1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
|
package host
import (
"fmt"
"net"
"time"
"github.com/NebulousLabs/Sia/encoding"
"github.com/NebulousLabs/Sia/modules"
"github.com/NebulousLabs/Sia/types"
)
var (
// errLargeDownloadBatch is returned if the renter requests a download
// batch that exceeds the maximum batch size that the host will
// accommodate.
errLargeDownloadBatch = ErrorCommunication("download request exceeded maximum batch size")
// errRequestOutOfBounds is returned when a download request is made which
// asks for elements of a sector which do not exist.
errRequestOutOfBounds = ErrorCommunication("download request has invalid sector bounds")
)
// managedDownloadIteration is responsible for managing a single iteration of
// the download loop for RPCDownload.
func (h *Host) managedDownloadIteration(conn net.Conn, so *storageObligation) error {
// Exchange settings with the renter.
err := h.managedRPCSettings(conn)
if err != nil {
return extendErr("RPCSettings failed: ", err)
}
// Extend the deadline for the download.
conn.SetDeadline(time.Now().Add(modules.NegotiateDownloadTime))
// The renter will either accept or reject the host's settings.
err = modules.ReadNegotiationAcceptance(conn)
if err == modules.ErrStopResponse {
return err // managedRPCDownload will catch this and exit gracefully
} else if err != nil {
return extendErr("renter rejected host settings: ", ErrorCommunication(err.Error()))
}
// Grab a set of variables that will be useful later in the function.
h.mu.RLock()
blockHeight := h.blockHeight
secretKey := h.secretKey
settings := h.settings
h.mu.RUnlock()
// Read the download requests, followed by the file contract revision that
// pays for them.
var requests []modules.DownloadAction
var paymentRevision types.FileContractRevision
err = encoding.ReadObject(conn, &requests, modules.NegotiateMaxDownloadActionRequestSize)
if err != nil {
return extendErr("failed to read download requests:", ErrorConnection(err.Error()))
}
err = encoding.ReadObject(conn, &paymentRevision, modules.NegotiateMaxFileContractRevisionSize)
if err != nil {
return extendErr("failed to read payment revision:", ErrorConnection(err.Error()))
}
// Verify that the request is acceptable, and then fetch all of the data
// for the renter.
existingRevision := so.RevisionTransactionSet[len(so.RevisionTransactionSet)-1].FileContractRevisions[0]
var payload [][]byte
err = func() error {
// Check that the length of each file is in-bounds, and that the total
// size being requested is acceptable.
var totalSize uint64
for _, request := range requests {
if request.Length > modules.SectorSize || request.Offset+request.Length > modules.SectorSize {
return extendErr("download iteration request failed: ", errRequestOutOfBounds)
}
totalSize += request.Length
}
if totalSize > settings.MaxDownloadBatchSize {
return extendErr("download iteration batch failed: ", errLargeDownloadBatch)
}
// Verify that the correct amount of money has been moved from the
// renter's contract funds to the host's contract funds.
expectedTransfer := settings.MinDownloadBandwidthPrice.Mul64(totalSize)
err = verifyPaymentRevision(existingRevision, paymentRevision, blockHeight, expectedTransfer)
if err != nil {
return extendErr("payment verification failed: ", err)
}
// Load the sectors and build the data payload.
for _, request := range requests {
sectorData, err := h.ReadSector(request.MerkleRoot)
if err != nil {
return extendErr("failed to load sector: ", ErrorInternal(err.Error()))
}
payload = append(payload, sectorData[request.Offset:request.Offset+request.Length])
}
return nil
}()
if err != nil {
modules.WriteNegotiationRejection(conn, err) // Error not reported to preserve type in extendErr
return extendErr("download request rejected: ", err)
}
// Revision is acceptable, write acceptance.
err = modules.WriteNegotiationAcceptance(conn)
if err != nil {
return extendErr("failed to write acceptance for renter revision: ", ErrorConnection(err.Error()))
}
// Renter will send a transaction signature for the file contract revision.
var renterSignature types.TransactionSignature
err = encoding.ReadObject(conn, &renterSignature, modules.NegotiateMaxTransactionSignatureSize)
if err != nil {
return extendErr("failed to read renter signature: ", ErrorConnection(err.Error()))
}
txn, err := createRevisionSignature(paymentRevision, renterSignature, secretKey, blockHeight)
// Update the storage obligation.
paymentTransfer := existingRevision.NewValidProofOutputs[0].Value.Sub(paymentRevision.NewValidProofOutputs[0].Value)
so.PotentialDownloadRevenue = so.PotentialDownloadRevenue.Add(paymentTransfer)
so.RevisionTransactionSet = []types.Transaction{{
FileContractRevisions: []types.FileContractRevision{paymentRevision},
TransactionSignatures: []types.TransactionSignature{renterSignature, txn.TransactionSignatures[1]},
}}
err = h.modifyStorageObligation(*so, nil, nil, nil)
if err != nil {
return extendErr("failed to modify storage obligation: ", ErrorInternal(modules.WriteNegotiationRejection(conn, err).Error()))
}
// Write acceptance to the renter - the data request can be fulfilled by
// the host, the payment is satisfactory, signature is correct. Then send
// the host signature and all of the data.
err = modules.WriteNegotiationAcceptance(conn)
if err != nil {
return extendErr("failed to write acceptance following obligation modification: ", ErrorConnection(err.Error()))
}
err = encoding.WriteObject(conn, txn.TransactionSignatures[1])
if err != nil {
return extendErr("failed to write signature: ", ErrorConnection(err.Error()))
}
err = encoding.WriteObject(conn, payload)
if err != nil {
return extendErr("failed to write payload: ", ErrorConnection(err.Error()))
}
return nil
}
// verifyPaymentRevision verifies that the revision being provided to pay for
// the data has transferred the expected amount of money from the renter to the
// host.
func verifyPaymentRevision(existingRevision, paymentRevision types.FileContractRevision, blockHeight types.BlockHeight, expectedTransfer types.Currency) error {
// Check that the revision is well-formed.
if len(paymentRevision.NewValidProofOutputs) != 2 || len(paymentRevision.NewMissedProofOutputs) != 3 {
return errBadContractOutputCounts
}
// Check that the time to finalize and submit the file contract revision
// has not already passed.
if existingRevision.NewWindowStart-revisionSubmissionBuffer <= blockHeight {
return errLateRevision
}
// Determine the amount that was transferred from the renter.
if paymentRevision.NewValidProofOutputs[0].Value.Cmp(existingRevision.NewValidProofOutputs[0].Value) > 0 {
return extendErr("renter increased its valid proof output: ", errHighRenterValidOutput)
}
fromRenter := existingRevision.NewValidProofOutputs[0].Value.Sub(paymentRevision.NewValidProofOutputs[0].Value)
// Verify that enough money was transferred.
if fromRenter.Cmp(expectedTransfer) < 0 {
s := fmt.Sprintf("expected at least %v to be exchanged, but %v was exchanged: ", expectedTransfer, fromRenter)
return extendErr(s, errHighRenterValidOutput)
}
// Determine the amount of money that was transferred to the host.
if existingRevision.NewValidProofOutputs[1].Value.Cmp(paymentRevision.NewValidProofOutputs[1].Value) > 0 {
return extendErr("host valid proof output was decreased: ", errLowHostValidOutput)
}
toHost := paymentRevision.NewValidProofOutputs[1].Value.Sub(existingRevision.NewValidProofOutputs[1].Value)
// Verify that enough money was transferred.
if !toHost.Equals(fromRenter) {
s := fmt.Sprintf("expected exactly %v to be transferred to the host, but %v was transferred: ", fromRenter, toHost)
return extendErr(s, errLowHostValidOutput)
}
// If the renter's valid proof output is larger than the renter's missed
// proof output, the renter has incentive to see the host fail. Make sure
// that this incentive is not present.
if paymentRevision.NewValidProofOutputs[0].Value.Cmp(paymentRevision.NewMissedProofOutputs[0].Value) > 0 {
return extendErr("renter has incentive to see host fail: ", errHighRenterMissedOutput)
}
// Check that the host is not going to be posting collateral.
if paymentRevision.NewMissedProofOutputs[1].Value.Cmp(existingRevision.NewMissedProofOutputs[1].Value) < 0 {
collateral := existingRevision.NewMissedProofOutputs[1].Value.Sub(paymentRevision.NewMissedProofOutputs[1].Value)
s := fmt.Sprintf("host not expecting to post any collateral, but contract has host posting %v collateral: ", collateral)
return extendErr(s, errLowHostMissedOutput)
}
// Check that the revision count has increased.
if paymentRevision.NewRevisionNumber <= existingRevision.NewRevisionNumber {
return errBadRevisionNumber
}
// Check that all of the non-volatile fields are the same.
if paymentRevision.ParentID != existingRevision.ParentID {
return errBadParentID
}
if paymentRevision.UnlockConditions.UnlockHash() != existingRevision.UnlockConditions.UnlockHash() {
return errBadUnlockConditions
}
if paymentRevision.NewFileSize != existingRevision.NewFileSize {
return errBadFileSize
}
if paymentRevision.NewFileMerkleRoot != existingRevision.NewFileMerkleRoot {
return errBadFileMerkleRoot
}
if paymentRevision.NewWindowStart != existingRevision.NewWindowStart {
return errBadWindowStart
}
if paymentRevision.NewWindowEnd != existingRevision.NewWindowEnd {
return errBadWindowEnd
}
if paymentRevision.NewUnlockHash != existingRevision.NewUnlockHash {
return errBadUnlockHash
}
if !paymentRevision.NewMissedProofOutputs[1].Value.Equals(existingRevision.NewMissedProofOutputs[1].Value) {
return errLowHostMissedOutput
}
return nil
}
// managedRPCDownload is responsible for handling an RPC request from the
// renter to download data.
func (h *Host) managedRPCDownload(conn net.Conn) error {
// Get the start time to limit the length of the whole connection.
startTime := time.Now()
// Perform the file contract revision exchange, giving the renter the most
// recent file contract revision and getting the storage obligation that
// will be used to pay for the data.
_, so, err := h.managedRPCRecentRevision(conn)
if err != nil {
return extendErr("failed RPCRecentRevision during RPCDownload: ", err)
}
// The storage obligation is returned with a lock on it. Defer a call to
// unlock the storage obligation.
defer func() {
h.managedUnlockStorageObligation(so.id())
}()
// Perform a loop that will allow downloads to happen until the maximum
// time for a single connection has been reached.
for time.Now().Before(startTime.Add(iteratedConnectionTime)) {
err := h.managedDownloadIteration(conn, &so)
if err == modules.ErrStopResponse {
// The renter has indicated that it has finished downloading the
// data, therefore there is no error. Return nil.
return nil
} else if err != nil {
return extendErr("download iteration failed: ", err)
}
}
return nil
}
|
