zircon/system/ulib/blobfs/blob-verifier.h - fuchsia - Git at Google

 // Copyright 2020 The Fuchsia Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef ZIRCON_SYSTEM_ULIB_BLOBFS_BLOB_VERIFIER_H_
 #define ZIRCON_SYSTEM_ULIB_BLOBFS_BLOB_VERIFIER_H_

 #include <zircon/status.h>
 #include <zircon/types.h>

 #include <digest/digest.h>
 #include <digest/merkle-tree.h>
 #include <fbl/macros.h>

 #include "metrics.h"

 namespace blobfs {

 // BlobVerifier verifies the contents of a blob against a merkle tree.
 class BlobVerifier {
  public:
   // Public only to enable std::make_unique<>. Use |Create| or |CreateWithoutTree|.
   // TODO(45457): Hide when MerkleTreeVerifier is movable.
   explicit BlobVerifier(BlobfsMetrics* metrics);

   // TODO(44742): Make this type movable. (Requires ulib/digest to be move friendly)
   DISALLOW_COPY_ASSIGN_AND_MOVE(BlobVerifier);

   // Creates an instance of BlobVerifier for blobs named |digest|, using the provided merkle
   // tree which is at most |merkle_size| bytes.
   //
   // Returns an error if the merkle tree's root does not match |digest|, or if the required tree
   // size for |data_size| bytes is bigger than |merkle_size|.
   static zx_status_t Create(digest::Digest digest, BlobfsMetrics* metrics, const void* merkle,
                             size_t merkle_size, size_t data_size,
                             std::unique_ptr<BlobVerifier>* out);

   // Creates an instance of BlobVerifier for blobs named |digest|, which are small enough to not
   // have a stored merkle tree (i.e. MerkleTreeBytes(data_size) == 0).
   static zx_status_t CreateWithoutTree(digest::Digest digest, BlobfsMetrics* metrics,
                                        size_t data_size, std::unique_ptr<BlobVerifier>* out);

   // Verifies the entire contents of a blob.
   // TODO(45457): Make const if MerkleTreeVerifier::Verify becomes const
   zx_status_t Verify(const void* data, size_t data_size);

   // Verifies a range of the contents of a blob from [data_offset, data_offset + length).
   // IMPORTANT: |data| is expected to be a pointer to the blob's contents at |data_offset|, not
   // the absolute start of the blob's data. (This facilitates partial verification when the blob
   // is only partially mapped in.)
   // TODO(45457): Make const if MerkleTreeVerifier::Verify becomes const
   zx_status_t VerifyPartial(const void* data, size_t length, size_t data_offset);

   // Modifies |data_off| and |buf_len| to be aligned to the minimum number of merkle tree nodes that
   // covered their original range.
   zx_status_t Align(size_t* data_off, size_t* buf_len) const {
     return tree_verifier_.Align(data_off, buf_len);
   }

   size_t GetTreeLength() const { return tree_verifier_.GetTreeLength(); }

  private:
   digest::Digest digest_;
   digest::MerkleTreeVerifier tree_verifier_;
   BlobfsMetrics* metrics_;
 };

 }  // namespace blobfs

 #endif  // ZIRCON_SYSTEM_ULIB_BLOBFS_BLOB_VERIFIER_H_
	// Copyright 2020 The Fuchsia Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef ZIRCON_SYSTEM_ULIB_BLOBFS_BLOB_VERIFIER_H_
	#define ZIRCON_SYSTEM_ULIB_BLOBFS_BLOB_VERIFIER_H_

	#include <zircon/status.h>
	#include <zircon/types.h>

	#include <digest/digest.h>
	#include <digest/merkle-tree.h>
	#include <fbl/macros.h>

	#include "metrics.h"

	namespace blobfs {

	// BlobVerifier verifies the contents of a blob against a merkle tree.
	class BlobVerifier {
	public:
	// Public only to enable std::make_unique<>. Use \|Create\| or \|CreateWithoutTree\|.
	// TODO(45457): Hide when MerkleTreeVerifier is movable.
	explicit BlobVerifier(BlobfsMetrics* metrics);

	// TODO(44742): Make this type movable. (Requires ulib/digest to be move friendly)
	DISALLOW_COPY_ASSIGN_AND_MOVE(BlobVerifier);

	// Creates an instance of BlobVerifier for blobs named \|digest\|, using the provided merkle
	// tree which is at most \|merkle_size\| bytes.
	//
	// Returns an error if the merkle tree's root does not match \|digest\|, or if the required tree
	// size for \|data_size\| bytes is bigger than \|merkle_size\|.
	static zx_status_t Create(digest::Digest digest, BlobfsMetrics* metrics, const void* merkle,
	size_t merkle_size, size_t data_size,
	std::unique_ptr<BlobVerifier>* out);

	// Creates an instance of BlobVerifier for blobs named \|digest\|, which are small enough to not
	// have a stored merkle tree (i.e. MerkleTreeBytes(data_size) == 0).
	static zx_status_t CreateWithoutTree(digest::Digest digest, BlobfsMetrics* metrics,
	size_t data_size, std::unique_ptr<BlobVerifier>* out);

	// Verifies the entire contents of a blob.
	// TODO(45457): Make const if MerkleTreeVerifier::Verify becomes const
	zx_status_t Verify(const void* data, size_t data_size);

	// Verifies a range of the contents of a blob from [data_offset, data_offset + length).
	// IMPORTANT: \|data\| is expected to be a pointer to the blob's contents at \|data_offset\|, not
	// the absolute start of the blob's data. (This facilitates partial verification when the blob
	// is only partially mapped in.)
	// TODO(45457): Make const if MerkleTreeVerifier::Verify becomes const
	zx_status_t VerifyPartial(const void* data, size_t length, size_t data_offset);

	// Modifies \|data_off\| and \|buf_len\| to be aligned to the minimum number of merkle tree nodes that
	// covered their original range.
	zx_status_t Align(size_t* data_off, size_t* buf_len) const {
	return tree_verifier_.Align(data_off, buf_len);
	}

	size_t GetTreeLength() const { return tree_verifier_.GetTreeLength(); }

	private:
	digest::Digest digest_;
	digest::MerkleTreeVerifier tree_verifier_;
	BlobfsMetrics* metrics_;
	};

	} // namespace blobfs

	#endif // ZIRCON_SYSTEM_ULIB_BLOBFS_BLOB_VERIFIER_H_