Minor clarification of GCS data validation docs; change default hash algo? #1749
Comments
zbjornson
changed the title
|
I'm fine with the docs change. As far as disabling MD5 check by default, that would be validating using the less-reliable method, by our own words. If it being expensive to compute is an issue to the user, they have the option to disable, which I think is good enough.
This seems ideal. If the user wanted MD5 validation specifically and we couldn't do it, that should be a failure. |
stephenplusplus
added
type: question
|
Thanks as always for the prompt reply!
Sure, although I think those words might be google-cloud-node's? The GCS docs advise CRC32C "for all cases":
Because it's configurable ❤️, I totally don't feel strongly about changing it, but I think most people would say MD5 is overkill for data integrity checks. (The risk of undetected corruption with CRC32c is 1/2^32, or 0.99999999977 detection.) (Re: last point, makes sense.) |
|
Oh jeez, if we just made that up, then I'm fine re-thinking this. We can follow that doc's advice and do crc32c by default and md5 if asked. Any interest in a PR? No pressure, if not, I'll get to it soon :) Thanks for calling this out! |
The docs for createReadStream and createWriteStream say
It appears that actually both are calculated, and both are verified if present (although the md5 check overrules the crc32c check), so I think it would be more accurate to say
But, using a cryptographic hash seems like an overkill default. What do you think of changing it to by default calculating CRC32c only, and not calculating MD5 unless the validation method is "MD5"?
(Also, if you specify "md5" then it does not appear to fallback to CRC32c if there was no MD5 returned -- ideally it would fallback instead of doing zero validation, I think?)
The text was updated successfully, but these errors were encountered: