2018-12-08 21:40:42 -08:00
|
|
|
use crate::chacha::{CHACHA_BLOCK_SIZE, CHACHA_KEY_SIZE};
|
2019-01-07 17:08:03 -08:00
|
|
|
use crate::db_ledger::{DbLedger, DEFAULT_SLOT_HEIGHT};
|
2018-12-08 21:52:29 -08:00
|
|
|
use crate::sigverify::{
|
|
|
|
|
chacha_cbc_encrypt_many_sample, chacha_end_sha_state, chacha_init_sha_state,
|
|
|
|
|
};
|
2018-11-16 08:04:46 -08:00
|
|
|
use solana_sdk::hash::Hash;
|
2018-10-08 13:12:33 -07:00
|
|
|
use std::io;
|
2018-10-19 10:39:13 -07:00
|
|
|
use std::mem::size_of;
|
2019-01-03 21:29:21 -08:00
|
|
|
use std::sync::Arc;
|
2018-10-08 13:12:33 -07:00
|
|
|
|
2018-12-23 13:40:52 -08:00
|
|
|
use crate::storage_stage::ENTRIES_PER_SEGMENT;
|
2018-10-08 13:12:33 -07:00
|
|
|
|
2018-10-19 10:39:13 -07:00
|
|
|
// Encrypt a file with multiple starting IV states, determined by ivecs.len()
|
|
|
|
|
//
|
|
|
|
|
// Then sample each block at the offsets provided by samples argument with sha256
|
|
|
|
|
// and return the vec of sha states
|
2018-10-08 13:12:33 -07:00
|
|
|
pub fn chacha_cbc_encrypt_file_many_keys(
|
2019-01-03 21:29:21 -08:00
|
|
|
db_ledger: &Arc<DbLedger>,
|
2018-12-23 13:40:52 -08:00
|
|
|
slice: u64,
|
2018-10-19 10:39:13 -07:00
|
|
|
ivecs: &mut [u8],
|
2018-10-08 13:12:33 -07:00
|
|
|
samples: &[u64],
|
|
|
|
|
) -> io::Result<Vec<Hash>> {
|
2018-10-19 10:39:13 -07:00
|
|
|
if ivecs.len() % CHACHA_BLOCK_SIZE != 0 {
|
2018-10-08 13:12:33 -07:00
|
|
|
return Err(io::Error::new(
|
|
|
|
|
io::ErrorKind::Other,
|
|
|
|
|
format!(
|
2018-10-19 10:39:13 -07:00
|
|
|
"bad IV length({}) not divisible by {} ",
|
|
|
|
|
ivecs.len(),
|
|
|
|
|
CHACHA_BLOCK_SIZE,
|
2018-10-08 13:12:33 -07:00
|
|
|
),
|
|
|
|
|
));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let mut buffer = [0; 8 * 1024];
|
2018-10-19 10:39:13 -07:00
|
|
|
let num_keys = ivecs.len() / CHACHA_BLOCK_SIZE;
|
|
|
|
|
let mut sha_states = vec![0; num_keys * size_of::<Hash>()];
|
|
|
|
|
let mut int_sha_states = vec![0; num_keys * 112];
|
|
|
|
|
let keys: Vec<u8> = vec![0; num_keys * CHACHA_KEY_SIZE]; // keys not used ATM, uniqueness comes from IV
|
2018-12-23 13:40:52 -08:00
|
|
|
let mut entry = slice;
|
2018-10-08 13:12:33 -07:00
|
|
|
let mut total_entries = 0;
|
|
|
|
|
let mut total_entry_len = 0;
|
|
|
|
|
let mut time: f32 = 0.0;
|
2018-10-19 10:39:13 -07:00
|
|
|
unsafe {
|
|
|
|
|
chacha_init_sha_state(int_sha_states.as_mut_ptr(), num_keys as u32);
|
|
|
|
|
}
|
2018-10-08 13:12:33 -07:00
|
|
|
loop {
|
2019-01-08 15:23:45 -08:00
|
|
|
match db_ledger.read_blobs_bytes(
|
2019-01-07 17:08:03 -08:00
|
|
|
entry,
|
|
|
|
|
ENTRIES_PER_SEGMENT - total_entries,
|
|
|
|
|
&mut buffer,
|
|
|
|
|
DEFAULT_SLOT_HEIGHT,
|
|
|
|
|
) {
|
2018-10-08 13:12:33 -07:00
|
|
|
Ok((num_entries, entry_len)) => {
|
2019-01-08 13:46:59 -08:00
|
|
|
debug!(
|
|
|
|
|
"chacha_cuda: encrypting slice: {} num_entries: {} entry_len: {}",
|
2018-12-23 13:40:52 -08:00
|
|
|
slice, num_entries, entry_len
|
2018-10-08 13:12:33 -07:00
|
|
|
);
|
|
|
|
|
let entry_len_usz = entry_len as usize;
|
|
|
|
|
unsafe {
|
|
|
|
|
chacha_cbc_encrypt_many_sample(
|
|
|
|
|
buffer[..entry_len_usz].as_ptr(),
|
2018-10-19 10:39:13 -07:00
|
|
|
int_sha_states.as_mut_ptr(),
|
2018-10-08 13:12:33 -07:00
|
|
|
entry_len_usz,
|
|
|
|
|
keys.as_ptr(),
|
|
|
|
|
ivecs.as_mut_ptr(),
|
|
|
|
|
num_keys as u32,
|
|
|
|
|
samples.as_ptr(),
|
|
|
|
|
samples.len() as u32,
|
|
|
|
|
total_entry_len,
|
|
|
|
|
&mut time,
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
total_entry_len += entry_len;
|
|
|
|
|
total_entries += num_entries;
|
|
|
|
|
entry += num_entries;
|
|
|
|
|
debug!(
|
2018-12-23 13:40:52 -08:00
|
|
|
"total entries: {} entry: {} slice: {} entries_per_slice: {}",
|
|
|
|
|
total_entries, entry, slice, ENTRIES_PER_SEGMENT
|
2018-10-08 13:12:33 -07:00
|
|
|
);
|
2018-12-23 13:40:52 -08:00
|
|
|
if (entry - slice) >= ENTRIES_PER_SEGMENT {
|
2018-10-08 13:12:33 -07:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
Err(e) => {
|
|
|
|
|
info!("Error encrypting file: {:?}", e);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2018-10-19 10:39:13 -07:00
|
|
|
unsafe {
|
|
|
|
|
chacha_end_sha_state(
|
|
|
|
|
int_sha_states.as_ptr(),
|
|
|
|
|
sha_states.as_mut_ptr(),
|
|
|
|
|
num_keys as u32,
|
|
|
|
|
);
|
|
|
|
|
}
|
2018-10-08 13:12:33 -07:00
|
|
|
let mut res = Vec::new();
|
|
|
|
|
for x in 0..num_keys {
|
2018-10-19 10:39:13 -07:00
|
|
|
let start = x * size_of::<Hash>();
|
|
|
|
|
let end = start + size_of::<Hash>();
|
2018-10-08 13:12:33 -07:00
|
|
|
res.push(Hash::new(&sha_states[start..end]));
|
|
|
|
|
}
|
|
|
|
|
Ok(res)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
|
mod tests {
|
2019-01-07 17:08:03 -08:00
|
|
|
use crate::chacha::chacha_cbc_encrypt_ledger;
|
2018-12-08 21:40:42 -08:00
|
|
|
use crate::chacha_cuda::chacha_cbc_encrypt_file_many_keys;
|
2019-01-09 14:33:44 -08:00
|
|
|
use crate::db_ledger::get_tmp_ledger_path;
|
2019-01-03 21:29:21 -08:00
|
|
|
use crate::db_ledger::{DbLedger, DEFAULT_SLOT_HEIGHT};
|
2019-01-09 14:33:44 -08:00
|
|
|
use crate::entry::make_tiny_test_entries;
|
2018-12-08 21:40:42 -08:00
|
|
|
use crate::replicator::sample_file;
|
2018-11-16 08:04:46 -08:00
|
|
|
use solana_sdk::hash::Hash;
|
2018-10-08 13:12:33 -07:00
|
|
|
use std::fs::{remove_dir_all, remove_file};
|
|
|
|
|
use std::path::Path;
|
2019-01-03 21:29:21 -08:00
|
|
|
use std::sync::Arc;
|
2018-10-08 13:12:33 -07:00
|
|
|
|
|
|
|
|
#[test]
|
2018-10-19 10:39:13 -07:00
|
|
|
fn test_encrypt_file_many_keys_single() {
|
2018-12-14 12:36:50 -08:00
|
|
|
solana_logger::setup();
|
2018-10-08 13:12:33 -07:00
|
|
|
|
2018-10-19 10:39:13 -07:00
|
|
|
let entries = make_tiny_test_entries(32);
|
|
|
|
|
let ledger_dir = "test_encrypt_file_many_keys_single";
|
2018-10-08 13:12:33 -07:00
|
|
|
let ledger_path = get_tmp_ledger_path(ledger_dir);
|
2019-01-07 17:08:03 -08:00
|
|
|
let db_ledger = Arc::new(DbLedger::open(&ledger_path).unwrap());
|
2019-01-03 21:29:21 -08:00
|
|
|
db_ledger
|
|
|
|
|
.write_entries(DEFAULT_SLOT_HEIGHT, 0, &entries)
|
|
|
|
|
.unwrap();
|
2018-10-08 13:12:33 -07:00
|
|
|
|
2018-10-19 10:39:13 -07:00
|
|
|
let out_path = Path::new("test_chacha_encrypt_file_many_keys_single_output.txt.enc");
|
2018-10-08 13:12:33 -07:00
|
|
|
|
|
|
|
|
let samples = [0];
|
2018-10-19 10:39:13 -07:00
|
|
|
let mut ivecs = hex!(
|
|
|
|
|
"abcd1234abcd1234abcd1234abcd1234 abcd1234abcd1234abcd1234abcd1234
|
|
|
|
|
abcd1234abcd1234abcd1234abcd1234 abcd1234abcd1234abcd1234abcd1234"
|
|
|
|
|
);
|
2018-10-08 13:12:33 -07:00
|
|
|
|
2018-10-19 10:39:13 -07:00
|
|
|
let mut cpu_iv = ivecs.clone();
|
2019-01-07 17:08:03 -08:00
|
|
|
assert!(chacha_cbc_encrypt_ledger(&db_ledger, 0, out_path, &mut cpu_iv,).is_ok());
|
2018-10-08 13:12:33 -07:00
|
|
|
|
|
|
|
|
let ref_hash = sample_file(&out_path, &samples).unwrap();
|
|
|
|
|
|
|
|
|
|
let hashes =
|
2019-01-07 17:08:03 -08:00
|
|
|
chacha_cbc_encrypt_file_many_keys(&db_ledger, 0, &mut ivecs, &samples).unwrap();
|
2018-10-08 13:12:33 -07:00
|
|
|
|
|
|
|
|
assert_eq!(hashes[0], ref_hash);
|
|
|
|
|
|
|
|
|
|
let _ignored = remove_dir_all(&ledger_path);
|
|
|
|
|
let _ignored = remove_file(out_path);
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-19 10:39:13 -07:00
|
|
|
#[test]
|
|
|
|
|
fn test_encrypt_file_many_keys_multiple_keys() {
|
2018-12-14 12:36:50 -08:00
|
|
|
solana_logger::setup();
|
2018-10-19 10:39:13 -07:00
|
|
|
|
|
|
|
|
let entries = make_tiny_test_entries(32);
|
|
|
|
|
let ledger_dir = "test_encrypt_file_many_keys_multiple";
|
|
|
|
|
let ledger_path = get_tmp_ledger_path(ledger_dir);
|
2019-01-07 17:08:03 -08:00
|
|
|
let db_ledger = Arc::new(DbLedger::open(&ledger_path).unwrap());
|
2019-01-03 21:29:21 -08:00
|
|
|
db_ledger
|
|
|
|
|
.write_entries(DEFAULT_SLOT_HEIGHT, 0, &entries)
|
|
|
|
|
.unwrap();
|
2018-10-19 10:39:13 -07:00
|
|
|
|
|
|
|
|
let out_path = Path::new("test_chacha_encrypt_file_many_keys_multiple_output.txt.enc");
|
|
|
|
|
|
|
|
|
|
let samples = [0, 1, 3, 4, 5, 150];
|
|
|
|
|
let mut ivecs = Vec::new();
|
|
|
|
|
let mut ref_hashes: Vec<Hash> = vec![];
|
|
|
|
|
for i in 0..2 {
|
|
|
|
|
let mut ivec = hex!(
|
|
|
|
|
"abc123abc123abc123abc123abc123abc123abababababababababababababab
|
|
|
|
|
abc123abc123abc123abc123abc123abc123abababababababababababababab"
|
|
|
|
|
);
|
|
|
|
|
ivec[0] = i;
|
|
|
|
|
ivecs.extend(ivec.clone().iter());
|
2019-01-07 17:08:03 -08:00
|
|
|
assert!(chacha_cbc_encrypt_ledger(&db_ledger.clone(), 0, out_path, &mut ivec,).is_ok());
|
2018-10-19 10:39:13 -07:00
|
|
|
|
|
|
|
|
ref_hashes.push(sample_file(&out_path, &samples).unwrap());
|
|
|
|
|
info!(
|
|
|
|
|
"ivec: {:?} hash: {:?} ivecs: {:?}",
|
|
|
|
|
ivec.to_vec(),
|
|
|
|
|
ref_hashes.last(),
|
|
|
|
|
ivecs
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let hashes =
|
2019-01-07 17:08:03 -08:00
|
|
|
chacha_cbc_encrypt_file_many_keys(&db_ledger, 0, &mut ivecs, &samples).unwrap();
|
2018-10-19 10:39:13 -07:00
|
|
|
|
|
|
|
|
assert_eq!(hashes, ref_hashes);
|
|
|
|
|
|
|
|
|
|
let _ignored = remove_dir_all(&ledger_path);
|
|
|
|
|
let _ignored = remove_file(out_path);
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-08 13:12:33 -07:00
|
|
|
#[test]
|
|
|
|
|
fn test_encrypt_file_many_keys_bad_key_length() {
|
2018-10-19 10:39:13 -07:00
|
|
|
let mut keys = hex!("abc123");
|
2018-10-08 13:12:33 -07:00
|
|
|
let ledger_dir = "test_encrypt_file_many_keys_bad_key_length";
|
|
|
|
|
let ledger_path = get_tmp_ledger_path(ledger_dir);
|
|
|
|
|
let samples = [0];
|
2019-01-08 13:46:59 -08:00
|
|
|
let db_ledger = Arc::new(DbLedger::open(&ledger_path).unwrap());
|
|
|
|
|
assert!(chacha_cbc_encrypt_file_many_keys(&db_ledger, 0, &mut keys, &samples,).is_err());
|
2018-10-08 13:12:33 -07:00
|
|
|
}
|
|
|
|
|
}
|
