CLDSRV-872: return stored checksum in PutObject response

Author: leif-scality

lib/api/objectPut.js

@@ -225,6 +225,10 @@ function objectPut(authInfo, request, streamingV4Params, log, callback) {
             if (storingResult) {
                 // ETag's hex should always be enclosed in quotes
                 responseHeaders.ETag = `"${storingResult.contentMD5}"`;
+                if (storingResult.checksum) {
+                    const { checksumAlgorithm, checksumValue } = storingResult.checksum;
+                    responseHeaders[`x-amz-checksum-${checksumAlgorithm}`] = checksumValue;
+                }
             }
             const vcfg = bucket.getVersioningConfiguration();
             const isVersionedObj = vcfg && vcfg.Status === 'Enabled';

lib/services.js

@@ -333,6 +333,7 @@ const services = {
                 tags: md.getTags(),
                 contentMD5,
                 versionId,
+                checksum: md.getChecksum(),
             });
         });
     },

tests/functional/raw-node/test/checksumPutObjectUploadPart.js

@@ -1,6 +1,7 @@
 const assert = require('assert');
 const crypto = require('crypto');
 const async = require('async');
+const { algorithms } = require('../../../../lib/api/apiUtils/integrity/validateChecksums');
 
 const { makeS3Request } = require('../utils/makeRequest');
 const HttpRequestAuthV4 = require('../utils/HttpRequestAuthV4');
@@ -38,7 +39,11 @@ function doPutRequest(url, headers, body, callback) {
         res => {
             let data = '';
             res.on('data', chunk => { data += chunk; });
-            res.on('end', () => callback(null, { statusCode: res.statusCode, body: data }));
+            res.on('end', () => callback(null, {
+                statusCode: res.statusCode,
+                body: data,
+                headers: res.headers,
+            }));
         }
     );
     req.on('error', callback);
@@ -141,16 +146,38 @@ const msgMalformedTrailer = 'The request contained trailing data that was not we
 const msgSdkMissingTrailer = 'x-amz-sdk-checksum-algorithm specified, but no corresponding' +
     ' x-amz-checksum-* or x-amz-trailer headers were found.';
 
+// Module-level variables for computed crc64nvme checksums (filled in before hook)
+let crc64nvmeOfTestContent2;
+let crc64nvmeOfTrailerContent;
+
 // Create the 24 common protocol-scenario tests for a given URL factory.
 // urlFn() is called lazily at test runtime so that uploadId is available.
-function makeScenarioTests(urlFn) {
+// checkChecksumResponse: if true, assert x-amz-checksum-* response headers on 200 OK tests.
+function makeScenarioTests(urlFn, checkChecksumResponse = false) {
+    before(async () => {
+        if (!crc64nvmeOfTestContent2) {
+            crc64nvmeOfTestContent2 = await algorithms.crc64nvme.digest(testContent2);
+        }
+        if (!crc64nvmeOfTrailerContent) {
+            crc64nvmeOfTrailerContent = await algorithms.crc64nvme.digest(trailerContent);
+        }
+    });
+
     itSkipIfAWS(
         'testS3PutNoChecksum: signed sha256 in x-amz-content-sha256, no x-amz-checksum header -> 200 OK',
         done => {
             doPutRequest(urlFn(), {
                 'x-amz-content-sha256': testContent2Sha256Hex,
                 'content-length': testContent2.length,
-            }, testContent2, (err, res) => assertStatus(200)(err, res, done));
+            }, testContent2, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-crc64nvme'], crc64nvmeOfTestContent2,
+                            `expected x-amz-checksum-crc64nvme: ${crc64nvmeOfTestContent2}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -161,7 +188,15 @@ function makeScenarioTests(urlFn) {
                 'x-amz-sdk-checksum-algorithm': 'SHA256',
                 'x-amz-checksum-sha256': testContent2Sha256B64,
                 'content-length': testContent2.length,
-            }, testContent2, (err, res) => assertStatus(200)(err, res, done));
+            }, testContent2, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-sha256'], testContent2Sha256B64,
+                            `expected x-amz-checksum-sha256: ${testContent2Sha256B64}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -184,7 +219,15 @@ function makeScenarioTests(urlFn) {
                 'x-amz-sdk-checksum-algorithm': 'SHA256',
                 'x-amz-checksum-sha256': testContent2Sha256B64,
                 'content-length': testContent2.length,
-            }, testContent2, (err, res) => assertStatus(200)(err, res, done));
+            }, testContent2, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-sha256'], testContent2Sha256B64,
+                            `expected x-amz-checksum-sha256: ${testContent2Sha256B64}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -208,7 +251,15 @@ function makeScenarioTests(urlFn) {
                 'x-amz-trailer': 'x-amz-checksum-sha256',
                 'x-amz-decoded-content-length': trailerContent.length,
                 'content-length': Buffer.byteLength(body),
-            }, body, (err, res) => assertStatus(200)(err, res, done));
+            }, body, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-sha256'], trailerContentSha256,
+                            `expected x-amz-checksum-sha256: ${trailerContentSha256}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -295,7 +346,15 @@ function makeScenarioTests(urlFn) {
                 'x-amz-trailer': 'x-amz-checksum-sha256',
                 'x-amz-decoded-content-length': trailerContent.length,
                 'content-length': Buffer.byteLength(body),
-            }, body, (err, res) => assertStatus(200)(err, res, done));
+            }, body, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-sha256'], trailerContentSha256,
+                            `expected x-amz-checksum-sha256: ${trailerContentSha256}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -308,7 +367,15 @@ function makeScenarioTests(urlFn) {
                 'x-amz-sdk-checksum-algorithm': 'SHA256',
                 'x-amz-decoded-content-length': trailerContent.length,
                 'content-length': Buffer.byteLength(body),
-            }, body, (err, res) => assertStatus(200)(err, res, done));
+            }, body, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-sha256'], trailerContentSha256,
+                            `expected x-amz-checksum-sha256: ${trailerContentSha256}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -403,7 +470,15 @@ function makeScenarioTests(urlFn) {
                 // no x-amz-trailer
                 'x-amz-decoded-content-length': trailerContent.length,
                 'content-length': Buffer.byteLength(body),
-            }, body, (err, res) => assertStatus(200)(err, res, done));
+            }, body, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-crc64nvme'], crc64nvmeOfTrailerContent,
+                            `expected x-amz-checksum-crc64nvme: ${crc64nvmeOfTrailerContent}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -417,7 +492,15 @@ function makeScenarioTests(urlFn) {
                 // no x-amz-trailer
                 'x-amz-decoded-content-length': trailerContent.length,
                 'content-length': Buffer.byteLength(body),
-            }, body, (err, res) => assertStatus(200)(err, res, done));
+            }, body, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-crc64nvme'], crc64nvmeOfTrailerContent,
+                            `expected x-amz-checksum-crc64nvme: ${crc64nvmeOfTrailerContent}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -431,7 +514,15 @@ function makeScenarioTests(urlFn) {
                 'content-md5': trailerContentMd5B64,
                 'x-amz-decoded-content-length': trailerContent.length,
                 'content-length': Buffer.byteLength(body),
-            }, body, (err, res) => assertStatus(200)(err, res, done));
+            }, body, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-sha256'], trailerContentSha256,
+                            `expected x-amz-checksum-sha256: ${trailerContentSha256}`);
+                    }
+                    done();
+                });
+            });
         });
 
     itSkipIfAWS(
@@ -445,7 +536,15 @@ function makeScenarioTests(urlFn) {
                 'x-amz-trailer': 'x-amz-checksum-sha256',
                 'x-amz-decoded-content-length': trailerContent.length,
                 'content-length': Buffer.byteLength(body),
-            }, body, (err, res) => assertStatus(200)(err, res, done));
+            }, body, (err, res) => {
+                assertStatus(200)(err, res, () => {
+                    if (checkChecksumResponse) {
+                        assert.strictEqual(res.headers['x-amz-checksum-sha256'], trailerContentSha256,
+                            `expected x-amz-checksum-sha256: ${trailerContentSha256}`);
+                    }
+                    done();
+                });
+            });
         });
 }
 
@@ -557,7 +656,7 @@ describe('PutObject: trailer and checksum protocol scenarios', () => {
         });
     });
 
-    makeScenarioTests(() => `http://localhost:8000/${bucket}/${objectKey}`);
+    makeScenarioTests(() => `http://localhost:8000/${bucket}/${objectKey}`, true);
 
 });
 
@@ -608,3 +707,74 @@ describe('UploadPart: trailer and checksum protocol scenarios', () => {
         () => `http://localhost:8000/${bucket}/${objectKey}?partNumber=1&uploadId=${uploadId2}`
     );
 });
+
+describe('PutObject: checksum response header per algorithm', () => {
+    const url = `http://localhost:8000/${bucket}/${objectKey}`;
+    const body = testContent2;
+    const sha256Hex = testContent2Sha256Hex;
+
+    let expectedCrc64nvme;
+
+    before(async () => {
+        await new Promise((resolve, reject) =>
+            makeS3Request({ method: 'PUT', authCredentials, bucket },
+                err => (err ? reject(err) : resolve())));
+        expectedCrc64nvme = await algorithms.crc64nvme.digest(body);
+    });
+
+    after(done => {
+        makeS3Request({ method: 'DELETE', authCredentials, bucket, objectKey }, () => {
+            makeS3Request({ method: 'DELETE', authCredentials, bucket }, err => {
+                assert.ifError(err);
+                done();
+            });
+        });
+    });
+
+    const checksumAlgos = [
+        { name: 'crc32',     computeExpected: () => algorithms.crc32.digest(body) },
+        { name: 'crc32c',    computeExpected: () => algorithms.crc32c.digest(body) },
+        { name: 'crc64nvme', computeExpected: () => expectedCrc64nvme },
+        { name: 'sha1',      computeExpected: () => algorithms.sha1.digest(body) },
+        { name: 'sha256',    computeExpected: () => algorithms.sha256.digest(body) },
+    ];
+
+    for (const algo of checksumAlgos) {
+        itSkipIfAWS(
+            `returns x-amz-checksum-${algo.name} response header with correct value`,
+            done => {
+                const expectedValue = algo.computeExpected();
+                const headerName = `x-amz-checksum-${algo.name}`;
+                doPutRequest(url, {
+                    'x-amz-content-sha256': sha256Hex,
+                    [headerName]: expectedValue,
+                    'content-length': body.length,
+                }, body, (err, res) => {
+                    assert.ifError(err);
+                    assert.strictEqual(res.statusCode, 200,
+                        `expected 200, got ${res.statusCode}: ${res.body}`);
+                    assert.strictEqual(res.headers[headerName], expectedValue,
+                        `expected ${headerName}: ${expectedValue}`);
+                    done();
+                });
+            }
+        );
+    }
+
+    itSkipIfAWS(
+        'returns x-amz-checksum-crc64nvme response header when no checksum header is sent',
+        done => {
+            doPutRequest(url, {
+                'x-amz-content-sha256': sha256Hex,
+                'content-length': body.length,
+            }, body, (err, res) => {
+                assert.ifError(err);
+                assert.strictEqual(res.statusCode, 200,
+                    `expected 200, got ${res.statusCode}: ${res.body}`);
+                assert.strictEqual(res.headers['x-amz-checksum-crc64nvme'], expectedCrc64nvme,
+                    `expected x-amz-checksum-crc64nvme: ${expectedCrc64nvme}`);
+                done();
+            });
+        }
+    );
+});

tests/unit/api/objectPut.js

@@ -882,8 +882,9 @@ describe('objectPut API', () => {
 
         bucketPut(authInfo, testPutBucketRequest, log, err => {
             assert.ifError(err);
-            objectPut(authInfo, request, undefined, log, err => {
+            objectPut(authInfo, request, undefined, log, (err, resHeaders) => {
                 assert.ifError(err);
+                assert.strictEqual(resHeaders['x-amz-checksum-sha256'], sha256Value);
                 metadata.getObjectMD(bucketName, objectName, {}, log, (err, md) => {
                     assert.ifError(err);
                     assert(md.checksum, 'checksum should be set in metadata');
@@ -899,13 +900,14 @@ describe('objectPut API', () => {
     it('should store crc64nvme checksum in metadata when no checksum header is provided', done => {
         bucketPut(authInfo, testPutBucketRequest, log, err => {
             assert.ifError(err);
-            objectPut(authInfo, testPutObjectRequest, undefined, log, err => {
+            objectPut(authInfo, testPutObjectRequest, undefined, log, (err, resHeaders) => {
                 assert.ifError(err);
+                assert(resHeaders['x-amz-checksum-crc64nvme'], 'crc64nvme response header should be set');
                 metadata.getObjectMD(bucketName, objectName, {}, log, (err, md) => {
                     assert.ifError(err);
                     assert(md.checksum, 'checksum should be set in metadata');
                     assert.strictEqual(md.checksum.checksumAlgorithm, 'crc64nvme');
-                    assert(md.checksum.checksumValue, 'checksumValue should be set');
+                    assert.strictEqual(md.checksum.checksumValue, resHeaders['x-amz-checksum-crc64nvme']);
                     assert.strictEqual(md.checksum.checksumType, 'FULL_OBJECT');
                     done();
                 });