feat(Storage): Enable full object checksum validation for resumable uploads

Author: mahendra-google

apis/Google.Cloud.Storage.V1/Google.Cloud.Storage.V1.IntegrationTests/UploadObjectTest.cs

@@ -264,10 +264,8 @@ public void UploadObject_InvalidHash_None()
             var name = IdGenerator.FromGuid();
             var bucket = _fixture.MultiVersionBucket;
             var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.None };
-            // Upload succeeds despite the data being broken.
-            client.UploadObject(bucket, name, null, stream, options);
-            // The object should contain our "wrong" bytes.
-            ValidateData(bucket, name, new MemoryStream(interceptor.UploadedBytes));
+            var exception = Assert.Throws<GoogleApiException>(() => client.UploadObject(bucket, name, null, stream, options));
+            Assert.Equal(HttpStatusCode.BadRequest, exception.HttpStatusCode);
         }
 
         [Fact]
@@ -280,9 +278,8 @@ public void UploadObject_InvalidHash_ThrowOnly()
             var name = IdGenerator.FromGuid();
             var bucket = _fixture.MultiVersionBucket;
             var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.ThrowOnly };
-            Assert.Throws<UploadValidationException>(() => client.UploadObject(bucket, name, null, stream, options));
-            // We don't delete the object, so it's still present.
-            ValidateData(bucket, name, new MemoryStream(interceptor.UploadedBytes));
+            var exception = Assert.Throws<GoogleApiException>(() => client.UploadObject(bucket, name, null, stream, options));
+            Assert.Equal(HttpStatusCode.BadRequest, exception.HttpStatusCode);
         }
 
         [Fact]
@@ -295,28 +292,12 @@ public void UploadObject_InvalidHash_DeleteAndThrow()
             var name = IdGenerator.FromGuid();
             var bucket = _fixture.MultiVersionBucket;
             var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.DeleteAndThrow };
-            Assert.Throws<UploadValidationException>(() => client.UploadObject(bucket, name, null, stream, options));
+            var exception = Assert.Throws<GoogleApiException>(() => client.UploadObject(bucket, name, null, stream, options));
+            Assert.Equal(HttpStatusCode.BadRequest, exception.HttpStatusCode);
             var notFound = Assert.Throws<GoogleApiException>(() => _fixture.Client.GetObject(bucket, name));
             Assert.Equal(HttpStatusCode.NotFound, notFound.HttpStatusCode);
         }
 
-        [Fact]
-        public void UploadObject_InvalidHash_DeleteAndThrow_DeleteFails()
-        {
-            var client = StorageClient.Create();
-            var interceptor = new BreakUploadInterceptor();
-            client.Service.HttpClient.MessageHandler.AddExecuteInterceptor(interceptor);
-            client.Service.HttpClient.MessageHandler.AddExecuteInterceptor(new BreakDeleteInterceptor());
-            var stream = GenerateData(50);
-            var name = IdGenerator.FromGuid();
-            var bucket = _fixture.MultiVersionBucket;
-            var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.DeleteAndThrow };
-            var ex = Assert.Throws<UploadValidationException>(() => client.UploadObject(bucket, name, null, stream, options));
-            Assert.NotNull(ex.AdditionalFailures);
-            // The deletion failed, so the uploaded object still exists.
-            ValidateData(bucket, name, new MemoryStream(interceptor.UploadedBytes));
-        }
-
         [Fact]
         public async Task UploadObjectAsync_InvalidHash_None()
         {
@@ -327,10 +308,8 @@ public async Task UploadObjectAsync_InvalidHash_None()
             var name = IdGenerator.FromGuid();
             var bucket = _fixture.MultiVersionBucket;
             var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.None };
-            // Upload succeeds despite the data being broken.
-            await client.UploadObjectAsync(bucket, name, null, stream, options);
-            // The object should contain our "wrong" bytes.
-            ValidateData(bucket, name, new MemoryStream(interceptor.UploadedBytes));
+            var exception = await Assert.ThrowsAsync<GoogleApiException>(() => client.UploadObjectAsync(bucket, name, null, stream, options));
+            Assert.Equal(HttpStatusCode.BadRequest, exception.HttpStatusCode);
         }
 
         [Fact]
@@ -343,9 +322,8 @@ public async Task UploadObjectAsync_InvalidHash_ThrowOnly()
             var name = IdGenerator.FromGuid();
             var bucket = _fixture.MultiVersionBucket;
             var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.ThrowOnly };
-            await Assert.ThrowsAsync<UploadValidationException>(() => client.UploadObjectAsync(bucket, name, null, stream, options));
-            // We don't delete the object, so it's still present.
-            ValidateData(bucket, name, new MemoryStream(interceptor.UploadedBytes));
+            var exception = await Assert.ThrowsAsync<GoogleApiException>(() => client.UploadObjectAsync(bucket, name, null, stream, options));
+            Assert.Equal(HttpStatusCode.BadRequest, exception.HttpStatusCode);
         }
 
         [Fact]
@@ -359,28 +337,12 @@ public async Task UploadObjectAsync_InvalidHash_DeleteAndThrow()
             var name = IdGenerator.FromGuid();
             var bucket = _fixture.MultiVersionBucket;
             var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.DeleteAndThrow };
-            await Assert.ThrowsAsync<UploadValidationException>(() => client.UploadObjectAsync(bucket, name, null, stream, options));
+            var exception = await Assert.ThrowsAsync<GoogleApiException>(() => client.UploadObjectAsync(bucket, name, null, stream, options));
+            Assert.Equal(HttpStatusCode.BadRequest, exception.HttpStatusCode);
             var notFound = await Assert.ThrowsAsync<GoogleApiException>(() => _fixture.Client.GetObjectAsync(bucket, name));
             Assert.Equal(HttpStatusCode.NotFound, notFound.HttpStatusCode);
         }
 
-        [Fact]
-        public async Task UploadObjectAsync_InvalidHash_DeleteAndThrow_DeleteFails()
-        {
-            var client = StorageClient.Create();
-            var interceptor = new BreakUploadInterceptor();
-            client.Service.HttpClient.MessageHandler.AddExecuteInterceptor(interceptor);
-            client.Service.HttpClient.MessageHandler.AddExecuteInterceptor(new BreakDeleteInterceptor());
-            var stream = GenerateData(50);
-            var name = IdGenerator.FromGuid();
-            var bucket = _fixture.MultiVersionBucket;
-            var options = new UploadObjectOptions { UploadValidationMode = UploadValidationMode.DeleteAndThrow };
-            var ex = await Assert.ThrowsAsync<UploadValidationException>(() => client.UploadObjectAsync(bucket, name, null, stream, options));
-            Assert.NotNull(ex.AdditionalFailures);
-            // The deletion failed, so the uploaded object still exists.
-            ValidateData(bucket, name, new MemoryStream(interceptor.UploadedBytes));
-        }
-
         [Fact]
         public async Task InitiateUploadSessionAsync_NegativeLength()
         {
@@ -460,21 +422,6 @@ public async Task InterceptAsync(HttpRequestMessage request, CancellationToken c
             }
         }
 
-        private class BreakDeleteInterceptor : IHttpExecuteInterceptor
-        {
-            public Task InterceptAsync(HttpRequestMessage request, CancellationToken cancellationToken)
-            {
-                // We only care about Delete requests
-                if (request.Method == HttpMethod.Delete)
-                {
-                    // Ugly but effective hack: replace the generation URL parameter so that we add a leading 9,
-                    // so the generation we try to delete is the wrong one.
-                    request.RequestUri = new Uri(request.RequestUri.ToString().Replace("generation=", "generation=9"));
-                }
-                return Task.FromResult(0);
-            }
-        }
-
         private Object GetExistingObject()
         {
             var obj = _fixture.Client.UploadObject(_fixture.MultiVersionBucket, IdGenerator.FromGuid(), "application/octet-stream", GenerateData(100));

apis/Google.Cloud.Storage.V1/Google.Cloud.Storage.V1/CustomMediaUpload.cs

@@ -1,4 +1,4 @@
-// Copyright 2017 Google Inc. All Rights Reserved.
+// Copyright 2017 Google Inc. All Rights Reserved.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
@@ -12,12 +12,16 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
+using Google.Apis.Http;
 using Google.Apis.Services;
+using Google.Apis.Upload;
 using System;
 using System.IO;
+using System.Linq;
 using System.Net.Http;
+using System.Threading;
+using System.Threading.Tasks;
 using static Google.Apis.Storage.v1.ObjectsResource;
-using Google.Apis.Upload;
 
 namespace Google.Cloud.Storage.V1
 {
@@ -26,12 +30,150 @@ namespace Google.Cloud.Storage.V1
     /// </summary>
     internal sealed class CustomMediaUpload : InsertMediaUpload
     {
+        private readonly Stream _stream;
+        private readonly Crc32cHashInterceptor _interceptor;
+        private readonly IClientService _service;
+
         public CustomMediaUpload(IClientService service, Apis.Storage.v1.Data.Object body, string bucket,
             Stream stream, string contentType)
             : base(service, body, bucket, stream, contentType)
         {
+            _stream = stream;
+            _service = service;
+            _interceptor = new Crc32cHashInterceptor(this, _stream, _service);
+            _service?.HttpClient?.MessageHandler?.AddExecuteInterceptor(_interceptor);
         }
 
         internal new ResumableUploadOptions Options => base.Options;
+
+        private sealed class Crc32cHashInterceptor : IHttpExecuteInterceptor
+        {
+            private const string GoogleHashHeader = "x-goog-hash";
+            private const int ReadBufferSize = 81920;
+            private readonly Stream _stream;
+            private readonly IClientService _service;
+            private readonly CustomMediaUpload _owner;
+            private Uri _uploadUri;
+
+            public Crc32cHashInterceptor(CustomMediaUpload owner, Stream stream, IClientService service)
+            {
+                _stream = stream;
+                _service = service;
+                _owner = owner;
+                _owner.UploadSessionData += OnSessionData;
+                _owner.ProgressChanged += OnProgressChanged;
+            }
+
+            public async Task InterceptAsync(HttpRequestMessage request, CancellationToken cancellationToken)
+            {
+                if (_uploadUri != null && !_uploadUri.Equals(request.RequestUri))
+                {
+                    return;
+                }
+
+                if (request.Method == System.Net.Http.HttpMethod.Put && request.Content?.Headers.Contains("Content-Range") is true)
+                {
+                    string rangeHeader = request.Content.Headers.GetValues("Content-Range").First();
+
+                    if (IsFinalChunk(rangeHeader))
+                    {
+                        if (!_stream.CanSeek)
+                        {
+                            return;
+                        }
+
+                        long originalPosition = _stream.Position;
+                        try
+                        {
+                            _stream.Position = 0;
+
+                            var hasher = new Crc32c();
+                            var buffer = System.Buffers.ArrayPool<byte>.Shared.Rent(ReadBufferSize);
+                            try
+                            {
+                                int bytesRead;
+                                while ((bytesRead = await _stream.ReadAsync(buffer, 0, buffer.Length, cancellationToken).ConfigureAwait(false)) > 0)
+                                {
+                                    hasher.UpdateHash(buffer, 0, bytesRead);
+                                }
+                            }
+                            finally
+                            {
+                                System.Buffers.ArrayPool<byte>.Shared.Return(buffer);
+                            }
+
+                            byte[] hash = hasher.GetHash();
+                            string calculatedHash = Convert.ToBase64String(hash);
+                            request.Headers.TryAddWithoutValidation(GoogleHashHeader, $"crc32c={calculatedHash}");
+                        }
+                        finally
+                        {
+                            _stream.Position = originalPosition;
+                        }
+                    }
+                }
+            }
+
+            private void OnSessionData(IUploadSessionData data)
+            {
+                _uploadUri = data.UploadUri;
+                _owner.UploadSessionData -= OnSessionData;
+            }
+
+            private void OnProgressChanged(IUploadProgress progress)
+            {
+                if (progress.Status == UploadStatus.Completed || progress.Status == UploadStatus.Failed)
+                {
+                    // Clean up when upload is finished.
+                    _service?.HttpClient?.MessageHandler?.RemoveExecuteInterceptor(this);
+                    _owner.ProgressChanged -= OnProgressChanged;
+                }
+            }
+
+            private bool IsFinalChunk(string rangeHeader)
+            {
+                // Expected format: "bytes {start}-{end}/{total}" or "bytes */{total}" for the final request.
+                // We are interested in the final chunk of a known-size upload.
+                const string prefix = "bytes ";
+                if (!rangeHeader.StartsWith(prefix, StringComparison.OrdinalIgnoreCase))
+                {
+                    return false;
+                }
+
+                ReadOnlySpan<char> span = rangeHeader.AsSpan(prefix.Length);
+                int slashIndex = span.IndexOf('/');
+                if (slashIndex == -1)
+                {
+                    return false;
+                }
+
+                var totalSpan = span.Slice(slashIndex + 1);
+                if (totalSpan.IsEmpty || totalSpan[0] == '*')
+                {
+                    return false;
+                }
+
+                if (!long.TryParse(totalSpan.ToString(), System.Globalization.NumberStyles.Integer, System.Globalization.CultureInfo.InvariantCulture, out long totalSize))
+                {
+                    return false;
+                }
+
+                var rangeSpan = span.Slice(0, slashIndex);
+                int dashIndex = rangeSpan.IndexOf('-');
+                if (dashIndex == -1)
+                {
+                    return false;
+                }
+
+                var endByteSpan = rangeSpan.Slice(dashIndex + 1);
+                if (!long.TryParse(endByteSpan.ToString(), System.Globalization.NumberStyles.Integer, System.Globalization.CultureInfo.InvariantCulture, out long endByte))
+                {
+                    return false;
+                }
+
+                // If endByte is the last byte of the file, it's the final chunk.
+                return (endByte + 1) == totalSize;
+            }
+        }
     }
 }

apis/Google.Cloud.Storage.V1/Google.Cloud.Storage.V1/StorageClientImpl.UploadObject.cs

@@ -229,29 +229,57 @@ internal async Task<Object> ExecuteAsync(CancellationToken cancellationToken)
         private sealed class LengthOnlyStream : Stream
         {
             private readonly long? _length;
+            private long _position;
             internal LengthOnlyStream(long? length) => _length = length;
 
             public override long Length => _length ?? throw new NotSupportedException();
             public override bool CanSeek => _length.HasValue;
-
-            public override bool CanRead => throw new NotImplementedException();
-            public override bool CanWrite => throw new NotImplementedException();
+            public override bool CanRead => true;
+            public override bool CanWrite => false;
 
             public override long Position
             {
-                get => throw new NotImplementedException();
-                set => throw new NotImplementedException();
+                get => _position;
+                set
+                {
+                    if (!CanSeek) throw new NotSupportedException();
+                    if (value < 0 || value > Length) throw new ArgumentOutOfRangeException(nameof(value));
+                    _position = value;
+                }
+            }
+
+            public override int Read(byte[] buffer, int offset, int count)
+            {
+                if (!_length.HasValue)
+                {
+                    return 0;
+                }
+                long remaining = _length.Value - _position;
+                if (remaining <= 0) return 0;
+
+                int toRead = (int) Math.Min(count, remaining);
+
+                Array.Clear(buffer, offset, toRead);
+
+                _position += toRead;
+                return toRead;
+            }
+
+            public override void Flush() { }
+
+            public override long Seek(long offset, SeekOrigin origin)
+            {
+                switch (origin)
+                {
+                    case SeekOrigin.Begin: Position = offset; break;
+                    case SeekOrigin.Current: Position += offset; break;
+                    case SeekOrigin.End: Position = Length + offset; break;
+                }
+                return Position;
             }
 
-            public override void Flush() => throw new NotImplementedException();
-            public override int Read(byte[] buffer, int offset, int count) =>
-                throw new NotImplementedException();
-            public override long Seek(long offset, SeekOrigin origin) =>
-                throw new NotImplementedException();
-            public override void SetLength(long value) =>
-                throw new NotImplementedException();
-            public override void Write(byte[] buffer, int offset, int count) =>
-                throw new NotImplementedException();
+            public override void SetLength(long value) => throw new NotSupportedException();
+            public override void Write(byte[] buffer, int offset, int count) => throw new NotSupportedException();
         }
     }
 }