181	hunk ./src/allmydata/test/test_mutable.py 1120
10182	return d
10183	test_no_servers_download.timeout = 15
10184
10185	+
10186	def _test_corrupt_all(self, offset, substring,
10187	hunk ./src/allmydata/test/test_mutable.py 1122
10188	- should_succeed=False, corrupt_early=True,
10189	- failure_checker=None):
10190	+ should_succeed=False,
10191	+ corrupt_early=True,
10192	+ failure_checker=None,
10193	+ fetch_privkey=False):
10194	d = defer.succeed(None)
10195	if corrupt_early:
10196	d.addCallback(corrupt, self._storage, offset)
10197	hunk ./src/allmydata/test/test_mutable.py 1142
10198	self.failUnlessIn(substring, "".join(allproblems))
10199	return servermap
10200	if should_succeed:
10201	- d1 = self._fn.download_version(servermap, ver)
10202	+ d1 = self._fn.download_version(servermap, ver,
10203	+ fetch_privkey)
10204	d1.addCallback(lambda new_contents:
10205	self.failUnlessEqual(new_contents, self.CONTENTS))
10206	else:
10207	hunk ./src/allmydata/test/test_mutable.py 1150
10208	d1 = self.shouldFail(NotEnoughSharesError,
10209	"_corrupt_all(offset=%s)" % (offset,),
10210	substring,
10211	- self._fn.download_version, servermap, ver)
10212	+ self._fn.download_version, servermap,
10213	+ ver,
10214	+ fetch_privkey)
10215	if failure_checker:
10216	d1.addCallback(failure_checker)
10217	d1.addCallback(lambda res: servermap)
10218	hunk ./src/allmydata/test/test_mutable.py 1161
10219	return d
10220
10221	def test_corrupt_all_verbyte(self):
10222	- # when the version byte is not 0, we hit an UnknownVersionError error
10223	- # in unpack_share().
10224	+ # when the version byte is not 0 or 1, we hit an UnknownVersionError
10225	+ # error in unpack_share().
10226	d = self._test_corrupt_all(0, "UnknownVersionError")
10227	def _check_servermap(servermap):
10228	# and the dump should mention the problems
10229	hunk ./src/allmydata/test/test_mutable.py 1168
10230	s = StringIO()
10231	dump = servermap.dump(s).getvalue()
10232	- self.failUnless("10 PROBLEMS" in dump, dump)
10233	+ self.failUnless("30 PROBLEMS" in dump, dump)
10234	d.addCallback(_check_servermap)
10235	return d
10236
10237	hunk ./src/allmydata/test/test_mutable.py 1238
10238	return self._test_corrupt_all("enc_privkey", None, should_succeed=True)
10239
10240
10241	+ def test_corrupt_all_encprivkey_late(self):
10242	+ # this should work for the same reason as above, but we corrupt
10243	+ # after the servermap update to exercise the error handling
10244	+ # code.
10245	+ # We need to remove the privkey from the node, or the retrieve
10246	+ # process won't know to update it.
10247	+ self._fn._privkey = None
10248	+ return self._test_corrupt_all("enc_privkey",
10249	+ None, # this shouldn't fail
10250	+ should_succeed=True,
10251	+ corrupt_early=False,
10252	+ fetch_privkey=True)
10253	+
10254	+
10255	def test_corrupt_all_seqnum_late(self):
10256	# corrupting the seqnum between mapupdate and retrieve should result
10257	# in NotEnoughSharesError, since each share will look invalid
10258	hunk ./src/allmydata/test/test_mutable.py 1258
10259	def _check(res):
10260	f = res[0]
10261	self.failUnless(f.check(NotEnoughSharesError))
10262	- self.failUnless("someone wrote to the data since we read the servermap" in str(f))
10263	+ self.failUnless("uncoordinated write" in str(f))
10264	return self._test_corrupt_all(1, "ran out of peers",
10265	corrupt_early=False,
10266	failure_checker=_check)
10267	hunk ./src/allmydata/test/test_mutable.py 1302
10268	in str(servermap.problems[0]))
10269	ver = servermap.best_recoverable_version()
10270	r = Retrieve(self._fn, servermap, ver)
10271	- return r.download()
10272	+ c = consumer.MemoryConsumer()
10273	+ return r.download(c)
10274	d.addCallback(_do_retrieve)
10275	hunk ./src/allmydata/test/test_mutable.py 1305
10276	+ d.addCallback(lambda mc: "".join(mc.chunks))
10277	d.addCallback(lambda new_contents:
10278	self.failUnlessEqual(new_contents, self.CONTENTS))
10279	return d
10280	hunk ./src/allmydata/test/test_mutable.py 1310
10281
10282	- def test_corrupt_some(self):
10283	- # corrupt the data of first five shares (so the servermap thinks
10284	- # they're good but retrieve marks them as bad), so that the
10285	- # MODE_READ set of 6 will be insufficient, forcing node.download to
10286	- # retry with more servers.
10287	- corrupt(None, self._storage, "share_data", range(5))
10288	- d = self.make_servermap()
10289	+
10290	+ def _test_corrupt_some(self, offset, mdmf=False):
10291	+ if mdmf:
10292	+ d = self.publish_mdmf()
10293	+ else:
10294	+ d = defer.succeed(None)
10295	+ d.addCallback(lambda ignored:
10296	+ corrupt(None, self._storage, offset, range(5)))
10297	+ d.addCallback(lambda ignored:
10298	+ self.make_servermap())
10299	def _do_retrieve(servermap):
10300	ver = servermap.best_recoverable_version()
10301	self.failUnless(ver)
10302	hunk ./src/allmydata/test/test_mutable.py 1326
10303	return self._fn.download_best_version()
10304	d.addCallback(_do_retrieve)
10305	d.addCallback(lambda new_contents:
10306	- self.failUnlessEqual(new_contents, self.CONTENTS))
10307	+ self.failUnlessEqual(new_contents, self.CONTENTS))
10308	return d
10309
10310	hunk ./src/allmydata/test/test_mutable.py 1329
10311	+
10312	+ def test_corrupt_some(self):
10313	+ # corrupt the data of first five shares (so the servermap thinks
10314	+ # they're good but retrieve marks them as bad), so that the
10315	+ # MODE_READ set of 6 will be insufficient, forcing node.download to
10316	+ # retry with more servers.
10317	+ return self._test_corrupt_some("share_data")
10318	+
10319	+
10320	def test_download_fails(self):
10321	hunk ./src/allmydata/test/test_mutable.py 1339
10322	- corrupt(None, self._storage, "signature")
10323	- d = self.shouldFail(UnrecoverableFileError, "test_download_anyway",
10324	+ d = corrupt(None, self._storage, "signature")
10325	+ d.addCallback(lambda ignored:
10326	+ self.shouldFail(UnrecoverableFileError, "test_download_anyway",
10327	"no recoverable versions",
10328	hunk ./src/allmydata/test/test_mutable.py 1343
10329	- self._fn.download_best_version)
10330	+ self._fn.download_best_version))
10331	return d
10332
10333
10334	hunk ./src/allmydata/test/test_mutable.py 1347
10335	+
10336	+ def test_corrupt_mdmf_block_hash_tree(self):
10337	+ d = self.publish_mdmf()
10338	+ d.addCallback(lambda ignored:
10339	+ self._test_corrupt_all(("block_hash_tree", 12 * 32),
10340	+ "block hash tree failure",
10341	+ corrupt_early=False,
10342	+ should_succeed=False))
10343	+ return d
10344	+
10345	+
10346	+ def test_corrupt_mdmf_block_hash_tree_late(self):
10347	+ d = self.publish_mdmf()
10348	+ d.addCallback(lambda ignored:
10349	+ self._test_corrupt_all(("block_hash_tree", 12 * 32),
10350	+ "block hash tree failure",
10351	+ corrupt_early=True,
10352	+ should_succeed=False))
10353	+ return d
10354	+
10355	+
10356	+ def test_corrupt_mdmf_share_data(self):
10357	+ d = self.publish_mdmf()
10358	+ d.addCallback(lambda ignored:
10359	+ # TODO: Find out what the block size is and corrupt a
10360	+ # specific block, rather than just guessing.
10361	+ self._test_corrupt_all(("share_data", 12 * 40),
10362	+ "block hash tree failure",
10363	+ corrupt_early=True,
10364	+ should_succeed=False))
10365	+ return d
10366	+
10367	+
10368	+ def test_corrupt_some_mdmf(self):
10369	+ return self._test_corrupt_some(("share_data", 12 * 40),
10370	+ mdmf=True)
10371	+
10372	+
10373	class CheckerMixin:
10374	def check_good(self, r, where):
10375	self.failUnless(r.is_healthy(), where)
10376	hunk ./src/allmydata/test/test_mutable.py 1415
10377	d.addCallback(self.check_good, "test_check_good")
10378	return d
10379
10380	+ def test_check_mdmf_good(self):
10381	+ d = self.publish_mdmf()
10382	+ d.addCallback(lambda ignored:
10383	+ self._fn.check(Monitor()))
10384	+ d.addCallback(self.check_good, "test_check_mdmf_good")
10385	+ return d
10386	+
10387	def test_check_no_shares(self):
10388	for shares in self._storage._peers.values():
10389	shares.clear()
10390	hunk ./src/allmydata/test/test_mutable.py 1429
10391	d.addCallback(self.check_bad, "test_check_no_shares")
10392	return d
10393
10394	+ def test_check_mdmf_no_shares(self):
10395	+ d = self.publish_mdmf()
10396	+ def _then(ignored):
10397	+ for share in self._storage._peers.values():
10398	+ share.clear()
10399	+ d.addCallback(_then)
10400	+ d.addCallback(lambda ignored:
10401	+ self._fn.check(Monitor()))
10402	+ d.addCallback(self.check_bad, "test_check_mdmf_no_shares")
10403	+ return d
10404	+
10405	def test_check_not_enough_shares(self):
10406	for shares in self._storage._peers.values():
10407	for shnum in shares.keys():
10408	hunk ./src/allmydata/test/test_mutable.py 1449
10409	d.addCallback(self.check_bad, "test_check_not_enough_shares")
10410	return d
10411
10412	+ def test_check_mdmf_not_enough_shares(self):
10413	+ d = self.publish_mdmf()
10414	+ def _then(ignored):
10415	+ for shares in self._storage._peers.values():
10416	+ for shnum in shares.keys():
10417	+ if shnum > 0:
10418	+ del shares[shnum]
10419	+ d.addCallback(_then)
10420	+ d.addCallback(lambda ignored:
10421	+ self._fn.check(Monitor()))
10422	+ d.addCallback(self.check_bad, "test_check_mdmf_not_enougH_shares")
10423	+ return d
10424	+
10425	+
10426	def test_check_all_bad_sig(self):
10427	hunk ./src/allmydata/test/test_mutable.py 1464
10428	- corrupt(None, self._storage, 1) # bad sig
10429	- d = self._fn.check(Monitor())
10430	+ d = corrupt(None, self._storage, 1) # bad sig
10431	+ d.addCallback(lambda ignored:
10432	+ self._fn.check(Monitor()))
10433	d.addCallback(self.check_bad, "test_check_all_bad_sig")
10434	return d
10435
10436	hunk ./src/allmydata/test/test_mutable.py 1470
10437	+ def test_check_mdmf_all_bad_sig(self):
10438	+ d = self.publish_mdmf()
10439	+ d.addCallback(lambda ignored:
10440	+ corrupt(None, self._storage, 1))
10441	+ d.addCallback(lambda ignored:
10442	+ self._fn.check(Monitor()))
10443	+ d.addCallback(self.check_bad, "test_check_mdmf_all_bad_sig")
10444	+ return d
10445	+
10446	def test_check_all_bad_blocks(self):
10447	hunk ./src/allmydata/test/test_mutable.py 1480
10448	- corrupt(None, self._storage, "share_data", [9]) # bad blocks
10449	+ d = corrupt(None, self._storage, "share_data", [9]) # bad blocks
10450	# the Checker won't notice this.. it doesn't look at actual data
10451	hunk ./src/allmydata/test/test_mutable.py 1482
10452	- d = self._fn.check(Monitor())
10453	+ d.addCallback(lambda ignored:
10454	+ self._fn.check(Monitor()))
10455	d.addCallback(self.check_good, "test_check_all_bad_blocks")
10456	return d
10457
10458	hunk ./src/allmydata/test/test_mutable.py 1487
10459	+
10460	+ def test_check_mdmf_all_bad_blocks(self):
10461	+ d = self.publish_mdmf()
10462	+ d.addCallback(lambda ignored:
10463	+ corrupt(None, self._storage, "share_data"))
10464	+ d.addCallback(lambda ignored:
10465	+ self._fn.check(Monitor()))
10466	+ d.addCallback(self.check_good, "test_check_mdmf_all_bad_blocks")
10467	+ return d
10468	+
10469	def test_verify_good(self):
10470	d = self._fn.check(Monitor(), verify=True)
10471	d.addCallback(self.check_good, "test_verify_good")
10472	hunk ./src/allmydata/test/test_mutable.py 1501
10473	return d
10474	+ test_verify_good.timeout = 15
10475
10476	def test_verify_all_bad_sig(self):
10477	hunk ./src/allmydata/test/test_mutable.py 1504
10478	- corrupt(None, self._storage, 1) # bad sig
10479	- d = self._fn.check(Monitor(), verify=True)
10480	+ d = corrupt(None, self._storage, 1) # bad sig
10481	+ d.addCallback(lambda ignored:
10482	+ self._fn.check(Monitor(), verify=True))
10483	d.addCallback(self.check_bad, "test_verify_all_bad_sig")
10484	return d
10485
10486	hunk ./src/allmydata/test/test_mutable.py 1511
10487	def test_verify_one_bad_sig(self):
10488	- corrupt(None, self._storage, 1, [9]) # bad sig
10489	- d = self._fn.check(Monitor(), verify=True)
10490	+ d = corrupt(None, self._storage, 1, [9]) # bad sig
10491	+ d.addCallback(lambda ignored:
10492	+ self._fn.check(Monitor(), verify=True))
10493	d.addCallback(self.check_bad, "test_verify_one_bad_sig")
10494	return d
10495
10496	hunk ./src/allmydata/test/test_mutable.py 1518
10497	def test_verify_one_bad_block(self):
10498	- corrupt(None, self._storage, "share_data", [9]) # bad blocks
10499	+ d = corrupt(None, self._storage, "share_data", [9]) # bad blocks
10500	# the Verifier will notice this, since it examines every byte
10501	hunk ./src/allmydata/test/test_mutable.py 1520
10502	- d = self._fn.check(Monitor(), verify=True)
10503	+ d.addCallback(lambda ignored:
10504	+ self._fn.check(Monitor(), verify=True))
10505	d.addCallback(self.check_bad, "test_verify_one_bad_block")
10506	d.addCallback(self.check_expected_failure,
10507	CorruptShareError, "block hash tree failure",
10508	hunk ./src/allmydata/test/test_mutable.py 1529
10509	return d
10510
10511	def test_verify_one_bad_sharehash(self):
10512	- corrupt(None, self._storage, "share_hash_chain", [9], 5)
10513	- d = self._fn.check(Monitor(), verify=True)
10514	+ d = corrupt(None, self._storage, "share_hash_chain", [9], 5)
10515	+ d.addCallback(lambda ignored:
10516	+ self._fn.check(Monitor(), verify=True))
10517	d.addCallback(self.check_bad, "test_verify_one_bad_sharehash")
10518	d.addCallback(self.check_expected_failure,
10519	CorruptShareError, "corrupt hashes",
10520	hunk ./src/allmydata/test/test_mutable.py 1539
10521	return d
10522
10523	def test_verify_one_bad_encprivkey(self):
10524	- corrupt(None, self._storage, "enc_privkey", [9]) # bad privkey
10525	- d = self._fn.check(Monitor(), verify=True)
10526	+ d = corrupt(None, self._storage, "enc_privkey", [9]) # bad privkey
10527	+ d.addCallback(lambda ignored:
10528	+ self._fn.check(Monitor(), verify=True))
10529	d.addCallback(self.check_bad, "test_verify_one_bad_encprivkey")
10530	d.addCallback(self.check_expected_failure,
10531	CorruptShareError, "invalid privkey",
10532	hunk ./src/allmydata/test/test_mutable.py 1549
10533	return d
10534
10535	def test_verify_one_bad_encprivkey_uncheckable(self):
10536	- corrupt(None, self._storage, "enc_privkey", [9]) # bad privkey
10537	+ d = corrupt(None, self._storage, "enc_privkey", [9]) # bad privkey
10538	readonly_fn = self._fn.get_readonly()
10539	# a read-only node has no way to validate the privkey
10540	hunk ./src/allmydata/test/test_mutable.py 1552
10541	- d = readonly_fn.check(Monitor(), verify=True)
10542	+ d.addCallback(lambda ignored:
10543	+ readonly_fn.check(Monitor(), verify=True))
10544	d.addCallback(self.check_good,
10545	"test_verify_one_bad_encprivkey_uncheckable")
10546	return d
10547	hunk ./src/allmydata/test/test_mutable.py 1558
10548
10549	+
10550	+ def test_verify_mdmf_good(self):
10551	+ d = self.publish_mdmf()
10552	+ d.addCallback(lambda ignored:
10553	+ self._fn.check(Monitor(), verify=True))
10554	+ d.addCallback(self.check_good, "test_verify_mdmf_good")
10555	+ return d
10556	+
10557	+
10558	+ def test_verify_mdmf_one_bad_block(self):
10559	+ d = self.publish_mdmf()
10560	+ d.addCallback(lambda ignored:
10561	+ corrupt(None, self._storage, "share_data", [1]))
10562	+ d.addCallback(lambda ignored:
10563	+ self._fn.check(Monitor(), verify=True))
10564	+ # We should find one bad block here
10565	+ d.addCallback(self.check_bad, "test_verify_mdmf_one_bad_block")
10566	+ d.addCallback(self.check_expected_failure,
10567	+ CorruptShareError, "block hash tree failure",
10568	+ "test_verify_mdmf_one_bad_block")
10569	+ return d
10570	+
10571	+
10572	+ def test_verify_mdmf_bad_encprivkey(self):
10573	+ d = self.publish_mdmf()
10574	+ d.addCallback(lambda ignored:
10575	+ corrupt(None, self._storage, "enc_privkey", [1]))
10576	+ d.addCallback(lambda ignored:
10577	+ self._fn.check(Monitor(), verify=True))
10578	+ d.addCallback(self.check_bad, "test_verify_mdmf_bad_encprivkey")
10579	+ d.addCallback(self.check_expected_failure,
10580	+ CorruptShareError, "privkey",
10581	+ "test_verify_mdmf_bad_encprivkey")
10582	+ return d
10583	+
10584	+
10585	+ def test_verify_mdmf_bad_sig(self):
10586	+ d = self.publish_mdmf()
10587	+ d.addCallback(lambda ignored:
10588	+ corrupt(None, self._storage, 1, [1]))
10589	+ d.addCallback(lambda ignored:
10590	+ self._fn.check(Monitor(), verify=True))
10591	+ d.addCallback(self.check_bad, "test_verify_mdmf_bad_sig")
10592	+ return d
10593	+
10594	+
10595	+ def test_verify_mdmf_bad_encprivkey_uncheckable(self):
10596	+ d = self.publish_mdmf()
10597	+ d.addCallback(lambda ignored:
10598	+ corrupt(None, self._storage, "enc_privkey", [1]))
10599	+ d.addCallback(lambda ignored:
10600	+ self._fn.get_readonly())
10601	+ d.addCallback(lambda fn:
10602	+ fn.check(Monitor(), verify=True))
10603	+ d.addCallback(self.check_good,
10604	+ "test_verify_mdmf_bad_encprivkey_uncheckable")
10605	+ return d
10606	+
10607	+
10608	class Repair(unittest.TestCase, PublishMixin, ShouldFailMixin):
10609
10610	def get_shares(self, s):
10611	hunk ./src/allmydata/test/test_mutable.py 1682
10612	current_shares = self.old_shares[-1]
10613	self.failUnlessEqual(old_shares, current_shares)
10614
10615	+
10616	def test_unrepairable_0shares(self):
10617	d = self.publish_one()
10618	def _delete_all_shares(ign):
10619	hunk ./src/allmydata/test/test_mutable.py 1697
10620	d.addCallback(_check)
10621	return d
10622
10623	+ def test_mdmf_unrepairable_0shares(self):
10624	+ d = self.publish_mdmf()
10625	+ def _delete_all_shares(ign):
10626	+ shares = self._storage._peers
10627	+ for peerid in shares:
10628	+ shares[peerid] = {}
10629	+ d.addCallback(_delete_all_shares)
10630	+ d.addCallback(lambda ign: self._fn.check(Monitor()))
10631	+ d.addCallback(lambda check_results: self._fn.repair(check_results))
10632	+ d.addCallback(lambda crr: self.failIf(crr.get_successful()))
10633	+ return d
10634	+
10635	+
10636	def test_unrepairable_1share(self):
10637	d = self.publish_one()
10638	def _delete_all_shares(ign):
10639	hunk ./src/allmydata/test/test_mutable.py 1726
10640	d.addCallback(_check)
10641	return d
10642
10643	+ def test_mdmf_unrepairable_1share(self):
10644	+ d = self.publish_mdmf()
10645	+ def _delete_all_shares(ign):
10646	+ shares = self._storage._peers
10647	+ for peerid in shares:
10648	+ for shnum in list(shares[peerid]):
10649	+ if shnum > 0:
10650	+ del shares[peerid][shnum]
10651	+ d.addCallback(_delete_all_shares)
10652	+ d.addCallback(lambda ign: self._fn.check(Monitor()))
10653	+ d.addCallback(lambda check_results: self._fn.repair(check_results))
10654	+ def _check(crr):
10655	+ self.failUnlessEqual(crr.get_successful(), False)
10656	+ d.addCallback(_check)
10657	+ return d
10658	+
10659	+ def test_repairable_5shares(self):
10660	+ d = self.publish_mdmf()
10661	+ def _delete_all_shares(ign):
10662	+ shares = self._storage._peers
10663	+ for peerid in shares:
10664	+ for shnum in list(shares[peerid]):
10665	+ if shnum > 4:
10666	+ del shares[peerid][shnum]
10667	+ d.addCallback(_delete_all_shares)
10668	+ d.addCallback(lambda ign: self._fn.check(Monitor()))
10669	+ d.addCallback(lambda check_results: self._fn.repair(check_results))
10670	+ def _check(crr):
10671	+ self.failUnlessEqual(crr.get_successful(), True)
10672	+ d.addCallback(_check)
10673	+ return d
10674	+
10675	+ def test_mdmf_repairable_5shares(self):
10676	+ d = self.publish_mdmf()
10677	+ def _delete_some_shares(ign):
10678	+ shares = self._storage._peers
10679	+ for peerid in shares:
10680	+ for shnum in list(shares[peerid]):
10681	+ if shnum > 5:
10682	+ del shares[peerid][shnum]
10683	+ d.addCallback(_delete_some_shares)
10684	+ d.addCallback(lambda ign: self._fn.check(Monitor()))
10685	+ def _check(cr):
10686	+ self.failIf(cr.is_healthy())
10687	+ self.failUnless(cr.is_recoverable())
10688	+ return cr
10689	+ d.addCallback(_check)
10690	+ d.addCallback(lambda check_results: self._fn.repair(check_results))
10691	+ def _check1(crr):
10692	+ self.failUnlessEqual(crr.get_successful(), True)
10693	+ d.addCallback(_check1)
10694	+ return d
10695	+
10696	+
10697	def test_merge(self):
10698	self.old_shares = []
10699	d = self.publish_multiple()
10700	hunk ./src/allmydata/test/test_mutable.py 1894
10701	class MultipleEncodings(unittest.TestCase):
10702	def setUp(self):
10703	self.CONTENTS = "New contents go here"
10704	+ self.uploadable = MutableData(self.CONTENTS)
10705	self._storage = FakeStorage()
10706	self._nodemaker = make_nodemaker(self._storage, num_peers=20)
10707	self._storage_broker = self._nodemaker.storage_broker
10708	hunk ./src/allmydata/test/test_mutable.py 1898
10709	- d = self._nodemaker.create_mutable_file(self.CONTENTS)
10710	+ d = self._nodemaker.create_mutable_file(self.uploadable)
10711	def _created(node):
10712	self._fn = node
10713	d.addCallback(_created)
10714	hunk ./src/allmydata/test/test_mutable.py 1924
10715	s = self._storage
10716	s._peers = {} # clear existing storage
10717	p2 = Publish(fn2, self._storage_broker, None)
10718	- d = p2.publish(data)
10719	+ uploadable = MutableData(data)
10720	+ d = p2.publish(uploadable)
10721	def _published(res):
10722	shares = s._peers
10723	s._peers = {}
10724	hunk ./src/allmydata/test/test_mutable.py 2227
10725	self.basedir = "mutable/Problems/test_publish_surprise"
10726	self.set_up_grid()
10727	nm = self.g.clients[0].nodemaker
10728	- d = nm.create_mutable_file("contents 1")
10729	+ d = nm.create_mutable_file(MutableData("contents 1"))
10730	def _created(n):
10731	d = defer.succeed(None)
10732	d.addCallback(lambda res: n.get_servermap(MODE_WRITE))
10733	hunk ./src/allmydata/test/test_mutable.py 2237
10734	d.addCallback(_got_smap1)
10735	# then modify the file, leaving the old map untouched
10736	d.addCallback(lambda res: log.msg("starting winning write"))
10737	- d.addCallback(lambda res: n.overwrite("contents 2"))
10738	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 2")))
10739	# now attempt to modify the file with the old servermap. This
10740	# will look just like an uncoordinated write, in which every
10741	# single share got updated between our mapupdate and our publish
10742	hunk ./src/allmydata/test/test_mutable.py 2246
10743	self.shouldFail(UncoordinatedWriteError,
10744	"test_publish_surprise", None,
10745	n.upload,
10746	- "contents 2a", self.old_map))
10747	+ MutableData("contents 2a"), self.old_map))
10748	return d
10749	d.addCallback(_created)
10750	return d
10751	hunk ./src/allmydata/test/test_mutable.py 2255
10752	self.basedir = "mutable/Problems/test_retrieve_surprise"
10753	self.set_up_grid()
10754	nm = self.g.clients[0].nodemaker
10755	- d = nm.create_mutable_file("contents 1")
10756	+ d = nm.create_mutable_file(MutableData("contents 1"))
10757	def _created(n):
10758	d = defer.succeed(None)
10759	d.addCallback(lambda res: n.get_servermap(MODE_READ))
10760	hunk ./src/allmydata/test/test_mutable.py 2265
10761	d.addCallback(_got_smap1)
10762	# then modify the file, leaving the old map untouched
10763	d.addCallback(lambda res: log.msg("starting winning write"))
10764	- d.addCallback(lambda res: n.overwrite("contents 2"))
10765	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 2")))
10766	# now attempt to retrieve the old version with the old servermap.
10767	# This will look like someone has changed the file since we
10768	# updated the servermap.
10769	hunk ./src/allmydata/test/test_mutable.py 2274
10770	d.addCallback(lambda res:
10771	self.shouldFail(NotEnoughSharesError,
10772	"test_retrieve_surprise",
10773	- "ran out of peers: have 0 shares (k=3)",
10774	+ "ran out of peers: have 0 of 1",
10775	n.download_version,
10776	self.old_map,
10777	self.old_map.best_recoverable_version(),
10778	hunk ./src/allmydata/test/test_mutable.py 2283
10779	d.addCallback(_created)
10780	return d
10781
10782	+
10783	def test_unexpected_shares(self):
10784	# upload the file, take a servermap, shut down one of the servers,
10785	# upload it again (causing shares to appear on a new server), then
10786	hunk ./src/allmydata/test/test_mutable.py 2293
10787	self.basedir = "mutable/Problems/test_unexpected_shares"
10788	self.set_up_grid()
10789	nm = self.g.clients[0].nodemaker
10790	- d = nm.create_mutable_file("contents 1")
10791	+ d = nm.create_mutable_file(MutableData("contents 1"))
10792	def _created(n):
10793	d = defer.succeed(None)
10794	d.addCallback(lambda res: n.get_servermap(MODE_WRITE))
10795	hunk ./src/allmydata/test/test_mutable.py 2305
10796	self.g.remove_server(peer0)
10797	# then modify the file, leaving the old map untouched
10798	log.msg("starting winning write")
10799	- return n.overwrite("contents 2")
10800	+ return n.overwrite(MutableData("contents 2"))
10801	d.addCallback(_got_smap1)
10802	# now attempt to modify the file with the old servermap. This
10803	# will look just like an uncoordinated write, in which every
10804	hunk ./src/allmydata/test/test_mutable.py 2315
10805	self.shouldFail(UncoordinatedWriteError,
10806	"test_surprise", None,
10807	n.upload,
10808	- "contents 2a", self.old_map))
10809	+ MutableData("contents 2a"), self.old_map))
10810	return d
10811	d.addCallback(_created)
10812	return d
10813	hunk ./src/allmydata/test/test_mutable.py 2319
10814	+ test_unexpected_shares.timeout = 15
10815
10816	def test_bad_server(self):
10817	# Break one server, then create the file: the initial publish should
10818	hunk ./src/allmydata/test/test_mutable.py 2355
10819	d.addCallback(_break_peer0)
10820	# now "create" the file, using the pre-established key, and let the
10821	# initial publish finally happen
10822	- d.addCallback(lambda res: nm.create_mutable_file("contents 1"))
10823	+ d.addCallback(lambda res: nm.create_mutable_file(MutableData("contents 1")))
10824	# that ought to work
10825	def _got_node(n):
10826	d = n.download_best_version()
10827	hunk ./src/allmydata/test/test_mutable.py 2364
10828	def _break_peer1(res):
10829	self.connection1.broken = True
10830	d.addCallback(_break_peer1)
10831	- d.addCallback(lambda res: n.overwrite("contents 2"))
10832	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 2")))
10833	# that ought to work too
10834	d.addCallback(lambda res: n.download_best_version())
10835	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 2"))
10836	hunk ./src/allmydata/test/test_mutable.py 2396
10837	peerids = [serverid for (serverid,ss) in sb.get_all_servers()]
10838	self.g.break_server(peerids[0])
10839
10840	- d = nm.create_mutable_file("contents 1")
10841	+ d = nm.create_mutable_file(MutableData("contents 1"))
10842	def _created(n):
10843	d = n.download_best_version()
10844	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 1"))
10845	hunk ./src/allmydata/test/test_mutable.py 2404
10846	def _break_second_server(res):
10847	self.g.break_server(peerids[1])
10848	d.addCallback(_break_second_server)
10849	- d.addCallback(lambda res: n.overwrite("contents 2"))
10850	+ d.addCallback(lambda res: n.overwrite(MutableData("contents 2")))
10851	# that ought to work too
10852	d.addCallback(lambda res: n.download_best_version())
10853	d.addCallback(lambda res: self.failUnlessEqual(res, "contents 2"))
10854	hunk ./src/allmydata/test/test_mutable.py 2423
10855	d = self.shouldFail(NotEnoughServersError,
10856	"test_publish_all_servers_bad",
10857	"Ran out of non-bad servers",
10858	- nm.create_mutable_file, "contents")
10859	+ nm.create_mutable_file, MutableData("contents"))
10860	return d
10861
10862	def test_publish_no_servers(self):
10863	hunk ./src/allmydata/test/test_mutable.py 2435
10864	d = self.shouldFail(NotEnoughServersError,
10865	"test_publish_no_servers",
10866	"Ran out of non-bad servers",
10867	- nm.create_mutable_file, "contents")
10868	+ nm.create_mutable_file, MutableData("contents"))
10869	return d
10870	test_publish_no_servers.timeout = 30
10871
10872	hunk ./src/allmydata/test/test_mutable.py 2453
10873	# we need some contents that are large enough to push the privkey out
10874	# of the early part of the file
10875	LARGE = "These are Larger contents" * 2000 # about 50KB
10876	- d = nm.create_mutable_file(LARGE)
10877	+ LARGE_uploadable = MutableData(LARGE)
10878	+ d = nm.create_mutable_file(LARGE_uploadable)
10879	def _created(n):
10880	self.uri = n.get_uri()
10881	self.n2 = nm.create_from_cap(self.uri)
10882	hunk ./src/allmydata/test/test_mutable.py 2489
10883	self.basedir = "mutable/Problems/test_privkey_query_missing"
10884	self.set_up_grid(num_servers=20)
10885	nm = self.g.clients[0].nodemaker
10886	- LARGE = "These are Larger contents" * 2000 # about 50KB
10887	+ LARGE = "These are Larger contents" * 2000 # about 50KiB
10888	+ LARGE_uploadable = MutableData(LARGE)
10889	nm._node_cache = DevNullDictionary() # disable the nodecache
10890
10891	hunk ./src/allmydata/test/test_mutable.py 2493
10892	- d = nm.create_mutable_file(LARGE)
10893	+ d = nm.create_mutable_file(LARGE_uploadable)
10894	def _created(n):
10895	self.uri = n.get_uri()
10896	self.n2 = nm.create_from_cap(self.uri)
10897	hunk ./src/allmydata/test/test_mutable.py 2503
10898	d.addCallback(_created)
10899	d.addCallback(lambda res: self.n2.get_servermap(MODE_WRITE))
10900	return d
10901	+
10902	+
10903	+ def test_block_and_hash_query_error(self):
10904	+ # This tests for what happens when a query to a remote server
10905	+ # fails in either the hash validation step or the block getting
10906	+ # step (because of batching, this is the same actual query).
10907	+ # We need to have the storage server persist up until the point
10908	+ # that its prefix is validated, then suddenly die. This
10909	+ # exercises some exception handling code in Retrieve.
10910	+ self.basedir = "mutable/Problems/test_block_and_hash_query_error"
10911	+ self.set_up_grid(num_servers=20)
10912	+ nm = self.g.clients[0].nodemaker
10913	+ CONTENTS = "contents" * 2000
10914	+ CONTENTS_uploadable = MutableData(CONTENTS)
10915	+ d = nm.create_mutable_file(CONTENTS_uploadable)
10916	+ def _created(node):
10917	+ self._node = node
10918	+ d.addCallback(_created)
10919	+ d.addCallback(lambda ignored:
10920	+ self._node.get_servermap(MODE_READ))
10921	+ def _then(servermap):
10922	+ # we have our servermap. Now we set up the servers like the
10923	+ # tests above -- the first one that gets a read call should
10924	+ # start throwing errors, but only after returning its prefix
10925	+ # for validation. Since we'll download without fetching the
10926	+ # private key, the next query to the remote server will be
10927	+ # for either a block and salt or for hashes, either of which
10928	+ # will exercise the error handling code.
10929	+ killer = FirstServerGetsKilled()
10930	+ for (serverid, ss) in nm.storage_broker.get_all_servers():
10931	+ ss.post_call_notifier = killer.notify
10932	+ ver = servermap.best_recoverable_version()
10933	+ assert ver
10934	+ return self._node.download_version(servermap, ver)
10935	+ d.addCallback(_then)
10936	+ d.addCallback(lambda data:
10937	+ self.failUnlessEqual(data, CONTENTS))
10938	+ return d
10939	+
10940	+
10941	+class FileHandle(unittest.TestCase):
10942	+ def setUp(self):
10943	+ self.test_data = "Test Data" * 50000
10944	+ self.sio = StringIO(self.test_data)
10945	+ self.uploadable = MutableFileHandle(self.sio)
10946	+
10947	+
10948	+ def test_filehandle_read(self):
10949	+ self.basedir = "mutable/FileHandle/test_filehandle_read"
10950	+ chunk_size = 10
10951	+ for i in xrange(0, len(self.test_data), chunk_size):
10952	+ data = self.uploadable.read(chunk_size)
10953	+ data = "".join(data)
10954	+ start = i
10955	+ end = i + chunk_size
10956	+ self.failUnlessEqual(data, self.test_data[start:end])
10957	+
10958	+
10959	+ def test_filehandle_get_size(self):
10960	+ self.basedir = "mutable/FileHandle/test_filehandle_get_size"
10961	+ actual_size = len(self.test_data)
10962	+ size = self.uploadable.get_size()
10963	+ self.failUnlessEqual(size, actual_size)
10964	+
10965	+
10966	+ def test_filehandle_get_size_out_of_order(self):
10967	+ # We should be able to call get_size whenever we want without
10968	+ # disturbing the location of the seek pointer.
10969	+ chunk_size = 100
10970	+ data = self.uploadable.read(chunk_size)
10971	+ self.failUnlessEqual("".join(data), self.test_data[:chunk_size])
10972	+
10973	+ # Now get the size.
10974	+ size = self.uploadable.get_size()
10975	+ self.failUnlessEqual(size, len(self.test_data))
10976	+
10977	+ # Now get more data. We should be right where we left off.
10978	+ more_data = self.uploadable.read(chunk_size)
10979	+ start = chunk_size
10980	+ end = chunk_size * 2
10981	+ self.failUnlessEqual("".join(more_data), self.test_data[start:end])
10982	+
10983	+
10984	+ def test_filehandle_file(self):
10985	+ # Make sure that the MutableFileHandle works on a file as well
10986	+ # as a StringIO object, since in some cases it will be asked to
10987	+ # deal with files.
10988	+ self.basedir = self.mktemp()
10989	+ # necessary? What am I doing wrong here?
10990	+ os.mkdir(self.basedir)
10991	+ f_path = os.path.join(self.basedir, "test_file")
10992	+ f = open(f_path, "w")
10993	+ f.write(self.test_data)
10994	+ f.close()
10995	+ f = open(f_path, "r")
10996	+
10997	+ uploadable = MutableFileHandle(f)
10998	+
10999	+ data = uploadable.read(len(self.test_data))
11000	+ self.failUnlessEqual("".join(data), self.test_data)
11001	+ size = uploadable.get_size()
11002	+ self.failUnlessEqual(size, len(self.test_data))
11003	+
11004	+
11005	+ def test_close(self):
11006	+ # Make sure that the MutableFileHandle closes its handle when
11007	+ # told to do so.
11008	+ self.uploadable.close()
11009	+ self.failUnless(self.sio.closed)
11010	+
11011	+
11012	+class DataHandle(unittest.TestCase):
11013	+ def setUp(self):
11014	+ self.test_data = "Test Data" * 50000
11015	+ self.uploadable = MutableData(self.test_data)
11016	+
11017	+
11018	+ def test_datahandle_read(self):
11019	+ chunk_size = 10
11020	+ for i in xrange(0, len(self.test_data), chunk_size):
11021	+ data = self.uploadable.read(chunk_size)
11022	+ data = "".join(data)
11023	+ start = i
11024	+ end = i + chunk_size
11025	+ self.failUnlessEqual(data, self.test_data[start:end])
11026	+
11027	+
11028	+ def test_datahandle_get_size(self):
11029	+ actual_size = len(self.test_data)
11030	+ size = self.uploadable.get_size()
11031	+ self.failUnlessEqual(size, actual_size)
11032	+
11033	+
11034	+ def test_datahandle_get_size_out_of_order(self):
11035	+ # We should be able to call get_size whenever we want without
11036	+ # disturbing the location of the seek pointer.
11037	+ chunk_size = 100
11038	+ data = self.uploadable.read(chunk_size)
11039	+ self.failUnlessEqual("".join(data), self.test_data[:chunk_size])
11040	+
11041	+ # Now get the size.
11042	+ size = self.uploadable.get_size()
11043	+ self.failUnlessEqual(size, len(self.test_data))
11044	+
11045	+ # Now get more data. We should be right where we left off.
11046	+ more_data = self.uploadable.read(chunk_size)
11047	+ start = chunk_size
11048	+ end = chunk_size * 2
11049	+ self.failUnlessEqual("".join(more_data), self.test_data[start:end])
11050	+
11051	+
11052	+class Version(GridTestMixin, unittest.TestCase, testutil.ShouldFailMixin, \
11053	+ PublishMixin):
11054	+ def setUp(self):
11055	+ GridTestMixin.setUp(self)
11056	+ self.basedir = self.mktemp()
11057	+ self.set_up_grid()
11058	+ self.c = self.g.clients[0]
11059	+ self.nm = self.c.nodemaker
11060	+ self.data = "test data" * 100000 # about 900 KiB; MDMF
11061	+ self.small_data = "test data" * 10 # about 90 B; SDMF
11062	+ return self.do_upload()
11063	+
11064	+
11065	+ def do_upload(self):
11066	+ d1 = self.nm.create_mutable_file(MutableData(self.data),
11067	+ version=MDMF_VERSION)
11068	+ d2 = self.nm.create_mutable_file(MutableData(self.small_data))
11069	+ dl = gatherResults([d1, d2])
11070	+ def _then((n1, n2)):
11071	+ assert isinstance(n1, MutableFileNode)
11072	+ assert isinstance(n2, MutableFileNode)
11073	+
11074	+ self.mdmf_node = n1
11075	+ self.sdmf_node = n2
11076	+ dl.addCallback(_then)
11077	+ return dl
11078	+
11079	+
11080	+ def test_get_readonly_mutable_version(self):
11081	+ # Attempting to get a mutable version of a mutable file from a
11082	+ # filenode initialized with a readcap should return a readonly
11083	+ # version of that same node.
11084	+ ro = self.mdmf_node.get_readonly()
11085	+ d = ro.get_best_mutable_version()
11086	+ d.addCallback(lambda version:
11087	+ self.failUnless(version.is_readonly()))
11088	+ d.addCallback(lambda ignored:
11089	+ self.sdmf_node.get_readonly())
11090	+ d.addCallback(lambda version:
11091	+ self.failUnless(version.is_readonly()))
11092	+ return d
11093	+
11094	+
11095	+ def test_get_sequence_number(self):
11096	+ d = self.mdmf_node.get_best_readable_version()
11097	+ d.addCallback(lambda bv:
11098	+ self.failUnlessEqual(bv.get_sequence_number(), 1))
11099	+ d.addCallback(lambda ignored:
11100	+ self.sdmf_node.get_best_readable_version())
11101	+ d.addCallback(lambda bv:
11102	+ self.failUnlessEqual(bv.get_sequence_number(), 1))
11103	+ # Now update. The sequence number in both cases should be 1 in
11104	+ # both cases.
11105	+ def _do_update(ignored):
11106	+ new_data = MutableData("foo bar baz" * 100000)
11107	+ new_small_data = MutableData("foo bar baz" * 10)
11108	+ d1 = self.mdmf_node.overwrite(new_data)
11109	+ d2 = self.sdmf_node.overwrite(new_small_data)
11110	+ dl = gatherResults([d1, d2])
11111	+ return dl
11112	+ d.addCallback(_do_update)
11113	+ d.addCallback(lambda ignored:
11114	+ self.mdmf_node.get_best_readable_version())
11115	+ d.addCallback(lambda bv:
11116	+ self.failUnlessEqual(bv.get_sequence_number(), 2))
11117	+ d.addCallback(lambda ignored:
11118	+ self.sdmf_node.get_best_readable_version())
11119	+ d.addCallback(lambda bv:
11120	+ self.failUnlessEqual(bv.get_sequence_number(), 2))
11121	+ return d
11122	+
11123	+
11124	+ def test_get_writekey(self):
11125	+ d = self.mdmf_node.get_best_mutable_version()
11126	+ d.addCallback(lambda bv:
11127	+ self.failUnlessEqual(bv.get_writekey(),
11128	+ self.mdmf_node.get_writekey()))
11129	+ d.addCallback(lambda ignored:
11130	+ self.sdmf_node.get_best_mutable_version())
11131	+ d.addCallback(lambda bv:
11132	+ self.failUnlessEqual(bv.get_writekey(),
11133	+ self.sdmf_node.get_writekey()))
11134	+ return d
11135	+
11136	+
11137	+ def test_get_storage_index(self):
11138	+ d = self.mdmf_node.get_best_mutable_version()
11139	+ d.addCallback(lambda bv:
11140	+ self.failUnlessEqual(bv.get_storage_index(),
11141	+ self.mdmf_node.get_storage_index()))
11142	+ d.addCallback(lambda ignored:
11143	+ self.sdmf_node.get_best_mutable_version())
11144	+ d.addCallback(lambda bv:
11145	+ self.failUnlessEqual(bv.get_storage_index(),
11146	+ self.sdmf_node.get_storage_index()))
11147	+ return d
11148	+
11149	+
11150	+ def test_get_readonly_version(self):
11151	+ d = self.mdmf_node.get_best_readable_version()
11152	+ d.addCallback(lambda bv:
11153	+ self.failUnless(bv.is_readonly()))
11154	+ d.addCallback(lambda ignored:
11155	+ self.sdmf_node.get_best_readable_version())
11156	+ d.addCallback(lambda bv:
11157	+ self.failUnless(bv.is_readonly()))
11158	+ return d
11159	+
11160	+
11161	+ def test_get_mutable_version(self):
11162	+ d = self.mdmf_node.get_best_mutable_version()
11163	+ d.addCallback(lambda bv:
11164	+ self.failIf(bv.is_readonly()))
11165	+ d.addCallback(lambda ignored:
11166	+ self.sdmf_node.get_best_mutable_version())
11167	+ d.addCallback(lambda bv:
11168	+ self.failIf(bv.is_readonly()))
11169	+ return d
11170	+
11171	+
11172	+ def test_toplevel_overwrite(self):
11173	+ new_data = MutableData("foo bar baz" * 100000)
11174	+ new_small_data = MutableData("foo bar baz" * 10)
11175	+ d = self.mdmf_node.overwrite(new_data)
11176	+ d.addCallback(lambda ignored:
11177	+ self.mdmf_node.download_best_version())
11178	+ d.addCallback(lambda data:
11179	+ self.failUnlessEqual(data, "foo bar baz" * 100000))
11180	+ d.addCallback(lambda ignored:
11181	+ self.sdmf_node.overwrite(new_small_data))
11182	+ d.addCallback(lambda ignored:
11183	+ self.sdmf_node.download_best_version())
11184	+ d.addCallback(lambda data:
11185	+ self.failUnlessEqual(data, "foo bar baz" * 10))
11186	+ return d
11187	+
11188	+
11189	+ def test_toplevel_modify(self):
11190	+ def modifier(old_contents, servermap, first_time):
11191	+ return old_contents + "modified"
11192	+ d = self.mdmf_node.modify(modifier)
11193	+ d.addCallback(lambda ignored:
11194	+ self.mdmf_node.download_best_version())
11195	+ d.addCallback(lambda data:
11196	+ self.failUnlessIn("modified", data))
11197	+ d.addCallback(lambda ignored:
11198	+ self.sdmf_node.modify(modifier))
11199	+ d.addCallback(lambda ignored:
11200	+ self.sdmf_node.download_best_version())
11201	+ d.addCallback(lambda data:
11202	+ self.failUnlessIn("modified", data))
11203	+ return d
11204	+
11205	+
11206	+ def test_version_modify(self):
11207	+ # TODO: When we can publish multiple versions, alter this test
11208	+ # to modify a version other than the best usable version, then
11209	+ # test to see that the best recoverable version is that.
11210	+ def modifier(old_contents, servermap, first_time):
11211	+ return old_contents + "modified"
11212	+ d = self.mdmf_node.modify(modifier)
11213	+ d.addCallback(lambda ignored:
11214	+ self.mdmf_node.download_best_version())
11215	+ d.addCallback(lambda data:
11216	+ self.failUnlessIn("modified", data))
11217	+ d.addCallback(lambda ignored:
11218	+ self.sdmf_node.modify(modifier))
11219	+ d.addCallback(lambda ignored:
11220	+ self.sdmf_node.download_best_version())
11221	+ d.addCallback(lambda data:
11222	+ self.failUnlessIn("modified", data))
11223	+ return d
11224	+
11225	+
11226	+ def test_download_version(self):
11227	+ d = self.publish_multiple()
11228	+ # We want to have two recoverable versions on the grid.
11229	+ d.addCallback(lambda res:
11230	+ self._set_versions({0:0,2:0,4:0,6:0,8:0,
11231	+ 1:1,3:1,5:1,7:1,9:1}))
11232	+ # Now try to download each version. We should get the plaintext
11233	+ # associated with that version.
11234	+ d.addCallback(lambda ignored:
11235	+ self._fn.get_servermap(mode=MODE_READ))
11236	+ def _got_servermap(smap):
11237	+ versions = smap.recoverable_versions()
11238	+ assert len(versions) == 2
11239	+
11240	+ self.servermap = smap
11241	+ self.version1, self.version2 = versions
11242	+ assert self.version1 != self.version2
11243	+
11244	+ self.version1_seqnum = self.version1[0]
11245	+ self.version2_seqnum = self.version2[0]
11246	+ self.version1_index = self.version1_seqnum - 1
11247	+ self.version2_index = self.version2_seqnum - 1
11248	+
11249	+ d.addCallback(_got_servermap)
11250	+ d.addCallback(lambda ignored:
11251	+ self._fn.download_version(self.servermap, self.version1))
11252	+ d.addCallback(lambda results:
11253	+ self.failUnlessEqual(self.CONTENTS[self.version1_index],
11254	+ results))
11255	+ d.addCallback(lambda ignored:
11256	+ self._fn.download_version(self.servermap, self.version2))
11257	+ d.addCallback(lambda results:
11258	+ self.failUnlessEqual(self.CONTENTS[self.version2_index],
11259	+ results))
11260	+ return d
11261	+
11262	+
11263	+ def test_partial_read(self):
11264	+ # read only a few bytes at a time, and see that the results are
11265	+ # what we expect.
11266	+ d = self.mdmf_node.get_best_readable_version()
11267	+ def _read_data(version):
11268	+ c = consumer.MemoryConsumer()
11269	+ d2 = defer.succeed(None)
11270	+ for i in xrange(0, len(self.data), 10000):
11271	+ d2.addCallback(lambda ignored, i=i: version.read(c, i, 10000))
11272	+ d2.addCallback(lambda ignored:
11273	+ self.failUnlessEqual(self.data, "".join(c.chunks)))
11274	+ return d2
11275	+ d.addCallback(_read_data)
11276	+ return d
11277	+
11278	+
11279	+ def test_read(self):
11280	+ d = self.mdmf_node.get_best_readable_version()
11281	+ def _read_data(version):
11282	+ c = consumer.MemoryConsumer()
11283	+ d2 = defer.succeed(None)
11284	+ d2.addCallback(lambda ignored: version.read(c))
11285	+ d2.addCallback(lambda ignored:
11286	+ self.failUnlessEqual("".join(c.chunks), self.data))
11287	+ return d2
11288	+ d.addCallback(_read_data)
11289	+ return d
11290	+
11291	+
11292	+ def test_download_best_version(self):
11293	+ d = self.mdmf_node.download_best_version()
11294	+ d.addCallback(lambda data:
11295	+ self.failUnlessEqual(data, self.data))
11296	+ d.addCallback(lambda ignored:
11297	+ self.sdmf_node.download_best_version())
11298	+ d.addCallback(lambda data:
11299	+ self.failUnlessEqual(data, self.small_data))
11300	+ return d
11301	+
11302	+
11303	+class Update(GridTestMixin, unittest.TestCase, testutil.ShouldFailMixin):
11304	+ def setUp(self):
11305	+ GridTestMixin.setUp(self)
11306	+ self.basedir = self.mktemp()
11307	+ self.set_up_grid()
11308	+ self.c = self.g.clients[0]
11309	+ self.nm = self.c.nodemaker
11310	+ self.data = "test data" * 100000 # about 900 KiB; MDMF
11311	+ self.small_data = "test data" * 10 # about 90 B; SDMF
11312	+ return self.do_upload()
11313	+
11314	+
11315	+ def do_upload(self):
11316	+ d1 = self.nm.create_mutable_file(MutableData(self.data),
11317	+ version=MDMF_VERSION)
11318	+ d2 = self.nm.create_mutable_file(MutableData(self.small_data))
11319	+ dl = gatherResults([d1, d2])
11320	+ def _then((n1, n2)):
11321	+ assert isinstance(n1, MutableFileNode)
11322	+ assert isinstance(n2, MutableFileNode)
11323	+
11324	+ self.mdmf_node = n1
11325	+ self.sdmf_node = n2
11326	+ dl.addCallback(_then)
11327	+ return dl
11328	+
11329	+
11330	+ def test_append(self):
11331	+ # We should be able to append data to the middle of a mutable
11332	+ # file and get what we expect.
11333	+ new_data = self.data + "appended"
11334	+ d = self.mdmf_node.get_best_mutable_version()
11335	+ d.addCallback(lambda mv:
11336	+ mv.update(MutableData("appended"), len(self.data)))
11337	+ d.addCallback(lambda ignored:
11338	+ self.mdmf_node.download_best_version())
11339	+ d.addCallback(lambda results:
11340	+ self.failUnlessEqual(results, new_data))
11341	+ return d
11342	+ test_append.timeout = 15
11343	+
11344	+
11345	+ def test_replace(self):
11346	+ # We should be able to replace data in the middle of a mutable
11347	+ # file and get what we expect back.
11348	+ new_data = self.data[:100]
11349	+ new_data += "appended"
11350	+ new_data += self.data[108:]
11351	+ d = self.mdmf_node.get_best_mutable_version()
11352	+ d.addCallback(lambda mv:
11353	+ mv.update(MutableData("appended"), 100))
11354	+ d.addCallback(lambda ignored:
11355	+ self.mdmf_node.download_best_version())
11356	+ d.addCallback(lambda results:
11357	+ self.failUnlessEqual(results, new_data))
11358	+ return d
11359	+
11360	+
11361	+ def test_replace_and_extend(self):
11362	+ # We should be able to replace data in the middle of a mutable
11363	+ # file and extend that mutable file and get what we expect.
11364	+ new_data = self.data[:100]
11365	+ new_data += "modified " * 100000
11366	+ d = self.mdmf_node.get_best_mutable_version()
11367	+ d.addCallback(lambda mv:
11368	+ mv.update(MutableData("modified " * 100000), 100))
11369	+ d.addCallback(lambda ignored:
11370	+ self.mdmf_node.download_best_version())
11371	+ d.addCallback(lambda results:
11372	+ self.failUnlessEqual(results, new_data))
11373	+ return d
11374	+
11375	+
11376	+ def test_append_power_of_two(self):
11377	+ # If we attempt to extend a mutable file so that its segment
11378	+ # count crosses a power-of-two boundary, the update operation
11379	+ # should know how to reencode the file.
11380	+
11381	+ # Note that the data populating self.mdmf_node is about 900 KiB
11382	+ # long -- this is 7 segments in the default segment size. So we
11383	+ # need to add 2 segments worth of data to push it over a
11384	+ # power-of-two boundary.
11385	+ segment = "a" * DEFAULT_MAX_SEGMENT_SIZE
11386	+ new_data = self.data + (segment * 2)
11387	+ d = self.mdmf_node.get_best_mutable_version()
11388	+ d.addCallback(lambda mv:
11389	+ mv.update(MutableData(segment * 2), len(self.data)))
11390	+ d.addCallback(lambda ignored:
11391	+ self.mdmf_node.download_best_version())
11392	+ d.addCallback(lambda results:
11393	+ self.failUnlessEqual(results, new_data))
11394	+ return d
11395	+ test_append_power_of_two.timeout = 15
11396	+
11397	+
11398	+ def test_update_sdmf(self):
11399	+ # Running update on a single-segment file should still work.
11400	+ new_data = self.small_data + "appended"
11401	+ d = self.sdmf_node.get_best_mutable_version()
11402	+ d.addCallback(lambda mv:
11403	+ mv.update(MutableData("appended"), len(self.small_data)))
11404	+ d.addCallback(lambda ignored:
11405	+ self.sdmf_node.download_best_version())
11406	+ d.addCallback(lambda results:
11407	+ self.failUnlessEqual(results, new_data))
11408	+ return d
11409	+
11410	+ def test_replace_in_last_segment(self):
11411	+ # The wrapper should know how to handle the tail segment
11412	+ # appropriately.
11413	+ replace_offset = len(self.data) - 100
11414	+ new_data = self.data[:replace_offset] + "replaced"
11415	+ rest_offset = replace_offset + len("replaced")
11416	+ new_data += self.data[rest_offset:]
11417	+ d = self.mdmf_node.get_best_mutable_version()
11418	+ d.addCallback(lambda mv:
11419	+ mv.update(MutableData("replaced"), replace_offset))
11420	+ d.addCallback(lambda ignored:
11421	+ self.mdmf_node.download_best_version())
11422	+ d.addCallback(lambda results:
11423	+ self.failUnlessEqual(results, new_data))
11424	+ return d
11425	+
11426	+
11427	+ def test_multiple_segment_replace(self):
11428	+ replace_offset = 2 * DEFAULT_MAX_SEGMENT_SIZE
11429	+ new_data = self.data[:replace_offset]
11430	+ new_segment = "a" * DEFAULT_MAX_SEGMENT_SIZE
11431	+ new_data += 2 * new_segment
11432	+ new_data += "replaced"
11433	+ rest_offset = len(new_data)
11434	+ new_data += self.data[rest_offset:]
11435	+ d = self.mdmf_node.get_best_mutable_version()
11436	+ d.addCallback(lambda mv:
11437	+ mv.update(MutableData((2 * new_segment) + "replaced"),
11438	+ replace_offset))
11439	+ d.addCallback(lambda ignored:
11440	+ self.mdmf_node.download_best_version())
11441	+ d.addCallback(lambda results:
11442	+ self.failUnlessEqual(results, new_data))
11443	+ return d
11444	hunk ./src/allmydata/test/test_sftp.py 32
11445
11446	from allmydata.util.consumer import download_to_data
11447	from allmydata.immutable import upload
11448	+from allmydata.mutable import publish
11449	from allmydata.test.no_network import GridTestMixin
11450	from allmydata.test.common import ShouldFailMixin
11451	from allmydata.test.common_util import ReallyEqualMixin
11452	hunk ./src/allmydata/test/test_sftp.py 84
11453	return d
11454
11455	def _set_up_tree(self):
11456	- d = self.client.create_mutable_file("mutable file contents")
11457	+ u = publish.MutableData("mutable file contents")
11458	+ d = self.client.create_mutable_file(u)
11459	d.addCallback(lambda node: self.root.set_node(u"mutable", node))
11460	def _created_mutable(n):
11461	self.mutable = n
11462	hunk ./src/allmydata/test/test_sftp.py 1334
11463	d.addCallback(lambda ign: self.failUnlessEqual(sftpd.all_heisenfiles, {}))
11464	d.addCallback(lambda ign: self.failUnlessEqual(self.handler._heisenfiles, {}))
11465	return d
11466	+ test_makeDirectory.timeout = 15
11467
11468	def test_execCommand_and_openShell(self):
11469	class FakeProtocol:
11470	hunk ./src/allmydata/test/test_system.py 25
11471	from allmydata.monitor import Monitor
11472	from allmydata.mutable.common import NotWriteableError
11473	from allmydata.mutable import layout as mutable_layout
11474	+from allmydata.mutable.publish import MutableData
11475	from foolscap.api import DeadReferenceError
11476	from twisted.python.failure import Failure
11477	from twisted.web.client import getPage
11478	hunk ./src/allmydata/test/test_system.py 463
11479	def test_mutable(self):
11480	self.basedir = "system/SystemTest/test_mutable"
11481	DATA = "initial contents go here." # 25 bytes % 3 != 0
11482	+ DATA_uploadable = MutableData(DATA)
11483	NEWDATA = "new contents yay"
11484	hunk ./src/allmydata/test/test_system.py 465
11485	+ NEWDATA_uploadable = MutableData(NEWDATA)
11486	NEWERDATA = "this is getting old"
11487	hunk ./src/allmydata/test/test_system.py 467
11488	+ NEWERDATA_uploadable = MutableData(NEWERDATA)
11489
11490	d = self.set_up_nodes(use_key_generator=True)
11491
11492	hunk ./src/allmydata/test/test_system.py 474
11493	def _create_mutable(res):
11494	c = self.clients[0]
11495	log.msg("starting create_mutable_file")
11496	- d1 = c.create_mutable_file(DATA)
11497	+ d1 = c.create_mutable_file(DATA_uploadable)
11498	def _done(res):
11499	log.msg("DONE: %s" % (res,))
11500	self._mutable_node_1 = res
11501	hunk ./src/allmydata/test/test_system.py 561
11502	self.failUnlessEqual(res, DATA)
11503	# replace the data
11504	log.msg("starting replace1")
11505	- d1 = newnode.overwrite(NEWDATA)
11506	+ d1 = newnode.overwrite(NEWDATA_uploadable)
11507	d1.addCallback(lambda res: newnode.download_best_version())
11508	return d1
11509	d.addCallback(_check_download_3)
11510	hunk ./src/allmydata/test/test_system.py 575
11511	newnode2 = self.clients[3].create_node_from_uri(uri)
11512	self._newnode3 = self.clients[3].create_node_from_uri(uri)
11513	log.msg("starting replace2")
11514	- d1 = newnode1.overwrite(NEWERDATA)
11515	+ d1 = newnode1.overwrite(NEWERDATA_uploadable)
11516	d1.addCallback(lambda res: newnode2.download_best_version())
11517	return d1
11518	d.addCallback(_check_download_4)
11519	hunk ./src/allmydata/test/test_system.py 645
11520	def _check_empty_file(res):
11521	# make sure we can create empty files, this usually screws up the
11522	# segsize math
11523	- d1 = self.clients[2].create_mutable_file("")
11524	+ d1 = self.clients[2].create_mutable_file(MutableData(""))
11525	d1.addCallback(lambda newnode: newnode.download_best_version())
11526	d1.addCallback(lambda res: self.failUnlessEqual("", res))
11527	return d1
11528	hunk ./src/allmydata/test/test_system.py 676
11529	self.key_generator_svc.key_generator.pool_size + size_delta)
11530
11531	d.addCallback(check_kg_poolsize, 0)
11532	- d.addCallback(lambda junk: self.clients[3].create_mutable_file('hello, world'))
11533	+ d.addCallback(lambda junk:
11534	+ self.clients[3].create_mutable_file(MutableData('hello, world')))
11535	d.addCallback(check_kg_poolsize, -1)
11536	d.addCallback(lambda junk: self.clients[3].create_dirnode())
11537	d.addCallback(check_kg_poolsize, -2)
11538	hunk ./src/allmydata/test/test_web.py 750
11539	self.PUT, base + "/@@name=/blah.txt", "")
11540	return d
11541
11542	+
11543	def test_GET_DIRURL_named_bad(self):
11544	base = "/file/%s" % urllib.quote(self._foo_uri)
11545	d = self.shouldFail2(error.Error, "test_PUT_DIRURL_named_bad",
11546	hunk ./src/allmydata/test/test_web.py 898
11547	return d
11548
11549	def test_PUT_NEWFILEURL_mutable_toobig(self):
11550	- d = self.shouldFail2(error.Error, "test_PUT_NEWFILEURL_mutable_toobig",
11551	- "413 Request Entity Too Large",
11552	- "SDMF is limited to one segment, and 10001 > 10000",
11553	- self.PUT,
11554	- self.public_url + "/foo/new.txt?mutable=true",
11555	- "b" * (self.s.MUTABLE_SIZELIMIT+1))
11556	+ # It is okay to upload large mutable files, so we should be able
11557	+ # to do that.
11558	+ d = self.PUT(self.public_url + "/foo/new.txt?mutable=true",
11559	+ "b" * (self.s.MUTABLE_SIZELIMIT + 1))
11560	return d
11561
11562	def test_PUT_NEWFILEURL_replace(self):
11563	hunk ./src/allmydata/test/test_web.py 1684
11564	return d
11565
11566	def test_POST_upload_no_link_mutable_toobig(self):
11567	- d = self.shouldFail2(error.Error,
11568	- "test_POST_upload_no_link_mutable_toobig",
11569	- "413 Request Entity Too Large",
11570	- "SDMF is limited to one segment, and 10001 > 10000",
11571	- self.POST,
11572	- "/uri", t="upload", mutable="true",
11573	- file=("new.txt",
11574	- "b" * (self.s.MUTABLE_SIZELIMIT+1)) )
11575	+ # The SDMF size limit is no longer in place, so we should be
11576	+ # able to upload mutable files that are as large as we want them
11577	+ # to be.
11578	+ d = self.POST("/uri", t="upload", mutable="true",
11579	+ file=("new.txt", "b" * (self.s.MUTABLE_SIZELIMIT + 1)))
11580	return d
11581
11582	def test_POST_upload_mutable(self):
11583	hunk ./src/allmydata/test/test_web.py 1815
11584	self.failUnlessReallyEqual(headers["content-type"], ["text/plain"])
11585	d.addCallback(_got_headers)
11586
11587	- # make sure that size errors are displayed correctly for overwrite
11588	- d.addCallback(lambda res:
11589	- self.shouldFail2(error.Error,
11590	- "test_POST_upload_mutable-toobig",
11591	- "413 Request Entity Too Large",
11592	- "SDMF is limited to one segment, and 10001 > 10000",
11593	- self.POST,
11594	- self.public_url + "/foo", t="upload",
11595	- mutable="true",
11596	- file=("new.txt",
11597	- "b" * (self.s.MUTABLE_SIZELIMIT+1)),
11598	- ))
11599	-
11600	+ # make sure that outdated size limits aren't enforced anymore.
11601	+ d.addCallback(lambda ignored:
11602	+ self.POST(self.public_url + "/foo", t="upload",
11603	+ mutable="true",
11604	+ file=("new.txt",
11605	+ "b" * (self.s.MUTABLE_SIZELIMIT+1))))
11606	d.addErrback(self.dump_error)
11607	return d
11608
11609	hunk ./src/allmydata/test/test_web.py 1825
11610	def test_POST_upload_mutable_toobig(self):
11611	- d = self.shouldFail2(error.Error,
11612	- "test_POST_upload_mutable_toobig",
11613	- "413 Request Entity Too Large",
11614	- "SDMF is limited to one segment, and 10001 > 10000",
11615	- self.POST,
11616	- self.public_url + "/foo",
11617	- t="upload", mutable="true",
11618	- file=("new.txt",
11619	- "b" * (self.s.MUTABLE_SIZELIMIT+1)) )
11620	+ # SDMF had a size limti that was removed a while ago. MDMF has
11621	+ # never had a size limit. Test to make sure that we do not
11622	+ # encounter errors when trying to upload large mutable files,
11623	+ # since there should be no coded prohibitions regarding large
11624	+ # mutable files.
11625	+ d = self.POST(self.public_url + "/foo",
11626	+ t="upload", mutable="true",
11627	+ file=("new.txt", "b" * (self.s.MUTABLE_SIZELIMIT + 1)))
11628	return d
11629
11630	def dump_error(self, f):
11631	hunk ./src/allmydata/test/test_web.py 2956
11632	d.addCallback(_done)
11633	return d
11634
11635	+
11636	+ def test_PUT_update_at_offset(self):
11637	+ file_contents = "test file" * 100000 # about 900 KiB
11638	+ d = self.PUT("/uri?mutable=true", file_contents)
11639	+ def _then(filecap):
11640	+ self.filecap = filecap
11641	+ new_data = file_contents[:100]
11642	+ new = "replaced and so on"
11643	+ new_data += new
11644	+ new_data += file_contents[len(new_data):]
11645	+ assert len(new_data) == len(file_contents)
11646	+ self.new_data = new_data
11647	+ d.addCallback(_then)
11648	+ d.addCallback(lambda ignored:
11649	+ self.PUT("/uri/%s?replace=True&offset=100" % self.filecap,
11650	+ "replaced and so on"))
11651	+ def _get_data(filecap):
11652	+ n = self.s.create_node_from_uri(filecap)
11653	+ return n.download_best_version()
11654	+ d.addCallback(_get_data)
11655	+ d.addCallback(lambda results:
11656	+ self.failUnlessEqual(results, self.new_data))
11657	+ # Now try appending things to the file
11658	+ d.addCallback(lambda ignored:
11659	+ self.PUT("/uri/%s?offset=%d" % (self.filecap, len(self.new_data)),
11660	+ "puppies" * 100))
11661	+ d.addCallback(_get_data)
11662	+ d.addCallback(lambda results:
11663	+ self.failUnlessEqual(results, self.new_data + ("puppies" * 100)))
11664	+ return d
11665	+
11666	+
11667	+ def test_PUT_update_at_offset_immutable(self):
11668	+ file_contents = "Test file" * 100000
11669	+ d = self.PUT("/uri", file_contents)
11670	+ def _then(filecap):
11671	+ self.filecap = filecap
11672	+ d.addCallback(_then)
11673	+ d.addCallback(lambda ignored:
11674	+ self.shouldHTTPError("test immutable update",
11675	+ 400, "Bad Request",
11676	+ "immutable",
11677	+ self.PUT,
11678	+ "/uri/%s?offset=50" % self.filecap,
11679	+ "foo"))
11680	+ return d
11681	+
11682	+
11683	def test_bad_method(self):
11684	url = self.webish_url + self.public_url + "/foo/bar.txt"
11685	d = self.shouldHTTPError("test_bad_method",
11686	hunk ./src/allmydata/test/test_web.py 3257
11687	def _stash_mutable_uri(n, which):
11688	self.uris[which] = n.get_uri()
11689	assert isinstance(self.uris[which], str)
11690	- d.addCallback(lambda ign: c0.create_mutable_file(DATA+"3"))
11691	+ d.addCallback(lambda ign:
11692	+ c0.create_mutable_file(publish.MutableData(DATA+"3")))
11693	d.addCallback(_stash_mutable_uri, "corrupt")
11694	d.addCallback(lambda ign:
11695	c0.upload(upload.Data("literal", convergence="")))
11696	hunk ./src/allmydata/test/test_web.py 3404
11697	def _stash_mutable_uri(n, which):
11698	self.uris[which] = n.get_uri()
11699	assert isinstance(self.uris[which], str)
11700	- d.addCallback(lambda ign: c0.create_mutable_file(DATA+"3"))
11701	+ d.addCallback(lambda ign:
11702	+ c0.create_mutable_file(publish.MutableData(DATA+"3")))
11703	d.addCallback(_stash_mutable_uri, "corrupt")
11704
11705	def _compute_fileurls(ignored):
11706	hunk ./src/allmydata/test/test_web.py 4067
11707	def _stash_mutable_uri(n, which):
11708	self.uris[which] = n.get_uri()
11709	assert isinstance(self.uris[which], str)
11710	- d.addCallback(lambda ign: c0.create_mutable_file(DATA+"2"))
11711	+ d.addCallback(lambda ign:
11712	+ c0.create_mutable_file(publish.MutableData(DATA+"2")))
11713	d.addCallback(_stash_mutable_uri, "mutable")
11714
11715	def _compute_fileurls(ignored):
11716	hunk ./src/allmydata/test/test_web.py 4167
11717	convergence="")))
11718	d.addCallback(_stash_uri, "small")
11719
11720	- d.addCallback(lambda ign: c0.create_mutable_file("mutable"))
11721	+ d.addCallback(lambda ign:
11722	+ c0.create_mutable_file(publish.MutableData("mutable")))
11723	d.addCallback(lambda fn: self.rootnode.set_node(u"mutable", fn))
11724	d.addCallback(_stash_uri, "mutable")
11725
11726	}
11727
11728	Context:
11729
11730	[web download-status: tolerate DYHBs that haven't retired yet. Fixes #1160.
11731	Brian Warner <warner@lothar.com>**20100809225100
11732	Ignore-this: cb0add71adde0a2e24f4bcc00abf9938
11733
11734	Also add a better unit test for it.
11735	]
11736	[immutable/filenode.py: put off DownloadStatus creation until first read() call
11737	Brian Warner <warner@lothar.com>**20100809225055
11738	Ignore-this: 48564598f236eb73e96cd2d2a21a2445
11739
11740	This avoids spamming the "recent uploads and downloads" /status page from
11741	FileNode instances that were created for a directory read but which nobody is
11742	ever going to read from. I also cleaned up the way DownloadStatus instances
11743	are made to only ever do it in the CiphertextFileNode, not in the
11744	higher-level plaintext FileNode. Also fixed DownloadStatus handling of read
11745	size, thanks to David-Sarah for the catch.
11746	]
11747	[Share: hush log entries in the main loop() after the fetch has been completed.
11748	Brian Warner <warner@lothar.com>**20100809204359
11749	Ignore-this: 72b9e262980edf5a967873ebbe1e9479
11750	]
11751	[test_runner.py: correct and simplify normalization of package directory for case-insensitive filesystems.
11752	david-sarah@jacaranda.org**20100808185005
11753	Ignore-this: fba96e967d4e7f33f301c7d56b577de
11754	]
11755	[test_runner.py: make test_path work for test-from-installdir.
11756	david-sarah@jacaranda.org**20100808171340
11757	Ignore-this: 46328d769ae6ec8d191c3cddacc91dc9
11758	]
11759	[src/allmydata/__init__.py: make the package paths more accurate when we fail to get them from setuptools.
11760	david-sarah@jacaranda.org**20100808171235
11761	Ignore-this: 8d534d2764d64f7434880bd70696cd75
11762	]
11763	[test_runner.py: another try at calculating the rootdir correctly for test-from-egg and test-from-prefixdir.
11764	david-sarah@jacaranda.org**20100808154307
11765	Ignore-this: 66737313935f2a0313d1de9b2ed68d0
11766	]
11767	[test_runner.py: calculate the location of bin/tahoe correctly for test-from-prefixdir (by copying code from misc/build_helpers/run_trial.py). Also fix the false-positive check for Unicode paths in test_the_right_code, which was causing skips that should have been failures.
11768	david-sarah@jacaranda.org**20100808042817
11769	Ignore-this: 1b7dfff07cbfb1a74f94141b18da2c3f
11770	]
11771	[TAG allmydata-tahoe-1.8.0c1
11772	david-sarah@jacaranda.org**20100807004546
11773	Ignore-this: 484ff2513774f3b48ca49c992e878b89
11774	]
11775	[how_to_make_a_tahoe-lafs_release.txt: add step to check that release will report itself as the intended version.
11776	david-sarah@jacaranda.org**20100807004254
11777	Ignore-this: 7709322e883f4118f38c7f042f5a9a2
11778	]
11779	[relnotes.txt: 1.8.0c1 release
11780	david-sarah@jacaranda.org**20100807003646
11781	Ignore-this: 1994ffcaf55089eb05e96c23c037dfee
11782	]
11783	[NEWS, quickstart.html and known_issues.txt for 1.8.0c1 release.
11784	david-sarah@jacaranda.org**20100806235111
11785	Ignore-this: 777cea943685cf2d48b6147a7648fca0
11786	]
11787	[TAG allmydata-tahoe-1.8.0rc1
11788	warner@lothar.com**20100806080450]
11789	[update NEWS and other docs in preparation for 1.8.0rc1
11790	Brian Warner <warner@lothar.com>**20100806080228
11791	Ignore-this: 6ebdf11806f6dfbfde0b61115421a459
11792
11793	in particular, merge the various 1.8.0b1/b2 sections, and remove the
11794	datestamp. NEWS gets updated just before a release, doesn't need to precisely
11795	describe pre-release candidates, and the datestamp gets updated just before
11796	the final release is tagged
11797
11798	Also, I removed the BOM from some files. My toolchain made it hard to retain,
11799	and BOMs in UTF-8 don't make a whole lot of sense anyway. Sorry if that
11800	messes anything up.
11801	]
11802	[downloader.Segmentation: unregisterProducer when asked to stopProducing, this
11803	Brian Warner <warner@lothar.com>**20100806070705
11804	Ignore-this: a0a71dcf83df8a6f727deb9a61fa4fdf
11805	seems to avoid the #1155 log message which reveals the URI (and filecap).
11806
11807	Also add an [ERROR] marker to the flog entry, since unregisterProducer also
11808	makes interrupted downloads appear "200 OK"; this makes it more obvious that
11809	the download did not complete.
11810	]
11811	[TAG allmydata-tahoe-1.8.0b2
11812	david-sarah@jacaranda.org**20100806052415
11813	Ignore-this: 2c1af8df5e25a6ebd90a32b49b8486dc
11814	]
11815	[relnotes.txt and docs/known_issues.txt for 1.8.0beta2.
11816	david-sarah@jacaranda.org**20100806040823
11817	Ignore-this: 862ad55d93ee37259ded9e2c9da78eb9
11818	]
11819	[test_util.py: use SHA-256 from pycryptopp instead of MD5 from hashlib (for uses in which any hash will do), since hashlib was only added to the stdlib in Python 2.5.
11820	david-sarah@jacaranda.org**20100806050051
11821	Ignore-this: 552049b5d190a5ca775a8240030dbe3f
11822	]
11823	[test_runner.py: increase timeout to cater for Francois' ARM buildslave.
11824	david-sarah@jacaranda.org**20100806042601
11825	Ignore-this: 6ee618cf00ac1c99cb7ddb60fd7ef078
11826	]
11827	[test_util.py: remove use of 'a if p else b' syntax that requires Python 2.5.
11828	david-sarah@jacaranda.org**20100806041616
11829	Ignore-this: 5fecba9aa530ef352797fcfa70d5c592
11830	]
11831	[NEWS and docs/quickstart.html for 1.8.0beta2.
11832	david-sarah@jacaranda.org**20100806035112
11833	Ignore-this: 3a593cfdc2ae265da8f64c6c8aebae4
11834	]
11835	[docs/quickstart.html: remove link to tahoe-lafs-ticket798-1.8.0b.zip, due to appname regression. refs #1159
11836	david-sarah@jacaranda.org**20100806002435
11837	Ignore-this: bad61b30cdcc3d93b4165d5800047b85
11838	]
11839	[test_download.DownloadTest.test_simultaneous_goodguess: enable some disabled
11840	Brian Warner <warner@lothar.com>**20100805185507
11841	Ignore-this: ac53d44643805412238ccbfae920d20c
11842	checks that used to fail but work now.
11843	]
11844	[DownloadNode: fix lost-progress in fetch_failed, tolerate cancel when no segment-fetch is active. Fixes #1154.
11845	Brian Warner <warner@lothar.com>**20100805185507
11846	Ignore-this: 35fd36b273b21b6dca12ab3d11ee7d2d
11847
11848	The lost-progress bug occurred when two simultanous read() calls fetched
11849	different segments, and the first one failed (due to corruption, or the other
11850	bugs in #1154): the second read() would never complete. While in this state,
11851	cancelling the second read by having its consumer call stopProducing) would
11852	trigger the cancel-intolerance bug. Finally, in downloader.node.Cancel,
11853	prevent late cancels by adding an 'active' flag
11854	]
11855	[util/spans.py: __nonzero__ cannot return a long either. for #1154
11856	Brian Warner <warner@lothar.com>**20100805185507
11857	Ignore-this: 6f87fead8252e7a820bffee74a1c51a2
11858	]
11859	[test_storage.py: change skip note for test_large_share to say that Windows doesn't support sparse files. refs #569
11860	david-sarah@jacaranda.org**20100805022612
11861	Ignore-this: 85c807a536dc4eeb8bf14980028bb05b
11862	]
11863	[One fix for bug #1154: webapi GETs with a 'Range' header broke new-downloader.
11864	Brian Warner <warner@lothar.com>**20100804184549
11865	Ignore-this: ffa3e703093a905b416af125a7923b7b
11866
11867	The Range header causes n.read() to be called with an offset= of type 'long',
11868	which eventually got used in a Spans/DataSpans object's __len__ method.
11869	Apparently python doesn't permit __len__() to return longs, only ints.
11870	Rewrote Spans/DataSpans to use s.len() instead of len(s) aka s.__len__() .
11871	Added a test in test_download. Note that test_web didn't catch this because
11872	it uses mock FileNodes for speed: it's probably time to rewrite that.
11873
11874	There is still an unresolved error-recovery problem in #1154, so I'm not
11875	closing the ticket quite yet.
11876	]
11877	[test_download: minor cleanup
11878	Brian Warner <warner@lothar.com>**20100804175555
11879	Ignore-this: f4aec3c77f6a0d7f7b2c07f302755cc1
11880	]
11881	[fetcher.py: improve comments
11882	Brian Warner <warner@lothar.com>**20100804072814
11883	Ignore-this: 8bf74c21aef55cf0b0642e55ee4e7c5f
11884	]
11885	[lazily create DownloadNode upon first read()/get_segment()
11886	Brian Warner <warner@lothar.com>**20100804072808
11887	Ignore-this: 4bb1c49290cefac1dadd9d42fac46ba2
11888	]
11889	[test_hung_server: update comments, remove dead "stage_4_d" code
11890	Brian Warner <warner@lothar.com>**20100804072800
11891	Ignore-this: 4d18b374b568237603466f93346d00db
11892	]
11893	[copy the rest of David-Sarah's changes to make my tree match 1.8.0beta
11894	Brian Warner <warner@lothar.com>**20100804072752
11895	Ignore-this: 9ac7f21c9b27e53452371096146be5bb
11896	]
11897	[ShareFinder: add 10s OVERDUE timer, send new requests to replace overdue ones
11898	Brian Warner <warner@lothar.com>**20100804072741
11899	Ignore-this: 7fa674edbf239101b79b341bb2944349
11900
11901	The fixed 10-second timer will eventually be replaced with a per-server
11902	value, calculated based on observed response times.
11903
11904	test_hung_server.py: enhance to exercise DYHB=OVERDUE state. Split existing
11905	mutable+immutable tests into two pieces for clarity. Reenabled several tests.
11906	Deleted the now-obsolete "test_failover_during_stage_4".
11907	]
11908	[Rewrite immutable downloader (#798). This patch adds and updates unit tests.
11909	Brian Warner <warner@lothar.com>**20100804072710
11910	Ignore-this: c3c838e124d67b39edaa39e002c653e1
11911	]
11912	[Rewrite immutable downloader (#798). This patch includes higher-level
11913	Brian Warner <warner@lothar.com>**20100804072702
11914	Ignore-this: 40901ddb07d73505cb58d06d9bff73d9
11915	integration into the NodeMaker, and updates the web-status display to handle
11916	the new download events.
11917	]
11918	[Rewrite immutable downloader (#798). This patch rearranges the rest of src/allmydata/immutable/ .
11919	Brian Warner <warner@lothar.com>**20100804072639
11920	Ignore-this: 302b1427a39985bfd11ccc14a1199ea4
11921	]
11922	[Rewrite immutable downloader (#798). This patch adds the new downloader itself.
11923	Brian Warner <warner@lothar.com>**20100804072629
11924	Ignore-this: e9102460798123dd55ddca7653f4fc16
11925	]
11926	[util/observer.py: add EventStreamObserver
11927	Brian Warner <warner@lothar.com>**20100804072612
11928	Ignore-this: fb9d205f34a6db7580b9be33414dfe21
11929	]
11930	[Add a byte-spans utility class, like perl's Set::IntSpan for .newsrc files.
11931	Brian Warner <warner@lothar.com>**20100804072600
11932	Ignore-this: bbad42104aeb2f26b8dd0779de546128
11933	Also a data-spans class, which records a byte (instead of a bit) for each
11934	index.
11935	]
11936	[check-umids: oops, forgot to add the tool
11937	Brian Warner <warner@lothar.com>**20100804071713
11938	Ignore-this: bbeb74d075414f3713fabbdf66189faf
11939	]
11940	[coverage tools: ignore errors, display lines-uncovered in elisp mode. Fix Makefile paths.
11941	"Brian Warner <warner@lothar.com>"**20100804071131]
11942	[check-umids: new tool to check uniqueness of umids
11943	"Brian Warner <warner@lothar.com>"**20100804071042]
11944	[misc/simulators/sizes.py: update, we now use SHA256 (not SHA1), so large-file overhead grows to 0.5%
11945	"Brian Warner <warner@lothar.com>"**20100804070942]
11946	[storage-overhead: try to fix, probably still broken
11947	"Brian Warner <warner@lothar.com>"**20100804070815]
11948	[docs/quickstart.html: link to 1.8.0beta zip, and note 'bin\tahoe' on Windows.
11949	david-sarah@jacaranda.org**20100803233254
11950	Ignore-this: 3c11f249efc42a588e3a7056349739ed
11951	]
11952	[docs: relnotes.txt for 1.8.0β
11953	zooko@zooko.com**20100803154913
11954	Ignore-this: d9101f72572b18da3cfac3c0e272c907
11955	]
11956	[test_storage.py: avoid spurious test failure by accepting either 'Next crawl in 59 minutes' or 'Next crawl in 60 minutes'. fixes #1140
11957	david-sarah@jacaranda.org**20100803102058
11958	Ignore-this: aa2419fc295727e4fbccec3c7b780e76
11959	]
11960	[misc/build_helpers/show-tool-versions.py: get sys.std{out,err}.encoding and 'as' version correctly, and improve formatting.
11961	david-sarah@jacaranda.org**20100803101128
11962	Ignore-this: 4fd2907d86da58eb220e104010e9c6a
11963	]
11964	[misc/build_helpers/show-tool-versions.py: avoid error message when 'as -version' does not create a.out.
11965	david-sarah@jacaranda.org**20100803094812
11966	Ignore-this: 38fc2d639f30b4e123b9551e6931998d
11967	]
11968	[CLI: further improve consistency of basedir options and add tests. addresses #118
11969	david-sarah@jacaranda.org**20100803085416
11970	Ignore-this: d8f8f55738abb5ea44ed4cf24d750efe
11971	]
11972	[CLI: make the synopsis for 'tahoe unlink' say unlink instead of rm.
11973	david-sarah@jacaranda.org**20100803085359
11974	Ignore-this: c35d3f99f906dfab61df8f5e81a42c92
11975	]
11976	[CLI: make all of the option descriptions imperative sentences.
11977	david-sarah@jacaranda.org**20100803084801
11978	Ignore-this: ec80c7d2a10c6452d190fee4e1a60739
11979	]
11980	[test_cli.py: make 'tahoe mkdir' tests slightly less dumb (check for 'URI:' in the output).
11981	david-sarah@jacaranda.org**20100803084720
11982	Ignore-this: 31a4ae4fb5f7c123bc6b6e36a9e3911e
11983	]
11984	[test_cli.py: use u-escapes instead of UTF-8.
11985	david-sarah@jacaranda.org**20100803083538
11986	Ignore-this: a48af66942defe8491c6e1811c7809b5
11987	]
11988	[NEWS: remove XXX comment and separate description of #890.
11989	david-sarah@jacaranda.org**20100803050827
11990	Ignore-this: 6d308f34dc9d929d3d0811f7a1f5c786
11991	]
11992	[docs: more updates to NEWS for 1.8.0β
11993	zooko@zooko.com**20100803044618
11994	Ignore-this: 8193a1be38effe2bdcc632fdb570e9fc
11995	]
11996	[docs: incomplete beginnings of a NEWS update for v1.8β
11997	zooko@zooko.com**20100802072840
11998	Ignore-this: cb00fcd4f1e0eaed8c8341014a2ba4d4
11999	]
12000	[docs/quickstart.html: extra step to open a new Command Prompt or log out/in on Windows.
12001	david-sarah@jacaranda.org**20100803004938
12002	Ignore-this: 1334a2cd01f77e0c9eddaeccfeff2370
12003	]
12004	[update bundled zetuptools with doc changes, change to script setup for Windows XP, and to have the 'develop' command run script setup.
12005	david-sarah@jacaranda.org**20100803003815
12006	Ignore-this: 73c86e154f4d3f7cc9855eb31a20b1ed
12007	]
12008	[bundled setuptools/command/scriptsetup.py: use SendMessageTimeoutW, to test whether that broadcasts environment changes any better.
12009	david-sarah@jacaranda.org**20100802224505
12010	Ignore-this: 7788f7c2f9355e7852a376ec94182056
12011	]
12012	[bundled zetuptoolz: add missing setuptools/command/scriptsetup.py
12013	david-sarah@jacaranda.org**20100802072129
12014	Ignore-this: 794b1c411f6cdec76eeb716223a55d0
12015	]
12016	[test_runner.py: add test_run_with_python_options, which checks that the Windows script changes haven't broken 'python <options> bin/tahoe'.
12017	david-sarah@jacaranda.org**20100802062558
12018	Ignore-this: 812a2ccb7d9c7a8e01d5ca04d875aba5
12019	]
12020	[test_runner.py: fix missing import of get_filesystem_encoding
12021	david-sarah@jacaranda.org**20100802060902
12022	Ignore-this: 2e9e439b7feb01e0c3c94b54e802503b
12023	]
12024	[Bundle setuptools-0.6c16dev (with Windows script changes, and the change to only warn if site.py wasn't generated by setuptools) instead of 0.6c15dev. addresses #565, #1073, #1074
12025	david-sarah@jacaranda.org**20100802060602
12026	Ignore-this: 34ee2735e49e2c05b57e353d48f83050
12027	]
12028	[.darcs-boringfile: changes needed to take account of egg directories being bundled. Also, make _trial_temp a prefix rather than exact match.
12029	david-sarah@jacaranda.org**20100802050313
12030	Ignore-this: 8de6a8dbaba014ba88dec6c792fc5a9d
12031	]
12032	[.darcs-boringfile: changes needed to take account of pyscript wrappers on Windows.
12033	david-sarah@jacaranda.org**20100802050128
12034	Ignore-this: 7366b631e2095166696e6da5765d9180
12035	]
12036	[misc/build_helpers/run_trial.py: check that the root from which the module we are testing was loaded is the current directory. This version of the patch folds in later fixes to the logic for caculating the directories to compare, and improvements to error messages. addresses #1137
12037	david-sarah@jacaranda.org**20100802045535
12038	Ignore-this: 9d3c1447f0539c6308127413098eb646
12039	]
12040	[Skip option arguments to the python interpreter when reconstructing Unicode argv on Windows.
12041	david-sarah@jacaranda.org**20100728062731
12042	Ignore-this: 2b17fc43860bcc02a66bb6e5e050ea7c
12043	]
12044	[windows/fixups.py: improve comments and reference some relevant Python bugs.
12045	david-sarah@jacaranda.org**20100727181921
12046	Ignore-this: 32e61cf98dfc2e3dac60b750dda6429b
12047	]
12048	[windows/fixups.py: make errors reported to original_stderr have enough information to debug even if we can't see the traceback.
12049	david-sarah@jacaranda.org**20100726221904
12050	Ignore-this: e30b4629a7aa5d71554237c7e809c080
12051	]
12052	[windows/fixups.py: fix paste-o in name of Unicode stderr wrapper.
12053	david-sarah@jacaranda.org**20100726214736
12054	Ignore-this: cb220931f1683eb53b0c7269e18a38be
12055	]
12056	[windows/fixups.py: Don't rely on buggy MSVCRT library for Unicode output, use the Win32 API instead. This should make it work on XP. Also, change how we handle the case where sys.stdout and sys.stderr are redirected, since the .encoding attribute isn't necessarily writeable.
12057	david-sarah@jacaranda.org**20100726045019
12058	Ignore-this: 69267abc5065cbd5b86ca71fe4921fb6
12059	]
12060	[test_runner.py: change to code for locating the bin/tahoe script that was missed when rebasing the patch for #1074.
12061	david-sarah@jacaranda.org**20100725182008
12062	Ignore-this: d891a93989ecc3f4301a17110c3d196c
12063	]
12064	[Add missing windows/fixups.py (for setting up Unicode args and output on Windows).
12065	david-sarah@jacaranda.org**20100725092849
12066	Ignore-this: 35a1e8aeb4e1dea6e81433bf0825a6f6
12067	]
12068	[Changes to Tahoe needed to work with new zetuptoolz (that does not use .exe wrappers on Windows), and to support Unicode arguments and stdout/stderr -- v5
12069	david-sarah@jacaranda.org**20100725083216
12070	Ignore-this: 5041a634b1328f041130658233f6a7ce
12071	]
12072	[scripts/common.py: fix an error introduced when rebasing to the ticket798 branch, which caused base directories to be duplicated in self.basedirs.
12073	david-sarah@jacaranda.org**20100802064929
12074	Ignore-this: 116fd437d1f91a647879fe8d9510f513
12075	]
12076	[Basedir/node directory option improvements for ticket798 branch. addresses #188, #706, #715, #772, #890
12077	david-sarah@jacaranda.org**20100802043004
12078	Ignore-this: d19fc24349afa19833406518595bfdf7
12079	]
12080	[scripts/create_node.py: allow nickname to be Unicode. Also ensure webport is validly encoded in config file.
12081	david-sarah@jacaranda.org**20100802000212
12082	Ignore-this: fb236169280507dd1b3b70d459155f6e
12083	]
12084	[test_runner.py: Fix error in message arguments to 'fail' calls.
12085	david-sarah@jacaranda.org**20100802013526
12086	Ignore-this: 3bfdef19ae3cf993194811367da5d020
12087	]
12088	[Additional Unicode basedir changes for ticket798 branch.
12089	david-sarah@jacaranda.org**20100802010552
12090	Ignore-this: 7090d8c6b04eb6275345a55e75142028
12091	]
12092	[Unicode basedir changes for ticket798 branch.
12093	david-sarah@jacaranda.org**20100801235310
12094	Ignore-this: a00717eaeae8650847b5395801e04c45
12095	]
12096	[fileutil: change WindowsError to OSError in abspath_expanduser_unicode, because WindowsError might not exist.
12097	david-sarah@jacaranda.org**20100725222603
12098	Ignore-this: e125d503670ed049a9ade0322faa0c51
12099	]
12100	[test_system: correct a failure in _test_runner caused by Unicode basedir patch on non-Unicode platforms.
12101	david-sarah@jacaranda.org**20100724032123
12102	Ignore-this: 399b3953104fdd1bbed3f7564d163553
12103	]
12104	[Fix test failures due to Unicode basedir patches.
12105	david-sarah@jacaranda.org**20100725010318
12106	Ignore-this: fe92cd439eb3e60a56c007ae452784ed
12107	]
12108	[util.encodingutil: change quote_output to do less unnecessary escaping, and to use double-quotes more consistently when needed. This version avoids u-escaping for characters that are representable in the output encoding, when double quotes are used, and includes tests. fixes #1135
12109	david-sarah@jacaranda.org**20100723075314
12110	Ignore-this: b82205834d17db61612dd16436b7c5a2
12111	]
12112	[Replace uses of os.path.abspath with abspath_expanduser_unicode where necessary. This makes basedir paths consistently represented as Unicode.
12113	david-sarah@jacaranda.org**20100722001418
12114	Ignore-this: 9f8cb706540e695550e0dbe303c01f52
12115	]
12116	[util.fileutil, test.test_util: add abspath_expanduser_unicode function, to work around <http://bugs.python.org/issue3426>. util.encodingutil: add a convenience function argv_to_abspath.
12117	david-sarah@jacaranda.org**20100721231507
12118	Ignore-this: eee6904d1f65a733ff35190879844d08
12119	]
12120	[setup: increase requirement on foolscap from >= 0.4.1 to >= 0.5.1 to avoid the foolscap performance bug with transferring large mutable files
12121	zooko@zooko.com**20100802071748
12122	Ignore-this: 53b5b8571ebfee48e6b11e3f3a5efdb7
12123	]
12124	[upload: tidy up logging messages
12125	zooko@zooko.com**20100802070212
12126	Ignore-this: b3532518326f6d808d085da52c14b661
12127	reformat code to be less than 100 chars wide, refactor formatting of logging messages, add log levels to some logging messages, M-x whitespace-cleanup
12128	]
12129	[tests: remove debug print
12130	zooko@zooko.com**20100802063339
12131	Ignore-this: b13b8c15e946556bffca9d7ad7c890f5
12132	]
12133	[docs: update the list of forums to announce Tahoe-LAFS too, add empty checkboxes
12134	zooko@zooko.com**20100802063314
12135	Ignore-this: 89d0e8bd43f1749a9e85fcee2205bb04
12136	]
12137	[immutable: tidy-up some code by using a set instead of list to hold homeless_shares
12138	zooko@zooko.com**20100802062004
12139	Ignore-this: a70bda3cf6c48ab0f0688756b015cf8d
12140	]
12141	[setup: fix a couple instances of hard-coded 'allmydata-tahoe' in the scripts, tighten the tests (as suggested by David-Sarah)
12142	zooko@zooko.com**20100801164207
12143	Ignore-this: 50265b562193a9a3797293123ed8ba5c
12144	]
12145	[setup: replace hardcoded 'allmydata-tahoe' with allmydata.__appname__
12146	zooko@zooko.com**20100801160517
12147	Ignore-this: 55e1a98515300d228f02df10975f7ba
12148	]
12149	[NEWS: describe #1055
12150	zooko@zooko.com**20100801034338
12151	Ignore-this: 3a16cfa387c2b245c610ea1d1ad8d7f1
12152	]
12153	[immutable: use PrefixingLogMixin to organize logging in Tahoe2PeerSelector and add more detailed messages about peer
12154	zooko@zooko.com**20100719082000
12155	Ignore-this: e034c4988b327f7e138a106d913a3082
12156	]
12157	[benchmarking: update bench_dirnode to be correct and use the shiniest new pyutil.benchutil features concerning what units you measure in
12158	zooko@zooko.com**20100719044948
12159	Ignore-this: b72059e4ff921741b490e6b47ec687c6
12160	]
12161	[trivial: rename and add in-line doc to clarify "used_peers" => "upload_servers"
12162	zooko@zooko.com**20100719044744
12163	Ignore-this: 93c42081676e0dea181e55187cfc506d
12164	]
12165	[abbreviate time edge case python2.5 unit test
12166	jacob.lyles@gmail.com**20100729210638
12167	Ignore-this: 80f9b1dc98ee768372a50be7d0ef66af
12168	]
12169	[docs: add Jacob Lyles to CREDITS
12170	zooko@zooko.com**20100730230500
12171	Ignore-this: 9dbbd6a591b4b1a5a8dcb69b7b757792
12172	]
12173	[web: don't use %d formatting on a potentially large negative float -- there is a bug in Python 2.5 in that case
12174	jacob.lyles@gmail.com**20100730220550
12175	Ignore-this: 7080eb4bddbcce29cba5447f8f4872ee
12176	fixes #1055
12177	]
12178	[test_upload.py: rename test_problem_layout_ticket1124 to test_problem_layout_ticket_1124 -- fix .todo reference.
12179	david-sarah@jacaranda.org**20100729152927
12180	Ignore-this: c8fe1047edcc83c87b9feb47f4aa587b
12181	]
12182	[test_upload.py: rename test_problem_layout_ticket1124 to test_problem_layout_ticket_1124 for consistency.
12183	david-sarah@jacaranda.org**20100729142250
12184	Ignore-this: bc3aad5919ae9079ceb9968ad0f5ea5a
12185	]
12186	[docs: fix licensing typo that was earlier fixed in [20090921164651-92b7f-7f97b58101d93dc588445c52a9aaa56a2c7ae336]
12187	zooko@zooko.com**20100729052923
12188	Ignore-this: a975d79115911688e5469d4d869e1664
12189	I wish we didn't copies of this licensing text in several different files so that changes can be accidentally omitted from some of them.
12190	]
12191	[misc/build_helpers/run-with-pythonpath.py: fix stale comment, and remove 'trial' example that is not the right way to run trial.
12192	david-sarah@jacaranda.org**20100726225729
12193	Ignore-this: a61f55557ad69a1633bfb2b8172cce97
12194	]
12195	[docs/specifications/dirnodes.txt: 'mesh'->'grid'.
12196	david-sarah@jacaranda.org**20100723061616
12197	Ignore-this: 887bcf921ef00afba8e05e9239035bca
12198	]
12199	[docs/specifications/dirnodes.txt: bring layer terminology up-to-date with architecture.txt, and a few other updates (e.g. note that the MAC is no longer verified, and that URIs can be unknown). Also 'Tahoe'->'Tahoe-LAFS'.
12200	david-sarah@jacaranda.org**20100723054703
12201	Ignore-this: f3b98183e7d0a0f391225b8b93ac6c37
12202	]
12203	[docs: use current cap to Zooko's wiki page in example text
12204	zooko@zooko.com**20100721010543
12205	Ignore-this: 4f36f36758f9fdbaf9eb73eac23b6652
12206	fixes #1134
12207	]
12208	[__init__.py: silence DeprecationWarning about BaseException.message globally. fixes #1129
12209	david-sarah@jacaranda.org**20100720011939
12210	Ignore-this: 38808986ba79cb2786b010504a22f89
12211	]
12212	[test_runner: test that 'tahoe --version' outputs no noise (e.g. DeprecationWarnings).
12213	david-sarah@jacaranda.org**20100720011345
12214	Ignore-this: dd358b7b2e5d57282cbe133e8069702e
12215	]
12216	[TAG allmydata-tahoe-1.7.1
12217	zooko@zooko.com**20100719131352
12218	Ignore-this: 6942056548433dc653a746703819ad8c
12219	]
12220	Patch bundle hash:
12221	e3eaf598156bdd1dfd5781bdd809824062927a30

Download in other formats:

Original Format