s3-server 0.2.0

An experimental generic S3 server
Documentation 
//! aws-chunked stream

use crate::headers::AmzDate;
use crate::signature_v4;
use crate::utils::Apply;

use std::convert::TryInto;
use std::fmt::{self, Debug};
use std::io;
use std::pin::Pin;
use std::task::{Context, Poll};

use futures::future::BoxFuture;
use futures::pin_mut;
use futures::stream::{Stream, StreamExt};
use hyper::body::{Buf, Bytes};
use memchr::memchr;
use transform_stream::AsyncTryStream;

/// Aws chunked stream
pub struct AwsChunkedStream {
    /// inner
    inner: AsyncTryStream<
        Bytes,
        AwsChunkedStreamError,
        BoxFuture<'static, Result<(), AwsChunkedStreamError>>,
    >,
}

impl Debug for AwsChunkedStream {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "AwsChunkedStream {{...}}")
    }
}

/// signature ctx
#[derive(Debug)]
struct SignatureCtx {
    /// date
    amz_date: AmzDate,

    /// region
    region: Box<str>,

    /// secret_key
    secret_key: Box<str>,

    /// previous chunk's signature
    prev_signature: Box<str>,
}

#[derive(Debug, thiserror::Error)]
/// `AwsChunkedStreamError`
pub enum AwsChunkedStreamError {
    /// IO error
    #[error("AwsChunkedStreamError: IO: {}",.0)]
    Io(io::Error),
    /// Signature mismatch
    #[error("AwsChunkedStreamError: SignatureMismatch")]
    SignatureMismatch,
    /// Format error
    #[error("AwsChunkedStreamError: FormatError")]
    FormatError,
    /// Incomplete stream
    #[error("AwsChunkedStreamError: Incomplete")]
    Incomplete,
}

/// Chunk meta
struct ChunkMeta<'a> {
    /// chunk size
    size: usize,
    /// chunk signature
    signature: &'a [u8],
}

/// nom parser
fn parse_chunk_meta(mut input: &[u8]) -> nom::IResult<&[u8], ChunkMeta<'_>> {
    use nom::{
        bytes::complete::{tag, take, take_till1},
        combinator::{all_consuming, map_res},
        number::complete::hex_u32,
        sequence::tuple,
    };

    let mut parser = all_consuming(tuple((
        take_till1(|c| c == b';'),
        tag(b";chunk-signature="),
        take(64_usize),
        tag(b"\r\n"),
    )));

    let (size_str, signature) = parser(input)?.apply(|(remain, (size_str, _, signature, _))| {
        input = remain;
        (size_str, signature)
    });

    let (_, size) = map_res(hex_u32, TryInto::try_into)(size_str)?;

    Ok((input, ChunkMeta { size, signature }))
}

/// check signature
fn check_signature(
    ctx: &SignatureCtx,
    expected_signature: &[u8],
    chunk_data: &[Bytes],
) -> Option<Box<str>> {
    let string_to_sign = signature_v4::create_chunk_string_to_sign(
        &ctx.amz_date,
        &ctx.region,
        &ctx.prev_signature,
        chunk_data,
    );

    let chunk_signature = signature_v4::calculate_signature(
        &string_to_sign,
        &ctx.secret_key,
        &ctx.amz_date,
        &ctx.region,
    );

    (chunk_signature.as_bytes() == expected_signature).then(|| chunk_signature.into())
}

impl AwsChunkedStream {
    /// Constructs a `ChunkedStream`
    pub fn new<S>(
        body: S,
        seed_signature: Box<str>,
        amz_date: AmzDate,
        region: Box<str>,
        secret_key: Box<str>,
    ) -> Self
    where
        S: Stream<Item = io::Result<Bytes>> + Send + 'static,
    {
        let inner =
            AsyncTryStream::<_, _, BoxFuture<'static, Result<(), AwsChunkedStreamError>>>::new(
                |mut y| {
                    #[allow(clippy::shadow_same)] // necessary for `pin_mut!`
                    Box::pin(async move {
                        pin_mut!(body);
                        let mut prev_bytes = Bytes::new();
                        let mut buf: Vec<u8> = Vec::new();
                        let mut ctx = SignatureCtx {
                            amz_date,
                            region,
                            secret_key,
                            prev_signature: seed_signature,
                        };

                        loop {
                            let meta = {
                                match Self::read_meta_bytes(body.as_mut(), prev_bytes, &mut buf)
                                    .await
                                {
                                    None => break,
                                    Some(Err(e)) => return Err(AwsChunkedStreamError::Io(e)),
                                    Some(Ok(remaining_bytes)) => prev_bytes = remaining_bytes,
                                };
                                if let Ok((_, meta)) = parse_chunk_meta(&buf) {
                                    meta
                                } else {
                                    return Err(AwsChunkedStreamError::FormatError);
                                }
                            };

                            let data: Vec<Bytes> = {
                                match Self::read_data(body.as_mut(), prev_bytes, meta.size).await {
                                    None => return Err(AwsChunkedStreamError::Incomplete),
                                    Some(Err(e)) => return Err(e),
                                    Some(Ok((data, remaining_bytes))) => {
                                        prev_bytes = remaining_bytes;
                                        data
                                    }
                                }
                            };

                            match check_signature(&ctx, meta.signature, &data) {
                                None => return Err(AwsChunkedStreamError::SignatureMismatch),
                                Some(signature) => ctx.prev_signature = signature,
                            }

                            for bytes in data {
                                y.yield_ok(bytes).await;
                            }
                        }

                        Ok(())
                    })
                },
            );
        Self { inner }
    }

    /// read meta bytes and return remaining bytes
    async fn read_meta_bytes<S>(
        mut body: Pin<&mut S>,
        prev_bytes: Bytes,
        buf: &mut Vec<u8>,
    ) -> Option<io::Result<Bytes>>
    where
        S: Stream<Item = io::Result<Bytes>> + Send + 'static,
    {
        buf.clear();

        let mut push_meta_bytes = |mut bytes: Bytes| {
            if let Some(idx) = memchr(b'\n', bytes.as_ref()) {
                let len = idx.wrapping_add(1); // NOTE: idx < bytes.len()
                let leading = bytes.split_to(len);
                buf.extend_from_slice(leading.as_ref());
                return Some(bytes);
            }

            buf.extend_from_slice(bytes.as_ref());
            None
        };

        if let Some(remaining_bytes) = push_meta_bytes(prev_bytes) {
            return Some(Ok(remaining_bytes));
        }

        loop {
            match body.next().await? {
                Err(e) => return Some(Err(e)),
                Ok(bytes) => {
                    if let Some(remaining_bytes) = push_meta_bytes(bytes) {
                        return Some(Ok(remaining_bytes));
                    }
                }
            }
        }
    }

    /// read data and return remaining bytes
    async fn read_data<S>(
        mut body: Pin<&mut S>,
        prev_bytes: Bytes,
        mut data_size: usize,
    ) -> Option<Result<(Vec<Bytes>, Bytes), AwsChunkedStreamError>>
    where
        S: Stream<Item = io::Result<Bytes>> + Send + 'static,
    {
        let mut bytes_buffer = Vec::new();
        let mut push_data_bytes = |mut bytes: Bytes| {
            if data_size == 0 {
                return Some(bytes);
            }
            if data_size <= bytes.len() {
                let data = bytes.split_to(data_size);
                bytes_buffer.push(data);
                data_size = 0;
                Some(bytes)
            } else {
                data_size = data_size.wrapping_sub(bytes.len());
                bytes_buffer.push(bytes);
                None
            }
        };

        let mut remaining_bytes = 'outer: loop {
            if let Some(remaining_bytes) = push_data_bytes(prev_bytes) {
                break 'outer remaining_bytes;
            }

            loop {
                match body.next().await? {
                    Err(e) => return Some(Err(AwsChunkedStreamError::Io(e))),
                    Ok(bytes) => {
                        if let Some(remaining_bytes) = push_data_bytes(bytes) {
                            break 'outer remaining_bytes;
                        }
                    }
                }
            }
        };
        if remaining_bytes.starts_with(b"\r\n") {
            // fast path
            remaining_bytes.advance(2);
        } else {
            for &expected_byte in b"\r\n" {
                loop {
                    match *remaining_bytes.as_ref() {
                        [] => match body.next().await? {
                            Err(e) => return Some(Err(AwsChunkedStreamError::Io(e))),
                            Ok(bytes) => remaining_bytes = bytes,
                        },

                        [x, ..] if x == expected_byte => {
                            remaining_bytes.advance(1);
                            break;
                        }
                        _ => return Some(Err(AwsChunkedStreamError::FormatError)),
                    }
                }
            }
        }

        Some(Ok((bytes_buffer, remaining_bytes)))
    }
}

impl Stream for AwsChunkedStream {
    type Item = Result<Bytes, AwsChunkedStreamError>;

    fn poll_next(mut self: Pin<&mut Self>, cx: &mut Context<'_>) -> Poll<Option<Self::Item>> {
        Pin::new(&mut self.inner).poll_next(cx)
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::utils::Also;

    #[tokio::test]
    async fn example_put_object_chunked_stream() {
        let chunk1_meta = b"10000;chunk-signature=ad80c730a21e5b8d04586a2213dd63b9a0e99e0e2307b0ade35a65485a288648\r\n";
        let chunk2_meta = b"400;chunk-signature=0055627c9e194cb4542bae2aa5492e3c1575bbb81b612b7d234b86a503ef5497\r\n";
        let chunk3_meta = b"0;chunk-signature=b6c6ea8a5354eaf15b3cb7646744f4275b71ea724fed81ceb9323e279d449df9\r\n";

        let chunk1_data = vec![b'a'; 0x10000]; // 65536
        let chunk2_data = vec![b'a'; 1024];

        let chunk1 = Vec::from(chunk1_meta.as_ref())
            .also(|b| b.extend_from_slice(&chunk1_data))
            .also(|b| b.extend_from_slice(b"\r\n"))
            .into();

        let chunk2 = Vec::from(chunk2_meta.as_ref())
            .also(|b| b.extend_from_slice(&chunk2_data))
            .also(|b| b.extend_from_slice(b"\r\n"))
            .into();

        let chunk3 = Vec::from(chunk3_meta.as_ref())
            .also(|b| b.extend_from_slice(b"\r\n"))
            .into();

        let chunk_results: Vec<Result<Bytes, _>> = vec![Ok(chunk1), Ok(chunk2), Ok(chunk3)];

        let seed_signature = "4f232c4386841ef735655705268965c44a0e4690baa4adea153f7db9fa80a0a9";
        let timestamp = "20130524T000000Z";
        let region = "us-east-1";
        let secret_access_key = "wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY";

        let date = AmzDate::from_header_str(timestamp).unwrap();

        let stream = futures::stream::iter(chunk_results.into_iter());
        let mut chunked_stream = AwsChunkedStream::new(
            stream,
            seed_signature.into(),
            date,
            region.into(),
            secret_access_key.into(),
        );

        let ans1 = chunked_stream.next().await.unwrap();
        assert_eq!(ans1.unwrap(), chunk1_data.as_slice());

        let ans2 = chunked_stream.next().await.unwrap();
        assert_eq!(ans2.unwrap(), chunk2_data.as_slice());

        {
            assert!(chunked_stream.next().await.is_none());
            assert!(chunked_stream.next().await.is_none());
            assert!(chunked_stream.next().await.is_none());
        }
    }
}