Skip to content

Support unsigned object GET/HEAD responses#719

Merged
roman-khimov merged 5 commits intomasterfrom
get-unsigned
Jun 23, 2025
Merged

Support unsigned object GET/HEAD responses#719
roman-khimov merged 5 commits intomasterfrom
get-unsigned

Conversation

@cthulhu-rider
Copy link
Copy Markdown
Contributor

@cthulhu-rider cthulhu-rider commented Jun 19, 2025

@codecov
Copy link
Copy Markdown

codecov Bot commented Jun 19, 2025
edited
Loading

Codecov Report

Attention: Patch coverage is 87.87879% with 4 lines in your changes missing coverage. Please review.

Project coverage is 59.19%. Comparing base (4b8bd69) to head (666fbf8).
Report is 6 commits behind head on master.

Files with missing lines Patch % Lines
client/object_get.go 87.87% 3 Missing and 1 partial ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##           master     #719      +/-   ##
==========================================
+ Coverage   59.17%   59.19%   +0.01%     
==========================================
  Files         166      166              
  Lines       20950    20970      +20     
==========================================
+ Hits        12397    12413      +16     
- Misses       8287     8290       +3     
- Partials      266      267       +1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@cthulhu-rider cthulhu-rider mentioned this pull request Jun 19, 2025
Merged
roman-khimov
roman-khimov reviewed Jun 20, 2025
View reviewed changes
Copy link
Copy Markdown
Member

@roman-khimov roman-khimov left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How about checksums? Can we check them and have an option to disable these checks at the client level?

@cthulhu-rider
proto: Regenerate code with newer NeoFS API version
38a70a3 
From nspcc-dev/neofs-api@7dd2d1d.
Brought doc changes only.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
@cthulhu-rider
client: Ignore object GET/HEAD response signatures
558abe7 
They are deprecated since nspcc-dev/neofs-api#334.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
@cthulhu-rider
client: Verify header checksum in HEAD method
9f8ec0c 
ID of the object is essentially a checksum of its header. To prevent
malicious data substitution or bugs, received headers should be verified
against requested IDs. This makes `Client.ObjectHead` method to do it.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
@cthulhu-rider
client: Provide option to skip header checksum verification in HEAD
f3437c5 
Some customers may want to self-check or not check.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
@cthulhu-rider cthulhu-rider marked this pull request as ready for review June 20, 2025 12:46
roman-khimov
roman-khimov reviewed Jun 23, 2025
View reviewed changes
Comment thread client/object_get.go Outdated
@cthulhu-rider
client: Verify header and payload checksums in GET method
666fbf8 
Follow 9f8ec0c, f3437c5.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
@roman-khimov roman-khimov merged commit a9cfab6 into master Jun 23, 2025
10 checks passed
@roman-khimov roman-khimov deleted the get-unsigned branch June 23, 2025 12:45
cthulhu-rider added a commit to nspcc-dev/neofs-node that referenced this pull request Jun 23, 2025
@cthulhu-rider
sn/object: Ignore signatures of GET/HEAD responses on forwarding
edb3308 
Follow nspcc-dev/neofs-sdk-go#719 in request
forwarding case.

Refs #3396.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
cthulhu-rider added a commit to nspcc-dev/neofs-node that referenced this pull request Jun 23, 2025
@cthulhu-rider
sn/object: Ignore signatures of GET/HEAD responses on forwarding
c613188 
Continues b283606. Follow
nspcc-dev/neofs-sdk-go#719 in request forwarding
case.

Refs #3396.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
cthulhu-rider added a commit to nspcc-dev/neofs-node that referenced this pull request Jun 24, 2025
@cthulhu-rider
sn/object: Ignore signatures of GET/HEAD responses on forwarding
af9101d 
Continues ad60ee5. Follow
nspcc-dev/neofs-sdk-go#719 in request forwarding
case.

Refs #3396.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
cthulhu-rider added a commit to nspcc-dev/neofs-node that referenced this pull request Jun 25, 2025
@cthulhu-rider
sn/object: Ignore signatures of proxied GET/HEAD responses
bcffc46 
Continues f0ce38e. Follow
nspcc-dev/neofs-sdk-go#719 in request proxy case.

Refs #3396.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
cthulhu-rider added a commit to nspcc-dev/neofs-node that referenced this pull request Jun 25, 2025
@cthulhu-rider
sn/object: Ignore signatures of proxied GET/HEAD responses
4080349 
Continues 041cdce. Follow
nspcc-dev/neofs-sdk-go#719 in request proxy case.

Refs #3396.

Signed-off-by: Leonard Lyubich <leonard@morphbits.io>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@roman-khimov roman-khimov roman-khimov approved these changes

@carpawell carpawell carpawell approved these changes

@smallhive smallhive Awaiting requested review from smallhive smallhive is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@cthulhu-rider @roman-khimov @carpawell