npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

zamatree

v1.0.3

Published

Zamatree is a command line utility for uploading and downloading files with integrity checking using a Merkle tree.

Downloads

17

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

ouzielouziel

Keywords

Merkle TreeFile StorageS3scp

Readme

Zamatree

Zamatree is a command line utility for uploading and downloading files with integrity checking using a Merkle tree.

Zamatree is completely “server agnostic” and does not require any special installation on the server as long as it is possible to upload and download files. Zamatree currently supports SSH servers (via scp) and Amazon S3, but the code is structured so that you can easily add other server types like Google Cloud or Azure for example.

Given the verification with a Merkle tree, the files can only be sent in packets of two minimum. The set of files sent at the same time with the zamatree upload command is called a block. Each block is uniquely identified with the Merkle root generated with the files it contains.

Installation

Requirement

  • scp
  • Node v18

Tested on MacOS and Alpine Linux.

Quickstart

$ nvm use v18
$ npm install -g zamatree
$ zamatree help
$ vi ~/.zamatree/servers.json

Update the S3 id and key then:

$ zamatree upload './*.json' s3

Download and install from source

$ git clone [email protected]:ouziel-slama/zamatree.git
$ cd zamatree
$ npm install && npm run build && npm link
$ zamatree help

NOTE: on Linux you probably should use sudo npm link

To start a test openssh server:

$ chmod 600 docker-privkey
$ docker-compose up

To run tests:

$ npm run test

Configure

The servers are configured in the ~/.zamatree/servers.json file. A default configuration, containing the test openssh docker server and a S3 test account, is automatically generated the first time zamatree is run. Edit this file to update the S3 key or add a server.

$ zamatree help # to generate the default config file
$ vi ~/.zamatree/servers.json

Here an example of this file:

{
    "docker": {
        "storage": "scp",
        "host": "zama@localhost",
        "port": 2222,
        "key": "/Users/ouzielslama/Work/zama/zamatree/docker-privkey",
        "path": "/tmp"
    },
    "server1": {
        "storage": "scp",
        "host": "alpine",
        "path": "/home/tower"
    },
    "s3": {
        "storage": "s3",
        "bucket": "zamabucket",
        "aws_key_id": "AKIATFAIXLJP7QQT5IKB",
        "aws_secret_key": "<AWS_SECRET_KEY>"
    }
}

Note: for scp servers, zamatree supports hosts (key path and port) defined in ~/.ssh/config.

Usage

  help_screenshot  

Upload files

$ zamatree upload <glob_pattern> <server_name_defined_in_servers_json>

For example:

$ zamatree upload './src/**/*.ts' s3

  upload_screenshot  

List uploaded files

$ zamatree files
$ zamatree blocks

  lists_screenshot  

Download a file

Dowload a file in the current directory.

$ zamatree download <block_short_hash> <file_index>

You can specify the destination folder with:

$ zamatree download <block_short_hash> <file_index> <destination_folder>

For example

$ zamatree download 947aeb49 5

  download_screenshot  

Implementation

Methodology

To ensure maximum compatibility with existing cloud services, Zamatree is designed to leave no responsibility for the server other than storing files. All Merkle tree generation and verification operations are done on the client.

Before being uploaded to a server, the file is packaged in a tar.gz archive, accompanied by a properties.json file which contains the Merkle proof.

  properties_screenshot  

Zamatree keeps Merkle's root hash in a file ~/.zamatree/blocks/<blockShortHash>.json and uses it when downloading a file to check Markle's proof of the properties.json file.

  block_screenshot  

Code organization

The two most important modules are src/merkle.ts and src/filesblock.ts.

  • src/merkle.ts: implementation of the Merkle tree. For nodes that have no brothers (on levels with an odd number of nodes), I use the same method as Bitcoin core by concatenating the hash with itself. Given that we generate all the proofs at the same time as the root, the code could be optimized to only go through the Merkle tree once and never recalculate the same hash but I preferred to prioritize readability for this challenge. This module exposes 3 functions: getMerkleProof, getMerkleRoot, verifyProof.

  • src/fileblocks.ts: this module is responsible for preparing the files before uploading them and also for checking the files after downloading them. It is this module which generates a json file per block (kept on the client) as well as a json file per file containing the proof of Merkle (uploaded with the file). This module exposes 5 functions: uploadBlock, downloadFile, listAllFiles, listFiles, listBlocks.

  • src/cli.ts: a command line wrapper for the 5 functions exposed by fileblock.ts

  • src/config.ts: Here is defined the maximum size of files and blocks as well as the default servers.

  • src/storages/: This folder contains one module per server type. For now scp.ts and s3.ts. To be used by filesblock.ts these modules must expose two functions:

const upload = async(folderPath: string, serverName: string)
const download = async(destFolder: string, fileName: string, serverName: string)

Note about comments in code.

The code is deliberately almost not commented. I try as much as possible to practice “code as comment”. Comments are only there to justify algorithm choices, arbitrary constants or particularly complex lines of code. For the rest, the names of functions and variables must be clear enough and the code readable enough to not require comments.

Short-comings and Todos

  1. Use Rust or Go to develop a library that can be easily integrated into other projects. I'm currently working with Typescript, so it was the fastest language for this challenge.
  2. better error handling and more tests.
  3. Retry and resume commands for failed upload.
  4. Support more storages like Webdav, HTTPS and other cloud services than S3.
  5. Command to add file in a block (needs to download, update and upload some of the proofs).
  6. GUI. With a local web server and an HTML/JS interface.
  7. Give the possibility of storing files from the same blocks on several different servers. To distribute or double the storage.
  8. Support large files, by splitting them into several small files.
  9. Make a backup of root hashes with zamatree upload.
  10. Add a command to add/edit/delete a server without editing the json file. ...