Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make sure package has the expected hash when browsing and installing #3817

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Make sure package has the expected hash when browsing and installing #3817

wants to merge 2 commits into from

Conversation

dimaryaz
Copy link
Contributor

No description provided.

@dimaryaz dimaryaz self-assigned this Dec 12, 2023
@codecov Codecov
Copy link

codecov bot commented Dec 12, 2023
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (6a44d3c) 35.50% compared to head (a538844) 35.51%.
Report is 1 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #3817      +/-   ##
==========================================
+ Coverage   35.50%   35.51%   +0.01%     
==========================================
  Files         711      711              
  Lines       31236    31244       +8     
  Branches     4670     4670              
==========================================
+ Hits        11091    11097       +6     
- Misses      18991    18993       +2     
  Partials     1154     1154
Flag Coverage Δ
api-python 91.23% <100.00%> (+<0.01%) ⬆️
catalog 10.61% <ø> (-0.01%) ⬇️
lambda 86.26% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

akarve
akarve reviewed Dec 14, 2023
View reviewed changes
api/python/quilt3/packages.py
@@ -619,6 +619,10 @@ def download_manifest(dst):

pkg = cls._from_path(local_pkg_manifest)
pkg._origin = PackageRevInfo(str(registry.base), name, top_hash)

if pkg.top_hash != top_hash:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

OK so doing this check in _browse also gets install (in PR title)? And works for subpackage install as well? Since the user can install any subpackage and we have the manifest at that point I think we only need to check the installed object hashes and not the tophash.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah, browse and install both run this code.

This only checks the tophash for now, not the object hashes. Subpackages are not special - they just download a subset of objects. But we need to check the tophash regardless, before we do anything else.

sir-sigurd
sir-sigurd approved these changes Dec 15, 2023
View reviewed changes
Copy link
Member

@sir-sigurd sir-sigurd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

well, I'm not sure we shouldn't trust hash, but it feels safer and probably performance penalty is not big

api/python/quilt3/packages.py
@@ -619,6 +619,10 @@ def download_manifest(dst):

pkg = cls._from_path(local_pkg_manifest)
pkg._origin = PackageRevInfo(str(registry.base), name, top_hash)

if pkg.top_hash != top_hash:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

that might be OK, but are you sure we should put manifest to the cache if this check fails?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's safe to do that right now, since it checks the hash regardless of where the package is being loaded from - local, S3, or cache.

I could change it to only check hash when loading from S3, and before putting it into the cache. Then we'll trust any local package (not sure we should?), and anything in the cache (probably fine, except for packages that were already cached before this PR).

@akarve
Copy link
Member

akarve commented Dec 20, 2023

@dimaryaz I think you can close this one per discussion to focus on ensuring that client and S3 hash the same bits.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@akarve akarve akarve left review comments

@sir-sigurd sir-sigurd sir-sigurd approved these changes

Assignees

@dimaryaz dimaryaz

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@dimaryaz @akarve @sir-sigurd