From c6469bb99f902c982b44b2138405764f406bab53 Mon Sep 17 00:00:00 2001
From: Willy Kloucek <34452982+wkloucek@users.noreply.github.com>
Date: Mon, 29 Mar 2021 16:57:23 +0200
Subject: [PATCH] enforce quota (#1557)

---
 .../storageprovider/storageprovider.go        |  2 +
 .../http/services/owncloud/ocdav/error.go     |  3 ++
 pkg/errtypes/errtypes.go                      | 18 +++++++++
 pkg/rgrpc/status/status.go                    | 12 ++++++
 pkg/rhttp/datatx/manager/simple/simple.go     |  2 +
 .../utils/decomposedfs/decomposedfs.go        |  6 +--
 pkg/storage/utils/decomposedfs/upload.go      | 37 +++++++++++++++++++
 7 files changed, 77 insertions(+), 3 deletions(-)

diff --git a/internal/grpc/services/storageprovider/storageprovider.go b/internal/grpc/services/storageprovider/storageprovider.go
index 4ea9e48e446..424e24e0086 100644
--- a/internal/grpc/services/storageprovider/storageprovider.go
+++ b/internal/grpc/services/storageprovider/storageprovider.go
@@ -343,6 +343,8 @@ func (s *service) InitiateFileUpload(ctx context.Context, req *provider.Initiate
 			// seealso errtypes.StatusChecksumMismatch
 		case errtypes.PermissionDenied:
 			st = status.NewPermissionDenied(ctx, err, "permission denied")
+		case errtypes.InsufficientStorage:
+			st = status.NewInsufficientStorage(ctx, err, "insufficient storage")
 		default:
 			st = status.NewInternal(ctx, err, "error getting upload id: "+req.Ref.String())
 		}
diff --git a/internal/http/services/owncloud/ocdav/error.go b/internal/http/services/owncloud/ocdav/error.go
index 6c28e7834f0..304df8578e0 100644
--- a/internal/http/services/owncloud/ocdav/error.go
+++ b/internal/http/services/owncloud/ocdav/error.go
@@ -93,6 +93,9 @@ func HandleErrorStatus(log *zerolog.Logger, w http.ResponseWriter, s *rpc.Status
 	case rpc.Code_CODE_UNIMPLEMENTED:
 		log.Debug().Interface("status", s).Msg("not implemented")
 		w.WriteHeader(http.StatusNotImplemented)
+	case rpc.Code_CODE_INSUFFICIENT_STORAGE:
+		log.Debug().Interface("status", s).Msg("insufficient storage")
+		w.WriteHeader(http.StatusInsufficientStorage)
 	default:
 		log.Error().Interface("status", s).Msg("grpc request failed")
 		w.WriteHeader(http.StatusInternalServerError)
diff --git a/pkg/errtypes/errtypes.go b/pkg/errtypes/errtypes.go
index d85b6f90556..92f88792a13 100644
--- a/pkg/errtypes/errtypes.go
+++ b/pkg/errtypes/errtypes.go
@@ -110,6 +110,18 @@ func (e ChecksumMismatch) IsChecksumMismatch() {}
 // oc clienst issue: https://github.com/owncloud/core/issues/22711
 const StatusChecksumMismatch = 419
 
+// InsufficientStorage is the error to use when there is insufficient storage.
+type InsufficientStorage string
+
+func (e InsufficientStorage) Error() string { return "error: insufficient storage: " + string(e) }
+
+// IsInsufficientStorage implements the IsInsufficientStorage interface.
+func (e InsufficientStorage) IsInsufficientStorage() {}
+
+// StatusInssufficientStorage 507 is an official http status code to indicate that there is insufficient storage
+// https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/507
+const StatusInssufficientStorage = 507
+
 // IsNotFound is the interface to implement
 // to specify that an a resource is not found.
 type IsNotFound interface {
@@ -169,3 +181,9 @@ type IsBadRequest interface {
 type IsChecksumMismatch interface {
 	IsChecksumMismatch()
 }
+
+// IsInsufficientStorage is the interface to implement
+// to specify that a there is insufficient storage.
+type IsInsufficientStorage interface {
+	IsInsufficientStorage()
+}
diff --git a/pkg/rgrpc/status/status.go b/pkg/rgrpc/status/status.go
index 7a4dd6f176a..c8c7dc0f315 100644
--- a/pkg/rgrpc/status/status.go
+++ b/pkg/rgrpc/status/status.go
@@ -101,6 +101,18 @@ func NewPermissionDenied(ctx context.Context, err error, msg string) *rpc.Status
 	}
 }
 
+// NewInsufficientStorage returns a Status with INSUFFICIENT_STORAGE and logs the msg.
+func NewInsufficientStorage(ctx context.Context, err error, msg string) *rpc.Status {
+	log := appctx.GetLogger(ctx).With().CallerWithSkipFrameCount(3).Logger()
+	log.Err(err).Msg(msg)
+
+	return &rpc.Status{
+		Code:    rpc.Code_CODE_INSUFFICIENT_STORAGE,
+		Message: msg,
+		Trace:   getTrace(ctx),
+	}
+}
+
 // NewUnimplemented returns a Status with CODE_UNIMPLEMENTED and logs the msg.
 func NewUnimplemented(ctx context.Context, err error, msg string) *rpc.Status {
 	log := appctx.GetLogger(ctx).With().CallerWithSkipFrameCount(3).Logger()
diff --git a/pkg/rhttp/datatx/manager/simple/simple.go b/pkg/rhttp/datatx/manager/simple/simple.go
index 8f3cddd3924..b09aa669ed9 100644
--- a/pkg/rhttp/datatx/manager/simple/simple.go
+++ b/pkg/rhttp/datatx/manager/simple/simple.go
@@ -89,6 +89,8 @@ func (m *manager) Handler(fs storage.FS) (http.Handler, error) {
 				w.WriteHeader(http.StatusForbidden)
 			case errtypes.InvalidCredentials:
 				w.WriteHeader(http.StatusUnauthorized)
+			case errtypes.InsufficientStorage:
+				w.WriteHeader(http.StatusInsufficientStorage)
 			default:
 				sublog.Error().Err(v).Msg("error uploading file")
 				w.WriteHeader(http.StatusInternalServerError)
diff --git a/pkg/storage/utils/decomposedfs/decomposedfs.go b/pkg/storage/utils/decomposedfs/decomposedfs.go
index abe5cfd1c74..791447a9d42 100644
--- a/pkg/storage/utils/decomposedfs/decomposedfs.go
+++ b/pkg/storage/utils/decomposedfs/decomposedfs.go
@@ -124,9 +124,8 @@ func (fs *Decomposedfs) Shutdown(ctx context.Context) error {
 
 // GetQuota returns the quota available
 // TODO Document in the cs3 should we return quota or free space?
-func (fs *Decomposedfs) GetQuota(ctx context.Context) (uint64, uint64, error) {
+func (fs *Decomposedfs) GetQuota(ctx context.Context) (total uint64, inUse uint64, err error) {
 	var n *node.Node
-	var err error
 	if n, err = fs.lu.HomeOrRootNode(ctx); err != nil {
 		return 0, 0, err
 	}
@@ -158,7 +157,7 @@ func (fs *Decomposedfs) GetQuota(ctx context.Context) (uint64, uint64, error) {
 	if err != nil {
 		return 0, 0, err
 	}
-	total := avail + ri.Size
+	total = avail + ri.Size
 
 	switch {
 	case quotaStr == node.QuotaUncalculated, quotaStr == node.QuotaUnknown, quotaStr == node.QuotaUnlimited:
@@ -171,6 +170,7 @@ func (fs *Decomposedfs) GetQuota(ctx context.Context) (uint64, uint64, error) {
 			}
 		}
 	}
+
 	return total, ri.Size, nil
 }
 
diff --git a/pkg/storage/utils/decomposedfs/upload.go b/pkg/storage/utils/decomposedfs/upload.go
index 9b74613a392..92f6f06d07d 100644
--- a/pkg/storage/utils/decomposedfs/upload.go
+++ b/pkg/storage/utils/decomposedfs/upload.go
@@ -158,6 +158,11 @@ func (fs *Decomposedfs) InitiateUpload(ctx context.Context, ref *provider.Refere
 
 	log.Debug().Interface("info", info).Interface("node", n).Interface("metadata", metadata).Msg("Decomposedfs: resolved filename")
 
+	_, err = checkQuota(ctx, fs, uint64(info.Size))
+	if err != nil {
+		return nil, err
+	}
+
 	upload, err := fs.NewUpload(ctx, info)
 	if err != nil {
 		return nil, err
@@ -417,12 +422,21 @@ func (upload *fileUpload) writeInfo() error {
 
 // FinishUpload finishes an upload and moves the file to the internal destination
 func (upload *fileUpload) FinishUpload(ctx context.Context) (err error) {
+
+	// ensure cleanup
+	defer upload.discardChunk()
+
 	fi, err := os.Stat(upload.binPath)
 	if err != nil {
 		appctx.GetLogger(upload.ctx).Err(err).Msg("Decomposedfs: could not stat uploaded file")
 		return
 	}
 
+	_, err = checkQuota(upload.ctx, upload.fs, uint64(fi.Size()))
+	if err != nil {
+		return err
+	}
+
 	n := node.New(
 		upload.info.Storage["NodeId"],
 		upload.info.Storage["NodeParentId"],
@@ -610,6 +624,12 @@ func (upload *fileUpload) discardChunk() {
 			return
 		}
 	}
+	if err := os.Remove(upload.infoPath); err != nil {
+		if !os.IsNotExist(err) {
+			appctx.GetLogger(upload.ctx).Err(err).Interface("info", upload.info).Str("infoPath", upload.infoPath).Interface("info", upload.info).Msg("Decomposedfs: could not discard chunk info")
+			return
+		}
+	}
 }
 
 // To implement the termination extension as specified in https://tus.io/protocols/resumable-upload.html#termination
@@ -685,3 +705,20 @@ func (upload *fileUpload) ConcatUploads(ctx context.Context, uploads []tusd.Uplo
 
 	return
 }
+
+func checkQuota(ctx context.Context, fs *Decomposedfs, fileSize uint64) (quotaSufficient bool, err error) {
+	total, inUse, err := fs.GetQuota(ctx)
+	if err != nil {
+		switch err.(type) {
+		case errtypes.NotFound:
+			// no quota for this storage (eg. no user context)
+			return true, nil
+		default:
+			return false, err
+		}
+	}
+	if !(total == 0) && fileSize > total-inUse {
+		return false, errtypes.InsufficientStorage("quota exceeded")
+	}
+	return true, nil
+}