bookkeeper-server/src/main/java/org/apache/bookkeeper/client/DigestManager.java - bookkeeper - Git at Google

 package org.apache.bookkeeper.client;

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 import java.nio.ByteBuffer;
 import java.security.GeneralSecurityException;

 import org.apache.bookkeeper.client.BKException.BKDigestMatchException;
 import org.apache.bookkeeper.client.BookKeeper.DigestType;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.jboss.netty.buffer.ChannelBuffer;
 import org.jboss.netty.buffer.ChannelBufferInputStream;
 import org.jboss.netty.buffer.ChannelBuffers;

 /**
  * This class takes an entry, attaches a digest to it and packages it with relevant
  * data so that it can be shipped to the bookie. On the return side, it also
  * gets a packet, checks that the digest matches, and extracts the original entry
  * for the packet. Currently 2 types of digests are supported: MAC (based on SHA-1) and CRC32
  */

 abstract class DigestManager {
     static final Logger logger = LoggerFactory.getLogger(DigestManager.class);

     static final int METADATA_LENGTH = 32;

     long ledgerId;

     abstract int getMacCodeLength();

     void update(byte[] data) {
         update(data, 0, data.length);
     }

     abstract void update(byte[] data, int offset, int length);
     abstract byte[] getValueAndReset();

     final int macCodeLength;

     public DigestManager(long ledgerId) {
         this.ledgerId = ledgerId;
         macCodeLength = getMacCodeLength();
     }

     static DigestManager instantiate(long ledgerId, byte[] passwd, DigestType digestType) throws GeneralSecurityException {
         switch(digestType) {
         case MAC:
             return new MacDigestManager(ledgerId, passwd);
         case CRC32:
             return new CRC32DigestManager(ledgerId);
         default:
             throw new GeneralSecurityException("Unknown checksum type: " + digestType);
         }
     }

     /**
      * Computes the digest for an entry and put bytes together for sending.
      *
      * @param entryId
      * @param lastAddConfirmed
      * @param length
      * @param data
      * @return
      */

     public ChannelBuffer computeDigestAndPackageForSending(long entryId, long lastAddConfirmed, long length, byte[] data, int doffset, int dlength) {

         byte[] bufferArray = new byte[METADATA_LENGTH + macCodeLength];
         ByteBuffer buffer = ByteBuffer.wrap(bufferArray);
         buffer.putLong(ledgerId);
         buffer.putLong(entryId);
         buffer.putLong(lastAddConfirmed);
         buffer.putLong(length);
         buffer.flip();

         update(buffer.array(), 0, METADATA_LENGTH);
         update(data, doffset, dlength);
         byte[] digest = getValueAndReset();

         buffer.limit(buffer.capacity());
         buffer.position(METADATA_LENGTH);
         buffer.put(digest);
         buffer.flip();

         return ChannelBuffers.wrappedBuffer(ChannelBuffers.wrappedBuffer(buffer), ChannelBuffers.wrappedBuffer(data, doffset, dlength));
     }

     private void verifyDigest(ChannelBuffer dataReceived) throws BKDigestMatchException {
         verifyDigest(LedgerHandle.INVALID_ENTRY_ID, dataReceived, true);
     }

     private void verifyDigest(long entryId, ChannelBuffer dataReceived) throws BKDigestMatchException {
         verifyDigest(entryId, dataReceived, false);
     }

     private void verifyDigest(long entryId, ChannelBuffer dataReceived, boolean skipEntryIdCheck)
             throws BKDigestMatchException {

         ByteBuffer dataReceivedBuffer = dataReceived.toByteBuffer();
         byte[] digest;

         if ((METADATA_LENGTH + macCodeLength) > dataReceived.readableBytes()) {
             logger.error("Data received is smaller than the minimum for this digest type. "
                     + " Either the packet it corrupt, or the wrong digest is configured. "
                     + " Digest type: {}, Packet Length: {}",
                     this.getClass().getName(), dataReceived.readableBytes());
             throw new BKDigestMatchException();
         }
         update(dataReceivedBuffer.array(), dataReceivedBuffer.position(), METADATA_LENGTH);

         int offset = METADATA_LENGTH + macCodeLength;
         update(dataReceivedBuffer.array(), dataReceivedBuffer.position() + offset, dataReceived.readableBytes() - offset);
         digest = getValueAndReset();

         for (int i = 0; i < digest.length; i++) {
             if (digest[i] != dataReceived.getByte(METADATA_LENGTH + i)) {
                 logger.error("Mac mismatch for ledger-id: " + ledgerId + ", entry-id: " + entryId);
                 throw new BKDigestMatchException();
             }
         }

         long actualLedgerId = dataReceived.readLong();
         long actualEntryId = dataReceived.readLong();

         if (actualLedgerId != ledgerId) {
             logger.error("Ledger-id mismatch in authenticated message, expected: " + ledgerId + " , actual: "
                          + actualLedgerId);
             throw new BKDigestMatchException();
         }

         if (!skipEntryIdCheck && actualEntryId != entryId) {
             logger.error("Entry-id mismatch in authenticated message, expected: " + entryId + " , actual: "
                          + actualEntryId);
             throw new BKDigestMatchException();
         }

     }

     /**
      * Verify that the digest matches and returns the data in the entry.
      *
      * @param entryId
      * @param dataReceived
      * @return
      * @throws BKDigestMatchException
      */
     ChannelBufferInputStream verifyDigestAndReturnData(long entryId, ChannelBuffer dataReceived)
             throws BKDigestMatchException {
         verifyDigest(entryId, dataReceived);
         dataReceived.readerIndex(METADATA_LENGTH + macCodeLength);
         return new ChannelBufferInputStream(dataReceived);
     }

     static class RecoveryData {
         long lastAddConfirmed;
         long length;

         public RecoveryData(long lastAddConfirmed, long length) {
             this.lastAddConfirmed = lastAddConfirmed;
             this.length = length;
         }

     }

     RecoveryData verifyDigestAndReturnLastConfirmed(ChannelBuffer dataReceived) throws BKDigestMatchException {
         verifyDigest(dataReceived);
         dataReceived.readerIndex(8);

         dataReceived.readLong(); // skip unused entryId
         long lastAddConfirmed = dataReceived.readLong();
         long length = dataReceived.readLong();
         return new RecoveryData(lastAddConfirmed, length);
     }
 }
	package org.apache.bookkeeper.client;

	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	import java.nio.ByteBuffer;
	import java.security.GeneralSecurityException;

	import org.apache.bookkeeper.client.BKException.BKDigestMatchException;
	import org.apache.bookkeeper.client.BookKeeper.DigestType;
	import org.slf4j.Logger;
	import org.slf4j.LoggerFactory;
	import org.jboss.netty.buffer.ChannelBuffer;
	import org.jboss.netty.buffer.ChannelBufferInputStream;
	import org.jboss.netty.buffer.ChannelBuffers;

	/**
	* This class takes an entry, attaches a digest to it and packages it with relevant
	* data so that it can be shipped to the bookie. On the return side, it also
	* gets a packet, checks that the digest matches, and extracts the original entry
	* for the packet. Currently 2 types of digests are supported: MAC (based on SHA-1) and CRC32
	*/

	abstract class DigestManager {
	static final Logger logger = LoggerFactory.getLogger(DigestManager.class);

	static final int METADATA_LENGTH = 32;

	long ledgerId;

	abstract int getMacCodeLength();

	void update(byte[] data) {
	update(data, 0, data.length);
	}

	abstract void update(byte[] data, int offset, int length);
	abstract byte[] getValueAndReset();

	final int macCodeLength;

	public DigestManager(long ledgerId) {
	this.ledgerId = ledgerId;
	macCodeLength = getMacCodeLength();
	}

	static DigestManager instantiate(long ledgerId, byte[] passwd, DigestType digestType) throws GeneralSecurityException {
	switch(digestType) {
	case MAC:
	return new MacDigestManager(ledgerId, passwd);
	case CRC32:
	return new CRC32DigestManager(ledgerId);
	default:
	throw new GeneralSecurityException("Unknown checksum type: " + digestType);
	}
	}

	/**
	* Computes the digest for an entry and put bytes together for sending.
	*
	* @param entryId
	* @param lastAddConfirmed
	* @param length
	* @param data
	* @return
	*/

	public ChannelBuffer computeDigestAndPackageForSending(long entryId, long lastAddConfirmed, long length, byte[] data, int doffset, int dlength) {

	byte[] bufferArray = new byte[METADATA_LENGTH + macCodeLength];
	ByteBuffer buffer = ByteBuffer.wrap(bufferArray);
	buffer.putLong(ledgerId);
	buffer.putLong(entryId);
	buffer.putLong(lastAddConfirmed);
	buffer.putLong(length);
	buffer.flip();

	update(buffer.array(), 0, METADATA_LENGTH);
	update(data, doffset, dlength);
	byte[] digest = getValueAndReset();

	buffer.limit(buffer.capacity());
	buffer.position(METADATA_LENGTH);
	buffer.put(digest);
	buffer.flip();

	return ChannelBuffers.wrappedBuffer(ChannelBuffers.wrappedBuffer(buffer), ChannelBuffers.wrappedBuffer(data, doffset, dlength));
	}

	private void verifyDigest(ChannelBuffer dataReceived) throws BKDigestMatchException {
	verifyDigest(LedgerHandle.INVALID_ENTRY_ID, dataReceived, true);
	}

	private void verifyDigest(long entryId, ChannelBuffer dataReceived) throws BKDigestMatchException {
	verifyDigest(entryId, dataReceived, false);
	}

	private void verifyDigest(long entryId, ChannelBuffer dataReceived, boolean skipEntryIdCheck)
	throws BKDigestMatchException {

	ByteBuffer dataReceivedBuffer = dataReceived.toByteBuffer();
	byte[] digest;

	if ((METADATA_LENGTH + macCodeLength) > dataReceived.readableBytes()) {
	logger.error("Data received is smaller than the minimum for this digest type. "
	+ " Either the packet it corrupt, or the wrong digest is configured. "
	+ " Digest type: {}, Packet Length: {}",
	this.getClass().getName(), dataReceived.readableBytes());
	throw new BKDigestMatchException();
	}
	update(dataReceivedBuffer.array(), dataReceivedBuffer.position(), METADATA_LENGTH);

	int offset = METADATA_LENGTH + macCodeLength;
	update(dataReceivedBuffer.array(), dataReceivedBuffer.position() + offset, dataReceived.readableBytes() - offset);
	digest = getValueAndReset();

	for (int i = 0; i < digest.length; i++) {
	if (digest[i] != dataReceived.getByte(METADATA_LENGTH + i)) {
	logger.error("Mac mismatch for ledger-id: " + ledgerId + ", entry-id: " + entryId);
	throw new BKDigestMatchException();
	}
	}

	long actualLedgerId = dataReceived.readLong();
	long actualEntryId = dataReceived.readLong();

	if (actualLedgerId != ledgerId) {
	logger.error("Ledger-id mismatch in authenticated message, expected: " + ledgerId + " , actual: "
	+ actualLedgerId);
	throw new BKDigestMatchException();
	}

	if (!skipEntryIdCheck && actualEntryId != entryId) {
	logger.error("Entry-id mismatch in authenticated message, expected: " + entryId + " , actual: "
	+ actualEntryId);
	throw new BKDigestMatchException();
	}

	}

	/**
	* Verify that the digest matches and returns the data in the entry.
	*
	* @param entryId
	* @param dataReceived
	* @return
	* @throws BKDigestMatchException
	*/
	ChannelBufferInputStream verifyDigestAndReturnData(long entryId, ChannelBuffer dataReceived)
	throws BKDigestMatchException {
	verifyDigest(entryId, dataReceived);
	dataReceived.readerIndex(METADATA_LENGTH + macCodeLength);
	return new ChannelBufferInputStream(dataReceived);
	}

	static class RecoveryData {
	long lastAddConfirmed;
	long length;

	public RecoveryData(long lastAddConfirmed, long length) {
	this.lastAddConfirmed = lastAddConfirmed;
	this.length = length;
	}

	}

	RecoveryData verifyDigestAndReturnLastConfirmed(ChannelBuffer dataReceived) throws BKDigestMatchException {
	verifyDigest(dataReceived);
	dataReceived.readerIndex(8);

	dataReceived.readLong(); // skip unused entryId
	long lastAddConfirmed = dataReceived.readLong();
	long length = dataReceived.readLong();
	return new RecoveryData(lastAddConfirmed, length);
	}
	}