reader: track index chunks and limit access

author Fabian Grünbichler <f.gruenbichler@proxmox.com>

Fri, 9 Oct 2020 09:21:01 +0000 (11:21 +0200)

committer Dietmar Maurer <dietmar@proxmox.com>

Fri, 9 Oct 2020 10:54:09 +0000 (12:54 +0200)
author Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fri, 9 Oct 2020 09:21:01 +0000 (11:21 +0200)
committer Dietmar Maurer <dietmar@proxmox.com>
Fri, 9 Oct 2020 10:54:09 +0000 (12:54 +0200)
diff --git a/src/api2/reader.rs b/src/api2/reader.rs

index 0dd45940b6ea85c45bf74a9050c00769a7efba86..5bdd81b72e98bb08934207091218763661ec87d5 100644 (file)
--- a/src/api2/reader.rs
+++ b/src/api2/reader.rs
@@ -194,6 +194,27 @@ fn download_file(
          path.push(&file_name);
  
          env.log(format!("download {:?}", path.clone()));
+ 
+        let index: Option<Box<dyn IndexFile + Send>> = match archive_type(&file_name)? {
+            ArchiveType::FixedIndex => {
+                let index = env.datastore.open_fixed_reader(&path)?;
+                Some(Box::new(index))
+            }
+            ArchiveType::DynamicIndex => {
+                let index = env.datastore.open_dynamic_reader(&path)?;
+                Some(Box::new(index))
+            }
+            _ => { None }
+        };
+
+        if let Some(index) = index {
+            env.log(format!("register chunks in '{}' as downloadable.", file_name));
+
+            for pos in 0..index.index_count() {
+                let info = index.chunk_info(pos).unwrap();
+                env.register_chunk(info.digest);
+            }
+        }
  
          helpers::create_download_response(path).await
      }.boxed()
@@ -224,6 +245,11 @@ fn download_chunk(
          let digest_str = tools::required_string_param(&param, "digest")?;
          let digest = proxmox::tools::hex_to_digest(digest_str)?;
  
+        if !env.check_chunk_access(digest) {
+            env.log(format!("attempted to download chunk {} which is not in registered chunk list", digest_str));
+            return Err(http_err!(UNAUTHORIZED, "download chunk {} not allowed", digest_str));
+        }
+
          let (path, _) = env.datastore.chunk_path(&digest);
          let path2 = path.clone();
  
diff --git a/src/api2/reader/environment.rs b/src/api2/reader/environment.rs

index 87bd5747b6ebfd5782ace9a6026cddb88ce2e3de..4c7db36f3db382bd8917867815727299d442a720 100644 (file)
--- a/src/api2/reader/environment.rs
+++ b/src/api2/reader/environment.rs
@@ -1,5 +1,5 @@
-//use anyhow::{bail, format_err, Error};
-use std::sync::Arc;
+use std::sync::{Arc,RwLock};
+use std::collections::HashSet;
  
  use serde_json::{json, Value};
  
@@ -23,7 +23,7 @@ pub struct ReaderEnvironment {
      pub worker: Arc<WorkerTask>,
      pub datastore: Arc<DataStore>,
      pub backup_dir: BackupDir,
-    // state: Arc<Mutex<SharedBackupState>>
+    allowed_chunks: Arc<RwLock<HashSet<[u8;32]>>>,
  }
  
  impl ReaderEnvironment {
@@ -45,7 +45,7 @@ impl ReaderEnvironment {
              debug: false,
              formatter: &JSON_FORMATTER,
              backup_dir,
-            //state: Arc::new(Mutex::new(state)),
+            allowed_chunks: Arc::new(RwLock::new(HashSet::new())),
          }
      }
  
@@ -57,6 +57,15 @@ impl ReaderEnvironment {
          if self.debug { self.worker.log(msg); }
      }
  
+
+    pub fn register_chunk(&self, digest: [u8;32]) {
+        let mut allowed_chunks = self.allowed_chunks.write().unwrap();
+        allowed_chunks.insert(digest);
+    }
+
+    pub fn check_chunk_access(&self, digest: [u8;32]) -> bool {
+       self.allowed_chunks.read().unwrap().contains(&digest)
+    }
  }
  
  impl RpcEnvironment for ReaderEnvironment {
author	Fabian Grünbichler <f.gruenbichler@proxmox.com>
	Fri, 9 Oct 2020 09:21:01 +0000 (11:21 +0200)
committer	Dietmar Maurer <dietmar@proxmox.com>
	Fri, 9 Oct 2020 10:54:09 +0000 (12:54 +0200)
src/api2/reader.rs		patch \| blob \| blame \| history
src/api2/reader/environment.rs		patch \| blob \| blame \| history