CLDSRV-892: UploadPart store part checksum

leif-scality · leif-scality · commit b9b6b70a98b6 · 2026-04-16T20:38:24.000+02:00
diff --git a/lib/api/objectPutPart.js b/lib/api/objectPutPart.js
@@ -21,6 +21,10 @@ const { BackendInfo } = models;
 const writeContinue = require('../utilities/writeContinue');
 const { parseObjectEncryptionHeaders } = require('./apiUtils/bucket/bucketEncryption');
 const validateChecksumHeaders = require('./apiUtils/object/validateChecksumHeaders');
+const {
+    getChecksumDataFromHeaders,
+    arsenalErrorFromChecksumError,
+} = require('./apiUtils/integrity/validateChecksums');
 const { validateQuotas } = require('./apiUtils/quotas/quotaUtils');
 const { setSSEHeaders } = require('./apiUtils/object/sseHeaders');
 const { storeServerAccessLogInfo } = require('../metadata/metadataUtils');
@@ -113,6 +117,8 @@ function objectPutPart(authInfo, request, streamingV4Params, log,
     // `requestType` is the general 'objectPut'.
     const requestType = request.apiMethods || 'objectPutPart';
     let partChecksum;
+    let mpuChecksumAlgo;
+    let mpuChecksumIsDefault;
 
     return async.waterfall([
         // Get the destination bucket.
@@ -196,6 +202,9 @@ function objectPutPart(authInfo, request, streamingV4Params, log,
                         return next(errors.AccessDenied, destinationBucket);
                     }
 
+                    mpuChecksumAlgo = res.checksumAlgorithm;
+                    mpuChecksumIsDefault = res.checksumIsDefault;
+
                     const objectLocationConstraint =
                         res.controllingLocationConstraint;
                     const sseAlgo = res['x-amz-server-side-encryption'];
@@ -316,8 +325,43 @@ function objectPutPart(authInfo, request, streamingV4Params, log,
             };
             const backendInfo = new BackendInfo(config,
                 objectLocationConstraint);
+
+            const headerChecksum = getChecksumDataFromHeaders(request.headers);
+            if (headerChecksum && headerChecksum.error) {
+                return next(arsenalErrorFromChecksumError(headerChecksum), destinationBucket);
+            }
+
+            // If the MPU specifies a non-default checksum algo and the
+            // client sends a different algo, reject the request.
+            if (headerChecksum && mpuChecksumAlgo && !mpuChecksumIsDefault
+                && headerChecksum.algorithm !== mpuChecksumAlgo) {
+                return next(errors.InvalidRequest.customizeDescription(
+                    `Checksum algorithm '${headerChecksum.algorithm}' is not the same ` +
+                    `as the checksum algorithm '${mpuChecksumAlgo}' specified during ` +
+                    'CreateMultipartUpload.'
+                ), destinationBucket);
+            }
+
+            const primaryAlgo = mpuChecksumAlgo || 'crc64nvme';
+            let checksums;
+            if (headerChecksum && headerChecksum.algorithm === mpuChecksumAlgo) {
+                checksums = {
+                    primary: headerChecksum, // MPU and Header match only need to calculate one.
+                    secondary: null,
+                };
+            } else if (headerChecksum) {
+                checksums = {
+                    primary: { algorithm: primaryAlgo, isTrailer: false, expected: undefined },
+                    secondary: headerChecksum, // MPU and Header mismatch, need to verify the header checksum.
+                };
+            } else {
+                checksums = {
+                    primary: { algorithm: primaryAlgo, isTrailer: false, expected: undefined },
+                    secondary: null, // No Header checksum, we only calculate the MPU one.
+                };
+            }
             return dataStore(objectContext, cipherBundle, request,
-                size, streamingV4Params, backendInfo, log,
+                size, streamingV4Params, backendInfo, checksums, log,
                 (err, dataGetInfo, hexDigest, checksum) => {
                     if (err) {
                         return next(err, destinationBucket);
@@ -356,6 +400,15 @@ function objectPutPart(authInfo, request, streamingV4Params, log,
                 'content-length': size,
                 'owner-id': destinationBucket.getOwner(),
             };
+            if (partChecksum) {
+                if (partChecksum.storageChecksum) {
+                    omVal.checksumValue = partChecksum.storageChecksum.value;
+                    omVal.checksumAlgorithm = partChecksum.storageChecksum.algorithm;
+                } else {
+                    omVal.checksumValue = partChecksum.value;
+                    omVal.checksumAlgorithm = partChecksum.algorithm;
+                }
+            }
             const mdParams = { overheadField: constants.overheadField };
             return metadata.putObjectMD(mpuBucketName, partKey, omVal, mdParams, log,
                 err => {
diff --git a/tests/functional/aws-node-sdk/test/object/mpuUploadPartChecksum.js b/tests/functional/aws-node-sdk/test/object/mpuUploadPartChecksum.js
@@ -0,0 +1,186 @@
+const assert = require('assert');
+const {
+    CreateBucketCommand,
+    CreateMultipartUploadCommand,
+    AbortMultipartUploadCommand,
+    UploadPartCommand,
+    DeleteBucketCommand,
+} = require('@aws-sdk/client-s3');
+
+const withV4 = require('../support/withV4');
+const BucketUtility = require('../../lib/utility/bucket-util');
+const { algorithms } = require('../../../../../lib/api/apiUtils/integrity/validateChecksums');
+
+const bucket = `mpu-part-checksum-test-${Date.now()}`;
+const key = 'test-part-checksum-key';
+const partBody = Buffer.from('I am a part body for checksum testing', 'utf8');
+
+const allAlgos = ['CRC32', 'CRC32C', 'SHA1', 'SHA256'];
+
+// Maps algo name to the UploadPartCommand checksum field name
+const checksumField = {
+    CRC32: 'ChecksumCRC32',
+    CRC32C: 'ChecksumCRC32C',
+    SHA1: 'ChecksumSHA1',
+    SHA256: 'ChecksumSHA256',
+};
+
+// Pre-compute correct digests for partBody
+const correctDigest = {};
+// A valid-length but incorrect digest for each algo
+const wrongDigest = {};
+
+before(async () => {
+    for (const algo of allAlgos) {
+         
+        correctDigest[algo] = await algorithms[algo.toLowerCase()].digest(partBody);
+    }
+    // Generate wrong digests: flip the first character
+    for (const algo of allAlgos) {
+        const correct = correctDigest[algo];
+        const flipped = correct[0] === 'A' ? `B${correct.slice(1)}` : `A${correct.slice(1)}`;
+        wrongDigest[algo] = flipped;
+    }
+});
+
+describe('UploadPart checksum validation', () =>
+    withV4(sigCfg => {
+        let bucketUtil;
+        let s3;
+
+        before(async () => {
+            bucketUtil = new BucketUtility('default', sigCfg);
+            s3 = bucketUtil.s3;
+            await s3.send(new CreateBucketCommand({ Bucket: bucket }));
+        });
+
+        after(async () => {
+            await bucketUtil.empty(bucket);
+            await s3.send(new DeleteBucketCommand({ Bucket: bucket }));
+        });
+
+        // For each non-default MPU algo, test that:
+        // - matching algo with correct digest succeeds
+        // - matching algo with wrong digest fails with BadDigest
+        // - every other algo is rejected with InvalidRequest
+        // - no checksum header is accepted
+        allAlgos.forEach(mpuAlgo => {
+            describe(`MPU created with ${mpuAlgo}`, () => {
+                let uploadId;
+                let partNum = 0;
+
+                before(async () => {
+                    const res = await s3.send(new CreateMultipartUploadCommand({
+                        Bucket: bucket, Key: key,
+                        ChecksumAlgorithm: mpuAlgo,
+                    }));
+                    uploadId = res.UploadId;
+                });
+
+                after(async () => {
+                    await s3.send(new AbortMultipartUploadCommand({
+                        Bucket: bucket, Key: key, UploadId: uploadId,
+                    }));
+                });
+
+                it(`should accept ${mpuAlgo} with correct digest`, async () => {
+                    partNum++;
+                    const res = await s3.send(new UploadPartCommand({
+                        Bucket: bucket, Key: key, UploadId: uploadId,
+                        PartNumber: partNum, Body: partBody,
+                        [checksumField[mpuAlgo]]: correctDigest[mpuAlgo],
+                    }));
+                    assert.strictEqual(res[checksumField[mpuAlgo]], correctDigest[mpuAlgo]);
+                });
+
+                it(`should reject ${mpuAlgo} with wrong digest (BadDigest)`, async () => {
+                    partNum++;
+                    try {
+                        await s3.send(new UploadPartCommand({
+                            Bucket: bucket, Key: key, UploadId: uploadId,
+                            PartNumber: partNum, Body: partBody,
+                            [checksumField[mpuAlgo]]: wrongDigest[mpuAlgo],
+                        }));
+                        assert.fail('Expected BadDigest error');
+                    } catch (err) {
+                        assert.strictEqual(err.name, 'BadDigest');
+                    }
+                });
+
+                // Note: AWS SDK v3 always sends a default crc32 checksum,
+                // so "no checksum header" cannot be tested via the SDK for
+                // non-default MPUs (it would be rejected as a mismatch).
+
+                allAlgos.filter(a => a !== mpuAlgo).forEach(otherAlgo => {
+                    it(`should reject ${otherAlgo} when MPU is ${mpuAlgo} (InvalidRequest)`, async () => {
+                        partNum++;
+                        try {
+                            await s3.send(new UploadPartCommand({
+                                Bucket: bucket, Key: key, UploadId: uploadId,
+                                PartNumber: partNum, Body: partBody,
+                                [checksumField[otherAlgo]]: correctDigest[otherAlgo],
+                            }));
+                            assert.fail('Expected InvalidRequest error');
+                        } catch (err) {
+                            assert.strictEqual(err.name, 'InvalidRequest');
+                        }
+                    });
+                });
+            });
+        });
+
+        // Default MPU (no ChecksumAlgorithm) should accept any algo
+        describe('MPU created with no checksum (default)', () => {
+            let uploadId;
+            let partNum = 0;
+
+            before(async () => {
+                const res = await s3.send(new CreateMultipartUploadCommand({
+                    Bucket: bucket, Key: key,
+                }));
+                uploadId = res.UploadId;
+            });
+
+            after(async () => {
+                await s3.send(new AbortMultipartUploadCommand({
+                    Bucket: bucket, Key: key, UploadId: uploadId,
+                }));
+            });
+
+            allAlgos.forEach(algo => {
+                it(`should accept ${algo} with correct digest`, async () => {
+                    partNum++;
+                    const res = await s3.send(new UploadPartCommand({
+                        Bucket: bucket, Key: key, UploadId: uploadId,
+                        PartNumber: partNum, Body: partBody,
+                        [checksumField[algo]]: correctDigest[algo],
+                    }));
+                    assert.strictEqual(res[checksumField[algo]], correctDigest[algo]);
+                });
+
+                it(`should reject ${algo} with wrong digest (BadDigest)`, async () => {
+                    partNum++;
+                    try {
+                        await s3.send(new UploadPartCommand({
+                            Bucket: bucket, Key: key, UploadId: uploadId,
+                            PartNumber: partNum, Body: partBody,
+                            [checksumField[algo]]: wrongDigest[algo],
+                        }));
+                        assert.fail('Expected BadDigest error');
+                    } catch (err) {
+                        assert.strictEqual(err.name, 'BadDigest');
+                    }
+                });
+            });
+
+            it('should accept part with no checksum header', async () => {
+                partNum++;
+                const res = await s3.send(new UploadPartCommand({
+                    Bucket: bucket, Key: key, UploadId: uploadId,
+                    PartNumber: partNum, Body: partBody,
+                }));
+                assert(res.ETag);
+            });
+        });
+    })
+);
diff --git a/tests/unit/api/objectPutPartChecksum.js b/tests/unit/api/objectPutPartChecksum.js
