Principle:Ollama Ollama Integrity Verification

Overview

A SHA-256 based integrity verification mechanism that ensures downloaded and stored model blobs are not corrupted or tampered with by comparing computed digests against manifest-declared digests.

Description

Integrity Verification is the safety net for the content-addressable storage system. Every blob is identified by its SHA-256 digest, and every reference to a blob (in manifests, download records, and cache entries) uses this digest as the identifier. After any blob transfer or storage operation, the system can verify integrity by recomputing the digest and comparing it to the expected value.

This provides protection against:

• Network corruption during downloads
• Filesystem corruption
• Incomplete transfers
• Tampering with stored files

Usage

Use this principle in any content-addressable storage system where data integrity is critical. SHA-256 verification should be performed after downloads, before inference loading, and during storage health checks.

Theoretical Basis

Integrity verification:

1. Digest Computation: Read the blob file and compute SHA-256 hash.
2. Comparison: Compare computed digest with the expected digest from the manifest.
3. Result: If digests match, the blob is intact. If not, the blob is corrupted and should be re-downloaded.

${\displaystyle \text{verify}(blob,expected)=\{\begin{array}{ll}\text{OK}& \text{if }SHA256(blob)=expected\\ \text{CORRUPT}& \text{otherwise}\end{array}}$

Related Pages

Implemented By

• Implementation:Ollama_Ollama_VerifyBlob