package MooseX::Storage::Base::WithChecksum;
use Moose::Role;
-use Digest ();
-use Storable ();
+use Digest ();
+use Data::Dumper ();
+
use MooseX::Storage::Engine;
-our $VERSION = '0.01';
+our $VERSION = '0.02';
+our $AUTHORITY = 'cpan:STEVAN';
our $DIGEST_MARKER = '__DIGEST__';
# check checksum on data
- my $old_checksum = $data->{$DIGEST_MARKER};
- delete $data->{$DIGEST_MARKER};
+ my $old_checksum = delete $data->{$DIGEST_MARKER};
my $checksum = $class->_digest_packed($data, @args);
my $d = $self->_digest_object(@args);
-
{
- local $Storable::canonical = 1;
- $d->add( Storable::nfreeze($collapsed) );
+ local $Data::Dumper::Indent = 0;
+ local $Data::Dumper::Sortkeys = 1;
+ local $Data::Dumper::Terse = 1;
+ local $Data::Dumper::Useqq = 0;
+ local $Data::Dumper::Deparse = 0; # FIXME?
+ my $str = Data::Dumper::Dumper($collapsed);
+ # NOTE:
+ # Canonicalize numbers to strings even if it
+ # mangles numbers inside strings. It really
+ # does not matter since its just the checksum
+ # anyway.
+ # - YK/SL
+ $str =~ s/(?<! ['"] ) \b (\d+) \b (?! ['"] )/'$1'/gx;
+ $d->add( $str );
}
return $d->hexdigest;
sub _digest_object {
my ( $self, %options ) = @_;
my $digest_opts = $options{digest};
- $digest_opts = [ $digest_opts ] if !ref($digest_opts) or ref($digest_opts) ne 'ARRAY';
+
+ $digest_opts = [ $digest_opts ]
+ if !ref($digest_opts) or ref($digest_opts) ne 'ARRAY';
+
my ( $d, @args ) = @$digest_opts;
if ( ref $d ) {
if ( $d->can("clone") ) {
return $d->clone;
- } elsif ( $d->can("reset") ) {
+ }
+ elsif ( $d->can("reset") ) {
$d->reset;
return $d;
- } else {
+ }
+ else {
die "Can't clone or reset digest object: $d";
}
- } else {
+ }
+ else {
return Digest->new($d || "SHA1", @args);
}
}
=head1 NAME
-MooseX::Storage::Base::WithChecksum
-
-=head1 SYNOPSIS
+MooseX::Storage::Base::WithChecksum
=head1 DESCRIPTION
+This is an early implementation of a more secure Storage role,
+which does integrity checks on the data. It is still being
+developed so I recommend using it with caution.
+
+Any thoughts, ideas or suggestions on improving our technique
+are very welcome.
+
=head1 METHODS
=over 4
Stevan Little E<lt>stevan.little@iinteractive.comE<gt>
+Yuval Kogman
+
=head1 COPYRIGHT AND LICENSE
-Copyright 2007 by Infinity Interactive, Inc.
+Copyright 2007-2008 by Infinity Interactive, Inc.
L<http://www.iinteractive.com>