]>
Commit | Line | Data |
---|---|---|
09209296 | 1 | import { basename } from 'path' |
42b40636 C |
2 | import { Segment } from '@peertube/p2p-media-loader-core' |
3 | import { logger } from '@root-helpers/logger' | |
4 | import { wait } from '@root-helpers/utils' | |
71e3e879 | 5 | import { removeQueryParams } from '@shared/core-utils' |
3545e72c | 6 | import { isSameOrigin } from '../common' |
09209296 | 7 | |
c6c0fa6c C |
8 | type SegmentsJSON = { [filename: string]: string | { [byterange: string]: string } } |
9 | ||
f967d8be | 10 | const maxRetries = 10 |
210856a7 | 11 | |
3545e72c C |
12 | function segmentValidatorFactory (options: { |
13 | serverUrl: string | |
14 | segmentsSha256Url: string | |
3545e72c C |
15 | authorizationHeader: () => string |
16 | requiresAuth: boolean | |
17 | }) { | |
f967d8be | 18 | const { serverUrl, segmentsSha256Url, authorizationHeader, requiresAuth } = options |
3545e72c C |
19 | |
20 | let segmentsJSON = fetchSha256Segments({ serverUrl, segmentsSha256Url, authorizationHeader, requiresAuth }) | |
4c280004 | 21 | const regex = /bytes=(\d+)-(\d+)/ |
09209296 | 22 | |
501af82d | 23 | return async function segmentValidator (segment: Segment, _method: string, _peerId: string, retry = 1) { |
71e3e879 | 24 | const filename = basename(removeQueryParams(segment.url)) |
09209296 | 25 | |
c6c0fa6c C |
26 | const segmentValue = (await segmentsJSON)[filename] |
27 | ||
210856a7 | 28 | if (!segmentValue && retry > maxRetries) { |
c6c0fa6c C |
29 | throw new Error(`Unknown segment name ${filename} in segment validator`) |
30 | } | |
31 | ||
32 | if (!segmentValue) { | |
42b40636 | 33 | logger.info(`Refetching sha segments for ${filename}`) |
c6c0fa6c | 34 | |
f967d8be | 35 | await wait(500) |
25b7c847 | 36 | |
3545e72c | 37 | segmentsJSON = fetchSha256Segments({ serverUrl, segmentsSha256Url, authorizationHeader, requiresAuth }) |
501af82d | 38 | await segmentValidator(segment, _method, _peerId, retry + 1) |
210856a7 | 39 | |
c6c0fa6c C |
40 | return |
41 | } | |
42 | ||
43 | let hashShouldBe: string | |
44 | let range = '' | |
45 | ||
46 | if (typeof segmentValue === 'string') { | |
47 | hashShouldBe = segmentValue | |
48 | } else { | |
49 | const captured = regex.exec(segment.range) | |
50 | range = captured[1] + '-' + captured[2] | |
51 | ||
52 | hashShouldBe = segmentValue[range] | |
53 | } | |
4c280004 | 54 | |
09209296 | 55 | if (hashShouldBe === undefined) { |
4c280004 | 56 | throw new Error(`Unknown segment name ${filename}/${range} in segment validator`) |
09209296 C |
57 | } |
58 | ||
6d61da4e | 59 | const calculatedSha = await sha256Hex(segment.data) |
09209296 | 60 | if (calculatedSha !== hashShouldBe) { |
4c280004 C |
61 | throw new Error( |
62 | `Hashes does not correspond for segment ${filename}/${range}` + | |
63 | `(expected: ${hashShouldBe} instead of ${calculatedSha})` | |
64 | ) | |
09209296 C |
65 | } |
66 | } | |
67 | } | |
68 | ||
69 | // --------------------------------------------------------------------------- | |
70 | ||
71 | export { | |
72 | segmentValidatorFactory | |
73 | } | |
74 | ||
75 | // --------------------------------------------------------------------------- | |
76 | ||
3545e72c C |
77 | function fetchSha256Segments (options: { |
78 | serverUrl: string | |
79 | segmentsSha256Url: string | |
80 | authorizationHeader: () => string | |
81 | requiresAuth: boolean | |
82 | }) { | |
83 | const { serverUrl, segmentsSha256Url, requiresAuth, authorizationHeader } = options | |
84 | ||
85 | const headers = requiresAuth && isSameOrigin(serverUrl, segmentsSha256Url) | |
86 | ? { Authorization: authorizationHeader() } | |
87 | : {} | |
88 | ||
89 | return fetch(segmentsSha256Url, { headers }) | |
c6c0fa6c | 90 | .then(res => res.json() as Promise<SegmentsJSON>) |
09209296 | 91 | .catch(err => { |
42b40636 | 92 | logger.error('Cannot get sha256 segments', err) |
09209296 C |
93 | return {} |
94 | }) | |
95 | } | |
96 | ||
6d61da4e | 97 | async function sha256Hex (data?: ArrayBuffer) { |
09209296 C |
98 | if (!data) return undefined |
99 | ||
6d61da4e C |
100 | if (window.crypto.subtle) { |
101 | return window.crypto.subtle.digest('SHA-256', data) | |
102 | .then(data => bufferToHex(data)) | |
103 | } | |
104 | ||
105 | // Fallback for non HTTPS context | |
ff5f37e4 | 106 | const shaModule = (await import('sha.js') as any).default |
9df52d66 | 107 | // eslint-disable-next-line new-cap |
6d61da4e | 108 | return new shaModule.sha256().update(Buffer.from(data)).digest('hex') |
09209296 C |
109 | } |
110 | ||
111 | // Thanks: https://stackoverflow.com/a/53307879 | |
6d61da4e | 112 | function bufferToHex (buffer?: ArrayBuffer) { |
09209296 C |
113 | if (!buffer) return '' |
114 | ||
115 | let s = '' | |
116 | const h = '0123456789abcdef' | |
117 | const o = new Uint8Array(buffer) | |
118 | ||
9df52d66 C |
119 | o.forEach((v: any) => { |
120 | s += h[v >> 4] + h[v & 15] | |
121 | }) | |
09209296 C |
122 | |
123 | return s | |
124 | } |