This project implements a file verification system where a client uploads a set of (small text) files to a server, deletes its local copies, and later downloads an arbitrary file from the server and verifies that the file is correct and has not been tampered with. This is achieved using a Merkle tree.
The client computes a single Merkle tree root hash for the set of files and persists it on disk after uploading the files to the server and deleting its local copies. The client can request a specific file, by index, and a Merkle proof for it from the server. The client uses the proof to compute a root hash and compares it with the persisted root hash. If they match, the file is correct and can be displayed or stored locally.
The server stores the files and the Merkle tree, and provides an interface for uploading files, downloading files, and generating Merkle proofs.
The project is implemented in Go and uses the standard library for networking, allowing it to be deployed across multiple machines. The Merkle tree is implemented from scratch, with the standard library's crypto/sha256 package used for the underlying (default, but easily replaceable) hash function.
The project is structured into three main components:
cmd/client: handles file uploading, downloading, and Merkle proof verification.cmd/server: handles file storage, and Merkle proof generation.internal/merkle: provides methods for constructing the tree and generating proofs.
The project is containerized using Docker and can be deployed using Docker Compose.
To bootstrap the demo, just run:
make start-server
This will start the server, listening on port 8080.
Then, the client can be used to interact with the server.
Two example calls are available at:
make test-upload # mfu client upload resources/
make test-download # mfu client download 1
Please, feel free to explore with the mfu CLI yourself, by uploading other files (list of varargs) or folders, and download index (incl. invalid or non-existent indexes).
Finally, tear down the server environment via:
make stop-server
-
The dependency tree is kept to the bare minimum:
spf13/cobrato build a CLI toolgorilla/muxto facilitate the REST paths handlingstretchr/testifyfor unit test assertionsaws/aws-sdk-go-v2as S3 client
-
There are abstractions in place to prepare the ground for future developments:
- The upload/download protocol has a HTTP implementation. My next step would be to implement a gRPC-protobuf -based protocol (mainly to leverage streams, because sending files one by one over HTTP would not scale well IRL)
- The
Storageinterface used by the server has two basic implementations:- a naive, in-memory one
- a more realistic, S3 bucket
This project is a working Proof-of-Concept, for the sake of demonstrating how Merkle Proofs can be used to bring file integrity checks to a remote file storage. There are several areas where that could be further developed and prepared to be production-ready:
- Coverage: I wrote the (happy flow) unit tests for the Merkle tree and its proof generation and verification. That's the juicy part. For the sake of full coverage, though, the boilerplate testing of the http-based protocol (mocking
Storage) and utility functions should be added, too. On top of that, comprehensive integration and performance tests. - Workflow: The client-server is single-shot. Only one batch of files is managed, at a time. It would be more useful to create separate batches upload, and reference them as separate entities. Further down the road, I'd like to explore how to add/remove to an existing set of files.
- Server Storage: The naming convention for uploaded files is based on their index, in a key-value manner. It would be better to organize the files in a better way (e.g. keeping the indexes in Redis for fast lookups of files' location along with other metadata, such as original names, and so on).
- Synchronization and Concurrency: The server does not currently handle concurrent requests, which could lead to inconsistencies in the Merkle tree. A future improvement could be to add locking or use a concurrent data structure for the Merkle tree, or even relying on transactions.
- Performance: I consider the time/space complexity of the Merkle proof generation good enough for this use case, although it would be interesting to increase the algorithm and space complexity a bit, and try to speed it up by concurrently searching the left and right subtrees in parallel.