Mirror
/
MinIO
mirror of https://github.com/minio/minio.git
2
0
Fork 0
Code Issues Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
12513 Commits
4 Branches
520 Tags
175 MiB
Tree: b9f0e8c712
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b9f0e8c712'
${ noResults }
MinIO/cmd/handler-utils.go

504 lines
16 KiB
Raw Normal View History

update license change for MinIO Signed-off-by: Harshavardhana <harsha@minio.io>
4 years ago
Cleanup: Moving IsValidLocationContraint to handler utils
9 years ago
server: Move all the top level files into cmd folder. (#2490) This change brings a change which was done for the 'mc' package to allow for clean repo and have a cleaner github drop in experience.
9 years ago
Cleanup: Moving IsValidLocationContraint to handler utils
9 years ago
Create logger package and rename errorIf to LogIf (#5678) Removing message from error logging Replace errors.Trace with LogIf
7 years ago
ListObjectsV1 requests unnecessarily fail with offline nodes (#10386) ListObjectsV1 requests are actually redirected to a specific node, depending on the bucket name. The purpose of this behavior was to optimize listing. However, the current code sends a Bad Gateway error if the target node is offline, which is a bad behavior because it means that the list request will fail, although this is unnecessary since we can still use the current node to list as well (the default behavior without using proxying optimization) Currently, you can see mint fails when there is one offline node, after this PR, mint will always succeed.
5 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
api: xmlDecoder should honor contentLength. (#2226) This is needed so that we avoid reading large amounts of data from compromised clients.
9 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
api: extract http headers with some supported header list. (#2268)
9 years ago
return error for AppendObject() API (#21272)
3 months ago
log: Store http request/responses in a log file (#4804) When MINIO_TRACE_DIR is provided, create a new log file and store all HTTP requests + responses data, body are excluded to reduce memory consumption. MINIO_HTTP_TRACE=1 enables logging. Use non mem consuming http req/resp recorders, the maximum is about 32k per request. This logs to STDOUT, body logging is disabled for PutObject PutObjectPart GetObject.
8 years ago
Bump up madmin-go and pkg deps (#17469)
2 years ago
rename all remaining packages to internal/ (#12418) This is to ensure that there are no projects that try to import `minio/minio/pkg` into their own repo. Any such common packages should go to `https://github.com/minio/pkg`
4 years ago
fix: regression in counting total requests (#17024)
2 years ago
ldap: Add user DN attributes list config param (#19758) This change uses the updated ldap library in minio/pkg (bumped up to v3). A new config parameter is added for LDAP configuration to specify extra user attributes to load from the LDAP server and to store them as additional claims for the user. A test is added in sts_handlers.go that shows how to access the LDAP attributes as a claim. This is in preparation for adding SSH pubkey authentication to MinIO's SFTP integration.
1 year ago
Add ObjectTagging Support (#8754) This PR adds support for AWS S3 ObjectTagging API as explained here https://docs.aws.amazon.com/AmazonS3/latest/dev/object-tagging.html
6 years ago
return tags as part of Head/Get calls (#17635) AWS S3 only returns the number of tag counts, along with that we must return the tags as well to avoid another metadata call to the server.
2 years ago
Cleanup: Moving IsValidLocationContraint to handler utils
9 years ago
handler: simplify parsing valid location constraint. (#4040) Separate out validating v/s parsing logic in isValidLocationConstraint() into parseLocationConstraint() and isValidLocation() Additionally also set `X-Amz-Bucket-Region` as part of the common headers for the clients to fallback on in-case of any region related errors.
8 years ago
api: xmlDecoder should honor contentLength. (#2226) This is needed so that we avoid reading large amounts of data from compromised clients.
9 years ago
signature: Region changes should be handled just like AWS. (#2805) - PutBucket happens with 'us-east-1'. - ListBuckets happens with any region. - GetBucketLocation happens with 'us-east-1' and location is returned.
9 years ago
Return proper errors for invalid bodies (#7179)
7 years ago
logging: Add subsystem to log API (#19002) Create new code paths for multiple subsystems in the code. This will make maintaing this easier later. Also introduce bugLogIf() for errors that should not happen in the first place.
1 year ago
handler: simplify parsing valid location constraint. (#4040) Separate out validating v/s parsing logic in isValidLocationConstraint() into parseLocationConstraint() and isValidLocation() Additionally also set `X-Amz-Bucket-Region` as part of the common headers for the clients to fallback on in-case of any region related errors.
8 years ago
handle racy updates to globalSite config (#19750) ``` ================== WARNING: DATA RACE Read at 0x0000082be990 by goroutine 205: github.com/minio/minio/cmd.setCommonHeaders() Previous write at 0x0000082be990 by main goroutine: github.com/minio/minio/cmd.lookupConfigs() ```
1 year ago
Cleanup: Moving IsValidLocationContraint to handler utils
9 years ago
add isValidLocation to common parseLocation (#16690)
2 years ago
handler: simplify parsing valid location constraint. (#4040) Separate out validating v/s parsing logic in isValidLocationConstraint() into parseLocationConstraint() and isValidLocation() Additionally also set `X-Amz-Bucket-Region` as part of the common headers for the clients to fallback on in-case of any region related errors.
8 years ago
Replace Minio refs in docs with MinIO and links (#7494)
6 years ago
handler: simplify parsing valid location constraint. (#4040) Separate out validating v/s parsing logic in isValidLocationConstraint() into parseLocationConstraint() and isValidLocation() Additionally also set `X-Amz-Bucket-Region` as part of the common headers for the clients to fallback on in-case of any region related errors.
8 years ago
handle racy updates to globalSite config (#19750) ``` ================== WARNING: DATA RACE Read at 0x0000082be990 by goroutine 205: github.com/minio/minio/cmd.setCommonHeaders() Previous write at 0x0000082be990 by main goroutine: github.com/minio/minio/cmd.lookupConfigs() ```
1 year ago
Cleanup: Moving IsValidLocationContraint to handler utils
9 years ago
api: extract http headers with some supported header list. (#2268)
9 years ago
Support content-language header (#5648)
7 years ago
api: extract http headers with some supported header list. (#2268)
9 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
Move storageclass config handling into cmd/config/storageclass (#8360) Continuation of the changes done in PR #8351 to refactor, add tests and move global handling into a more idiomatic style for Go as packages.
6 years ago
Add ObjectTagging Support (#8754) This PR adds support for AWS S3 ObjectTagging API as explained here https://docs.aws.amazon.com/AmazonS3/latest/dev/object-tagging.html
6 years ago
Add disk based edge caching support. (#5182) This PR adds disk based edge caching support for minio server. Cache settings can be configured in config.json to take list of disk drives, cache expiry in days and file patterns to exclude from cache or via environment variables MINIO_CACHE_DRIVES, MINIO_CACHE_EXCLUDE and MINIO_CACHE_EXPIRY Design assumes that Atime support is enabled and the list of cache drives is fixed. - Objects are cached on both GET and PUT/POST operations. - Expiry is used as hint to evict older entries from cache, or if 80% of cache capacity is filled. - When object storage backend is down, GET, LIST and HEAD operations fetch object seamlessly from cache. Current Limitations - Bucket policies are not cached, so anonymous operations are not supported in offline mode. - Objects are distributed using deterministic hashing among list of cache drives specified.If one or more drives go offline, or cache drive configuration is altered - performance could degrade to linear lookup. Fixes #4026
7 years ago
Add support for server side bucket replication (#9882)
5 years ago
Enable replication of SSE-C objects (#19107) If site replication enabled across sites, replicate the SSE-C objects as well. These objects could be read from target sites using the same client encryption keys. Signed-off-by: Shubhendu Ram Tripathi <shubhendu@minio.io>
1 year ago
Fix SSE-C checksums (#19896) Compression will be disabled by default if SSE-C is specified. So we can still honor SSE-C.
1 year ago
Enable replication of SSE-C objects (#19107) If site replication enabled across sites, replicate the SSE-C objects as well. These objects could be read from target sites using the same client encryption keys. Signed-off-by: Shubhendu Ram Tripathi <shubhendu@minio.io>
1 year ago
Fix SSE-C checksums (#19896) Compression will be disabled by default if SSE-C is specified. So we can still honor SSE-C.
1 year ago
api: extract http headers with some supported header list. (#2268)
9 years ago
Add ObjectTagging Support (#8754) This PR adds support for AWS S3 ObjectTagging API as explained here https://docs.aws.amazon.com/AmazonS3/latest/dev/object-tagging.html
6 years ago
objAPI: Implement CopyObject API. (#3487) This is written so that to simplify our handler code and provide a way to only update metadata instead of the data when source and destination in CopyObject request are same. Fixes #3316
9 years ago
Add ObjectTagging Support (#8754) This PR adds support for AWS S3 ObjectTagging API as explained here https://docs.aws.amazon.com/AmazonS3/latest/dev/object-tagging.html
6 years ago
objAPI: Implement CopyObject API. (#3487) This is written so that to simplify our handler code and provide a way to only update metadata instead of the data when source and destination in CopyObject request are same. Fixes #3316
9 years ago
Add ObjectTagging Support (#8754) This PR adds support for AWS S3 ObjectTagging API as explained here https://docs.aws.amazon.com/AmazonS3/latest/dev/object-tagging.html
6 years ago
objAPI: Implement CopyObject API. (#3487) This is written so that to simplify our handler code and provide a way to only update metadata instead of the data when source and destination in CopyObject request are same. Fixes #3316
9 years ago
restirct max size of http header and user metadata (#4634) (#4680) S3 only allows http headers with a size of 8 KB and user-defined metadata with a size of 2 KB. This change adds a new API error and returns this error to clients which sends to large http requests. Fixes #4634
8 years ago
fix: reply back user-metadata in lower case form (#9697) some clients such as veeam expect the x-amz-meta to be sent in lower cased form, while this does indeed defeats the HTTP protocol contract it is harder to change these applications, while these applications get fixed appropriately in future. x-amz-meta is usually sent in lowercased form by AWS S3 and some applications like veeam incorrectly end up relying on the case sensitivity of the HTTP headers. Bonus fixes - Fix the iso8601 time format to keep it same as AWS S3 response - Increase maxObjectList to 50,000 and use maxDeleteList as 10,000 whenever multi-object deletes are needed.
5 years ago
restirct max size of http header and user metadata (#4634) (#4680) S3 only allows http headers with a size of 8 KB and user-defined metadata with a size of 2 KB. This change adds a new API error and returns this error to clients which sends to large http requests. Fixes #4634
8 years ago
Implement batch snowball (#18485)
2 years ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
Implement batch snowball (#18485)
2 years ago
api: postPolicy cleanup. Simplify the code and re-use. (#3890) This change is cleanup of the postPolicyHandler code primarily to address the flow and also converting certain critical parts into self contained functions.
8 years ago
Add x-amz-storage-class support (#5295) This adds configurable data and parity options on a per object basis. To use variable parity - Users can set environment variables to cofigure variable parity - Then add header x-amz-storage-class to putobject requests with relevant storage class values Fixes #4997
8 years ago
CopyObject:Set Content-Type to application/octet-stream if it is not set (#6958)
7 years ago
fix: Add support for preserving mtime for replication (#9995) This PR is needed for bucket replication support
5 years ago
Change the default object content-type to binary/octet-stream (#11508)
5 years ago
CopyObject:Set Content-Type to application/octet-stream if it is not set (#6958)
7 years ago
fix: Add support for preserving mtime for replication (#9995) This PR is needed for bucket replication support
5 years ago
security: Remove insecure custom headers (#10244) Background: https://github.com/google/security-research/security/advisories/GHSA-76wf-9vgp-pj7w Remove these custom headers from incoming and outgoing requests.
5 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
security: Remove insecure custom headers (#10244) Background: https://github.com/google/security-research/security/advisories/GHSA-76wf-9vgp-pj7w Remove these custom headers from incoming and outgoing requests.
5 years ago
fix: Add support for preserving mtime for replication (#9995) This PR is needed for bucket replication support
5 years ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
logging: Add subsystem to log API (#19002) Create new code paths for multiple subsystems in the code. This will make maintaing this easier later. Also introduce bugLogIf() for errors that should not happen in the first place.
1 year ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
Add x-amz-storage-class support (#5295) This adds configurable data and parity options on a per object basis. To use variable parity - Users can set environment variables to cofigure variable parity - Then add header x-amz-storage-class to putobject requests with relevant storage class values Fixes #4997
8 years ago
api: extract http headers with some supported header list. (#2268)
9 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
Fix SSE-C checksums (#19896) Compression will be disabled by default if SSE-C is specified. So we can still honor SSE-C.
1 year ago
Enable replication of SSE-C objects (#19107) If site replication enabled across sites, replicate the SSE-C objects as well. These objects could be read from target sites using the same client encryption keys. Signed-off-by: Shubhendu Ram Tripathi <shubhendu@minio.io>
1 year ago
api: extract http headers with some supported header list. (#2268)
9 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
restirct max size of http header and user metadata (#4634) (#4680) S3 only allows http headers with a size of 8 KB and user-defined metadata with a size of 2 KB. This change adds a new API error and returns this error to clients which sends to large http requests. Fixes #4634
8 years ago
Reduce allocations (#17584) * Reduce allocations * Add stringsHasPrefixFold which can compare string prefixes, while ignoring case and not allocating. * Reuse all msgp.Readers * Reuse metadata buffers when not reading data. * Make type safe. Make buffer 4K instead of 8. * Unslice
2 years ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
fix: replication metadata comparsion and other fixes (#11410) - using miniogo.ObjectInfo.UserMetadata is not correct - using UserTags from Map->String() can change order - ContentType comparison needs to be removed. - Compare both lowercase and uppercase key names. - do not silently error out constructing PutObjectOptions if tag parsing fails - avoid notification for empty object info, failed operations should rely on valid objInfo for notification in all situations - optimize copyObject implementation, also introduce a new replication event - clone ObjectInfo() before scheduling for replication - add additional headers for comparison - remove strings.EqualFold comparison avoid unexpected bugs - fix pool based proxying with multiple pools - compare only specific metadata Co-authored-by: Poorna Krishnamoorthy <poornas@users.noreply.github.com>
5 years ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
Support multiple values for x-amz-meta header (#6145) Fixes #5595
7 years ago
restirct max size of http header and user metadata (#4634) (#4680) S3 only allows http headers with a size of 8 KB and user-defined metadata with a size of 2 KB. This change adds a new API error and returns this error to clients which sends to large http requests. Fixes #4634
8 years ago
api: extract http headers with some supported header list. (#2268)
9 years ago
SignatureV4 validation with Metadata in the presignedUrl (#5894) The `X-Amz-Meta-`/`X-Minio-Meta-` will now be recognized in query string also. Fixes #5857 #5950
7 years ago
PostForm: Save supported headers in obj metadata (#3474) Supported Headers like Content-Type, Cache-Control, Content-Encoding, X-Amz-* , etc.. are now saved in object metadata
9 years ago
Choose right users in federation mode for CopyObject (#6895)
7 years ago
Implement AssumeRole API for Minio users (#7267) For actual API reference read here https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html Documentation is added and updated as well at docs/sts/assume-role.md Fixes #6381
7 years ago
Parse and return proper errors with x-amz-security-token (#6766) This PR also simplifies the token and access key validation across our signature handling.
7 years ago
Support audit logs with additional fields (#6738) This PR adds support - Request query params - Request headers - Response headers AuditLogEntry is exported and versioned as well starting with this PR.
7 years ago
Choose right users in federation mode for CopyObject (#6895)
7 years ago
Support audit logs with additional fields (#6738) This PR adds support - Request query params - Request headers - Response headers AuditLogEntry is exported and versioned as well starting with this PR.
7 years ago
add codespell action (#18818) Original work here, #18474, refixed and updated.
2 years ago
api: postPolicy cleanup. Simplify the code and re-use. (#3890) This change is cleanup of the postPolicyHandler code primarily to address the flow and also converting certain critical parts into self contained functions.
8 years ago
PostForm: Save supported headers in obj metadata (#3474) Supported Headers like Content-Type, Cache-Control, Content-Encoding, X-Amz-* , etc.. are now saved in object metadata
9 years ago
api: postPolicy cleanup. Simplify the code and re-use. (#3890) This change is cleanup of the postPolicyHandler code primarily to address the flow and also converting certain critical parts into self contained functions.
8 years ago
handle racy updates to globalSite config (#19750) ``` ================== WARNING: DATA RACE Read at 0x0000082be990 by goroutine 205: github.com/minio/minio/cmd.setCommonHeaders() Previous write at 0x0000082be990 by main goroutine: github.com/minio/minio/cmd.lookupConfigs() ```
1 year ago
Choose right users in federation mode for CopyObject (#6895)
7 years ago
Add support for federation on browser (#6891)
7 years ago
fix: notify parent user in notification events (#11934) fixes #11885
4 years ago
api: postPolicy cleanup. Simplify the code and re-use. (#3890) This change is cleanup of the postPolicyHandler code primarily to address the flow and also converting certain critical parts into self contained functions.
8 years ago
Avoid notification event for replicas (#11683) Creating notification events for replica creation is not particularly useful to send as the notification event generated at source already includes replication completion events. For applications using replica cluster as failover, avoiding duplicate notifications for replica event will allow seamless failover.
4 years ago
Support audit logs with additional fields (#6738) This PR adds support - Request query params - Request headers - Response headers AuditLogEntry is exported and versioned as well starting with this PR.
7 years ago
fix: notify parent user in notification events (#11934) fixes #11885
4 years ago
Use GetSourceIP for source ip as request params (#6109) Fixes #6108
7 years ago
api: postPolicy cleanup. Simplify the code and re-use. (#3890) This change is cleanup of the postPolicyHandler code primarily to address the flow and also converting certain critical parts into self contained functions.
8 years ago
Log Range Header if present in the request (#14851) Add Range header as param to easier debug of Range requests.
3 years ago
Avoid notification event for replicas (#11683) Creating notification events for replica creation is not particularly useful to send as the notification event generated at source already includes replication completion events. For applications using replica cluster as failover, avoiding duplicate notifications for replica event will allow seamless failover.
4 years ago
api: postPolicy cleanup. Simplify the code and re-use. (#3890) This change is cleanup of the postPolicyHandler code primarily to address the flow and also converting certain critical parts into self contained functions.
8 years ago
add codespell action (#18818) Original work here, #18474, refixed and updated.
2 years ago
Add content-length as part of event notification structure (#6341) Fixes #6321
7 years ago
add missing request-id from DeleteObject events (#10623) fixes #10621
5 years ago
Add content-length as part of event notification structure (#6341) Fixes #6321
7 years ago
Ensure that we use constants everywhere (#7845) This allows for canonicalization of the strings throughout our code and provides a common space for all these constants to reside. This list is rather non-exhaustive but captures all the headers used in AWS S3 API operations
6 years ago
add correct HostId instead of deploymentId for error responses (#16686)
2 years ago
Ensure that we use constants everywhere (#7845) This allows for canonicalization of the strings throughout our code and provides a common space for all these constants to reside. This list is rather non-exhaustive but captures all the headers used in AWS S3 API operations
6 years ago
Add content-length as part of event notification structure (#6341) Fixes #6321
7 years ago
sign/streaming: Content-Encoding is not set in newer aws-java-sdks (#3986) We can't use Content-Encoding to verify if `aws-chunked` is set or not. Just use 'streaming' signature header instead. While this is considered mandatory, on the contrary aws-sdk-java doesn't set this value http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-streaming.html ``` Set the value to aws-chunked. ``` We will relax it and behave appropriately. Also this PR supports saving custom encoding after trimming off the `aws-chunked` parameter. Fixes #3983
8 years ago
prometheus: Fix internode stats (#17594) Internode calculation was done inside S3 handlers, fix it by moving it to internode handlers. Remove admin stats since it is not used.
2 years ago
The prometheus metrics refractoring (#8003) The measures are consolidated to the following metrics - `disk_storage_used` : Disk space used by the disk. - `disk_storage_available`: Available disk space left on the disk. - `disk_storage_total`: Total disk space on the disk. - `disks_offline`: Total number of offline disks in current MinIO instance. - `disks_total`: Total number of disks in current MinIO instance. - `s3_requests_total`: Total number of s3 requests in current MinIO instance. - `s3_errors_total`: Total number of errors in s3 requests in current MinIO instance. - `s3_requests_current`: Total number of active s3 requests in current MinIO instance. - `internode_rx_bytes_total`: Total number of internode bytes received by current MinIO server instance. - `internode_tx_bytes_total`: Total number of bytes sent to the other nodes by current MinIO server instance. - `s3_rx_bytes_total`: Total number of s3 bytes received by current MinIO server instance. - `s3_tx_bytes_total`: Total number of s3 bytes sent by current MinIO server instance. - `minio_version_info`: Current MinIO version with commit-id. - `s3_ttfb_seconds_bucket`: Histogram that holds the latency information of the requests. And this PR also modifies the current StorageInfo queries - Decouples StorageInfo from ServerInfo . - StorageInfo is enhanced to give endpoint information. NOTE: ADMIN API VERSION IS BUMPED UP IN THIS PR Fixes #7873
6 years ago
add support for bucket level request count per API (#17468) New metrics added to calculate API request count per bucket, per API. Captures errors, including 4xx, 5xx HTTP status codes separately.
2 years ago
only look for valid buckets (#19244) fixes #19239
1 year ago
debug: introduce support for configuring client connect WRITE deadline (#19170) just like client-conn-read-deadline, added a new flag that does client-conn-write-deadline as well. Both are not configured by default, since we do not yet know what is the right value. Allow this to be configurable if needed.
1 year ago
add support for bucket level request count per API (#17468) New metrics added to calculate API request count per bucket, per API. Captures errors, including 4xx, 5xx HTTP status codes separately.
2 years ago
debug: introduce support for configuring client connect WRITE deadline (#19170) just like client-conn-read-deadline, added a new flag that does client-conn-write-deadline as well. Both are not configured by default, since we do not yet know what is the right value. Allow this to be configurable if needed.
1 year ago
Use one http response recorder per external http call (#16938)
2 years ago
debug: introduce support for configuring client connect WRITE deadline (#19170) just like client-conn-read-deadline, added a new flag that does client-conn-write-deadline as well. Both are not configured by default, since we do not yet know what is the right value. Allow this to be configurable if needed.
1 year ago
The prometheus metrics refractoring (#8003) The measures are consolidated to the following metrics - `disk_storage_used` : Disk space used by the disk. - `disk_storage_available`: Available disk space left on the disk. - `disk_storage_total`: Total disk space on the disk. - `disks_offline`: Total number of offline disks in current MinIO instance. - `disks_total`: Total number of disks in current MinIO instance. - `s3_requests_total`: Total number of s3 requests in current MinIO instance. - `s3_errors_total`: Total number of errors in s3 requests in current MinIO instance. - `s3_requests_current`: Total number of active s3 requests in current MinIO instance. - `internode_rx_bytes_total`: Total number of internode bytes received by current MinIO server instance. - `internode_tx_bytes_total`: Total number of bytes sent to the other nodes by current MinIO server instance. - `s3_rx_bytes_total`: Total number of s3 bytes received by current MinIO server instance. - `s3_tx_bytes_total`: Total number of s3 bytes sent by current MinIO server instance. - `minio_version_info`: Current MinIO version with commit-id. - `s3_ttfb_seconds_bucket`: Histogram that holds the latency information of the requests. And this PR also modifies the current StorageInfo queries - Decouples StorageInfo from ServerInfo . - StorageInfo is enhanced to give endpoint information. NOTE: ADMIN API VERSION IS BUMPED UP IN THIS PR Fixes #7873
6 years ago
debug: introduce support for configuring client connect WRITE deadline (#19170) just like client-conn-read-deadline, added a new flag that does client-conn-write-deadline as well. Both are not configured by default, since we do not yet know what is the right value. Allow this to be configurable if needed.
1 year ago
fix: regression in counting total requests (#17024)
2 years ago
debug: introduce support for configuring client connect WRITE deadline (#19170) just like client-conn-read-deadline, added a new flag that does client-conn-write-deadline as well. Both are not configured by default, since we do not yet know what is the right value. Allow this to be configurable if needed.
1 year ago
fix: regression in counting total requests (#17024)
2 years ago
add support for bucket level request count per API (#17468) New metrics added to calculate API request count per bucket, per API. Captures errors, including 4xx, 5xx HTTP status codes separately.
2 years ago
fix: regression in counting total requests (#17024)
2 years ago
Use one http response recorder per external http call (#16938)
2 years ago
The prometheus metrics refractoring (#8003) The measures are consolidated to the following metrics - `disk_storage_used` : Disk space used by the disk. - `disk_storage_available`: Available disk space left on the disk. - `disk_storage_total`: Total disk space on the disk. - `disks_offline`: Total number of offline disks in current MinIO instance. - `disks_total`: Total number of disks in current MinIO instance. - `s3_requests_total`: Total number of s3 requests in current MinIO instance. - `s3_errors_total`: Total number of errors in s3 requests in current MinIO instance. - `s3_requests_current`: Total number of active s3 requests in current MinIO instance. - `internode_rx_bytes_total`: Total number of internode bytes received by current MinIO server instance. - `internode_tx_bytes_total`: Total number of bytes sent to the other nodes by current MinIO server instance. - `s3_rx_bytes_total`: Total number of s3 bytes received by current MinIO server instance. - `s3_tx_bytes_total`: Total number of s3 bytes sent by current MinIO server instance. - `minio_version_info`: Current MinIO version with commit-id. - `s3_ttfb_seconds_bucket`: Histogram that holds the latency information of the requests. And this PR also modifies the current StorageInfo queries - Decouples StorageInfo from ServerInfo . - StorageInfo is enhanced to give endpoint information. NOTE: ADMIN API VERSION IS BUMPED UP IN THIS PR Fixes #7873
6 years ago
Virtual host style S3 requests (#5095)
8 years ago
Support multiple-domains in MINIO_DOMAIN (#7274) Fixes #7173
7 years ago
Virtual host style S3 requests (#5095)
8 years ago
fix: panic in browser redirect handler for unexpected r.Host (#14844) ``` panic: "GET /": invalid hostname goroutine 148 [running]: runtime/debug.Stack() runtime/debug/stack.go:24 +0x65 github.com/minio/minio/cmd.setCriticalErrorHandler.func1.1() github.com/minio/minio/cmd/generic-handlers.go:469 +0x8e panic({0x2201f00, 0xc001f1ddd0}) runtime/panic.go:1038 +0x215 github.com/minio/pkg/net.URL.String({{0x25aa417, 0x5}, {0x0, 0x0}, 0x0, {0xc000174380, 0xd7}, {0x0, 0x0}, {0x0, ...}, ...}) github.com/minio/pkg@v1.1.23/net/url.go:97 +0xfe github.com/minio/minio/cmd.setBrowserRedirectHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/generic-handlers.go:136 +0x118 net/http.HandlerFunc.ServeHTTP(0xc00002ea00, {0x49af080, 0xc0003c20e0}, 0xa) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setAuthHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/auth-handler.go:525 +0x3d8 net/http.HandlerFunc.ServeHTTP(0xc00002e900, {0x49af080, 0xc0003c20e0}, 0xc001f33701) net/http/server.go:2047 +0x2f github.com/gorilla/mux.(*Router).ServeHTTP(0xc0025d0780, {0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf github.com/rs/cors.(*Cors).Handler.func1({0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/rs/cors@v1.7.0/cors.go:219 +0x1bd net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0xc00068d9f8) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setCriticalErrorHandler.func1({0x49af080, 0xc0003c20e0}, 0x4a5cd3) github.com/minio/minio/cmd/generic-handlers.go:476 +0x83 net/http.HandlerFunc.ServeHTTP(0x72, {0x49af080, 0xc0003c20e0}, 0x0) net/http/server.go:2047 +0x2f github.com/minio/minio/internal/http.(*Server).Start.func1({0x49af080, 0xc0003c20e0}, 0x10000c001f1dda0) github.com/minio/minio/internal/http/server.go:105 +0x1b6 net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0x46982e) net/http/server.go:2047 +0x2f net/http.serverHandler.ServeHTTP({0xc003dc1950}, {0x49af080, 0xc0003c20e0}, 0xc00002e800) net/http/server.go:2879 +0x43b net/http.(*conn).serve(0xc000514d20, {0x49cfc38, 0xc0010c0e70}) net/http/server.go:1930 +0xb08 created by net/http.(*Server).Serve net/http/server.go:3034 +0x4e8 ```
3 years ago
Virtual host style S3 requests (#5095)
8 years ago
fix: panic in browser redirect handler for unexpected r.Host (#14844) ``` panic: "GET /": invalid hostname goroutine 148 [running]: runtime/debug.Stack() runtime/debug/stack.go:24 +0x65 github.com/minio/minio/cmd.setCriticalErrorHandler.func1.1() github.com/minio/minio/cmd/generic-handlers.go:469 +0x8e panic({0x2201f00, 0xc001f1ddd0}) runtime/panic.go:1038 +0x215 github.com/minio/pkg/net.URL.String({{0x25aa417, 0x5}, {0x0, 0x0}, 0x0, {0xc000174380, 0xd7}, {0x0, 0x0}, {0x0, ...}, ...}) github.com/minio/pkg@v1.1.23/net/url.go:97 +0xfe github.com/minio/minio/cmd.setBrowserRedirectHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/generic-handlers.go:136 +0x118 net/http.HandlerFunc.ServeHTTP(0xc00002ea00, {0x49af080, 0xc0003c20e0}, 0xa) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setAuthHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/auth-handler.go:525 +0x3d8 net/http.HandlerFunc.ServeHTTP(0xc00002e900, {0x49af080, 0xc0003c20e0}, 0xc001f33701) net/http/server.go:2047 +0x2f github.com/gorilla/mux.(*Router).ServeHTTP(0xc0025d0780, {0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf github.com/rs/cors.(*Cors).Handler.func1({0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/rs/cors@v1.7.0/cors.go:219 +0x1bd net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0xc00068d9f8) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setCriticalErrorHandler.func1({0x49af080, 0xc0003c20e0}, 0x4a5cd3) github.com/minio/minio/cmd/generic-handlers.go:476 +0x83 net/http.HandlerFunc.ServeHTTP(0x72, {0x49af080, 0xc0003c20e0}, 0x0) net/http/server.go:2047 +0x2f github.com/minio/minio/internal/http.(*Server).Start.func1({0x49af080, 0xc0003c20e0}, 0x10000c001f1dda0) github.com/minio/minio/internal/http/server.go:105 +0x1b6 net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0x46982e) net/http/server.go:2047 +0x2f net/http.serverHandler.ServeHTTP({0xc003dc1950}, {0x49af080, 0xc0003c20e0}, 0xc00002e800) net/http/server.go:2879 +0x43b net/http.(*conn).serve(0xc000514d20, {0x49cfc38, 0xc0010c0e70}) net/http/server.go:1930 +0xb08 created by net/http.(*Server).Serve net/http/server.go:3034 +0x4e8 ```
3 years ago
Virtual host style S3 requests (#5095)
8 years ago
fix: panic in browser redirect handler for unexpected r.Host (#14844) ``` panic: "GET /": invalid hostname goroutine 148 [running]: runtime/debug.Stack() runtime/debug/stack.go:24 +0x65 github.com/minio/minio/cmd.setCriticalErrorHandler.func1.1() github.com/minio/minio/cmd/generic-handlers.go:469 +0x8e panic({0x2201f00, 0xc001f1ddd0}) runtime/panic.go:1038 +0x215 github.com/minio/pkg/net.URL.String({{0x25aa417, 0x5}, {0x0, 0x0}, 0x0, {0xc000174380, 0xd7}, {0x0, 0x0}, {0x0, ...}, ...}) github.com/minio/pkg@v1.1.23/net/url.go:97 +0xfe github.com/minio/minio/cmd.setBrowserRedirectHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/generic-handlers.go:136 +0x118 net/http.HandlerFunc.ServeHTTP(0xc00002ea00, {0x49af080, 0xc0003c20e0}, 0xa) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setAuthHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/auth-handler.go:525 +0x3d8 net/http.HandlerFunc.ServeHTTP(0xc00002e900, {0x49af080, 0xc0003c20e0}, 0xc001f33701) net/http/server.go:2047 +0x2f github.com/gorilla/mux.(*Router).ServeHTTP(0xc0025d0780, {0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf github.com/rs/cors.(*Cors).Handler.func1({0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/rs/cors@v1.7.0/cors.go:219 +0x1bd net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0xc00068d9f8) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setCriticalErrorHandler.func1({0x49af080, 0xc0003c20e0}, 0x4a5cd3) github.com/minio/minio/cmd/generic-handlers.go:476 +0x83 net/http.HandlerFunc.ServeHTTP(0x72, {0x49af080, 0xc0003c20e0}, 0x0) net/http/server.go:2047 +0x2f github.com/minio/minio/internal/http.(*Server).Start.func1({0x49af080, 0xc0003c20e0}, 0x10000c001f1dda0) github.com/minio/minio/internal/http/server.go:105 +0x1b6 net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0x46982e) net/http/server.go:2047 +0x2f net/http.serverHandler.ServeHTTP({0xc003dc1950}, {0x49af080, 0xc0003c20e0}, 0xc00002e800) net/http/server.go:2879 +0x43b net/http.(*conn).serve(0xc000514d20, {0x49cfc38, 0xc0010c0e70}) net/http/server.go:1930 +0xb08 created by net/http.(*Server).Serve net/http/server.go:3034 +0x4e8 ```
3 years ago
Support multiple-domains in MINIO_DOMAIN (#7274) Fixes #7173
7 years ago
fix: panic in browser redirect handler for unexpected r.Host (#14844) ``` panic: "GET /": invalid hostname goroutine 148 [running]: runtime/debug.Stack() runtime/debug/stack.go:24 +0x65 github.com/minio/minio/cmd.setCriticalErrorHandler.func1.1() github.com/minio/minio/cmd/generic-handlers.go:469 +0x8e panic({0x2201f00, 0xc001f1ddd0}) runtime/panic.go:1038 +0x215 github.com/minio/pkg/net.URL.String({{0x25aa417, 0x5}, {0x0, 0x0}, 0x0, {0xc000174380, 0xd7}, {0x0, 0x0}, {0x0, ...}, ...}) github.com/minio/pkg@v1.1.23/net/url.go:97 +0xfe github.com/minio/minio/cmd.setBrowserRedirectHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/generic-handlers.go:136 +0x118 net/http.HandlerFunc.ServeHTTP(0xc00002ea00, {0x49af080, 0xc0003c20e0}, 0xa) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setAuthHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/auth-handler.go:525 +0x3d8 net/http.HandlerFunc.ServeHTTP(0xc00002e900, {0x49af080, 0xc0003c20e0}, 0xc001f33701) net/http/server.go:2047 +0x2f github.com/gorilla/mux.(*Router).ServeHTTP(0xc0025d0780, {0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf github.com/rs/cors.(*Cors).Handler.func1({0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/rs/cors@v1.7.0/cors.go:219 +0x1bd net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0xc00068d9f8) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setCriticalErrorHandler.func1({0x49af080, 0xc0003c20e0}, 0x4a5cd3) github.com/minio/minio/cmd/generic-handlers.go:476 +0x83 net/http.HandlerFunc.ServeHTTP(0x72, {0x49af080, 0xc0003c20e0}, 0x0) net/http/server.go:2047 +0x2f github.com/minio/minio/internal/http.(*Server).Start.func1({0x49af080, 0xc0003c20e0}, 0x10000c001f1dda0) github.com/minio/minio/internal/http/server.go:105 +0x1b6 net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0x46982e) net/http/server.go:2047 +0x2f net/http.serverHandler.ServeHTTP({0xc003dc1950}, {0x49af080, 0xc0003c20e0}, 0xc00002e800) net/http/server.go:2879 +0x43b net/http.(*conn).serve(0xc000514d20, {0x49cfc38, 0xc0010c0e70}) net/http/server.go:1930 +0xb08 created by net/http.(*Server).Serve net/http/server.go:3034 +0x4e8 ```
3 years ago
skip subdomain from bucket DNS which start with `minio.domain` (#10390) extend host matcher to reject the host match
5 years ago
fix: panic in browser redirect handler for unexpected r.Host (#14844) ``` panic: "GET /": invalid hostname goroutine 148 [running]: runtime/debug.Stack() runtime/debug/stack.go:24 +0x65 github.com/minio/minio/cmd.setCriticalErrorHandler.func1.1() github.com/minio/minio/cmd/generic-handlers.go:469 +0x8e panic({0x2201f00, 0xc001f1ddd0}) runtime/panic.go:1038 +0x215 github.com/minio/pkg/net.URL.String({{0x25aa417, 0x5}, {0x0, 0x0}, 0x0, {0xc000174380, 0xd7}, {0x0, 0x0}, {0x0, ...}, ...}) github.com/minio/pkg@v1.1.23/net/url.go:97 +0xfe github.com/minio/minio/cmd.setBrowserRedirectHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/generic-handlers.go:136 +0x118 net/http.HandlerFunc.ServeHTTP(0xc00002ea00, {0x49af080, 0xc0003c20e0}, 0xa) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setAuthHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/auth-handler.go:525 +0x3d8 net/http.HandlerFunc.ServeHTTP(0xc00002e900, {0x49af080, 0xc0003c20e0}, 0xc001f33701) net/http/server.go:2047 +0x2f github.com/gorilla/mux.(*Router).ServeHTTP(0xc0025d0780, {0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf github.com/rs/cors.(*Cors).Handler.func1({0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/rs/cors@v1.7.0/cors.go:219 +0x1bd net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0xc00068d9f8) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setCriticalErrorHandler.func1({0x49af080, 0xc0003c20e0}, 0x4a5cd3) github.com/minio/minio/cmd/generic-handlers.go:476 +0x83 net/http.HandlerFunc.ServeHTTP(0x72, {0x49af080, 0xc0003c20e0}, 0x0) net/http/server.go:2047 +0x2f github.com/minio/minio/internal/http.(*Server).Start.func1({0x49af080, 0xc0003c20e0}, 0x10000c001f1dda0) github.com/minio/minio/internal/http/server.go:105 +0x1b6 net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0x46982e) net/http/server.go:2047 +0x2f net/http.serverHandler.ServeHTTP({0xc003dc1950}, {0x49af080, 0xc0003c20e0}, 0xc00002e800) net/http/server.go:2879 +0x43b net/http.(*conn).serve(0xc000514d20, {0x49cfc38, 0xc0010c0e70}) net/http/server.go:1930 +0xb08 created by net/http.(*Server).Serve net/http/server.go:3034 +0x4e8 ```
3 years ago
Support multiple-domains in MINIO_DOMAIN (#7274) Fixes #7173
7 years ago
fix: panic in browser redirect handler for unexpected r.Host (#14844) ``` panic: "GET /": invalid hostname goroutine 148 [running]: runtime/debug.Stack() runtime/debug/stack.go:24 +0x65 github.com/minio/minio/cmd.setCriticalErrorHandler.func1.1() github.com/minio/minio/cmd/generic-handlers.go:469 +0x8e panic({0x2201f00, 0xc001f1ddd0}) runtime/panic.go:1038 +0x215 github.com/minio/pkg/net.URL.String({{0x25aa417, 0x5}, {0x0, 0x0}, 0x0, {0xc000174380, 0xd7}, {0x0, 0x0}, {0x0, ...}, ...}) github.com/minio/pkg@v1.1.23/net/url.go:97 +0xfe github.com/minio/minio/cmd.setBrowserRedirectHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/generic-handlers.go:136 +0x118 net/http.HandlerFunc.ServeHTTP(0xc00002ea00, {0x49af080, 0xc0003c20e0}, 0xa) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setAuthHandler.func1({0x49af080, 0xc0003c20e0}, 0xc00002ea00) github.com/minio/minio/cmd/auth-handler.go:525 +0x3d8 net/http.HandlerFunc.ServeHTTP(0xc00002e900, {0x49af080, 0xc0003c20e0}, 0xc001f33701) net/http/server.go:2047 +0x2f github.com/gorilla/mux.(*Router).ServeHTTP(0xc0025d0780, {0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf github.com/rs/cors.(*Cors).Handler.func1({0x49af080, 0xc0003c20e0}, 0xc00002e800) github.com/rs/cors@v1.7.0/cors.go:219 +0x1bd net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0xc00068d9f8) net/http/server.go:2047 +0x2f github.com/minio/minio/cmd.setCriticalErrorHandler.func1({0x49af080, 0xc0003c20e0}, 0x4a5cd3) github.com/minio/minio/cmd/generic-handlers.go:476 +0x83 net/http.HandlerFunc.ServeHTTP(0x72, {0x49af080, 0xc0003c20e0}, 0x0) net/http/server.go:2047 +0x2f github.com/minio/minio/internal/http.(*Server).Start.func1({0x49af080, 0xc0003c20e0}, 0x10000c001f1dda0) github.com/minio/minio/internal/http/server.go:105 +0x1b6 net/http.HandlerFunc.ServeHTTP(0x0, {0x49af080, 0xc0003c20e0}, 0x46982e) net/http/server.go:2047 +0x2f net/http.serverHandler.ServeHTTP({0xc003dc1950}, {0x49af080, 0xc0003c20e0}, 0xc00002e800) net/http/server.go:2879 +0x43b net/http.(*conn).serve(0xc000514d20, {0x49cfc38, 0xc0010c0e70}) net/http/server.go:1930 +0xb08 created by net/http.(*Server).Serve net/http/server.go:3034 +0x4e8 ```
3 years ago
Use const slashSeparator instead of "/" everywhere (#8028)
6 years ago
Virtual host style S3 requests (#5095)
8 years ago
Support multiple-domains in MINIO_DOMAIN (#7274) Fixes #7173
7 years ago
Virtual host style S3 requests (#5095)
8 years ago
fix: server upgrades should have more descriptive error messages (#11476) during rolling upgrade, provide a more descriptive error message and discourage rolling upgrade in such situations, allowing users to take action. additionally also rename `slashpath -> pathutil` to avoid a slighly mis-pronounced usage of `path` package.
5 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
fix: server upgrades should have more descriptive error messages (#11476) during rolling upgrade, provide a more descriptive error message and discourage rolling upgrade in such situations, allowing users to take action. additionally also rename `slashpath -> pathutil` to avoid a slighly mis-pronounced usage of `path` package.
5 years ago
Virtual host style S3 requests (#5095)
8 years ago
Fix host address returned in admin API calls (#7846)
6 years ago
ListObjects Metadata Caching (#10648) Design: https://gist.github.com/klauspost/025c09b48ed4a1293c917cecfabdf21c Gist of improvements: * Cross-server caching and listing will use the same data across servers and requests. * Lists can be arbitrarily resumed at a constant speed. * Metadata for all files scanned is stored for streaming retrieval. * The existing bloom filters controlled by the crawler is used for validating caches. * Concurrent requests for the same data (or parts of it) will not spawn additional walkers. * Listing a subdirectory of an existing recursive cache will use the cache. * All listing operations are fully streamable so the number of objects in a bucket no longer dictates the amount of memory. * Listings can be handled by any server within the cluster. * Caches are cleaned up when out of date or superseded by a more recent one.
5 years ago
Simplify the messaging for internode versions (#14103) provide a cleaner message instead of cryptic logs, also provide the relevant link on how to do recommended way to upgrade.
4 years ago
ListObjects Metadata Caching (#10648) Design: https://gist.github.com/klauspost/025c09b48ed4a1293c917cecfabdf21c Gist of improvements: * Cross-server caching and listing will use the same data across servers and requests. * Lists can be arbitrarily resumed at a constant speed. * Metadata for all files scanned is stored for streaming retrieval. * The existing bloom filters controlled by the crawler is used for validating caches. * Concurrent requests for the same data (or parts of it) will not spawn additional walkers. * Listing a subdirectory of an existing recursive cache will use the cache. * All listing operations are fully streamable so the number of objects in a bucket no longer dictates the amount of memory. * Listings can be handled by any server within the cluster. * Caches are cleaned up when out of date or superseded by a more recent one.
5 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
fix: add missing content-disposition from CORS handler (#10137)
5 years ago
Simplify the messaging for internode versions (#14103) provide a cleaner message instead of cryptic logs, also provide the relevant link on how to do recommended way to upgrade.
4 years ago
Add more context to rpc version mismatch errors (#8271) Fixes #5665
6 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
Add a custom healthcheck function for online status (#9858) - Add changes to ensure remote disks are not incorrectly taken online if their order has changed or are incorrect disks. - Bring changes to peer to detect disconnection with separate Health handler, to avoid a rather expensive call GetLocakDiskIDs() - Follow up on the same changes for Lockers as well
5 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
Add a custom healthcheck function for online status (#9858) - Add changes to ensure remote disks are not incorrectly taken online if their order has changed or are incorrect disks. - Bring changes to peer to detect disconnection with separate Health handler, to avoid a rather expensive call GetLocakDiskIDs() - Follow up on the same changes for Lockers as well
5 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
Simplify the messaging for internode versions (#14103) provide a cleaner message instead of cryptic logs, also provide the relevant link on how to do recommended way to upgrade.
4 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
Simplify the messaging for internode versions (#14103) provide a cleaner message instead of cryptic logs, also provide the relevant link on how to do recommended way to upgrade.
4 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
Simplify the messaging for internode versions (#14103) provide a cleaner message instead of cryptic logs, also provide the relevant link on how to do recommended way to upgrade.
4 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
Add a custom healthcheck function for online status (#9858) - Add changes to ensure remote disks are not incorrectly taken online if their order has changed or are incorrect disks. - Bring changes to peer to detect disconnection with separate Health handler, to avoid a rather expensive call GetLocakDiskIDs() - Follow up on the same changes for Lockers as well
5 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
Add more context to rpc version mismatch errors (#8271) Fixes #5665
6 years ago
return error for AppendObject() API (#21272)
3 months ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
[feat]: implement GetBucketPolicyStatus API (#11673) additionally also add more APIs in notImplemented list, adjust routing rules appropriately
4 years ago
return error for AppendObject() API (#21272)
3 months ago
[feat]: implement GetBucketPolicyStatus API (#11673) additionally also add more APIs in notImplemented list, adjust routing rules appropriately
4 years ago
Return appropriate errors API versions changes across REST APIs (#8480) This PR adds code to appropriately handle versioning issues that come up quite constantly across our API changes. Currently we were also routing our requests wrong which sort of made it harder to write a consistent error handling code to appropriately reject or honor requests. This PR potentially fixes issues - old mc is used against new minio release which is incompatible returns an appropriate for client action. - any older servers talking to each other, report appropriate error - incompatible peer servers should report error and reject the calls with appropriate error
6 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
Add more context to rpc version mismatch errors (#8271) Fixes #5665
6 years ago
Fix host address returned in admin API calls (#7846)
6 years ago
Add node address information to logs (#7941)
6 years ago
Support bucket versioning (#9377) - Implement a new xl.json 2.0.0 format to support, this moves the entire marshaling logic to POSIX layer, top layer always consumes a common FileInfo construct which simplifies the metadata reads. - Implement list object versions - Migrate to siphash from crchash for new deployments for object placements. Fixes #2111
5 years ago
Simplify access to local node name (#11907) The local node name is heavily used in tracing, create a new global variable to store it. Multiple goroutines can access it since it won't be changed later.
4 years ago
Add node address information to logs (#7941)
6 years ago
Fix host address returned in admin API calls (#7846)
6 years ago
Reroute requests based token heal/listing (#9939) When manual healing is triggered, one node in a cluster will become the authority to heal. mc regularly sends new requests to fetch the status of the ongoing healing process, but a load balancer could land the healing request to a node that is not doing the healing request. This PR will redirect a request to the node based on the node index found described as part of the client token. A similar technique is also used to proxy ListObjectsV2 requests by encoding this information in continuation-token
5 years ago
fix: proxy requests to honor global transport * fix: proxy requests to honor global transport Load the globalProxyEndpoint properly also, currently, the proxy requests will fail silently for batch cancel even if the proxy fails; instead,d properly send the corresponding error back for such proxy failures if opted * pass the transport to the GetProxyEnpoints function --------- Co-authored-by: Praveen raj Mani <praveen@minio.io>
6 months ago
Reroute requests based token heal/listing (#9939) When manual healing is triggered, one node in a cluster will become the authority to heal. mc regularly sends new requests to fetch the status of the ongoing healing process, but a load balancer could land the healing request to a node that is not doing the healing request. This PR will redirect a request to the node based on the node index found described as part of the client token. A similar technique is also used to proxy ListObjectsV2 requests by encoding this information in continuation-token
5 years ago
Avoid duplicate headers when proxying S3 listing requests (#10220)
5 years ago
Reroute requests based token heal/listing (#9939) When manual healing is triggered, one node in a cluster will become the authority to heal. mc regularly sends new requests to fetch the status of the ongoing healing process, but a load balancer could land the healing request to a node that is not doing the healing request. This PR will redirect a request to the node based on the node index found described as part of the client token. A similar technique is also used to proxy ListObjectsV2 requests by encoding this information in continuation-token
5 years ago
ListObjectsV1 requests unnecessarily fail with offline nodes (#10386) ListObjectsV1 requests are actually redirected to a specific node, depending on the bucket name. The purpose of this behavior was to optimize listing. However, the current code sends a Bad Gateway error if the target node is offline, which is a bad behavior because it means that the list request will fail, although this is unnecessary since we can still use the current node to list as well (the default behavior without using proxying optimization) Currently, you can see mint fails when there is one offline node, after this PR, mint will always succeed.
5 years ago
fix: proxy requests to honor global transport * fix: proxy requests to honor global transport Load the globalProxyEndpoint properly also, currently, the proxy requests will fail silently for batch cancel even if the proxy fails; instead,d properly send the corresponding error back for such proxy failures if opted * pass the transport to the GetProxyEnpoints function --------- Co-authored-by: Praveen raj Mani <praveen@minio.io>
6 months ago
ListObjectsV1 requests unnecessarily fail with offline nodes (#10386) ListObjectsV1 requests are actually redirected to a specific node, depending on the bucket name. The purpose of this behavior was to optimize listing. However, the current code sends a Bad Gateway error if the target node is offline, which is a bad behavior because it means that the list request will fail, although this is unnecessary since we can still use the current node to list as well (the default behavior without using proxying optimization) Currently, you can see mint fails when there is one offline node, after this PR, mint will always succeed.
5 years ago
Reroute requests based token heal/listing (#9939) When manual healing is triggered, one node in a cluster will become the authority to heal. mc regularly sends new requests to fetch the status of the ongoing healing process, but a load balancer could land the healing request to a node that is not doing the healing request. This PR will redirect a request to the node based on the node index found described as part of the client token. A similar technique is also used to proxy ListObjectsV2 requests by encoding this information in continuation-token
5 years ago
update x/net/http2 to address few bugs (#11144) additionally also configure http2 healthcheck values to quickly detect unstable connections and let them timeout. also use single transport for proxying requests
5 years ago
Reroute requests based token heal/listing (#9939) When manual healing is triggered, one node in a cluster will become the authority to heal. mc regularly sends new requests to fetch the status of the ongoing healing process, but a load balancer could land the healing request to a node that is not doing the healing request. This PR will redirect a request to the node based on the node index found described as part of the client token. A similar technique is also used to proxy ListObjectsV2 requests by encoding this information in continuation-token
5 years ago
  1. // Copyright (c) 2015-2021 MinIO, Inc.
  2. //
  3. // This file is part of MinIO Object Storage stack
  4. //
  5. // This program is free software: you can redistribute it and/or modify
  6. // it under the terms of the GNU Affero General Public License as published by
  7. // the Free Software Foundation, either version 3 of the License, or
  8. // (at your option) any later version.
  9. //
  10. // This program is distributed in the hope that it will be useful
  11. // but WITHOUT ANY WARRANTY; without even the implied warranty of
  12. // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  13. // GNU Affero General Public License for more details.
  14. //
  15. // You should have received a copy of the GNU Affero General Public License
  16. // along with this program. If not, see <http://www.gnu.org/licenses/>.
  18. package cmd
  20. import (
  21. "context"
  22. "errors"
  23. "fmt"
  24. "net/http"
  25. "net/textproto"
  26. "regexp"
  27. "strings"
  28. "sync/atomic"
  30. "github.com/minio/madmin-go/v3"
  31. "github.com/minio/minio/internal/auth"
  32. "github.com/minio/minio/internal/handlers"
  33. xhttp "github.com/minio/minio/internal/http"
  34. "github.com/minio/minio/internal/logger"
  35. "github.com/minio/minio/internal/mcontext"
  36. xnet "github.com/minio/pkg/v3/net"
  37. )
  39. const (
  40. copyDirective = "COPY"
  41. replaceDirective = "REPLACE"
  42. accessDirective = "ACCESS"
  43. )
  45. // Parses location constraint from the incoming reader.
  46. func parseLocationConstraint(r *http.Request) (location string, s3Error APIErrorCode) {
  47. // If the request has no body with content-length set to 0,
  48. // we do not have to validate location constraint. Bucket will
  49. // be created at default region.
  50. locationConstraint := createBucketLocationConfiguration{}
  51. err := xmlDecoder(r.Body, &locationConstraint, r.ContentLength)
  52. if err != nil && r.ContentLength != 0 {
  53. internalLogOnceIf(GlobalContext, err, "location-constraint-xml-parsing")
  54. // Treat all other failures as XML parsing errors.
  55. return "", ErrMalformedXML
  56. } // else for both err as nil or io.EOF
  57. location = locationConstraint.Location
  58. if location == "" {
  59. location = globalSite.Region()
  60. }
  61. if !isValidLocation(location) {
  62. return location, ErrInvalidRegion
  63. }
  65. return location, ErrNone
  66. }
  68. // Validates input location is same as configured region
  69. // of MinIO server.
  70. func isValidLocation(location string) bool {
  71. region := globalSite.Region()
  72. return region == "" || region == location
  73. }
  75. // Supported headers that needs to be extracted.
  76. var supportedHeaders = []string{
  77. "content-type",
  78. "cache-control",
  79. "content-language",
  80. "content-encoding",
  81. "content-disposition",
  82. "x-amz-storage-class",
  83. xhttp.AmzStorageClass,
  84. xhttp.AmzObjectTagging,
  85. "expires",
  86. xhttp.AmzBucketReplicationStatus,
  87. "X-Minio-Replication-Server-Side-Encryption-Sealed-Key",
  88. "X-Minio-Replication-Server-Side-Encryption-Seal-Algorithm",
  89. "X-Minio-Replication-Server-Side-Encryption-Iv",
  90. "X-Minio-Replication-Encrypted-Multipart",
  91. "X-Minio-Replication-Actual-Object-Size",
  92. ReplicationSsecChecksumHeader,
  93. // Add more supported headers here.
  94. }
  96. // mapping of internal headers to allowed replication headers
  97. var validSSEReplicationHeaders = map[string]string{
  98. "X-Minio-Internal-Server-Side-Encryption-Sealed-Key": "X-Minio-Replication-Server-Side-Encryption-Sealed-Key",
  99. "X-Minio-Internal-Server-Side-Encryption-Seal-Algorithm": "X-Minio-Replication-Server-Side-Encryption-Seal-Algorithm",
  100. "X-Minio-Internal-Server-Side-Encryption-Iv": "X-Minio-Replication-Server-Side-Encryption-Iv",
  101. "X-Minio-Internal-Encrypted-Multipart": "X-Minio-Replication-Encrypted-Multipart",
  102. "X-Minio-Internal-Actual-Object-Size": "X-Minio-Replication-Actual-Object-Size",
  103. // Add more supported headers here.
  104. }
  106. // mapping of replication headers to internal headers
  107. var replicationToInternalHeaders = map[string]string{
  108. "X-Minio-Replication-Server-Side-Encryption-Sealed-Key": "X-Minio-Internal-Server-Side-Encryption-Sealed-Key",
  109. "X-Minio-Replication-Server-Side-Encryption-Seal-Algorithm": "X-Minio-Internal-Server-Side-Encryption-Seal-Algorithm",
  110. "X-Minio-Replication-Server-Side-Encryption-Iv": "X-Minio-Internal-Server-Side-Encryption-Iv",
  111. "X-Minio-Replication-Encrypted-Multipart": "X-Minio-Internal-Encrypted-Multipart",
  112. "X-Minio-Replication-Actual-Object-Size": "X-Minio-Internal-Actual-Object-Size",
  113. ReplicationSsecChecksumHeader: ReplicationSsecChecksumHeader,
  114. // Add more supported headers here.
  115. }
  117. // isDirectiveValid - check if tagging-directive is valid.
  118. func isDirectiveValid(v string) bool {
  119. // Check if set metadata-directive is valid.
  120. return isDirectiveCopy(v) || isDirectiveReplace(v)
  121. }
  123. // Check if the directive COPY is requested.
  124. func isDirectiveCopy(value string) bool {
  125. // By default if directive is not set we
  126. // treat it as 'COPY' this function returns true.
  127. return value == copyDirective || value == ""
  128. }
  130. // Check if the directive REPLACE is requested.
  131. func isDirectiveReplace(value string) bool {
  132. return value == replaceDirective
  133. }
  135. // userMetadataKeyPrefixes contains the prefixes of used-defined metadata keys.
  136. // All values stored with a key starting with one of the following prefixes
  137. // must be extracted from the header.
  138. var userMetadataKeyPrefixes = []string{
  139. "x-amz-meta-",
  140. "x-minio-meta-",
  141. }
  143. // extractMetadataFromReq extracts metadata from HTTP header and HTTP queryString.
  144. func extractMetadataFromReq(ctx context.Context, r *http.Request) (metadata map[string]string, err error) {
  145. return extractMetadata(ctx, textproto.MIMEHeader(r.Form), textproto.MIMEHeader(r.Header))
  146. }
  148. func extractMetadata(ctx context.Context, mimesHeader ...textproto.MIMEHeader) (metadata map[string]string, err error) {
  149. metadata = make(map[string]string)
  151. for _, hdr := range mimesHeader {
  152. // Extract all query values.
  153. err = extractMetadataFromMime(ctx, hdr, metadata)
  154. if err != nil {
  155. return nil, err
  156. }
  157. }
  159. // Set content-type to default value if it is not set.
  160. if _, ok := metadata[strings.ToLower(xhttp.ContentType)]; !ok {
  161. metadata[strings.ToLower(xhttp.ContentType)] = "binary/octet-stream"
  162. }
  164. // https://github.com/google/security-research/security/advisories/GHSA-76wf-9vgp-pj7w
  165. for k := range metadata {
  166. if equals(k, xhttp.AmzMetaUnencryptedContentLength, xhttp.AmzMetaUnencryptedContentMD5) {
  167. delete(metadata, k)
  168. }
  169. }
  171. if contentEncoding, ok := metadata[strings.ToLower(xhttp.ContentEncoding)]; ok {
  172. contentEncoding = trimAwsChunkedContentEncoding(contentEncoding)
  173. if contentEncoding != "" {
  174. // Make sure to trim and save the content-encoding
  175. // parameter for a streaming signature which is set
  176. // to a custom value for example: "aws-chunked,gzip".
  177. metadata[strings.ToLower(xhttp.ContentEncoding)] = contentEncoding
  178. } else {
  179. // Trimmed content encoding is empty when the header
  180. // value is set to "aws-chunked" only.
  182. // Make sure to delete the content-encoding parameter
  183. // for a streaming signature which is set to value
  184. // for example: "aws-chunked"
  185. delete(metadata, strings.ToLower(xhttp.ContentEncoding))
  186. }
  187. }
  189. // Success.
  190. return metadata, nil
  191. }
  193. // extractMetadata extracts metadata from map values.
  194. func extractMetadataFromMime(ctx context.Context, v textproto.MIMEHeader, m map[string]string) error {
  195. if v == nil {
  196. bugLogIf(ctx, errInvalidArgument)
  197. return errInvalidArgument
  198. }
  200. nv := make(textproto.MIMEHeader, len(v))
  201. for k, kv := range v {
  202. // Canonicalize all headers, to remove any duplicates.
  203. nv[http.CanonicalHeaderKey(k)] = kv
  204. }
  206. // Save all supported headers.
  207. for _, supportedHeader := range supportedHeaders {
  208. value, ok := nv[http.CanonicalHeaderKey(supportedHeader)]
  209. if ok {
  210. if v, ok := replicationToInternalHeaders[supportedHeader]; ok {
  211. m[v] = strings.Join(value, ",")
  212. } else {
  213. m[supportedHeader] = strings.Join(value, ",")
  214. }
  215. }
  216. }
  218. for key := range v {
  219. for _, prefix := range userMetadataKeyPrefixes {
  220. if !stringsHasPrefixFold(key, prefix) {
  221. continue
  222. }
  223. value, ok := nv[http.CanonicalHeaderKey(key)]
  224. if ok {
  225. m[key] = strings.Join(value, ",")
  226. break
  227. }
  228. }
  229. }
  230. return nil
  231. }
  233. // Returns access credentials in the request Authorization header.
  234. func getReqAccessCred(r *http.Request, region string) (cred auth.Credentials) {
  235. cred, _, _ = getReqAccessKeyV4(r, region, serviceS3)
  236. if cred.AccessKey == "" {
  237. cred, _, _ = getReqAccessKeyV2(r)
  238. }
  239. return cred
  240. }
  242. // Extract request params to be sent with event notification.
  243. func extractReqParams(r *http.Request) map[string]string {
  244. if r == nil {
  245. return nil
  246. }
  248. region := globalSite.Region()
  249. cred := getReqAccessCred(r, region)
  251. principalID := cred.AccessKey
  252. if cred.ParentUser != "" {
  253. principalID = cred.ParentUser
  254. }
  256. // Success.
  257. m := map[string]string{
  258. "region": region,
  259. "principalId": principalID,
  260. "sourceIPAddress": handlers.GetSourceIP(r),
  261. // Add more fields here.
  262. }
  263. if rangeField := r.Header.Get(xhttp.Range); rangeField != "" {
  264. m["range"] = rangeField
  265. }
  267. if _, ok := r.Header[xhttp.MinIOSourceReplicationRequest]; ok {
  268. m[xhttp.MinIOSourceReplicationRequest] = ""
  269. }
  270. return m
  271. }
  273. // Extract response elements to be sent with event notification.
  274. func extractRespElements(w http.ResponseWriter) map[string]string {
  275. if w == nil {
  276. return map[string]string{}
  277. }
  278. return map[string]string{
  279. "requestId": w.Header().Get(xhttp.AmzRequestID),
  280. "nodeId": w.Header().Get(xhttp.AmzRequestHostID),
  281. "content-length": w.Header().Get(xhttp.ContentLength),
  282. // Add more fields here.
  283. }
  284. }
  286. // Trims away `aws-chunked` from the content-encoding header if present.
  287. // Streaming signature clients can have custom content-encoding such as
  288. // `aws-chunked,gzip` here we need to only save `gzip`.
  289. // For more refer http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-streaming.html
  290. func trimAwsChunkedContentEncoding(contentEnc string) (trimmedContentEnc string) {
  291. if contentEnc == "" {
  292. return contentEnc
  293. }
  294. var newEncs []string
  295. for _, enc := range strings.Split(contentEnc, ",") {
  296. if enc != streamingContentEncoding {
  297. newEncs = append(newEncs, enc)
  298. }
  299. }
  300. return strings.Join(newEncs, ",")
  301. }
  303. func collectInternodeStats(f http.HandlerFunc) http.HandlerFunc {
  304. return func(w http.ResponseWriter, r *http.Request) {
  305. f.ServeHTTP(w, r)
  307. tc, ok := r.Context().Value(mcontext.ContextTraceKey).(*mcontext.TraceCtxt)
  308. if !ok || tc == nil {
  309. return
  310. }
  312. globalConnStats.incInternodeInputBytes(int64(tc.RequestRecorder.Size()))
  313. globalConnStats.incInternodeOutputBytes(int64(tc.ResponseRecorder.Size()))
  314. }
  315. }
  317. func collectAPIStats(api string, f http.HandlerFunc) http.HandlerFunc {
  318. return func(w http.ResponseWriter, r *http.Request) {
  319. resource, err := getResource(r.URL.Path, r.Host, globalDomainNames)
  320. if err != nil {
  321. defer logger.AuditLog(r.Context(), w, r, mustGetClaimsFromToken(r))
  323. apiErr := errorCodes.ToAPIErr(ErrUnsupportedHostHeader)
  324. apiErr.Description = fmt.Sprintf("%s: %v", apiErr.Description, err)
  326. writeErrorResponse(r.Context(), w, apiErr, r.URL)
  327. return
  328. }
  330. bucket, _ := path2BucketObject(resource)
  332. meta, err := globalBucketMetadataSys.Get(bucket) // check if this bucket exists.
  333. countBktStat := bucket != "" && bucket != minioReservedBucket && err == nil && !meta.Created.IsZero()
  334. if countBktStat {
  335. globalBucketHTTPStats.updateHTTPStats(bucket, api, nil)
  336. }
  338. globalHTTPStats.currentS3Requests.Inc(api)
  339. f.ServeHTTP(w, r)
  340. globalHTTPStats.currentS3Requests.Dec(api)
  342. tc, _ := r.Context().Value(mcontext.ContextTraceKey).(*mcontext.TraceCtxt)
  343. if tc != nil {
  344. globalHTTPStats.updateStats(api, tc.ResponseRecorder)
  345. globalConnStats.incS3InputBytes(int64(tc.RequestRecorder.Size()))
  346. globalConnStats.incS3OutputBytes(int64(tc.ResponseRecorder.Size()))
  348. if countBktStat {
  349. globalBucketConnStats.incS3InputBytes(bucket, int64(tc.RequestRecorder.Size()))
  350. globalBucketConnStats.incS3OutputBytes(bucket, int64(tc.ResponseRecorder.Size()))
  351. globalBucketHTTPStats.updateHTTPStats(bucket, api, tc.ResponseRecorder)
  352. }
  353. }
  354. }
  355. }
  357. // Returns "/bucketName/objectName" for path-style or virtual-host-style requests.
  358. func getResource(path string, host string, domains []string) (string, error) {
  359. if len(domains) == 0 {
  360. return path, nil
  361. }
  363. // If virtual-host-style is enabled construct the "resource" properly.
  364. xhost, err := xnet.ParseHost(host)
  365. if err != nil {
  366. return "", err
  367. }
  369. for _, domain := range domains {
  370. if xhost.Name == minioReservedBucket+"."+domain {
  371. continue
  372. }
  373. if !strings.HasSuffix(xhost.Name, "."+domain) {
  374. continue
  375. }
  376. bucket := strings.TrimSuffix(xhost.Name, "."+domain)
  377. return SlashSeparator + pathJoin(bucket, path), nil
  378. }
  379. return path, nil
  380. }
  382. var regexVersion = regexp.MustCompile(`^/minio.*/(v\d+)/.*`)
  384. func extractAPIVersion(r *http.Request) string {
  385. if matches := regexVersion.FindStringSubmatch(r.URL.Path); len(matches) > 1 {
  386. return matches[1]
  387. }
  388. return "unknown"
  389. }
  391. func methodNotAllowedHandler(api string) func(w http.ResponseWriter, r *http.Request) {
  392. return errorResponseHandler
  393. }
  395. // If none of the http routes match respond with appropriate errors
  396. func errorResponseHandler(w http.ResponseWriter, r *http.Request) {
  397. if r.Method == http.MethodOptions {
  398. return
  399. }
  400. desc := "Do not upgrade one server at a time - please follow the recommended guidelines mentioned here https://github.com/minio/minio#upgrading-minio for your environment"
  401. switch {
  402. case strings.HasPrefix(r.URL.Path, peerRESTPrefix):
  403. writeErrorResponseString(r.Context(), w, APIError{
  404. Code: "XMinioPeerVersionMismatch",
  405. Description: desc,
  406. HTTPStatusCode: http.StatusUpgradeRequired,
  407. }, r.URL)
  408. case strings.HasPrefix(r.URL.Path, storageRESTPrefix):
  409. writeErrorResponseString(r.Context(), w, APIError{
  410. Code: "XMinioStorageVersionMismatch",
  411. Description: desc,
  412. HTTPStatusCode: http.StatusUpgradeRequired,
  413. }, r.URL)
  414. case strings.HasPrefix(r.URL.Path, adminPathPrefix):
  415. var desc string
  416. version := extractAPIVersion(r)
  417. switch version {
  418. case "v1", madmin.AdminAPIVersionV2:
  419. desc = fmt.Sprintf("Server expects client requests with 'admin' API version '%s', found '%s', please upgrade the client to latest releases", madmin.AdminAPIVersion, version)
  420. case madmin.AdminAPIVersion:
  421. desc = fmt.Sprintf("This 'admin' API is not supported by server in '%s'", getMinioMode())
  422. default:
  423. desc = fmt.Sprintf("Unexpected client 'admin' API version found '%s', expected '%s', please downgrade the client to older releases", version, madmin.AdminAPIVersion)
  424. }
  425. writeErrorResponseJSON(r.Context(), w, APIError{
  426. Code: "XMinioAdminVersionMismatch",
  427. Description: desc,
  428. HTTPStatusCode: http.StatusUpgradeRequired,
  429. }, r.URL)
  430. default:
  431. defer logger.AuditLog(r.Context(), w, r, mustGetClaimsFromToken(r))
  432. defer atomic.AddUint64(&globalHTTPStats.rejectedRequestsInvalid, 1)
  434. // When we are not running in S3 Express mode, generate appropriate error
  435. // for x-amz-write-offset HEADER specified.
  436. if _, ok := r.Header[xhttp.AmzWriteOffsetBytes]; ok {
  437. tc, ok := r.Context().Value(mcontext.ContextTraceKey).(*mcontext.TraceCtxt)
  438. if ok {
  439. tc.FuncName = "s3.AppendObject"
  440. tc.ResponseRecorder.LogErrBody = true
  441. }
  443. writeErrorResponse(r.Context(), w, getAPIError(ErrNotImplemented), r.URL)
  444. return
  445. }
  447. tc, ok := r.Context().Value(mcontext.ContextTraceKey).(*mcontext.TraceCtxt)
  448. if ok {
  449. tc.FuncName = "s3.ValidRequest"
  450. tc.ResponseRecorder.LogErrBody = true
  451. }
  453. writeErrorResponse(r.Context(), w, APIError{
  454. Code: "BadRequest",
  455. Description: fmt.Sprintf("An unsupported API call for method: %s at '%s'",
  456. r.Method, r.URL.Path),
  457. HTTPStatusCode: http.StatusBadRequest,
  458. }, r.URL)
  459. }
  460. }
  462. // gets host name for current node
  463. func getHostName(r *http.Request) (hostName string) {
  464. if globalIsDistErasure {
  465. hostName = globalLocalNodeName
  466. } else {
  467. hostName = r.Host
  468. }
  469. return
  470. }
  472. // Proxy any request to an endpoint.
  473. func proxyRequest(ctx context.Context, w http.ResponseWriter, r *http.Request, ep ProxyEndpoint, returnErr bool) (success bool) {
  474. success = true
  476. // Make sure we remove any existing headers before
  477. // proxying the request to another node.
  478. for k := range w.Header() {
  479. w.Header().Del(k)
  480. }
  482. f := handlers.NewForwarder(&handlers.Forwarder{
  483. PassHost: true,
  484. RoundTripper: ep.Transport,
  485. ErrorHandler: func(w http.ResponseWriter, r *http.Request, err error) {
  486. success = false
  487. if err != nil && !errors.Is(err, context.Canceled) {
  488. proxyLogIf(GlobalContext, err)
  489. }
  490. if returnErr {
  491. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  492. }
  493. },
  494. })
  496. r.URL.Scheme = "http"
  497. if globalIsTLS {
  498. r.URL.Scheme = "https"
  499. }
  501. r.URL.Host = ep.Host
  502. f.ServeHTTP(w, r)
  503. return
  504. }