Mirror
/
MinIO
mirror of https://github.com/minio/minio.git
2
0
Fork 0
Code Issues Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11323 Commits
4 Branches
520 Tags
175 MiB
Tree: RELEASE.20
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'RELEASE.20'
${ noResults }
MinIO/cmd/s3-zip-handlers.go

523 lines
16 KiB
Raw Permalink Normal View History

feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
fix: unknow contentType for ArchiveFileHandler (#19451)
1 year ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
fix: unknow contentType for ArchiveFileHandler (#19451)
1 year ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
upgrade deps for minio/pkg v1.6.1 to include groups conditions (#16538)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Check for s3zip content offset (#15924)
3 years ago
re-use io.Copy buffers with 32k pools (#13553) Borrowed idea from Go's usage of this optimization for ReadFrom() on client side, we should re-use the 32k buffers io.Copy() allocates for generic copy from a reader to writer. the performance increase for reads for really tiny objects is at this range after this change. > * Fastest: +7.89% (+1.3 MiB/s) throughput, +7.89% (+1308.1) obj/s
4 years ago
ldap: Add user DN attributes list config param (#19758) This change uses the updated ldap library in minio/pkg (bumped up to v3). A new config parameter is added for LDAP configuration to specify extra user attributes to load from the LDAP server and to store them as additional claims for the user. A test is added in sts_handlers.go that shows how to access the LDAP attributes as a claim. This is in preparation for adding SSH pubkey authentication to MinIO's SFTP integration.
1 year ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
upgrade golang-lint to the latest (#15600)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Update to minio/pkg/v2 (#17967)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
upgrade deps for minio/pkg v1.6.1 to include groups conditions (#16538)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Check for s3zip content offset (#15924)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
remove unnecessary code checking for supported features (#16423)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Fix SSE-C checksums (#19896) Compression will be disabled by default if SSE-C is specified. So we can still honor SSE-C.
1 year ago
fix: s3zip in fs mode (#13758) The index was converted directly from bytes to binary. This would fail a roundtrip through json. This would result in `Error: invalid input: magic number mismatch` when reading back. On non-erasure backends store index as base64.
4 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
fix: unknow contentType for ArchiveFileHandler (#19451)
1 year ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
s3zip: Limit over-read for single file (#16161)
3 years ago
fix: inlined objects don't need to honor long locks (#17039)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Remove deprecated io/ioutil (#15707)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Add Veeam storage class override (#19748) Recent Veeam is very picky about storage class names. Add `_MINIO_VEEAM_FORCE_SC` env var. It will override the storage class returned by the storage backend if it is non-standard and we detect a Veeam client by checking the User Agent. Applies to HeadObject/GetObject/ListObject*
1 year ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Check for s3zip content offset (#15924)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
use ParseForm() to allow query param lookups once (#12900) ``` cpu: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz BenchmarkURLQueryForm BenchmarkURLQueryForm-4 247099363 4.809 ns/op 0 B/op 0 allocs/op BenchmarkURLQuery BenchmarkURLQuery-4 2517624 462.1 ns/op 432 B/op 4 allocs/op PASS ok github.com/minio/minio/cmd 3.848s ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
re-use io.Copy buffers with 32k pools (#13553) Borrowed idea from Go's usage of this optimization for ReadFrom() on client side, we should re-use the 32k buffers io.Copy() allocates for generic copy from a reader to writer. the performance increase for reads for really tiny objects is at this range after this change. > * Fastest: +7.89% (+1.3 MiB/s) throughput, +7.89% (+1308.1) obj/s
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
re-use io.Copy buffers with 32k pools (#13553) Borrowed idea from Go's usage of this optimization for ReadFrom() on client side, we should re-use the 32k buffers io.Copy() allocates for generic copy from a reader to writer. the performance increase for reads for really tiny objects is at this range after this change. > * Fastest: +7.89% (+1.3 MiB/s) throughput, +7.89% (+1308.1) obj/s
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Deprecate embedded browser and import console (#12460) This feature also changes the default port where the browser is running, now the port has moved to 9001 and it can be configured with ``` --console-address ":9001" ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Fix SSE-C checksums (#19896) Compression will be disabled by default if SSE-C is specified. So we can still honor SSE-C.
1 year ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Fix SSE-C checksums (#19896) Compression will be disabled by default if SSE-C is specified. So we can still honor SSE-C.
1 year ago
s3/zip: extract metadata properly for Zipped objects (#15123) s3/zip: extra metadata properly for Zipped objects fixes #15121
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
run gofumpt cleanup across code-base (#14015)
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
fix: inlined objects don't need to honor long locks (#17039)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Remove deprecated io/ioutil (#15707)
3 years ago
s3/zip: extract metadata properly for Zipped objects (#15123) s3/zip: extra metadata properly for Zipped objects fixes #15121
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Update to minio/pkg/v2 (#17967)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
upgrade deps for minio/pkg v1.6.1 to include groups conditions (#16538)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Check for s3zip content offset (#15924)
3 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
Check for s3zip content offset (#15924)
3 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
Check for s3zip content offset (#15924)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Fix SSE-C checksums (#19896) Compression will be disabled by default if SSE-C is specified. So we can still honor SSE-C.
1 year ago
s3/zip: extract metadata properly for Zipped objects (#15123) s3/zip: extra metadata properly for Zipped objects fixes #15121
3 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
s3: Add x-minio-error-code header for S3 HEAD requests (#17283)
2 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Add Veeam storage class override (#19748) Recent Veeam is very picky about storage class names. Add `_MINIO_VEEAM_FORCE_SC` env var. It will override the storage class returned by the storage backend if it is non-standard and we detect a Veeam client by checking the User Agent. Applies to HeadObject/GetObject/ListObject*
1 year ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Check for s3zip content offset (#15924)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
use ParseForm() to allow query param lookups once (#12900) ``` cpu: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz BenchmarkURLQueryForm BenchmarkURLQueryForm-4 247099363 4.809 ns/op 0 B/op 0 allocs/op BenchmarkURLQuery BenchmarkURLQuery-4 2517624 462.1 ns/op 432 B/op 4 allocs/op PASS ok github.com/minio/minio/cmd 3.848s ```
4 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
Check for s3zip content offset (#15924)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
remove gateway completely (#15929)
3 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
remove gateway completely (#15929)
3 years ago
Avoid extra GetObjectInfo call in DeleteObject API (#17599) Optimize DeleteObject API to avoid extra GetObjectInfo call on the replicating side. For receiving side, it is just a regular DeleteObject call. Bonus: Fix a corner case where version purged is absent on target (either due to replication not yet complete or target version already deleted in a one-way replication or when replication was disabled). In such cases, mark version purge complete.
2 years ago
feat: Encrypt s3zip file index (#16179)
3 years ago
remove gateway completely (#15929)
3 years ago
Avoid extra GetObjectInfo call in DeleteObject API (#17599) Optimize DeleteObject API to avoid extra GetObjectInfo call on the replicating side. For receiving side, it is just a regular DeleteObject call. Bonus: Fix a corner case where version purged is absent on target (either due to replication not yet complete or target version already deleted in a one-way replication or when replication was disabled). In such cases, mark version purge complete.
2 years ago
remove gateway completely (#15929)
3 years ago
feat: support of ZIP list/get/head as S3 extension (#12267) When enabled, it is possible to list/get files inside a zip file without uncompressing it. Signed-off-by: Anis Elleuch <anis@min.io>
4 years ago
  1. // Copyright (c) 2015-2021 MinIO, Inc.
  2. //
  3. // This file is part of MinIO Object Storage stack
  4. //
  5. // This program is free software: you can redistribute it and/or modify
  6. // it under the terms of the GNU Affero General Public License as published by
  7. // the Free Software Foundation, either version 3 of the License, or
  8. // (at your option) any later version.
  9. //
  10. // This program is distributed in the hope that it will be useful
  11. // but WITHOUT ANY WARRANTY; without even the implied warranty of
  12. // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  13. // GNU Affero General Public License for more details.
  14. //
  15. // You should have received a copy of the GNU Affero General Public License
  16. // along with this program. If not, see <http://www.gnu.org/licenses/>.
  18. package cmd
  20. import (
  21. "bytes"
  22. "context"
  23. "errors"
  24. "io"
  25. "mime"
  26. "net/http"
  27. "path/filepath"
  28. "sort"
  29. "strings"
  31. "github.com/minio/minio/internal/auth"
  32. "github.com/minio/minio/internal/crypto"
  33. xhttp "github.com/minio/minio/internal/http"
  34. xioutil "github.com/minio/minio/internal/ioutil"
  35. "github.com/minio/pkg/v3/policy"
  36. "github.com/minio/zipindex"
  37. )
  39. const (
  40. archiveType = "zip"
  41. archiveTypeEnc = "zip-enc"
  42. archiveExt = "." + archiveType // ".zip"
  43. archiveSeparator = "/"
  44. archivePattern = archiveExt + archiveSeparator // ".zip/"
  45. archiveTypeMetadataKey = ReservedMetadataPrefixLower + "archive-type" // "x-minio-internal-archive-type"
  46. archiveInfoMetadataKey = ReservedMetadataPrefixLower + "archive-info" // "x-minio-internal-archive-info"
  48. // Peek into a zip archive
  49. xMinIOExtract = "x-minio-extract"
  50. )
  52. // splitZipExtensionPath splits the S3 path to the zip file and the path inside the zip:
  53. //
  54. // e.g /path/to/archive.zip/backup-2021/myimage.png => /path/to/archive.zip, backup/myimage.png
  55. func splitZipExtensionPath(input string) (zipPath, object string, err error) {
  56. idx := strings.Index(input, archivePattern)
  57. if idx < 0 {
  58. // Should never happen
  59. return "", "", errors.New("unable to parse zip path")
  60. }
  61. return input[:idx+len(archivePattern)-1], input[idx+len(archivePattern):], nil
  62. }
  64. // getObjectInArchiveFileHandler - GET Object in the archive file
  65. func (api objectAPIHandlers) getObjectInArchiveFileHandler(ctx context.Context, objectAPI ObjectLayer, bucket, object string, w http.ResponseWriter, r *http.Request) {
  66. if crypto.S3.IsRequested(r.Header) || crypto.S3KMS.IsRequested(r.Header) { // If SSE-S3 or SSE-KMS present -> AWS fails with undefined error
  67. writeErrorResponse(ctx, w, errorCodes.ToAPIErr(ErrBadRequest), r.URL)
  68. return
  69. }
  71. zipPath, object, err := splitZipExtensionPath(object)
  72. if err != nil {
  73. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  74. return
  75. }
  77. opts, err := getOpts(ctx, r, bucket, zipPath)
  78. if err != nil {
  79. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  80. return
  81. }
  83. getObjectInfo := objectAPI.GetObjectInfo
  85. // Check for auth type to return S3 compatible error.
  86. // type to return the correct error (NoSuchKey vs AccessDenied)
  87. if s3Error := checkRequestAuthType(ctx, r, policy.GetObjectAction, bucket, zipPath); s3Error != ErrNone {
  88. if getRequestAuthType(r) == authTypeAnonymous {
  89. // As per "Permission" section in
  90. // https://docs.aws.amazon.com/AmazonS3/latest/API/RESTObjectGET.html
  91. // If the object you request does not exist,
  92. // the error Amazon S3 returns depends on
  93. // whether you also have the s3:ListBucket
  94. // permission.
  95. // * If you have the s3:ListBucket permission
  96. // on the bucket, Amazon S3 will return an
  97. // HTTP status code 404 ("no such key")
  98. // error.
  99. // * if you don’t have the s3:ListBucket
  100. // permission, Amazon S3 will return an HTTP
  101. // status code 403 ("access denied") error.`
  102. if globalPolicySys.IsAllowed(policy.BucketPolicyArgs{
  103. Action: policy.ListBucketAction,
  104. BucketName: bucket,
  105. ConditionValues: getConditionValues(r, "", auth.AnonymousCredentials),
  106. IsOwner: false,
  107. }) {
  108. _, err = getObjectInfo(ctx, bucket, zipPath, opts)
  109. if toAPIError(ctx, err).Code == "NoSuchKey" {
  110. s3Error = ErrNoSuchKey
  111. }
  112. }
  113. }
  114. writeErrorResponse(ctx, w, errorCodes.ToAPIErr(s3Error), r.URL)
  115. return
  116. }
  118. // We do not allow offsetting into extracted files.
  119. if opts.PartNumber != 0 {
  120. writeErrorResponse(ctx, w, errorCodes.ToAPIErr(ErrInvalidPartNumber), r.URL)
  121. return
  122. }
  124. if r.Header.Get(xhttp.Range) != "" {
  125. writeErrorResponse(ctx, w, errorCodes.ToAPIErr(ErrInvalidRange), r.URL)
  126. return
  127. }
  129. // Validate pre-conditions if any.
  130. opts.CheckPrecondFn = func(oi ObjectInfo) bool {
  131. if _, err := DecryptObjectInfo(&oi, r); err != nil {
  132. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  133. return true
  134. }
  136. return checkPreconditions(ctx, w, r, oi, opts)
  137. }
  139. zipObjInfo, err := getObjectInfo(ctx, bucket, zipPath, opts)
  140. if err != nil {
  141. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  142. return
  143. }
  145. zipInfo := zipObjInfo.ArchiveInfo(r.Header)
  146. if len(zipInfo) == 0 {
  147. opts.EncryptFn, err = zipObjInfo.metadataEncryptFn(r.Header)
  148. if err != nil {
  149. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  150. return
  151. }
  153. zipInfo, err = updateObjectMetadataWithZipInfo(ctx, objectAPI, bucket, zipPath, opts)
  154. }
  155. if err != nil {
  156. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  157. return
  158. }
  159. file, err := zipindex.FindSerialized(zipInfo, object)
  160. if err != nil {
  161. if err == io.EOF {
  162. writeErrorResponse(ctx, w, errorCodes.ToAPIErr(ErrNoSuchKey), r.URL)
  163. } else {
  164. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  165. }
  166. return
  167. }
  169. // New object info
  170. fileObjInfo := ObjectInfo{
  171. Bucket: bucket,
  172. Name: object,
  173. Size: int64(file.UncompressedSize64),
  174. ModTime: zipObjInfo.ModTime,
  175. ContentType: mime.TypeByExtension(filepath.Ext(object)),
  176. }
  178. var rc io.ReadCloser
  180. if file.UncompressedSize64 > 0 {
  181. // There may be number of header bytes before the content.
  182. // Reading 64K extra. This should more than cover name and any "extra" details.
  183. end := file.Offset + int64(file.CompressedSize64) + 64<<10
  184. if end > zipObjInfo.Size {
  185. end = zipObjInfo.Size
  186. }
  187. rs := &HTTPRangeSpec{Start: file.Offset, End: end}
  188. gr, err := objectAPI.GetObjectNInfo(ctx, bucket, zipPath, rs, nil, opts)
  189. if err != nil {
  190. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  191. return
  192. }
  193. defer gr.Close()
  194. rc, err = file.Open(gr)
  195. if err != nil {
  196. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  197. return
  198. }
  199. } else {
  200. rc = io.NopCloser(bytes.NewReader([]byte{}))
  201. }
  203. defer rc.Close()
  205. if err = setObjectHeaders(ctx, w, fileObjInfo, nil, opts); err != nil {
  206. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  207. return
  208. }
  209. // s3zip does not allow ranges
  210. w.Header().Del(xhttp.AcceptRanges)
  212. setHeadGetRespHeaders(w, r.Form)
  214. httpWriter := xioutil.WriteOnClose(w)
  216. // Write object content to response body
  217. if _, err = xioutil.Copy(httpWriter, rc); err != nil {
  218. if !httpWriter.HasWritten() {
  219. // write error response only if no data or headers has been written to client yet
  220. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  221. return
  222. }
  223. return
  224. }
  226. if err = httpWriter.Close(); err != nil {
  227. if !httpWriter.HasWritten() { // write error response only if no data or headers has been written to client yet
  228. writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL)
  229. return
  230. }
  231. return
  232. }
  233. }
  235. // listObjectsV2InArchive generates S3 listing result ListObjectsV2Info from zip file, all parameters are already validated by the caller.
  236. func listObjectsV2InArchive(ctx context.Context, objectAPI ObjectLayer, bucket, prefix, token, delimiter string, maxKeys int, startAfter string, h http.Header) (ListObjectsV2Info, error) {
  237. zipPath, _, err := splitZipExtensionPath(prefix)
  238. if err != nil {
  239. // Return empty listing
  240. return ListObjectsV2Info{}, nil
  241. }
  243. zipObjInfo, err := objectAPI.GetObjectInfo(ctx, bucket, zipPath, ObjectOptions{})
  244. if err != nil {
  245. // Return empty listing
  246. return ListObjectsV2Info{}, nil
  247. }
  249. zipInfo := zipObjInfo.ArchiveInfo(h)
  250. if len(zipInfo) == 0 {
  251. // Always update the latest version
  252. zipInfo, err = updateObjectMetadataWithZipInfo(ctx, objectAPI, bucket, zipPath, ObjectOptions{})
  253. }
  254. if err != nil {
  255. return ListObjectsV2Info{}, err
  256. }
  258. files, err := zipindex.DeserializeFiles(zipInfo)
  259. if err != nil {
  260. return ListObjectsV2Info{}, err
  261. }
  263. sort.Slice(files, func(i, j int) bool {
  264. return files[i].Name < files[j].Name
  265. })
  267. var (
  268. count int
  269. isTruncated bool
  270. nextToken string
  271. listObjectsInfo ListObjectsV2Info
  272. )
  274. // Always set this
  275. listObjectsInfo.ContinuationToken = token
  277. // Open and iterate through the files in the archive.
  278. for _, file := range files {
  279. objName := zipObjInfo.Name + archiveSeparator + file.Name
  280. if objName <= startAfter || objName <= token {
  281. continue
  282. }
  283. if strings.HasPrefix(objName, prefix) {
  284. if count == maxKeys {
  285. isTruncated = true
  286. break
  287. }
  288. if delimiter != "" {
  289. i := strings.Index(objName[len(prefix):], delimiter)
  290. if i >= 0 {
  291. commonPrefix := objName[:len(prefix)+i+1]
  292. if len(listObjectsInfo.Prefixes) == 0 || commonPrefix != listObjectsInfo.Prefixes[len(listObjectsInfo.Prefixes)-1] {
  293. listObjectsInfo.Prefixes = append(listObjectsInfo.Prefixes, commonPrefix)
  294. count++
  295. }
  296. goto next
  297. }
  298. }
  299. listObjectsInfo.Objects = append(listObjectsInfo.Objects, ObjectInfo{
  300. Bucket: bucket,
  301. Name: objName,
  302. Size: int64(file.UncompressedSize64),
  303. ModTime: zipObjInfo.ModTime,
  304. })
  305. count++
  306. }
  307. next:
  308. nextToken = objName
  309. }
  311. if isTruncated {
  312. listObjectsInfo.IsTruncated = true
  313. listObjectsInfo.NextContinuationToken = nextToken
  314. }
  316. return listObjectsInfo, nil
  317. }
  319. // getFilesFromZIPObject reads a partial stream of a zip file to build the zipindex.Files index
  320. func getFilesListFromZIPObject(ctx context.Context, objectAPI ObjectLayer, bucket, object string, opts ObjectOptions) (zipindex.Files, ObjectInfo, error) {
  321. size := 1 << 20
  322. var objSize int64
  323. for {
  324. rs := &HTTPRangeSpec{IsSuffixLength: true, Start: int64(-size)}
  325. gr, err := objectAPI.GetObjectNInfo(ctx, bucket, object, rs, nil, opts)
  326. if err != nil {
  327. return nil, ObjectInfo{}, err
  328. }
  329. b, err := io.ReadAll(gr)
  330. gr.Close()
  331. if err != nil {
  332. return nil, ObjectInfo{}, err
  333. }
  334. if size > len(b) {
  335. size = len(b)
  336. }
  338. // Calculate the object real size if encrypted
  339. if _, ok := crypto.IsEncrypted(gr.ObjInfo.UserDefined); ok {
  340. objSize, err = gr.ObjInfo.DecryptedSize()
  341. if err != nil {
  342. return nil, ObjectInfo{}, err
  343. }
  344. } else {
  345. objSize = gr.ObjInfo.Size
  346. }
  348. files, err := zipindex.ReadDir(b[len(b)-size:], objSize, nil)
  349. if err == nil {
  350. return files, gr.ObjInfo, nil
  351. }
  352. var terr zipindex.ErrNeedMoreData
  353. if errors.As(err, &terr) {
  354. size = int(terr.FromEnd)
  355. if size <= 0 || size > 100<<20 {
  356. return nil, ObjectInfo{}, errors.New("zip directory too large")
  357. }
  358. } else {
  359. return nil, ObjectInfo{}, err
  360. }
  361. }
  362. }
  364. // headObjectInArchiveFileHandler - HEAD Object in an archive file
  365. func (api objectAPIHandlers) headObjectInArchiveFileHandler(ctx context.Context, objectAPI ObjectLayer, bucket, object string, w http.ResponseWriter, r *http.Request) {
  366. if crypto.S3.IsRequested(r.Header) || crypto.S3KMS.IsRequested(r.Header) { // If SSE-S3 or SSE-KMS present -> AWS fails with undefined error
  367. writeErrorResponseHeadersOnly(w, errorCodes.ToAPIErr(ErrBadRequest))
  368. return
  369. }
  371. zipPath, object, err := splitZipExtensionPath(object)
  372. if err != nil {
  373. writeErrorResponseHeadersOnly(w, toAPIError(ctx, err))
  374. return
  375. }
  377. getObjectInfo := objectAPI.GetObjectInfo
  379. opts, err := getOpts(ctx, r, bucket, zipPath)
  380. if err != nil {
  381. writeErrorResponseHeadersOnly(w, toAPIError(ctx, err))
  382. return
  383. }
  385. if s3Error := checkRequestAuthType(ctx, r, policy.GetObjectAction, bucket, zipPath); s3Error != ErrNone {
  386. if getRequestAuthType(r) == authTypeAnonymous {
  387. // As per "Permission" section in
  388. // https://docs.aws.amazon.com/AmazonS3/latest/API/RESTObjectHEAD.html
  389. // If the object you request does not exist,
  390. // the error Amazon S3 returns depends on
  391. // whether you also have the s3:ListBucket
  392. // permission.
  393. // * If you have the s3:ListBucket permission
  394. // on the bucket, Amazon S3 will return an
  395. // HTTP status code 404 ("no such key")
  396. // error.
  397. // * if you don’t have the s3:ListBucket
  398. // permission, Amazon S3 will return an HTTP
  399. // status code 403 ("access denied") error.`
  400. if globalPolicySys.IsAllowed(policy.BucketPolicyArgs{
  401. Action: policy.ListBucketAction,
  402. BucketName: bucket,
  403. ConditionValues: getConditionValues(r, "", auth.AnonymousCredentials),
  404. IsOwner: false,
  405. }) {
  406. _, err = getObjectInfo(ctx, bucket, zipPath, opts)
  407. if toAPIError(ctx, err).Code == "NoSuchKey" {
  408. s3Error = ErrNoSuchKey
  409. }
  410. }
  411. }
  412. errCode := errorCodes.ToAPIErr(s3Error)
  413. w.Header().Set(xMinIOErrCodeHeader, errCode.Code)
  414. w.Header().Set(xMinIOErrDescHeader, "\""+errCode.Description+"\"")
  415. writeErrorResponseHeadersOnly(w, errCode)
  416. return
  417. }
  419. // Validate pre-conditions if any.
  420. opts.CheckPrecondFn = func(oi ObjectInfo) bool {
  421. return checkPreconditions(ctx, w, r, oi, opts)
  422. }
  424. // We do not allow offsetting into extracted files.
  425. if opts.PartNumber != 0 {
  426. writeErrorResponseHeadersOnly(w, errorCodes.ToAPIErr(ErrInvalidPartNumber))
  427. return
  428. }
  430. if r.Header.Get(xhttp.Range) != "" {
  431. writeErrorResponseHeadersOnly(w, errorCodes.ToAPIErr(ErrInvalidRange))
  432. return
  433. }
  435. zipObjInfo, err := getObjectInfo(ctx, bucket, zipPath, opts)
  436. if err != nil {
  437. writeErrorResponseHeadersOnly(w, toAPIError(ctx, err))
  438. return
  439. }
  441. zipInfo := zipObjInfo.ArchiveInfo(r.Header)
  442. if len(zipInfo) == 0 {
  443. opts.EncryptFn, err = zipObjInfo.metadataEncryptFn(r.Header)
  444. if err != nil {
  445. writeErrorResponseHeadersOnly(w, toAPIError(ctx, err))
  446. return
  447. }
  448. zipInfo, err = updateObjectMetadataWithZipInfo(ctx, objectAPI, bucket, zipPath, opts)
  449. }
  450. if err != nil {
  451. writeErrorResponseHeadersOnly(w, toAPIError(ctx, err))
  452. return
  453. }
  455. file, err := zipindex.FindSerialized(zipInfo, object)
  456. if err != nil {
  457. if err == io.EOF {
  458. writeErrorResponseHeadersOnly(w, errorCodes.ToAPIErr(ErrNoSuchKey))
  459. } else {
  460. writeErrorResponseHeadersOnly(w, toAPIError(ctx, err))
  461. }
  462. return
  463. }
  465. objInfo := ObjectInfo{
  466. Bucket: bucket,
  467. Name: file.Name,
  468. Size: int64(file.UncompressedSize64),
  469. ModTime: zipObjInfo.ModTime,
  470. }
  472. // Set standard object headers.
  473. if err = setObjectHeaders(ctx, w, objInfo, nil, opts); err != nil {
  474. writeErrorResponseHeadersOnly(w, toAPIError(ctx, err))
  475. return
  476. }
  478. // s3zip does not allow ranges.
  479. w.Header().Del(xhttp.AcceptRanges)
  481. // Set any additional requested response headers.
  482. setHeadGetRespHeaders(w, r.Form)
  484. // Successful response.
  485. w.WriteHeader(http.StatusOK)
  486. }
  488. // Update the passed zip object metadata with the zip contents info, file name, modtime, size, etc.
  489. // The returned zip index will de decrypted.
  490. func updateObjectMetadataWithZipInfo(ctx context.Context, objectAPI ObjectLayer, bucket, object string, opts ObjectOptions) ([]byte, error) {
  491. files, srcInfo, err := getFilesListFromZIPObject(ctx, objectAPI, bucket, object, opts)
  492. if err != nil {
  493. return nil, err
  494. }
  495. files.OptimizeSize()
  496. zipInfo, err := files.Serialize()
  497. if err != nil {
  498. return nil, err
  499. }
  500. at := archiveType
  501. zipInfoStr := string(zipInfo)
  502. if opts.EncryptFn != nil {
  503. at = archiveTypeEnc
  504. zipInfoStr = string(opts.EncryptFn(archiveTypeEnc, zipInfo))
  505. }
  506. srcInfo.UserDefined[archiveTypeMetadataKey] = at
  507. popts := ObjectOptions{
  508. MTime: srcInfo.ModTime,
  509. VersionID: srcInfo.VersionID,
  510. EvalMetadataFn: func(oi *ObjectInfo, gerr error) (dsc ReplicateDecision, err error) {
  511. oi.UserDefined[archiveTypeMetadataKey] = at
  512. oi.UserDefined[archiveInfoMetadataKey] = zipInfoStr
  513. return dsc, nil
  514. },
  515. }
  517. // For all other modes use in-place update to update metadata on a specific version.
  518. if _, err = objectAPI.PutObjectMetadata(ctx, bucket, object, popts); err != nil {
  519. return nil, err
  520. }
  522. return zipInfo, nil
  523. }