From bd3164c57f4c8ec081336d7d8183d6ec2fa4d00f Mon Sep 17 00:00:00 2001 From: Denis Kirillov Date: Fri, 24 Mar 2023 15:49:23 +0300 Subject: [PATCH 1/4] [#68] Fix pre-commit issues Signed-off-by: Denis Kirillov --- .gitignore | 1 - CHANGELOG.md | 32 +- CREDITS.md | 2 +- README.md | 4 +- api/handler/acl_test.go | 2 +- api/handler/multipart_upload.go | 9 - cmd/s3-authmate/main.go | 4 +- creds/accessbox/accessbox.proto | 1 - debian/copyright | 6 +- debian/frostfs-s3-gw.postinst | 6 +- debian/frostfs-s3-gw.postrm | 0 debian/frostfs-s3-gw.preinst | 0 debian/frostfs-s3-gw.prerm | 0 debian/rules | 6 +- docs/authmate.md | 44 +-- docs/aws_cli.md | 16 +- docs/aws_s3_compat.md | 4 +- docs/configuration.md | 10 +- docs/s3_test_results.md | 536 ++++++++++++++++---------------- docs/tree_service.md | 8 +- updateTestsResult.sh | 14 +- 21 files changed, 345 insertions(+), 360 deletions(-) mode change 100644 => 100755 debian/frostfs-s3-gw.postinst mode change 100644 => 100755 debian/frostfs-s3-gw.postrm mode change 100644 => 100755 debian/frostfs-s3-gw.preinst mode change 100644 => 100755 debian/frostfs-s3-gw.prerm diff --git a/.gitignore b/.gitignore index 009aceac0..1e76ffef3 100644 --- a/.gitignore +++ b/.gitignore @@ -28,4 +28,3 @@ debian/files debian/*.log debian/*.substvars debian/frostfs-s3-gw/ - diff --git a/CHANGELOG.md b/CHANGELOG.md index d5bfd04a4..b89f88dc7 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -24,7 +24,7 @@ This document outlines major changes between releases. - Return error on invalid LocationConstraint (TrueCloudLab#23) - Place billing metrics to separate url path (TrueCloudLab#26) - Add generated deb builder files to .gitignore, and fix typo (TrueCloudLab#28) -- Limit number of objects to delete at one time (TrueCloudLab#37) +- Limit number of objects to delete at one time (TrueCloudLab#37) - CompleteMultipartUpload handler now sends whitespace characters to keep alive client's connection (#60) - Support new system attributes (#64) @@ -91,7 +91,7 @@ If you configure application using `.yaml` file change: ### Changed - GitHub actions update (#710) - Makefile help (#725) -- Optimized object tags setting (#669) +- Optimized object tags setting (#669) - Improved logging (#728) - Unified unit test names (#617) - Improved docs (#732) @@ -156,7 +156,7 @@ If you configure application using environment variables change: * `S3_GW_LISTEN_DOMAINS_N` -> `S3_GW_LISTEN_DOMAINS` (use it as array variable) If you configure application using `.yaml` file change: -* `wallet` -> `wallet.path` +* `wallet` -> `wallet.path` * `address` -> `wallet.address` * `listen_domains.n` -> `listen_domains` (use it as array param) @@ -179,8 +179,8 @@ If you configure application using `.yaml` file change: - Rely on string sanitizing from zap (#498) ### Updating from v0.22.0 -1. To enable pprof use `pprof.enabled` instead of `pprof` in config. -To enable prometheus metrics use `prometheus.enabled` instead of `metrics` in config. +1. To enable pprof use `pprof.enabled` instead of `pprof` in config. +To enable prometheus metrics use `prometheus.enabled` instead of `metrics` in config. If you are using the command line flags you can skip this step. ## [0.22.0] - 2022-07-25 @@ -202,7 +202,7 @@ Tree service support - Cache type cast error logging (#465) - `docker/*` target in Makefile (#471) - Pre signed requests (#529) -- Tagging and ACL notifications (#361) +- Tagging and ACL notifications (#361) - AWSv4 signer package to improve compatibility with S3 clients (#528) - Extension mimetype detector (#289) - Default params documentation (#592) @@ -236,7 +236,7 @@ Tree service support - Obtainment of ETag value (#431) ### Changed -- Authmate doesn't parse session context anymore, now it accepts application defined +- Authmate doesn't parse session context anymore, now it accepts application defined flexible structure with container ID in human-readable format (#428) ## [0.20.0] - 2022-04-29 @@ -246,19 +246,19 @@ Tree service support - Support of basic notifications (#357, #358, #359) ### Changed -- Logger behavior: now it writes to stderr instead of stdout, app name and - version are always presented and fixed, all user options except of `level` are +- Logger behavior: now it writes to stderr instead of stdout, app name and + version are always presented and fixed, all user options except of `level` are dropped (#380) - Improved docs, added config examples (#396, #398) - Updated NeoFS SDK (#365, #409) ### Fixed - Added check of `SetEACL` tokens before processing of requests (#347) -- Authmate: returned lost session tokens when a parameter `--session-token` is +- Authmate: returned lost session tokens when a parameter `--session-token` is omitted (#387) - Error when a bucket hasn't a settings file (#389) - Response to a request to delete not existing object (#392) -- Replaced gate key in ACL Grantee by key of bearer token issuer (#395) +- Replaced gate key in ACL Grantee by key of bearer token issuer (#395) - Missing attach of bearer token to requests to put system object (#399) - Deletion of system object while CompleteMultipartUpload (#400) - Improved English in docs and comments (#405) @@ -285,7 +285,7 @@ Tree service support - Updated NeoFS SDK to v1.0.0-rc.3 (#297, #333, #346, #376) - Authmate: changed session token rules handling (#329, #336, #338, #352) - Changed status code for some failed requests (#308) -- GetBucketLocation returns policy name used at bucket creation (#301) +- GetBucketLocation returns policy name used at bucket creation (#301) ### Fixed - Waiting for bucket to be deleted (#366) @@ -305,7 +305,7 @@ Tree service support ## [0.18.0] - 2021-12-16 ### Added -- Support for MultipartUpload (#186, #187) +- Support for MultipartUpload (#186, #187) - CORS support (#217) - Authmate supports setting of tokens lifetime in a more convenient format (duration) (#258) - Generation of a random key for `--no-sign-request` (#276) @@ -334,10 +334,10 @@ With this release we introduce [ceph-based](https://github.com/ceph/s3-tests) S3 * POST uploading support (#190) * Delete marker support (#248) * Expiration for access box (#255) -* AWS CLI credential generating by authmate (#241) +* AWS CLI credential generating by authmate (#241) ### Changed -* Default placement policy is now configurable (#218) +* Default placement policy is now configurable (#218) * README is split into different files (#210) * Unified error handling (#89, #149, #184) * Authmate issue-secret response contains container id (#163) @@ -382,7 +382,7 @@ cryptography with NEP-6 wallet support. * Support of time-based conditional CopyObject and GetObject (#94) ### Changed - * Accesskey format: now `0` used as a delimiter between container ID and object + * Accesskey format: now `0` used as a delimiter between container ID and object ID instead of `_` (#164) * Accessbox is encoded in protobuf format (#48) * Authentication uses secp256r1 instead of ed25519 (#75) diff --git a/CREDITS.md b/CREDITS.md index b7896e2bf..6338de593 100644 --- a/CREDITS.md +++ b/CREDITS.md @@ -16,4 +16,4 @@ In chronological order: - Elizaveta Chichindaeva - Stanislav Bogatyrev - Anastasia Prasolova -- Leonard Liubich \ No newline at end of file +- Leonard Liubich diff --git a/README.md b/README.md index c76226c56..6dd789d0d 100644 --- a/README.md +++ b/README.md @@ -66,7 +66,7 @@ $ S3_GW_PEERS_0_ADDRESS=grpcs://192.168.130.72:8080 \ ## Domains -By default, s3-gw enable only `path-style access`. +By default, s3-gw enable only `path-style access`. To be able to use both: `virtual-hosted-style` and `path-style` access you must configure `listen_domains`: ```shell @@ -100,6 +100,6 @@ Also, you can configure domains using `.env` variables or `yaml` file. - [AWS S3 API compatibility](./docs/aws_s3_compat.md) - [AWS S3 Compatibility test results](./docs/s3_test_results.md) -## Credits +## Credits Please see [CREDITS](CREDITS.md) for details. diff --git a/api/handler/acl_test.go b/api/handler/acl_test.go index 8c25c9346..f3c877c52 100644 --- a/api/handler/acl_test.go +++ b/api/handler/acl_test.go @@ -1368,7 +1368,7 @@ func TestBucketPolicyUnmarshal(t *testing.T) { }, "Effect": "Allow", "Action": [ - "s3:GetObject", + "s3:GetObject", "s3:GetObjectVersion" ], "Resource": [ diff --git a/api/handler/multipart_upload.go b/api/handler/multipart_upload.go index 480f3764f..f0b36ab70 100644 --- a/api/handler/multipart_upload.go +++ b/api/handler/multipart_upload.go @@ -753,12 +753,3 @@ func periodicXMLWriter(w io.Writer, dur time.Duration) (stop func() bool) { return stop } - -// periodicWriterErrorSender returns handler function to send error. If header is -// alreay written by periodic XML writer, do not send HTTP and XML headers. -func (h *handler) periodicWriterErrorSender(headerWritten bool) func(http.ResponseWriter, string, *api.ReqInfo, error, ...zap.Field) { - if headerWritten { - return h.logAndSendErrorNoHeader - } - return h.logAndSendError -} diff --git a/cmd/s3-authmate/main.go b/cmd/s3-authmate/main.go index bfdf88196..a1629ad71 100644 --- a/cmd/s3-authmate/main.go +++ b/cmd/s3-authmate/main.go @@ -245,7 +245,7 @@ func issueSecret() *cli.Command { }, &cli.DurationFlag{ Name: "lifetime", - Usage: `Lifetime of tokens. For example 50h30m (note: max time unit is an hour so to set a day you should use 24h). + Usage: `Lifetime of tokens. For example 50h30m (note: max time unit is an hour so to set a day you should use 24h). It will be ceil rounded to the nearest amount of epoch.`, Required: false, Destination: &lifetimeFlag, @@ -394,7 +394,7 @@ Note to override credentials you must provide both access key and secret key.`, Flags: []cli.Flag{ &cli.DurationFlag{ Name: "lifetime", - Usage: `Lifetime of presigned URL. For example 50h30m (note: max time unit is an hour so to set a day you should use 24h). + Usage: `Lifetime of presigned URL. For example 50h30m (note: max time unit is an hour so to set a day you should use 24h). It will be ceil rounded to the nearest amount of epoch.`, Required: false, Destination: &lifetimeFlag, diff --git a/creds/accessbox/accessbox.proto b/creds/accessbox/accessbox.proto index 3d0a13cac..1cec16d18 100644 --- a/creds/accessbox/accessbox.proto +++ b/creds/accessbox/accessbox.proto @@ -27,4 +27,3 @@ message Tokens { bytes bearerToken = 2 [json_name = "bearerToken"]; repeated bytes sessionTokens = 3 [json_name = "sessionTokens"]; } - diff --git a/debian/copyright b/debian/copyright index 9f0180be1..e5754d95b 100644 --- a/debian/copyright +++ b/debian/copyright @@ -14,11 +14,11 @@ License: AGPL-3.0-only This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation; version 3. - + This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. - + You should have received a copy of the GNU General Public License - along with this program. If not, see . + along with this program. If not, see . diff --git a/debian/frostfs-s3-gw.postinst b/debian/frostfs-s3-gw.postinst old mode 100644 new mode 100755 index 82345f655..117b88273 --- a/debian/frostfs-s3-gw.postinst +++ b/debian/frostfs-s3-gw.postinst @@ -29,9 +29,9 @@ case "$1" in chmod -f 0640 /etc/frostfs/$USERNAME/config.yaml || true fi USERDIR=$(getent passwd "frostfs-$USERNAME" | cut -d: -f6) - if ! dpkg-statoverride --list frostfs-$USERDIR >/dev/null; then - chown -f frostfs-$USERNAME: $USERDIR - chown -f frostfs-$USERNAME: $USERDIR/rules.json + if ! dpkg-statoverride --list frostfs-"$USERDIR" >/dev/null; then + chown -f frostfs-$USERNAME: "$USERDIR" + chown -f frostfs-$USERNAME: "$USERDIR"/rules.json fi ;; diff --git a/debian/frostfs-s3-gw.postrm b/debian/frostfs-s3-gw.postrm old mode 100644 new mode 100755 diff --git a/debian/frostfs-s3-gw.preinst b/debian/frostfs-s3-gw.preinst old mode 100644 new mode 100755 diff --git a/debian/frostfs-s3-gw.prerm b/debian/frostfs-s3-gw.prerm old mode 100644 new mode 100755 diff --git a/debian/rules b/debian/rules index fbd95cc71..519ed2f7f 100755 --- a/debian/rules +++ b/debian/rules @@ -8,9 +8,7 @@ SERVICE = frostfs-s3-gw dh $@ override_dh_installsystemd: - dh_installsystemd --no-enable --no-start $(SERVICE).service + dh_installsystemd --no-enable --no-start $(SERVICE).service override_dh_installchangelogs: - dh_installchangelogs -k CHANGELOG.md - - + dh_installchangelogs -k CHANGELOG.md diff --git a/docs/authmate.md b/docs/authmate.md index e753b417a..4e33f7a44 100644 --- a/docs/authmate.md +++ b/docs/authmate.md @@ -35,8 +35,8 @@ To generate a wallet for a gateway, run the following command: $ ./neo-go wallet init -a -w wallet.json Enter the name of the account > AccountTestName -Enter passphrase > -Confirm passphrase > +Enter passphrase > +Confirm passphrase > { "version": "3.0", @@ -89,18 +89,18 @@ put them as an object into a container on the FrostFS network. **Required parameters:** * `--wallet` is a path to a wallet `.json` file. You can provide a passphrase to decrypt -a wallet via environment variable `AUTHMATE_WALLET_PASSPHRASE`, or you will be asked to enter a passphrase +a wallet via environment variable `AUTHMATE_WALLET_PASSPHRASE`, or you will be asked to enter a passphrase interactively. You can also specify an account address to use from a wallet using the `--address` parameter. * `--peer` is an address of a FrostFS peer to connect to * `--gate-public-key` is a public `secp256r1` 33-byte short key of a gate (use flags repeatedly for multiple gates). The tokens are encrypted by a set of gateway keys, so you need to pass them as well. -You can issue a secret using the parameters above only. The tool will +You can issue a secret using the parameters above only. The tool will 1. create a new container 1. without a friendly name - 2. with ACL `0x3c8c8cce` -- all operations are forbidden for `OTHERS` and `BEARER` user groups, except for `GET` - 3. with policy `REP 2 IN X CBF 3 SELECT 2 FROM * AS X` -2. put bearer and session tokens with default rules (details in [Bearer tokens](#Bearer tokens) and + 2. with ACL `0x3c8c8cce` -- all operations are forbidden for `OTHERS` and `BEARER` user groups, except for `GET` + 3. with policy `REP 2 IN X CBF 3 SELECT 2 FROM * AS X` +2. put bearer and session tokens with default rules (details in [Bearer tokens](#Bearer tokens) and [Session tokens](#Session tokens)) E.g.: @@ -109,9 +109,9 @@ $ frostfs-s3-authmate issue-secret --wallet wallet.json \ --peer 192.168.130.71:8080 \ --gate-public-key 0313b1ac3a8076e155a7e797b24f0b650cccad5941ea59d7cfd51a024a8b2a06bf\ --gate-public-key 0317585fa8274f7afdf1fc5f2a2e7bece549d5175c4e5182e37924f30229aef967 - - Enter password for wallet.json > - + + Enter password for wallet.json > + { "access_key_id": "5g933dyLEkXbbAspouhPPTiyLZRg4axBW1axSPD87eVT0AiXsH4AjYy1iTJ4C1WExzjBrSobJsQFWEyKLREe5sQYM", "secret_access_key": "438bbd8243060e1e1c9dd4821756914a6e872ce29bf203b68f81b140ac91231c", @@ -130,9 +130,9 @@ the secret. Format of `access_key_id`: `%cid0%oid`, where 0(zero) is a delimiter * `--container-friendly-name` -- name of a container with tokens, by default container will not have a friendly name * `--container-placement-policy` - placement policy of auth container to put the secret into. Default value is `REP 2 IN X CBF 3 SELECT 2 FROM * AS X` -* `--lifetime`-- lifetime of tokens. For example 50h30m (note: max time unit is an hour so to set a day you should use +* `--lifetime`-- lifetime of tokens. For example 50h30m (note: max time unit is an hour so to set a day you should use 24h). Default value is `720h` (30 days). It will be ceil rounded to the nearest amount of epoch -* `--aws-cli-credentials` - path to the aws cli credentials file, where authmate will write `access_key_id` and +* `--aws-cli-credentials` - path to the aws cli credentials file, where authmate will write `access_key_id` and `secret_access_key` to ### Bearer tokens @@ -161,7 +161,7 @@ where content of `bearer-rules.json`: } ``` -**Note:** such rules allow all operations for all users (the same behavior when records are empty). +**Note:** such rules allow all operations for all users (the same behavior when records are empty). To restrict access you MUST provide records with `DENY` action. That's why we recommend always place such records at the end of records (see default rules below) to prevent undesirable access violation. Since the rules are applied from top to bottom, they do not override what was previously allowed. @@ -192,7 +192,7 @@ If bearer rules are not set, a token will be auto-generated with a value: ### Session tokens -With a session token, there are 3 options: +With a session token, there are 3 options: 1. append `--session-tokens` parameter with your custom rules in json format (as a string or file path). E.g.: ```shell $ frostfs-s3-authmate issue-secret --wallet wallet.json \ @@ -224,8 +224,8 @@ If `containerID` is `null` or omitted, then session token rule will be applied to all containers. Otherwise, specify `containerID` value in human-redabale format (base58 encoded string). -> **_NB!_** To create buckets in FrostFS it's necessary to have session tokens with `PUT` and `SETEACL` permissions, that's why -the authmate creates a `SETEACL` session token automatically in case when a user specified the token rule with `PUT` and +> **_NB!_** To create buckets in FrostFS it's necessary to have session tokens with `PUT` and `SETEACL` permissions, that's why +the authmate creates a `SETEACL` session token automatically in case when a user specified the token rule with `PUT` and forgot about the rule with `SETEACL`. 2. append `--session-tokens` parameter with the value `none` -- no session token will be created @@ -234,7 +234,7 @@ in example above) ### Containers policy -Rules for mapping of `LocationConstraint` ([aws spec](https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html#API_CreateBucket_RequestBody)) +Rules for mapping of `LocationConstraint` ([aws spec](https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html#API_CreateBucket_RequestBody)) to `PlacementPolicy` can be set via parameter `--container-policy` (json-string and file path allowed): ```json @@ -248,7 +248,7 @@ can be set via parameter `--container-policy` (json-string and file path allowed ## Obtainment of a secret access key You can get a secret access key associated with an access key ID by obtaining a -secret stored on the FrostFS network. Here is an example of providing one password (for `wallet.json`) via env variable +secret stored on the FrostFS network. Here is an example of providing one password (for `wallet.json`) via env variable and the other (for `gate-wallet.json`) interactively: ```shell @@ -267,14 +267,14 @@ Enter password for gate-wallet.json > ## Generate presigned URL -You can generate [presigned url](https://docs.aws.amazon.com/AmazonS3/latest/userguide/using-presigned-url.html) -using AWS credentials from `~/.aws/credentials` (you can specify profile using the `--profile` flag) +You can generate [presigned url](https://docs.aws.amazon.com/AmazonS3/latest/userguide/using-presigned-url.html) +using AWS credentials from `~/.aws/credentials` (you can specify profile using the `--profile` flag) with the following command: ```shell $ frostfs-s3-authmate generate-presigned-url --endpoint http://localhost:8084 \ --method get --bucket presigned --object obj --lifetime 30s - + { "URL": "http://localhost:8084/presigned/obj?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=6UpmiuYspPLMWfyhEKYmZQSsTGkFLS5MhQVdsda3fhz908Hw9eo9urTmaJtfvHMHUpY8SWAptk61bns2Js8f1M5tZ%2F20220615%2Fus-east-2%2Fs3%2Faws4_request&X-Amz-Date=20220615T084203Z&X-Amz-Expires=30&X-Amz-SignedHeaders=host&X-Amz-Signature=47f74d4b84566708a17dded05cce732690745f141235215104ad051e265e3c59" } @@ -297,7 +297,7 @@ $ frostfs-s3-authmate generate-presigned-url --endpoint http://localhost:8084 \ You can also can get the presigned URL (only for GET) using aws cli v2: ```shell -$ aws s3 --endpoint http://localhost:8084 presign s3://pregigned/obj +$ aws s3 --endpoint http://localhost:8084 presign s3://pregigned/obj http://localhost:8084/pregigned/obj?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=6UpmiuYspPLMWfyhEKYmZQSsTGkFLS5MhQVdsda3fhz908Hw9eo9urTmaJtfvHMHUpY8SWAptk61bns2Js8f1M5tZ%2F20220615%2Fus-east-2%2Fs3%2Faws4_request&X-Amz-Date=20220615T072348Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host&X-Amz-Signature=b82c13952534b1bba699a718f2d42d135c2833a1e64030d4ce0e198af46551d4 ``` diff --git a/docs/aws_cli.md b/docs/aws_cli.md index 270b1d55d..8614af60d 100644 --- a/docs/aws_cli.md +++ b/docs/aws_cli.md @@ -16,8 +16,8 @@ after you enter this command, the AWS CLI will prompt you for four pieces of inf ``` AWS Access Key ID [None]: 5g933dyLEkXbbAspouhPPTiyLZRg4axBW1axSPD87eVT0AiXsH4AjYy1iTJ4C1WExzjBrSobJsQFWEyKLREe5sQYM AWS Secret Access Key [None]: 438bbd8243060e1e1c9dd4821756914a6e872ce29bf203b68f81b140ac91231c -Default region name [None]: ru -Default output format [none]: json +Default region name [None]: ru +Default output format [none]: json ``` ## Basic usage @@ -26,11 +26,11 @@ Default output format [none]: json ### Bucket -#### Obtainment of a list of buckets +#### Obtainment of a list of buckets To view the list of the buckets in the FrostFS node, to which the gateway is connected, enter the following command: ``` -$ aws s3 ls +$ aws s3 ls ``` #### Creation of a bucket @@ -41,7 +41,7 @@ To create a bucket, run the following command: ``` $ aws s3api create-bucket --bucket %BUCKET_NAME --acl %ACL ``` -where `%ACL` can be represented by a hex encoded value or by keywords `public-read-write`, `private`, `public-read`. +where `%ACL` can be represented by a hex encoded value or by keywords `public-read-write`, `private`, `public-read`. If the parameter is not set, the default value is `private`. > **_NOTE:_** Bucket creation uses async-poll approach. `BucketAlreadyOwnedByYou` @@ -54,7 +54,7 @@ If the parameter is not set, the default value is `private`. > (previous success will result in the status mentioned above). It is worth clarifying > that the final success of the bucket creation is not guaranteed after a timeout error. -#### Deletion of a bucket +#### Deletion of a bucket To delete a bucket, execute the following command: ``` @@ -67,7 +67,7 @@ $ aws s3api delete-bucket --bucket %BUCKET_NAME To view the list of the objects in a bucket, run: ``` -$ aws s3api list-objects --bucket %BUCKET_NAME +$ aws s3api list-objects --bucket %BUCKET_NAME ``` #### Upload of a file @@ -83,7 +83,7 @@ where %OBJECT_KEY is the filepath of an object in FrostFS To upload a dir into a bucket in the FrostFS network, run the following command: ``` -$ aws s3 sync %DIRPATH s3://%BUCKET_NAME +$ aws s3 sync %DIRPATH s3://%BUCKET_NAME ``` #### Download of a file diff --git a/docs/aws_s3_compat.md b/docs/aws_s3_compat.md index 4bde43ae5..7d0c07f7b 100644 --- a/docs/aws_s3_compat.md +++ b/docs/aws_s3_compat.md @@ -31,7 +31,7 @@ Reference: ## ACL For now there are some limitations: -* [Bucket policy](https://docs.aws.amazon.com/AmazonS3/latest/userguide/bucket-policies.html) supports only one `Principal` per `Statement`. +* [Bucket policy](https://docs.aws.amazon.com/AmazonS3/latest/userguide/bucket-policies.html) supports only one `Principal` per `Statement`. Principal must be `"AWS": "*"` (to refer all users) or `"CanonicalUser": "0313b1ac3a8076e155a7e797b24f0b650cccad5941ea59d7cfd51a024a8b2a06bf"` (hex encoded public key of desired user). * Resource in bucket policy is an array. Each item MUST contain bucket name, CAN contain object name (wildcards are not supported): ```json @@ -160,7 +160,7 @@ See also `GetObject` and other method parameters. | 🔵 | GetBucketInventoryConfiguration | | | 🔵 | ListBucketInventoryConfigurations | | | 🔵 | PutBucketInventoryConfiguration | | - + ## Lifecycle | | Method | Comments | diff --git a/docs/configuration.md b/docs/configuration.md index 115382779..695109cdb 100644 --- a/docs/configuration.md +++ b/docs/configuration.md @@ -62,7 +62,7 @@ $ frostfs-s3-gw --listen_address 192.168.130.130:443 \ --tls.key_file=key.pem --tls.cert_file=cert.pem ``` -Using these flag you can configure only one address. To set multiple addresses use yaml config. +Using these flag you can configure only one address. To set multiple addresses use yaml config. ### RPC endpoint and resolving of bucket names @@ -129,7 +129,7 @@ enable pprof (value from `./config/dir/pprof.yaml`) and prometheus (value from ` ### Reload on SIGHUP -Some config values can be reloaded on SIGHUP signal. +Some config values can be reloaded on SIGHUP signal. Such parameters have special mark in tables below. You can send SIGHUP signal to app using the following command: @@ -207,7 +207,7 @@ pool_error_threshold: 100 max_clients_count: 100 max_clients_deadline: 30s -allowed_access_key_id_prefixes: +allowed_access_key_id_prefixes: - Ck9BHsgKcnwfCTUSFm6pxhoNS4cBqgN2NQ8zVgPjqZDX - 3stjWenX15YwYzczMr88gy3CQr4NYFBQ8P7keGzH5QFn ``` @@ -296,7 +296,7 @@ File for `region_mapping` must contain something like this: } ``` -**Note:** on SIGHUP reload policies will be updated only if both parameters are valid. +**Note:** on SIGHUP reload policies will be updated only if both parameters are valid. So if you change `default` to some valid value and set invalid path in `region_mapping` the `default` value won't be changed. ### `server` section @@ -469,7 +469,7 @@ prometheus: # `frostfs` section -Contains parameters of requests to FrostFS. +Contains parameters of requests to FrostFS. This value can be overridden with `X-Amz-Meta-Frostfs-Copies-Number` header for `PutObject`, `CopyObject`, `CreateMultipartUpload`. ```yaml diff --git a/docs/s3_test_results.md b/docs/s3_test_results.md index 1bc7eb6ec..532bfc365 100644 --- a/docs/s3_test_results.md +++ b/docs/s3_test_results.md @@ -77,72 +77,72 @@ Compatibility: 30/25/29 out of 33 Compatibility: 33/43/37 out of 64 -| | Test | s3-gw | minio | aws s3 | -|----|------------------------------------------------------------------------------------------------|-------------|-------|--------| -| 1 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_good | ok | ok | ERROR | -| 2 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_failed | FAIL | FAIL | FAIL | -| 3 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_overwrite_existed_good | ok | ok | ERROR | -| 4 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_nonexisted_failed | FAIL | FAIL | FAIL | -| 5 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_good | ok | ok | ERROR | -| 6 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_failed | FAIL | FAIL | FAIL | -| 7 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_nonexisted_good | ok | ok | ERROR | -| 8 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_overwrite_existed_failed | FAIL | FAIL | FAIL | -| 9 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_invalid_short | UNSUPPORTED | ok | ok | -| 10 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_bad | UNSUPPORTED | ok | ok | -| 11 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_empty | UNSUPPORTED | ok | ok | -| 12 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_none | ok | ok | ok | -| 13 | s3tests_boto3.functional.test_headers.test_object_create_bad_expect_mismatch | ERROR | ERROR | ok | -| 14 | s3tests_boto3.functional.test_headers.test_object_create_bad_expect_empty | ok | ok | ok | -| 15 | s3tests_boto3.functional.test_headers.test_object_create_bad_expect_none | ok | ok | ok | -| 16 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_empty | FAIL | FAIL | ok | -| 17 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_negative | ok | ok | ok | -| 18 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_none | FAIL | FAIL | FAIL | -| 19 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_mismatch_above | ERROR | ERROR | ERROR | -| 20 | s3tests_boto3.functional.test_headers.test_object_create_bad_contenttype_invalid | ok | ok | ok | -| 21 | s3tests_boto3.functional.test_headers.test_object_create_bad_contenttype_empty | ok | ok | ok | -| 22 | s3tests_boto3.functional.test_headers.test_object_create_bad_contenttype_none | ok | ok | ok | -| 23 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_empty | FAIL | FAIL | FAIL | -| 24 | s3tests_boto3.functional.test_headers.test_object_create_date_and_amz_date | ERROR | ERROR | ERROR | -| 25 | s3tests_boto3.functional.test_headers.test_object_create_amz_date_and_no_date | ERROR | ERROR | ERROR | -| 26 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_none | FAIL | FAIL | FAIL | -| 27 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_invalid_garbage_aws2 | UNSUPPORTED | ok | ok | -| 28 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_mismatch_below_aws2 | FAIL | FAIL | ok | -| 29 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_incorrect_aws2 | FAIL | FAIL | FAIL | -| 30 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_invalid_aws2 | FAIL | FAIL | FAIL | -| 31 | s3tests_boto3.functional.test_headers.test_object_create_bad_ua_empty_aws2 | ERROR | ok | ok | -| 32 | s3tests_boto3.functional.test_headers.test_object_create_bad_ua_none_aws2 | ERROR | ok | ok | -| 33 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_invalid_aws2 | FAIL | FAIL | ok | -| 34 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_empty_aws2 | FAIL | FAIL | ok | -| 35 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_none_aws2 | FAIL | FAIL | FAIL | -| 36 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_before_today_aws2 | FAIL | ok | ok | -| 37 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_before_epoch_aws2 | FAIL | FAIL | ok | -| 38 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_after_end_aws2 | FAIL | ok | ok | -| 39 | s3tests_boto3.functional.test_s3.test_object_anon_put | ok | ok | ok | -| 40 | s3tests_boto3.functional.test_s3.test_object_put_authenticated | ok | ok | ok | -| 41 | s3tests_boto3.functional.test_s3.test_object_raw_put_authenticated_expired | ok | FAIL | FAIL | -| 42 | s3tests_boto3.functional.test_s3.test_object_write_file | ok | ok | ok | -| 43 | s3tests_boto3.functional.test_s3.test_object_write_check_etag | FAIL | ok | ok | -| 44 | s3tests_boto3.functional.test_s3.test_object_write_cache_control | ok | ok | ok | -| 45 | s3tests_boto3.functional.test_s3.test_object_write_expires | ok | ok | ok | -| 46 | s3tests_boto3.functional.test_s3.test_object_write_read_update_read_delete | ok | ok | ok | -| 47 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_none_to_good | ok | ok | ok | -| 48 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_none_to_empty | ERROR | ok | ok | -| 49 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_overwrite_to_empty | ERROR | ok | ok | -| 50 | s3tests_boto3.functional.test_s3.test_object_set_get_non_utf8_metadata | ok | ok | FAIL | -| 51 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_empty_to_unreadable_prefix | ok | ok | FAIL | -| 52 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_empty_to_unreadable_suffix | ok | ok | FAIL | -| 53 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_empty_to_unreadable_infix | ok | ok | FAIL | -| 54 | s3tests_boto3.functional.test_s3.test_object_metadata_replaced_on_put | ok | ok | ok | -| 55 | s3tests_boto3.functional.test_s3.test_object_write_to_nonexist_bucket | ok | ok | ok | -| 56 | s3tests_boto3.functional.test_s3.test_atomic_write_1mb | ok | ok | ok | -| 57 | s3tests_boto3.functional.test_s3.test_atomic_write_4mb | ok | ok | ok | -| 58 | s3tests_boto3.functional.test_s3.test_atomic_write_8mb | ok | ok | ok | -| 59 | s3tests_boto3.functional.test_s3.test_atomic_dual_write_1mb | ok | ok | ERROR | -| 60 | s3tests_boto3.functional.test_s3.test_atomic_dual_write_4mb | ok | ok | ERROR | -| 61 | s3tests_boto3.functional.test_s3.test_atomic_dual_write_8mb | ok | ok | ERROR | -| 62 | s3tests_boto3.functional.test_s3.test_atomic_conditional_write_1mb | ok | ok | ERROR | -| 63 | s3tests_boto3.functional.test_s3.test_atomic_dual_conditional_write_1mb | FAIL | FAIL | FAIL | -| 64 | s3tests_boto3.functional.test_s3.test_atomic_write_bucket_gone | ok | ok | ok | +| | Test | s3-gw | minio | aws s3 | +|-----|------------------------------------------------------------------------------------------------|-------------|-------|--------| +| 1 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_good | ok | ok | ERROR | +| 2 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_failed | FAIL | FAIL | FAIL | +| 3 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_overwrite_existed_good | ok | ok | ERROR | +| 4 | s3tests_boto3.functional.test_s3.test_put_object_ifmatch_nonexisted_failed | FAIL | FAIL | FAIL | +| 5 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_good | ok | ok | ERROR | +| 6 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_failed | FAIL | FAIL | FAIL | +| 7 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_nonexisted_good | ok | ok | ERROR | +| 8 | s3tests_boto3.functional.test_s3.test_put_object_ifnonmatch_overwrite_existed_failed | FAIL | FAIL | FAIL | +| 9 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_invalid_short | UNSUPPORTED | ok | ok | +| 10 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_bad | UNSUPPORTED | ok | ok | +| 11 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_empty | UNSUPPORTED | ok | ok | +| 12 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_none | ok | ok | ok | +| 13 | s3tests_boto3.functional.test_headers.test_object_create_bad_expect_mismatch | ERROR | ERROR | ok | +| 14 | s3tests_boto3.functional.test_headers.test_object_create_bad_expect_empty | ok | ok | ok | +| 15 | s3tests_boto3.functional.test_headers.test_object_create_bad_expect_none | ok | ok | ok | +| 16 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_empty | FAIL | FAIL | ok | +| 17 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_negative | ok | ok | ok | +| 18 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_none | FAIL | FAIL | FAIL | +| 19 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_mismatch_above | ERROR | ERROR | ERROR | +| 20 | s3tests_boto3.functional.test_headers.test_object_create_bad_contenttype_invalid | ok | ok | ok | +| 21 | s3tests_boto3.functional.test_headers.test_object_create_bad_contenttype_empty | ok | ok | ok | +| 22 | s3tests_boto3.functional.test_headers.test_object_create_bad_contenttype_none | ok | ok | ok | +| 23 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_empty | FAIL | FAIL | FAIL | +| 24 | s3tests_boto3.functional.test_headers.test_object_create_date_and_amz_date | ERROR | ERROR | ERROR | +| 25 | s3tests_boto3.functional.test_headers.test_object_create_amz_date_and_no_date | ERROR | ERROR | ERROR | +| 26 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_none | FAIL | FAIL | FAIL | +| 27 | s3tests_boto3.functional.test_headers.test_object_create_bad_md5_invalid_garbage_aws2 | UNSUPPORTED | ok | ok | +| 28 | s3tests_boto3.functional.test_headers.test_object_create_bad_contentlength_mismatch_below_aws2 | FAIL | FAIL | ok | +| 29 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_incorrect_aws2 | FAIL | FAIL | FAIL | +| 30 | s3tests_boto3.functional.test_headers.test_object_create_bad_authorization_invalid_aws2 | FAIL | FAIL | FAIL | +| 31 | s3tests_boto3.functional.test_headers.test_object_create_bad_ua_empty_aws2 | ERROR | ok | ok | +| 32 | s3tests_boto3.functional.test_headers.test_object_create_bad_ua_none_aws2 | ERROR | ok | ok | +| 33 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_invalid_aws2 | FAIL | FAIL | ok | +| 34 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_empty_aws2 | FAIL | FAIL | ok | +| 35 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_none_aws2 | FAIL | FAIL | FAIL | +| 36 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_before_today_aws2 | FAIL | ok | ok | +| 37 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_before_epoch_aws2 | FAIL | FAIL | ok | +| 38 | s3tests_boto3.functional.test_headers.test_object_create_bad_date_after_end_aws2 | FAIL | ok | ok | +| 39 | s3tests_boto3.functional.test_s3.test_object_anon_put | ok | ok | ok | +| 40 | s3tests_boto3.functional.test_s3.test_object_put_authenticated | ok | ok | ok | +| 41 | s3tests_boto3.functional.test_s3.test_object_raw_put_authenticated_expired | ok | FAIL | FAIL | +| 42 | s3tests_boto3.functional.test_s3.test_object_write_file | ok | ok | ok | +| 43 | s3tests_boto3.functional.test_s3.test_object_write_check_etag | FAIL | ok | ok | +| 44 | s3tests_boto3.functional.test_s3.test_object_write_cache_control | ok | ok | ok | +| 45 | s3tests_boto3.functional.test_s3.test_object_write_expires | ok | ok | ok | +| 46 | s3tests_boto3.functional.test_s3.test_object_write_read_update_read_delete | ok | ok | ok | +| 47 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_none_to_good | ok | ok | ok | +| 48 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_none_to_empty | ERROR | ok | ok | +| 49 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_overwrite_to_empty | ERROR | ok | ok | +| 50 | s3tests_boto3.functional.test_s3.test_object_set_get_non_utf8_metadata | ok | ok | FAIL | +| 51 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_empty_to_unreadable_prefix | ok | ok | FAIL | +| 52 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_empty_to_unreadable_suffix | ok | ok | FAIL | +| 53 | s3tests_boto3.functional.test_s3.test_object_set_get_metadata_empty_to_unreadable_infix | ok | ok | FAIL | +| 54 | s3tests_boto3.functional.test_s3.test_object_metadata_replaced_on_put | ok | ok | ok | +| 55 | s3tests_boto3.functional.test_s3.test_object_write_to_nonexist_bucket | ok | ok | ok | +| 56 | s3tests_boto3.functional.test_s3.test_atomic_write_1mb | ok | ok | ok | +| 57 | s3tests_boto3.functional.test_s3.test_atomic_write_4mb | ok | ok | ok | +| 58 | s3tests_boto3.functional.test_s3.test_atomic_write_8mb | ok | ok | ok | +| 59 | s3tests_boto3.functional.test_s3.test_atomic_dual_write_1mb | ok | ok | ERROR | +| 60 | s3tests_boto3.functional.test_s3.test_atomic_dual_write_4mb | ok | ok | ERROR | +| 61 | s3tests_boto3.functional.test_s3.test_atomic_dual_write_8mb | ok | ok | ERROR | +| 62 | s3tests_boto3.functional.test_s3.test_atomic_conditional_write_1mb | ok | ok | ERROR | +| 63 | s3tests_boto3.functional.test_s3.test_atomic_dual_conditional_write_1mb | FAIL | FAIL | FAIL | +| 64 | s3tests_boto3.functional.test_s3.test_atomic_write_bucket_gone | ok | ok | ok | ## PostObject @@ -342,30 +342,30 @@ Compatibility: 4/5/29 out of 29 Compatibility: 19/15/19 out of 22 -| | Test | s3-gw | minio | aws s3 | -|----|----------------------------------------------------------------------------------|-------|-------|--------| -| 1 | s3tests_boto3.functional.test_s3.test_multipart_upload_empty | ok | FAIL | FAIL | -| 2 | s3tests_boto3.functional.test_s3.test_multipart_upload_small | ERROR | ERROR | ok | -| 3 | s3tests_boto3.functional.test_s3.test_multipart_copy_small | ok | ok | ok | -| 4 | s3tests_boto3.functional.test_s3.test_multipart_copy_invalid_range | ok | FAIL | FAIL | -| 5 | s3tests_boto3.functional.test_s3.test_multipart_copy_improper_range | ok | ok | ok | -| 6 | s3tests_boto3.functional.test_s3.test_multipart_copy_without_range | ok | ok | ok | -| 7 | s3tests_boto3.functional.test_s3.test_multipart_copy_special_names | ok | ok | ok | -| 8 | s3tests_boto3.functional.test_s3.test_multipart_upload | ERROR | ERROR | ok | -| 9 | s3tests_boto3.functional.test_s3.test_multipart_upload_resend_part | ok | ok | ok | -| 10 | s3tests_boto3.functional.test_s3.test_multipart_upload_multiple_sizes | ok | ok | ok | -| 11 | s3tests_boto3.functional.test_s3.test_multipart_copy_multiple_sizes | ok | ok | ok | -| 12 | s3tests_boto3.functional.test_s3.test_multipart_upload_size_too_small | ok | ok | ok | -| 13 | s3tests_boto3.functional.test_s3.test_multipart_upload_contents | ok | ok | ok | -| 14 | s3tests_boto3.functional.test_s3.test_multipart_upload_overwrite_existing_object | ok | ok | ok | -| 15 | s3tests_boto3.functional.test_s3.test_abort_multipart_upload | ok | ok | ok | -| 16 | s3tests_boto3.functional.test_s3.test_abort_multipart_upload_not_found | ok | ok | ok | -| 17 | s3tests_boto3.functional.test_s3.test_list_multipart_upload | ok | ERROR | ok | -| 18 | s3tests_boto3.functional.test_s3.test_multipart_upload_missing_part | ok | ok | ok | -| 19 | s3tests_boto3.functional.test_s3.test_multipart_upload_incorrect_etag | ok | ok | ok | -| 20 | s3tests_boto3.functional.test_s3.test_multipart_resend_first_finishes_last | ERROR | ERROR | ERROR | -| 21 | s3tests_boto3.functional.test_s3.test_atomic_multipart_upload_write | ok | ok | ok | -| 22 | s3tests_boto3.functional.test_s3.test_multipart_copy_versioned | ok | ERROR | ok | +| | Test | s3-gw | minio | aws s3 | +|-----|----------------------------------------------------------------------------------|-------|-------|--------| +| 1 | s3tests_boto3.functional.test_s3.test_multipart_upload_empty | ok | FAIL | FAIL | +| 2 | s3tests_boto3.functional.test_s3.test_multipart_upload_small | ERROR | ERROR | ok | +| 3 | s3tests_boto3.functional.test_s3.test_multipart_copy_small | ok | ok | ok | +| 4 | s3tests_boto3.functional.test_s3.test_multipart_copy_invalid_range | ok | FAIL | FAIL | +| 5 | s3tests_boto3.functional.test_s3.test_multipart_copy_improper_range | ok | ok | ok | +| 6 | s3tests_boto3.functional.test_s3.test_multipart_copy_without_range | ok | ok | ok | +| 7 | s3tests_boto3.functional.test_s3.test_multipart_copy_special_names | ok | ok | ok | +| 8 | s3tests_boto3.functional.test_s3.test_multipart_upload | ERROR | ERROR | ok | +| 9 | s3tests_boto3.functional.test_s3.test_multipart_upload_resend_part | ok | ok | ok | +| 10 | s3tests_boto3.functional.test_s3.test_multipart_upload_multiple_sizes | ok | ok | ok | +| 11 | s3tests_boto3.functional.test_s3.test_multipart_copy_multiple_sizes | ok | ok | ok | +| 12 | s3tests_boto3.functional.test_s3.test_multipart_upload_size_too_small | ok | ok | ok | +| 13 | s3tests_boto3.functional.test_s3.test_multipart_upload_contents | ok | ok | ok | +| 14 | s3tests_boto3.functional.test_s3.test_multipart_upload_overwrite_existing_object | ok | ok | ok | +| 15 | s3tests_boto3.functional.test_s3.test_abort_multipart_upload | ok | ok | ok | +| 16 | s3tests_boto3.functional.test_s3.test_abort_multipart_upload_not_found | ok | ok | ok | +| 17 | s3tests_boto3.functional.test_s3.test_list_multipart_upload | ok | ERROR | ok | +| 18 | s3tests_boto3.functional.test_s3.test_multipart_upload_missing_part | ok | ok | ok | +| 19 | s3tests_boto3.functional.test_s3.test_multipart_upload_incorrect_etag | ok | ok | ok | +| 20 | s3tests_boto3.functional.test_s3.test_multipart_resend_first_finishes_last | ERROR | ERROR | ERROR | +| 21 | s3tests_boto3.functional.test_s3.test_atomic_multipart_upload_write | ok | ok | ok | +| 22 | s3tests_boto3.functional.test_s3.test_multipart_copy_versioned | ok | ERROR | ok | Comments: in [PR](https://github.com/nspcc-dev/s3-tests/pull/5) @@ -373,118 +373,118 @@ Comments: in [PR](https://github.com/nspcc-dev/s3-tests/pull/5) Compatibility: 9/6/8 out of 11 -| | Test | s3-gw | minio | aws s3 | -|----|------------------------------------------------------------|-------|-------|--------| -| 1 | s3tests_boto3.functional.test_s3.test_set_bucket_tagging | FAIL | FAIL | FAIL | -| 2 | s3tests_boto3.functional.test_s3.test_get_obj_tagging | ok | ok | ok | -| 3 | s3tests_boto3.functional.test_s3.test_get_obj_head_tagging | ok | ok | ok | -| 4 | s3tests_boto3.functional.test_s3.test_put_max_tags | ok | FAIL | ok | -| 5 | s3tests_boto3.functional.test_s3.test_put_excess_tags | FAIL | FAIL | FAIL | -| 6 | s3tests_boto3.functional.test_s3.test_put_max_kvsize_tags | ok | ok | ok | -| 7 | s3tests_boto3.functional.test_s3.test_put_excess_key_tags | ok | ok | ok | -| 8 | s3tests_boto3.functional.test_s3.test_put_excess_val_tags | ok | ok | ok | -| 9 | s3tests_boto3.functional.test_s3.test_put_modify_tags | ok | FAIL | FAIL | -| 10 | s3tests_boto3.functional.test_s3.test_put_delete_tags | ok | ok | ok | -| 11 | s3tests_boto3.functional.test_s3.test_put_obj_with_tags | ok | FAIL | ok | +| | Test | s3-gw | minio | aws s3 | +|-----|------------------------------------------------------------|-------|-------|--------| +| 1 | s3tests_boto3.functional.test_s3.test_set_bucket_tagging | FAIL | FAIL | FAIL | +| 2 | s3tests_boto3.functional.test_s3.test_get_obj_tagging | ok | ok | ok | +| 3 | s3tests_boto3.functional.test_s3.test_get_obj_head_tagging | ok | ok | ok | +| 4 | s3tests_boto3.functional.test_s3.test_put_max_tags | ok | FAIL | ok | +| 5 | s3tests_boto3.functional.test_s3.test_put_excess_tags | FAIL | FAIL | FAIL | +| 6 | s3tests_boto3.functional.test_s3.test_put_max_kvsize_tags | ok | ok | ok | +| 7 | s3tests_boto3.functional.test_s3.test_put_excess_key_tags | ok | ok | ok | +| 8 | s3tests_boto3.functional.test_s3.test_put_excess_val_tags | ok | ok | ok | +| 9 | s3tests_boto3.functional.test_s3.test_put_modify_tags | ok | FAIL | FAIL | +| 10 | s3tests_boto3.functional.test_s3.test_put_delete_tags | ok | ok | ok | +| 11 | s3tests_boto3.functional.test_s3.test_put_obj_with_tags | ok | FAIL | ok | ## Versioning Compatibility: 23/19/24 out of 26 -| | Test | s3-gw | minio | aws s3 | -|----|---------------------------------------------------------------------------------------------|-------|-------|--------| -| 1 | s3tests_boto3.functional.test_s3.test_versioning_bucket_create_suspend | ok | ok | ok | -| 2 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_read_remove | ok | ok | ok | -| 3 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_read_remove_head | ok | ok | ok | -| 4 | s3tests_boto3.functional.test_s3.test_versioning_obj_plain_null_version_removal | ok | ok | ok | -| 5 | s3tests_boto3.functional.test_s3.test_versioning_obj_plain_null_version_overwrite | ok | ok | ok | -| 6 | s3tests_boto3.functional.test_s3.test_versioning_obj_plain_null_version_overwrite_suspended | ok | ok | ok | -| 7 | s3tests_boto3.functional.test_s3.test_versioning_obj_suspend_versions | ok | ok | ok | -| 8 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_versions_remove_all | ok | ok | ok | -| 9 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_versions_remove_special_names | ok | ok | ok | -| 10 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_overwrite_multipart | ok | ok | ok | -| 11 | s3tests_boto3.functional.test_s3.test_versioning_obj_list_marker | ok | ok | ok | -| 12 | s3tests_boto3.functional.test_s3.test_versioning_copy_obj_version | ok | ok | ok | -| 13 | s3tests_boto3.functional.test_s3.test_versioning_multi_object_delete | ok | ok | ok | -| 14 | s3tests_boto3.functional.test_s3.test_versioning_multi_object_delete_with_marker | ok | ok | ok | -| 15 | s3tests_boto3.functional.test_s3.test_versioning_multi_object_delete_with_marker_create | ok | ERROR | ok | -| 16 | s3tests_boto3.functional.test_s3.test_versioned_object_acl | FAIL | FAIL | FAIL | -| 17 | s3tests_boto3.functional.test_s3.test_versioned_object_acl_no_version_specified | FAIL | FAIL | FAIL | -| 18 | s3tests_boto3.functional.test_s3.test_versioned_concurrent_object_create_concurrent_remove | ok | ok | ok | -| 19 | s3tests_boto3.functional.test_s3.test_versioned_concurrent_object_create_and_remove | ok | ok | ok | -| 20 | s3tests_boto3.functional.test_s3.test_versioning_bucket_atomic_upload_return_version_id | ok | FAIL | ok | -| 21 | s3tests_boto3.functional.test_s3.test_versioning_bucket_multipart_upload_return_version_id | ok | FAIL | ok | -| 22 | s3tests_boto3.functional.test_s3.test_bucket_list_return_data_versioning | ERROR | ERROR | ok | -| 23 | s3tests_boto3.functional.test_s3.test_object_copy_versioned_bucket | ok | ok | ok | -| 24 | s3tests_boto3.functional.test_s3.test_object_copy_versioned_url_encoding | ok | ok | ok | -| 25 | s3tests_boto3.functional.test_s3.test_object_copy_versioning_multipart_upload | ok | ok | ok | -| 26 | s3tests_boto3.functional.test_s3.test_multipart_copy_versioned | ok | ERROR | ok | +| | Test | s3-gw | minio | aws s3 | +|-----|---------------------------------------------------------------------------------------------|-------|-------|--------| +| 1 | s3tests_boto3.functional.test_s3.test_versioning_bucket_create_suspend | ok | ok | ok | +| 2 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_read_remove | ok | ok | ok | +| 3 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_read_remove_head | ok | ok | ok | +| 4 | s3tests_boto3.functional.test_s3.test_versioning_obj_plain_null_version_removal | ok | ok | ok | +| 5 | s3tests_boto3.functional.test_s3.test_versioning_obj_plain_null_version_overwrite | ok | ok | ok | +| 6 | s3tests_boto3.functional.test_s3.test_versioning_obj_plain_null_version_overwrite_suspended | ok | ok | ok | +| 7 | s3tests_boto3.functional.test_s3.test_versioning_obj_suspend_versions | ok | ok | ok | +| 8 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_versions_remove_all | ok | ok | ok | +| 9 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_versions_remove_special_names | ok | ok | ok | +| 10 | s3tests_boto3.functional.test_s3.test_versioning_obj_create_overwrite_multipart | ok | ok | ok | +| 11 | s3tests_boto3.functional.test_s3.test_versioning_obj_list_marker | ok | ok | ok | +| 12 | s3tests_boto3.functional.test_s3.test_versioning_copy_obj_version | ok | ok | ok | +| 13 | s3tests_boto3.functional.test_s3.test_versioning_multi_object_delete | ok | ok | ok | +| 14 | s3tests_boto3.functional.test_s3.test_versioning_multi_object_delete_with_marker | ok | ok | ok | +| 15 | s3tests_boto3.functional.test_s3.test_versioning_multi_object_delete_with_marker_create | ok | ERROR | ok | +| 16 | s3tests_boto3.functional.test_s3.test_versioned_object_acl | FAIL | FAIL | FAIL | +| 17 | s3tests_boto3.functional.test_s3.test_versioned_object_acl_no_version_specified | FAIL | FAIL | FAIL | +| 18 | s3tests_boto3.functional.test_s3.test_versioned_concurrent_object_create_concurrent_remove | ok | ok | ok | +| 19 | s3tests_boto3.functional.test_s3.test_versioned_concurrent_object_create_and_remove | ok | ok | ok | +| 20 | s3tests_boto3.functional.test_s3.test_versioning_bucket_atomic_upload_return_version_id | ok | FAIL | ok | +| 21 | s3tests_boto3.functional.test_s3.test_versioning_bucket_multipart_upload_return_version_id | ok | FAIL | ok | +| 22 | s3tests_boto3.functional.test_s3.test_bucket_list_return_data_versioning | ERROR | ERROR | ok | +| 23 | s3tests_boto3.functional.test_s3.test_object_copy_versioned_bucket | ok | ok | ok | +| 24 | s3tests_boto3.functional.test_s3.test_object_copy_versioned_url_encoding | ok | ok | ok | +| 25 | s3tests_boto3.functional.test_s3.test_object_copy_versioning_multipart_upload | ok | ok | ok | +| 26 | s3tests_boto3.functional.test_s3.test_multipart_copy_versioned | ok | ERROR | ok | ## Bucket Compatibility: 38/38/45 out of 59 -| | Test | s3-gw | minio | aws s3 | -|----|----------------------------------------------------------------------------------------------|-------|-------|--------| -| 1 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_authorization_invalid_aws2 | FAIL | FAIL | FAIL | -| 2 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_ua_empty_aws2 | ERROR | ok | ok | -| 3 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_ua_none_aws2 | ERROR | ok | ok | -| 4 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_invalid_aws2 | FAIL | FAIL | ok | -| 5 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_empty_aws2 | FAIL | FAIL | ok | -| 6 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_none_aws2 | FAIL | FAIL | FAIL | -| 7 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_before_today_aws2 | FAIL | ok | ok | -| 8 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_after_today_aws2 | FAIL | ok | ok | -| 9 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_before_epoch_aws2 | FAIL | FAIL | ok | -| 10 | s3tests_boto3.functional.test_headers.test_bucket_create_contentlength_none | ok | ok | ok | -| 11 | s3tests_boto3.functional.test_headers.test_bucket_put_bad_canned_acl | ok | FAIL | ok | -| 12 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_expect_mismatch | ERROR | ERROR | ok | -| 13 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_expect_empty | ok | ok | ok | -| 14 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_contentlength_empty | FAIL | FAIL | ok | -| 15 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_contentlength_negative | ok | ok | ok | -| 16 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_contentlength_none | ok | ok | ok | -| 17 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_authorization_empty | FAIL | FAIL | FAIL | -| 18 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_authorization_none | FAIL | FAIL | FAIL | -| 19 | s3tests_boto3.functional.test_s3.test_bucket_notexist | ok | ok | ok | -| 20 | s3tests_boto3.functional.test_s3.test_bucketv2_notexist | ok | ok | ok | -| 21 | s3tests_boto3.functional.test_s3.test_bucket_delete_notexist | ok | ok | ok | -| 22 | s3tests_boto3.functional.test_s3.test_bucket_delete_nonempty | ok | ok | ok | -| 23 | s3tests_boto3.functional.test_s3.test_bucket_concurrent_set_canned_acl | ok | FAIL | FAIL | -| 24 | s3tests_boto3.functional.test_s3.test_bucket_create_delete | ok | ok | ok | -| 25 | s3tests_boto3.functional.test_s3.test_bucket_head | ok | ok | ok | -| 26 | s3tests_boto3.functional.test_s3.test_bucket_head_notexist | ok | ok | ok | -| 27 | s3tests_boto3.functional.test_s3.test_bucket_head_extended | ERROR | ERROR | ERROR | -| 28 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_starts_nonalpha | ok | ok | ok | -| 29 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_short_empty | ERROR | ERROR | ERROR | -| 30 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_short_one | ok | ok | ok | -| 31 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_short_two | ok | ok | ok | -| 32 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_long | ERROR | ERROR | ERROR | -| 33 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_60 | ok | ok | ok | -| 34 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_61 | ok | ok | ok | -| 35 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_62 | ok | ok | ok | -| 36 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_63 | ok | ok | ok | -| 37 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_ip | ok | ok | FAIL | -| 38 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_punctuation | ERROR | ERROR | ERROR | -| 39 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_underscore | ok | ok | ok | -| 40 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_long | ok | ok | ok | -| 41 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dash_at_end | ok | ok | ok | -| 42 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dot_dot | ok | ok | ok | -| 43 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dot_dash | ok | ok | ok | -| 44 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dash_dot | ok | ok | ok | -| 45 | s3tests_boto3.functional.test_s3.test_bucket_create_exists | ERROR | ERROR | ok | -| 46 | s3tests_boto3.functional.test_s3.test_bucket_get_location | ok | FAIL | ERROR | -| 47 | s3tests_boto3.functional.test_s3.test_bucket_create_exists_nonowner | ok | FAIL | ok | -| 48 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_starts_alpha | ok | ok | ok | -| 49 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_starts_digit | ok | ok | ok | -| 50 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_contains_period | ERROR | ok | ok | -| 51 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_contains_hyphen | ok | ok | ok | -| 52 | s3tests_boto3.functional.test_s3.test_bucket_recreate_not_overriding | ERROR | ERROR | ok | -| 53 | s3tests_boto3.functional.test_s3.test_bucket_create_special_key_names | ok | ok | ok | -| 54 | s3tests_boto3.functional.test_s3.test_bucket_policy_set_condition_operator_end_with_IfExists | ERROR | ERROR | FAIL | -| 55 | s3tests_boto3.functional.test_s3.test_buckets_create_then_list | ok | ok | ok | -| 56 | s3tests_boto3.functional.test_s3.test_buckets_list_ctime | ok | ok | FAIL | -| 57 | s3tests_boto3.functional.test_s3.test_list_buckets_anonymous | ok | ERROR | ERROR | -| 58 | s3tests_boto3.functional.test_s3.test_list_buckets_invalid_auth | ok | ok | ok | -| 59 | s3tests_boto3.functional.test_s3.test_list_buckets_bad_auth | ok | ok | ok | +| | Test | s3-gw | minio | aws s3 | +|-----|----------------------------------------------------------------------------------------------|-------|-------|--------| +| 1 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_authorization_invalid_aws2 | FAIL | FAIL | FAIL | +| 2 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_ua_empty_aws2 | ERROR | ok | ok | +| 3 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_ua_none_aws2 | ERROR | ok | ok | +| 4 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_invalid_aws2 | FAIL | FAIL | ok | +| 5 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_empty_aws2 | FAIL | FAIL | ok | +| 6 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_none_aws2 | FAIL | FAIL | FAIL | +| 7 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_before_today_aws2 | FAIL | ok | ok | +| 8 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_after_today_aws2 | FAIL | ok | ok | +| 9 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_date_before_epoch_aws2 | FAIL | FAIL | ok | +| 10 | s3tests_boto3.functional.test_headers.test_bucket_create_contentlength_none | ok | ok | ok | +| 11 | s3tests_boto3.functional.test_headers.test_bucket_put_bad_canned_acl | ok | FAIL | ok | +| 12 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_expect_mismatch | ERROR | ERROR | ok | +| 13 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_expect_empty | ok | ok | ok | +| 14 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_contentlength_empty | FAIL | FAIL | ok | +| 15 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_contentlength_negative | ok | ok | ok | +| 16 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_contentlength_none | ok | ok | ok | +| 17 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_authorization_empty | FAIL | FAIL | FAIL | +| 18 | s3tests_boto3.functional.test_headers.test_bucket_create_bad_authorization_none | FAIL | FAIL | FAIL | +| 19 | s3tests_boto3.functional.test_s3.test_bucket_notexist | ok | ok | ok | +| 20 | s3tests_boto3.functional.test_s3.test_bucketv2_notexist | ok | ok | ok | +| 21 | s3tests_boto3.functional.test_s3.test_bucket_delete_notexist | ok | ok | ok | +| 22 | s3tests_boto3.functional.test_s3.test_bucket_delete_nonempty | ok | ok | ok | +| 23 | s3tests_boto3.functional.test_s3.test_bucket_concurrent_set_canned_acl | ok | FAIL | FAIL | +| 24 | s3tests_boto3.functional.test_s3.test_bucket_create_delete | ok | ok | ok | +| 25 | s3tests_boto3.functional.test_s3.test_bucket_head | ok | ok | ok | +| 26 | s3tests_boto3.functional.test_s3.test_bucket_head_notexist | ok | ok | ok | +| 27 | s3tests_boto3.functional.test_s3.test_bucket_head_extended | ERROR | ERROR | ERROR | +| 28 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_starts_nonalpha | ok | ok | ok | +| 29 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_short_empty | ERROR | ERROR | ERROR | +| 30 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_short_one | ok | ok | ok | +| 31 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_short_two | ok | ok | ok | +| 32 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_long | ERROR | ERROR | ERROR | +| 33 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_60 | ok | ok | ok | +| 34 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_61 | ok | ok | ok | +| 35 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_62 | ok | ok | ok | +| 36 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_long_63 | ok | ok | ok | +| 37 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_ip | ok | ok | FAIL | +| 38 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_bad_punctuation | ERROR | ERROR | ERROR | +| 39 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_underscore | ok | ok | ok | +| 40 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_long | ok | ok | ok | +| 41 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dash_at_end | ok | ok | ok | +| 42 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dot_dot | ok | ok | ok | +| 43 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dot_dash | ok | ok | ok | +| 44 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_dns_dash_dot | ok | ok | ok | +| 45 | s3tests_boto3.functional.test_s3.test_bucket_create_exists | ERROR | ERROR | ok | +| 46 | s3tests_boto3.functional.test_s3.test_bucket_get_location | ok | FAIL | ERROR | +| 47 | s3tests_boto3.functional.test_s3.test_bucket_create_exists_nonowner | ok | FAIL | ok | +| 48 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_starts_alpha | ok | ok | ok | +| 49 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_starts_digit | ok | ok | ok | +| 50 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_contains_period | ERROR | ok | ok | +| 51 | s3tests_boto3.functional.test_s3.test_bucket_create_naming_good_contains_hyphen | ok | ok | ok | +| 52 | s3tests_boto3.functional.test_s3.test_bucket_recreate_not_overriding | ERROR | ERROR | ok | +| 53 | s3tests_boto3.functional.test_s3.test_bucket_create_special_key_names | ok | ok | ok | +| 54 | s3tests_boto3.functional.test_s3.test_bucket_policy_set_condition_operator_end_with_IfExists | ERROR | ERROR | FAIL | +| 55 | s3tests_boto3.functional.test_s3.test_buckets_create_then_list | ok | ok | ok | +| 56 | s3tests_boto3.functional.test_s3.test_buckets_list_ctime | ok | ok | FAIL | +| 57 | s3tests_boto3.functional.test_s3.test_list_buckets_anonymous | ok | ERROR | ERROR | +| 58 | s3tests_boto3.functional.test_s3.test_list_buckets_invalid_auth | ok | ok | ok | +| 59 | s3tests_boto3.functional.test_s3.test_list_buckets_bad_auth | ok | ok | ok | ## Bucket ACL @@ -581,90 +581,90 @@ This group is not explicitly supported by s3-gw, but some other tests may pass. Compatibility: 0/10/18 out of 29 This group is not explicitly supported by s3-gw, but some tests may pass. -| | Test | s3-gw | minio | aws s3 | -|----|---------------------------------------------------------------------------------|-------|-------|--------| -| 1 | s3tests_boto3.functional.test_s3.test_lifecycle_set | ERROR | ok | ok | -| 2 | s3tests_boto3.functional.test_s3.test_lifecycle_get | ERROR | FAIL | ok | -| 3 | s3tests_boto3.functional.test_s3.test_lifecycle_get_no_id | ERROR | ERROR | ok | -| 4 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration | ERROR | FAIL | FAIL | -| 5 | s3tests_boto3.functional.test_s3.test_lifecyclev2_expiration | ERROR | FAIL | FAIL | -| 6 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_versioning_enabled | ERROR | ERROR | ok | -| 7 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_tags1 | ERROR | ERROR | ERROR | -| 8 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_tags2 | ERROR | ERROR | ERROR | -| 9 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_versioned_tags2 | ERROR | ERROR | ERROR | -| 10 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_noncur_tags1 | ERROR | ERROR | ERROR | -| 11 | s3tests_boto3.functional.test_s3.test_lifecycle_id_too_long | FAIL | FAIL | ok | -| 12 | s3tests_boto3.functional.test_s3.test_lifecycle_same_id | FAIL | FAIL | ok | -| 13 | s3tests_boto3.functional.test_s3.test_lifecycle_invalid_status | FAIL | FAIL | ok | -| 14 | s3tests_boto3.functional.test_s3.test_lifecycle_set_date | ERROR | ok | ok | -| 15 | s3tests_boto3.functional.test_s3.test_lifecycle_set_invalid_date | FAIL | ok | ok | -| 16 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_date | ERROR | FAIL | FAIL | -| 17 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_days0 | FAIL | FAIL | ok | -| 18 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_put | ERROR | ok | ok | -| 19 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_head | ERROR | ok | ok | -| 20 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_tags_head | ERROR | ok | FAIL | -| 21 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_and_tags_head | ERROR | ERROR | ok | -| 22 | s3tests_boto3.functional.test_s3.test_lifecycle_set_noncurrent | ERROR | ok | ok | -| 23 | s3tests_boto3.functional.test_s3.test_lifecycle_noncur_expiration | ERROR | ERROR | FAIL | -| 24 | s3tests_boto3.functional.test_s3.test_lifecycle_set_deletemarker | ERROR | ok | ok | -| 25 | s3tests_boto3.functional.test_s3.test_lifecycle_set_filter | ERROR | ok | ok | -| 26 | s3tests_boto3.functional.test_s3.test_lifecycle_set_empty_filter | ERROR | ok | ok | -| 27 | s3tests_boto3.functional.test_s3.test_lifecycle_deletemarker_expiration | ERROR | ERROR | FAIL | -| 28 | s3tests_boto3.functional.test_s3.test_lifecycle_set_multipart | ERROR | ERROR | ok | -| 29 | s3tests_boto3.functional.test_s3.test_lifecycle_multipart_expiration | ERROR | ERROR | FAIL | +| | Test | s3-gw | minio | aws s3 | +|-----|---------------------------------------------------------------------------------|-------|-------|--------| +| 1 | s3tests_boto3.functional.test_s3.test_lifecycle_set | ERROR | ok | ok | +| 2 | s3tests_boto3.functional.test_s3.test_lifecycle_get | ERROR | FAIL | ok | +| 3 | s3tests_boto3.functional.test_s3.test_lifecycle_get_no_id | ERROR | ERROR | ok | +| 4 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration | ERROR | FAIL | FAIL | +| 5 | s3tests_boto3.functional.test_s3.test_lifecyclev2_expiration | ERROR | FAIL | FAIL | +| 6 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_versioning_enabled | ERROR | ERROR | ok | +| 7 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_tags1 | ERROR | ERROR | ERROR | +| 8 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_tags2 | ERROR | ERROR | ERROR | +| 9 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_versioned_tags2 | ERROR | ERROR | ERROR | +| 10 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_noncur_tags1 | ERROR | ERROR | ERROR | +| 11 | s3tests_boto3.functional.test_s3.test_lifecycle_id_too_long | FAIL | FAIL | ok | +| 12 | s3tests_boto3.functional.test_s3.test_lifecycle_same_id | FAIL | FAIL | ok | +| 13 | s3tests_boto3.functional.test_s3.test_lifecycle_invalid_status | FAIL | FAIL | ok | +| 14 | s3tests_boto3.functional.test_s3.test_lifecycle_set_date | ERROR | ok | ok | +| 15 | s3tests_boto3.functional.test_s3.test_lifecycle_set_invalid_date | FAIL | ok | ok | +| 16 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_date | ERROR | FAIL | FAIL | +| 17 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_days0 | FAIL | FAIL | ok | +| 18 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_put | ERROR | ok | ok | +| 19 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_head | ERROR | ok | ok | +| 20 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_tags_head | ERROR | ok | FAIL | +| 21 | s3tests_boto3.functional.test_s3.test_lifecycle_expiration_header_and_tags_head | ERROR | ERROR | ok | +| 22 | s3tests_boto3.functional.test_s3.test_lifecycle_set_noncurrent | ERROR | ok | ok | +| 23 | s3tests_boto3.functional.test_s3.test_lifecycle_noncur_expiration | ERROR | ERROR | FAIL | +| 24 | s3tests_boto3.functional.test_s3.test_lifecycle_set_deletemarker | ERROR | ok | ok | +| 25 | s3tests_boto3.functional.test_s3.test_lifecycle_set_filter | ERROR | ok | ok | +| 26 | s3tests_boto3.functional.test_s3.test_lifecycle_set_empty_filter | ERROR | ok | ok | +| 27 | s3tests_boto3.functional.test_s3.test_lifecycle_deletemarker_expiration | ERROR | ERROR | FAIL | +| 28 | s3tests_boto3.functional.test_s3.test_lifecycle_set_multipart | ERROR | ERROR | ok | +| 29 | s3tests_boto3.functional.test_s3.test_lifecycle_multipart_expiration | ERROR | ERROR | FAIL | ## Policy and replication Compatibility: 0/7/20 out of 35 This group is not explicitly supported by s3-gw, but some tests may pass. -| | Test | s3-gw | minio | aws s3 | -|----|-------------------------------------------------------------------------------------|-------|-------|--------| -| 1 | s3tests_boto3.functional.test_s3.test_bucket_policy | ERROR | ok | ok | -| 2 | s3tests_boto3.functional.test_s3.test_bucketv2_policy | ERROR | ok | ok | -| 3 | s3tests_boto3.functional.test_s3.test_bucket_policy_acl | ERROR | ERROR | ok | -| 4 | s3tests_boto3.functional.test_s3.test_bucketv2_policy_acl | ERROR | ERROR | ok | -| 5 | s3tests_boto3.functional.test_s3.test_bucket_policy_different_tenant | ERROR | ERROR | ERROR | -| 6 | s3tests_boto3.functional.test_s3.test_bucketv2_policy_different_tenant | ERROR | ERROR | ERROR | -| 7 | s3tests_boto3.functional.test_s3.test_bucket_policy_another_bucket | ERROR | ok | ERROR | -| 8 | s3tests_boto3.functional.test_s3.test_bucketv2_policy_another_bucket | ERROR | ok | ERROR | -| 9 | s3tests_boto3.functional.test_s3.test_bucket_policy_get_obj_existing_tag | ERROR | ERROR | ok | -| 10 | s3tests_boto3.functional.test_s3.test_bucket_policy_get_obj_tagging_existing_tag | ERROR | ERROR | ok | -| 11 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_tagging_existing_tag | ERROR | ERROR | ok | -| 12 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_copy_source | ERROR | FAIL | ok | -| 13 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_copy_source_meta | ERROR | FAIL | ok | -| 14 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_acl | ERROR | ERROR | ok | -| 15 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_grant | ERROR | ERROR | ok | -| 16 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_enc | ERROR | FAIL | ERROR | -| 17 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_request_obj_tag | ERROR | ERROR | FAIL | -| 18 | s3tests_boto3.functional.test_s3.test_bucket_policy_get_obj_acl_existing_tag | ERROR | ERROR | ok | -| 19 | s3tests_boto3.functional.test_s3.test_user_policy | ERROR | ERROR | ERROR | -| 20 | s3tests_boto3.functional.test_s3.test_get_bucket_policy_status | ERROR | ok | ERROR | -| 21 | s3tests_boto3.functional.test_s3.test_get_public_acl_bucket_policy_status | ERROR | ERROR | ERROR | -| 22 | s3tests_boto3.functional.test_s3.test_get_authpublic_acl_bucket_policy_status | ERROR | ERROR | ERROR | -| 23 | s3tests_boto3.functional.test_s3.test_get_publicpolicy_acl_bucket_policy_status | ERROR | FAIL | ERROR | -| 24 | s3tests_boto3.functional.test_s3.test_get_nonpublicpolicy_acl_bucket_policy_status | ERROR | ok | ERROR | -| 25 | s3tests_boto3.functional.test_s3.test_get_nonpublicpolicy_deny_bucket_policy_status | ERROR | ERROR | ERROR | -| 26 | s3tests_boto3.functional.test_s3.test_get_default_public_block | ERROR | ERROR | ERROR | -| 27 | s3tests_boto3.functional.test_s3.test_put_public_block | ERROR | ERROR | ok | -| 28 | s3tests_boto3.functional.test_s3.test_block_public_put_bucket_acls | ERROR | ERROR | ok | -| 29 | s3tests_boto3.functional.test_s3.test_block_public_object_canned_acls | ERROR | ERROR | ok | -| 30 | s3tests_boto3.functional.test_s3.test_block_public_policy | ERROR | ERROR | ok | -| 31 | s3tests_boto3.functional.test_s3.test_ignore_public_acls | ERROR | ERROR | FAIL | -| 32 | s3tests_boto3.functional.test_s3.test_get_tags_acl_public | ERROR | FAIL | ok | -| 33 | s3tests_boto3.functional.test_s3.test_put_tags_acl_public | ERROR | FAIL | ok | -| 34 | s3tests_boto3.functional.test_s3.test_delete_tags_obj_public | ERROR | ok | ok | -| 35 | s3tests_boto3.functional.test_s3.test_multipart_upload_on_a_bucket_with_policy | ERROR | ERROR | ok | +| | Test | s3-gw | minio | aws s3 | +|-----|-------------------------------------------------------------------------------------|-------|-------|--------| +| 1 | s3tests_boto3.functional.test_s3.test_bucket_policy | ERROR | ok | ok | +| 2 | s3tests_boto3.functional.test_s3.test_bucketv2_policy | ERROR | ok | ok | +| 3 | s3tests_boto3.functional.test_s3.test_bucket_policy_acl | ERROR | ERROR | ok | +| 4 | s3tests_boto3.functional.test_s3.test_bucketv2_policy_acl | ERROR | ERROR | ok | +| 5 | s3tests_boto3.functional.test_s3.test_bucket_policy_different_tenant | ERROR | ERROR | ERROR | +| 6 | s3tests_boto3.functional.test_s3.test_bucketv2_policy_different_tenant | ERROR | ERROR | ERROR | +| 7 | s3tests_boto3.functional.test_s3.test_bucket_policy_another_bucket | ERROR | ok | ERROR | +| 8 | s3tests_boto3.functional.test_s3.test_bucketv2_policy_another_bucket | ERROR | ok | ERROR | +| 9 | s3tests_boto3.functional.test_s3.test_bucket_policy_get_obj_existing_tag | ERROR | ERROR | ok | +| 10 | s3tests_boto3.functional.test_s3.test_bucket_policy_get_obj_tagging_existing_tag | ERROR | ERROR | ok | +| 11 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_tagging_existing_tag | ERROR | ERROR | ok | +| 12 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_copy_source | ERROR | FAIL | ok | +| 13 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_copy_source_meta | ERROR | FAIL | ok | +| 14 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_acl | ERROR | ERROR | ok | +| 15 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_grant | ERROR | ERROR | ok | +| 16 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_enc | ERROR | FAIL | ERROR | +| 17 | s3tests_boto3.functional.test_s3.test_bucket_policy_put_obj_request_obj_tag | ERROR | ERROR | FAIL | +| 18 | s3tests_boto3.functional.test_s3.test_bucket_policy_get_obj_acl_existing_tag | ERROR | ERROR | ok | +| 19 | s3tests_boto3.functional.test_s3.test_user_policy | ERROR | ERROR | ERROR | +| 20 | s3tests_boto3.functional.test_s3.test_get_bucket_policy_status | ERROR | ok | ERROR | +| 21 | s3tests_boto3.functional.test_s3.test_get_public_acl_bucket_policy_status | ERROR | ERROR | ERROR | +| 22 | s3tests_boto3.functional.test_s3.test_get_authpublic_acl_bucket_policy_status | ERROR | ERROR | ERROR | +| 23 | s3tests_boto3.functional.test_s3.test_get_publicpolicy_acl_bucket_policy_status | ERROR | FAIL | ERROR | +| 24 | s3tests_boto3.functional.test_s3.test_get_nonpublicpolicy_acl_bucket_policy_status | ERROR | ok | ERROR | +| 25 | s3tests_boto3.functional.test_s3.test_get_nonpublicpolicy_deny_bucket_policy_status | ERROR | ERROR | ERROR | +| 26 | s3tests_boto3.functional.test_s3.test_get_default_public_block | ERROR | ERROR | ERROR | +| 27 | s3tests_boto3.functional.test_s3.test_put_public_block | ERROR | ERROR | ok | +| 28 | s3tests_boto3.functional.test_s3.test_block_public_put_bucket_acls | ERROR | ERROR | ok | +| 29 | s3tests_boto3.functional.test_s3.test_block_public_object_canned_acls | ERROR | ERROR | ok | +| 30 | s3tests_boto3.functional.test_s3.test_block_public_policy | ERROR | ERROR | ok | +| 31 | s3tests_boto3.functional.test_s3.test_ignore_public_acls | ERROR | ERROR | FAIL | +| 32 | s3tests_boto3.functional.test_s3.test_get_tags_acl_public | ERROR | FAIL | ok | +| 33 | s3tests_boto3.functional.test_s3.test_put_tags_acl_public | ERROR | FAIL | ok | +| 34 | s3tests_boto3.functional.test_s3.test_delete_tags_obj_public | ERROR | ok | ok | +| 35 | s3tests_boto3.functional.test_s3.test_multipart_upload_on_a_bucket_with_policy | ERROR | ERROR | ok | ## Others Compatibility: 2/2/3 out of 6 -| | Test | s3-gw | minio | aws s3 | -|---|-------------------------------------------------------------|-------|-------|--------| -| 1 | s3tests_boto3.functional.test_s3.test_100_continue | FAIL | ERROR | ok | -| 2 | s3tests_boto3.functional.test_s3.test_account_usage | ERROR | ERROR | ERROR | -| 3 | s3tests_boto3.functional.test_s3.test_head_bucket_usage | ERROR | ERROR | ERROR | -| 4 | s3tests_boto3.functional.test_s3.test_logging_toggle | ERROR | ERROR | ERROR | -| 5 | s3tests_boto3.functional.test_s3.test_multi_object_delete | ok | ok | ok | -| 6 | s3tests_boto3.functional.test_s3.test_multi_objectv2_delete | ok | ok | ok | +| | Test | s3-gw | minio | aws s3 | +|-----|-------------------------------------------------------------|-------|-------|--------| +| 1 | s3tests_boto3.functional.test_s3.test_100_continue | FAIL | ERROR | ok | +| 2 | s3tests_boto3.functional.test_s3.test_account_usage | ERROR | ERROR | ERROR | +| 3 | s3tests_boto3.functional.test_s3.test_head_bucket_usage | ERROR | ERROR | ERROR | +| 4 | s3tests_boto3.functional.test_s3.test_logging_toggle | ERROR | ERROR | ERROR | +| 5 | s3tests_boto3.functional.test_s3.test_multi_object_delete | ok | ok | ok | +| 6 | s3tests_boto3.functional.test_s3.test_multi_objectv2_delete | ok | ok | ok | diff --git a/docs/tree_service.md b/docs/tree_service.md index f47f8a452..d9b119c64 100644 --- a/docs/tree_service.md +++ b/docs/tree_service.md @@ -1,17 +1,17 @@ # Tree service -To get objects' metadata and system information, the S3 GW makes requests to the Tree service. -This is a service in FrostFS storage that keeps different information as a tree structure. +To get objects' metadata and system information, the S3 GW makes requests to the Tree service. +This is a service in FrostFS storage that keeps different information as a tree structure. Each node keeps one of the types of data as a set of **key-value pairs**: -* Bucket settings: lock configuration and versioning mode +* Bucket settings: lock configuration and versioning mode * Bucket tagging * Object tagging * Object metadata: OID, name, creation time, system metadata * Object locking settings * Active multipart upload info -Some data takes up a lot of memory, so we store it in FrostFS nodes as an object with payload. +Some data takes up a lot of memory, so we store it in FrostFS nodes as an object with payload. But we keep these objects' metadata in the Tree service too: * Notification configuration * CORS diff --git a/updateTestsResult.sh b/updateTestsResult.sh index 4e41c00fc..0ac713603 100755 --- a/updateTestsResult.sh +++ b/updateTestsResult.sh @@ -14,7 +14,7 @@ fi RESULT_FILE=docs/s3_test_results.md -get_adjusted_result () { +get_adjusted_result() { local OLD_RESULT=$1 local NEW_RESULT=$2 local OLD_RESULT_LEN=${#OLD_RESULT} @@ -23,13 +23,11 @@ get_adjusted_result () { printf "%s%*s" "$NEW_RESULT" $ADDITIONAL_SPACES '' } -while read -r line; -do +while read -r line; do RES_LINE=$(echo "$line" | sed -nE '/^s3tests_boto3/p') - if [ -n "$RES_LINE" ] - then - TEST=$(echo "$RES_LINE" | sed -e 's/[[:space:]]*\.\.\..*//') - RESULT=$(echo "$RES_LINE" | sed -e 's/^.*\.\.\.[[:space:]]*//') + if [ -n "$RES_LINE" ]; then + TEST=${RES_LINE%%[[:space:]]*} + RESULT=${RES_LINE##*[[:space:]]} # beautify trailing spaces OLD_RESULT_S3GW=$(sed -n "s/^.*${TEST}[[:space:]]*|[[:space:]]\(.*\)[[:space:]]|.*|.*|$/\1/p" "$RESULT_FILE" | head -1) @@ -49,4 +47,4 @@ do fi fi -done < "$INPUT_FILE" +done <"$INPUT_FILE" -- 2.45.2 From a025f2e9c59a5b2146077df65de085e0fb9fa52f Mon Sep 17 00:00:00 2001 From: Denis Kirillov Date: Tue, 14 Mar 2023 17:31:15 +0300 Subject: [PATCH 2/4] [#59] tree: Make interface for tree service client Signed-off-by: Denis Kirillov --- api/handler/handlers_test.go | 9 +- cmd/s3-gw/app.go | 7 +- .../frostfs => pkg/service/tree}/tree.go | 555 ++++++------------ pkg/service/tree/tree_client_grpc.go | 311 ++++++++++ .../tree/tree_client_grpc_signature.go | 6 +- pkg/service/tree/tree_client_grpc_test.go | 35 ++ pkg/service/tree/tree_client_in_memory.go | 393 +++++++++++++ .../frostfs => pkg/service/tree}/tree_test.go | 98 +++- 8 files changed, 995 insertions(+), 419 deletions(-) rename {internal/frostfs => pkg/service/tree}/tree.go (57%) create mode 100644 pkg/service/tree/tree_client_grpc.go rename internal/frostfs/tree_signature.go => pkg/service/tree/tree_client_grpc_signature.go (77%) create mode 100644 pkg/service/tree/tree_client_grpc_test.go create mode 100644 pkg/service/tree/tree_client_in_memory.go rename {internal/frostfs => pkg/service/tree}/tree_test.go (51%) diff --git a/api/handler/handlers_test.go b/api/handler/handlers_test.go index 1f7d0a0d4..8c1816f07 100644 --- a/api/handler/handlers_test.go +++ b/api/handler/handlers_test.go @@ -17,6 +17,7 @@ import ( "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data" "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer" "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/resolver" + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/pkg/service/tree" cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id" "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap" "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object" @@ -88,7 +89,7 @@ func prepareHandlerContext(t *testing.T) *handlerContext { Caches: layer.DefaultCachesConfigs(zap.NewExample()), AnonKey: layer.AnonymousKey{Key: key}, Resolver: testResolver, - TreeService: layer.NewTreeService(), + TreeService: NewTreeServiceMock(t), } var pp netmap.PlacementPolicy @@ -113,6 +114,12 @@ func prepareHandlerContext(t *testing.T) *handlerContext { } } +func NewTreeServiceMock(t *testing.T) *tree.Tree { + memCli, err := tree.NewTreeServiceClientMemory() + require.NoError(t, err) + return tree.NewTree(memCli) +} + func createTestBucket(hc *handlerContext, bktName string) *data.BucketInfo { _, err := hc.MockedPool().CreateContainer(hc.Context(), layer.PrmContainerCreate{ Creator: hc.owner, diff --git a/cmd/s3-gw/app.go b/cmd/s3-gw/app.go index 7c04876c1..6b38a950e 100644 --- a/cmd/s3-gw/app.go +++ b/cmd/s3-gw/app.go @@ -25,12 +25,15 @@ import ( "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/wallet" "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/xml" "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/metrics" + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/pkg/service/tree" "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap" "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/pool" "github.com/gorilla/mux" "github.com/nspcc-dev/neo-go/pkg/crypto/keys" "github.com/spf13/viper" "go.uber.org/zap" + "google.golang.org/grpc" + "google.golang.org/grpc/credentials/insecure" ) type ( @@ -110,10 +113,12 @@ func (a *App) initLayer(ctx context.Context) { a.initResolver() treeServiceEndpoint := a.cfg.GetString(cfgTreeServiceEndpoint) - treeService, err := frostfs.NewTreeClient(ctx, treeServiceEndpoint, a.key) + grpcDialOpt := grpc.WithTransportCredentials(insecure.NewCredentials()) + treeGRPCClient, err := tree.NewTreeServiceClientGRPC(ctx, treeServiceEndpoint, a.key, grpcDialOpt) if err != nil { a.log.Fatal("failed to create tree service", zap.Error(err)) } + treeService := tree.NewTree(treeGRPCClient) a.log.Info("init tree service", zap.String("endpoint", treeServiceEndpoint)) // prepare random key for anonymous requests diff --git a/internal/frostfs/tree.go b/pkg/service/tree/tree.go similarity index 57% rename from internal/frostfs/tree.go rename to pkg/service/tree/tree.go index cca1959d2..43c596026 100644 --- a/internal/frostfs/tree.go +++ b/pkg/service/tree/tree.go @@ -1,35 +1,36 @@ -package frostfs +package tree import ( "context" "errors" "fmt" - "io" "strconv" "strings" "time" - "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api" "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data" "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer" - "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox" - "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/frostfs/services/tree" - "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer" oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id" "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user" - "github.com/nspcc-dev/neo-go/pkg/crypto/keys" - "google.golang.org/grpc" - "google.golang.org/grpc/credentials/insecure" ) type ( - TreeClient struct { - key *keys.PrivateKey - conn *grpc.ClientConn - service tree.TreeServiceClient + Tree struct { + service ServiceClient } - TreeNode struct { + // ServiceClient is a client to interact with tree service. + // Each method must return ErrNodeNotFound or ErrNodeAccessDenied if relevant. + ServiceClient interface { + GetNodes(ctx context.Context, p *GetNodesParams) ([]NodeResponse, error) + GetSubTree(ctx context.Context, bktInfo *data.BucketInfo, treeID string, rootID uint64, depth uint32) ([]NodeResponse, error) + AddNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, parent uint64, meta map[string]string) (uint64, error) + AddNodeByPath(ctx context.Context, bktInfo *data.BucketInfo, treeID string, path []string, meta map[string]string) (uint64, error) + MoveNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID, parentID uint64, meta map[string]string) error + RemoveNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID uint64) error + } + + treeNode struct { ID uint64 ParentID uint64 ObjID oid.ID @@ -38,7 +39,7 @@ type ( Meta map[string]string } - getNodesParams struct { + GetNodesParams struct { BktInfo *data.BucketInfo TreeID string Path []string @@ -48,17 +49,29 @@ type ( } ) +const ( + FileNameKey = "FileName" +) + +var ( + // ErrNodeNotFound is returned from ServiceClient in case of not found error. + ErrNodeNotFound = layer.ErrNodeNotFound + + // ErrNodeAccessDenied is returned from ServiceClient service in case of access denied error. + ErrNodeAccessDenied = layer.ErrNodeAccessDenied +) + const ( versioningKV = "Versioning" lockConfigurationKV = "LockConfiguration" oidKV = "OID" - fileNameKV = "FileName" - isUnversionedKV = "IsUnversioned" - isTagKV = "IsTag" - uploadIDKV = "UploadId" - partNumberKV = "Number" - sizeKV = "Size" - etagKV = "ETag" + + isUnversionedKV = "IsUnversioned" + isTagKV = "IsTag" + uploadIDKV = "UploadId" + partNumberKV = "Number" + sizeKV = "Size" + etagKV = "ETag" // keys for lock. isLockKV = "IsLock" @@ -90,36 +103,27 @@ const ( maxGetSubTreeDepth = 0 // means all subTree ) -// NewTreeClient creates instance of TreeClient using provided address and create grpc connection. -func NewTreeClient(ctx context.Context, addr string, key *keys.PrivateKey) (*TreeClient, error) { - conn, err := grpc.Dial(addr, grpc.WithTransportCredentials(insecure.NewCredentials())) - if err != nil { - return nil, fmt.Errorf("did not connect: %v", err) - } +// NewTree creates instance of Tree using provided address and create grpc connection. +func NewTree(service ServiceClient) *Tree { + return &Tree{service: service} +} - c := tree.NewTreeServiceClient(conn) - if _, err = c.Healthcheck(ctx, &tree.HealthcheckRequest{}); err != nil { - return nil, fmt.Errorf("healthcheck: %w", err) - } - - return &TreeClient{ - key: key, - conn: conn, - service: c, - }, nil +type Meta interface { + GetKey() string + GetValue() []byte } type NodeResponse interface { - GetMeta() []*tree.KeyValue - GetNodeId() uint64 - GetParentId() uint64 + GetMeta() []Meta + GetNodeID() uint64 + GetParentID() uint64 GetTimestamp() uint64 } -func newTreeNode(nodeInfo NodeResponse) (*TreeNode, error) { - treeNode := &TreeNode{ - ID: nodeInfo.GetNodeId(), - ParentID: nodeInfo.GetParentId(), +func newTreeNode(nodeInfo NodeResponse) (*treeNode, error) { + treeNode := &treeNode{ + ID: nodeInfo.GetNodeID(), + ParentID: nodeInfo.GetParentID(), TimeStamp: nodeInfo.GetTimestamp(), Meta: make(map[string]string, len(nodeInfo.GetMeta())), } @@ -145,13 +149,13 @@ func newTreeNode(nodeInfo NodeResponse) (*TreeNode, error) { return treeNode, nil } -func (n *TreeNode) Get(key string) (string, bool) { +func (n *treeNode) Get(key string) (string, bool) { value, ok := n.Meta[key] return value, ok } -func (n *TreeNode) FileName() (string, bool) { - value, ok := n.Meta[fileNameKV] +func (n *treeNode) FileName() (string, bool) { + value, ok := n.Meta[FileNameKey] return value, ok } @@ -164,7 +168,7 @@ func newNodeVersion(filePath string, node NodeResponse) (*data.NodeVersion, erro return newNodeVersionFromTreeNode(filePath, treeNode), nil } -func newNodeVersionFromTreeNode(filePath string, treeNode *TreeNode) *data.NodeVersion { +func newNodeVersionFromTreeNode(filePath string, treeNode *treeNode) *data.NodeVersion { _, isUnversioned := treeNode.Get(isUnversionedKV) _, isDeleteMarker := treeNode.Get(isDeleteMarkerKV) eTag, _ := treeNode.Get(etagKV) @@ -205,7 +209,7 @@ func newNodeVersionFromTreeNode(filePath string, treeNode *TreeNode) *data.NodeV func newMultipartInfo(node NodeResponse) (*data.MultipartInfo, error) { multipartInfo := &data.MultipartInfo{ - ID: node.GetNodeId(), + ID: node.GetNodeID(), Meta: make(map[string]string, len(node.GetMeta())), } @@ -213,7 +217,7 @@ func newMultipartInfo(node NodeResponse) (*data.MultipartInfo, error) { switch kv.GetKey() { case uploadIDKV: multipartInfo.UploadID = string(kv.GetValue()) - case fileNameKV: + case FileNameKey: multipartInfo.Key = string(kv.GetValue()) case createdKV: if utcMilli, err := strconv.ParseInt(string(kv.GetValue()), 10, 64); err == nil { @@ -270,7 +274,7 @@ func newPartInfo(node NodeResponse) (*data.PartInfo, error) { return partInfo, nil } -func (c *TreeClient) GetSettingsNode(ctx context.Context, bktInfo *data.BucketInfo) (*data.BucketSettings, error) { +func (c *Tree) GetSettingsNode(ctx context.Context, bktInfo *data.BucketInfo) (*data.BucketSettings, error) { keysToReturn := []string{versioningKV, lockConfigurationKV} node, err := c.getSystemNode(ctx, bktInfo, []string{settingsFileName}, keysToReturn) if err != nil { @@ -291,7 +295,7 @@ func (c *TreeClient) GetSettingsNode(ctx context.Context, bktInfo *data.BucketIn return settings, nil } -func (c *TreeClient) PutSettingsNode(ctx context.Context, bktInfo *data.BucketInfo, settings *data.BucketSettings) error { +func (c *Tree) PutSettingsNode(ctx context.Context, bktInfo *data.BucketInfo, settings *data.BucketSettings) error { node, err := c.getSystemNode(ctx, bktInfo, []string{settingsFileName}, []string{}) isErrNotFound := errors.Is(err, layer.ErrNodeNotFound) if err != nil && !isErrNotFound { @@ -301,14 +305,14 @@ func (c *TreeClient) PutSettingsNode(ctx context.Context, bktInfo *data.BucketIn meta := metaFromSettings(settings) if isErrNotFound { - _, err = c.addNode(ctx, bktInfo, systemTree, 0, meta) + _, err = c.service.AddNode(ctx, bktInfo, systemTree, 0, meta) return err } - return c.moveNode(ctx, bktInfo, systemTree, node.ID, 0, meta) + return c.service.MoveNode(ctx, bktInfo, systemTree, node.ID, 0, meta) } -func (c *TreeClient) GetNotificationConfigurationNode(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) { +func (c *Tree) GetNotificationConfigurationNode(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) { node, err := c.getSystemNode(ctx, bktInfo, []string{notifConfFileName}, []string{oidKV}) if err != nil { return oid.ID{}, err @@ -317,7 +321,7 @@ func (c *TreeClient) GetNotificationConfigurationNode(ctx context.Context, bktIn return node.ObjID, nil } -func (c *TreeClient) PutNotificationConfigurationNode(ctx context.Context, bktInfo *data.BucketInfo, objID oid.ID) (oid.ID, error) { +func (c *Tree) PutNotificationConfigurationNode(ctx context.Context, bktInfo *data.BucketInfo, objID oid.ID) (oid.ID, error) { node, err := c.getSystemNode(ctx, bktInfo, []string{notifConfFileName}, []string{oidKV}) isErrNotFound := errors.Is(err, layer.ErrNodeNotFound) if err != nil && !isErrNotFound { @@ -325,20 +329,20 @@ func (c *TreeClient) PutNotificationConfigurationNode(ctx context.Context, bktIn } meta := make(map[string]string) - meta[fileNameKV] = notifConfFileName + meta[FileNameKey] = notifConfFileName meta[oidKV] = objID.EncodeToString() if isErrNotFound { - if _, err = c.addNode(ctx, bktInfo, systemTree, 0, meta); err != nil { + if _, err = c.service.AddNode(ctx, bktInfo, systemTree, 0, meta); err != nil { return oid.ID{}, err } return oid.ID{}, layer.ErrNoNodeToRemove } - return node.ObjID, c.moveNode(ctx, bktInfo, systemTree, node.ID, 0, meta) + return node.ObjID, c.service.MoveNode(ctx, bktInfo, systemTree, node.ID, 0, meta) } -func (c *TreeClient) GetBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) { +func (c *Tree) GetBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) { node, err := c.getSystemNode(ctx, bktInfo, []string{corsFilename}, []string{oidKV}) if err != nil { return oid.ID{}, err @@ -347,7 +351,7 @@ func (c *TreeClient) GetBucketCORS(ctx context.Context, bktInfo *data.BucketInfo return node.ObjID, nil } -func (c *TreeClient) PutBucketCORS(ctx context.Context, bktInfo *data.BucketInfo, objID oid.ID) (oid.ID, error) { +func (c *Tree) PutBucketCORS(ctx context.Context, bktInfo *data.BucketInfo, objID oid.ID) (oid.ID, error) { node, err := c.getSystemNode(ctx, bktInfo, []string{corsFilename}, []string{oidKV}) isErrNotFound := errors.Is(err, layer.ErrNodeNotFound) if err != nil && !isErrNotFound { @@ -355,33 +359,33 @@ func (c *TreeClient) PutBucketCORS(ctx context.Context, bktInfo *data.BucketInfo } meta := make(map[string]string) - meta[fileNameKV] = corsFilename + meta[FileNameKey] = corsFilename meta[oidKV] = objID.EncodeToString() if isErrNotFound { - if _, err = c.addNode(ctx, bktInfo, systemTree, 0, meta); err != nil { + if _, err = c.service.AddNode(ctx, bktInfo, systemTree, 0, meta); err != nil { return oid.ID{}, err } return oid.ID{}, layer.ErrNoNodeToRemove } - return node.ObjID, c.moveNode(ctx, bktInfo, systemTree, node.ID, 0, meta) + return node.ObjID, c.service.MoveNode(ctx, bktInfo, systemTree, node.ID, 0, meta) } -func (c *TreeClient) DeleteBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) { +func (c *Tree) DeleteBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) { node, err := c.getSystemNode(ctx, bktInfo, []string{corsFilename}, []string{oidKV}) if err != nil && !errors.Is(err, layer.ErrNodeNotFound) { return oid.ID{}, err } if node != nil { - return node.ObjID, c.removeNode(ctx, bktInfo, systemTree, node.ID) + return node.ObjID, c.service.RemoveNode(ctx, bktInfo, systemTree, node.ID) } return oid.ID{}, layer.ErrNoNodeToRemove } -func (c *TreeClient) GetObjectTagging(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion) (map[string]string, error) { +func (c *Tree) GetObjectTagging(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion) (map[string]string, error) { tagNode, err := c.getTreeNode(ctx, bktInfo, objVersion.ID, isTagKV) if err != nil { return nil, err @@ -390,7 +394,7 @@ func (c *TreeClient) GetObjectTagging(ctx context.Context, bktInfo *data.BucketI return getObjectTagging(tagNode), nil } -func getObjectTagging(tagNode *TreeNode) map[string]string { +func getObjectTagging(tagNode *treeNode) map[string]string { if tagNode == nil { return nil } @@ -406,7 +410,7 @@ func getObjectTagging(tagNode *TreeNode) map[string]string { return meta } -func (c *TreeClient) PutObjectTagging(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion, tagSet map[string]string) error { +func (c *Tree) PutObjectTagging(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion, tagSet map[string]string) error { tagNode, err := c.getTreeNode(ctx, bktInfo, objVersion.ID, isTagKV) if err != nil { return err @@ -420,15 +424,15 @@ func (c *TreeClient) PutObjectTagging(ctx context.Context, bktInfo *data.BucketI } if tagNode == nil { - _, err = c.addNode(ctx, bktInfo, versionTree, objVersion.ID, treeTagSet) + _, err = c.service.AddNode(ctx, bktInfo, versionTree, objVersion.ID, treeTagSet) } else { - err = c.moveNode(ctx, bktInfo, versionTree, tagNode.ID, objVersion.ID, treeTagSet) + err = c.service.MoveNode(ctx, bktInfo, versionTree, tagNode.ID, objVersion.ID, treeTagSet) } return err } -func (c *TreeClient) DeleteObjectTagging(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion) error { +func (c *Tree) DeleteObjectTagging(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion) error { tagNode, err := c.getTreeNode(ctx, bktInfo, objVersion.ID, isTagKV) if err != nil { return err @@ -438,10 +442,10 @@ func (c *TreeClient) DeleteObjectTagging(ctx context.Context, bktInfo *data.Buck return nil } - return c.removeNode(ctx, bktInfo, versionTree, tagNode.ID) + return c.service.RemoveNode(ctx, bktInfo, versionTree, tagNode.ID) } -func (c *TreeClient) GetBucketTagging(ctx context.Context, bktInfo *data.BucketInfo) (map[string]string, error) { +func (c *Tree) GetBucketTagging(ctx context.Context, bktInfo *data.BucketInfo) (map[string]string, error) { node, err := c.getSystemNodeWithAllAttributes(ctx, bktInfo, []string{bucketTaggingFilename}) if err != nil { return nil, err @@ -458,7 +462,7 @@ func (c *TreeClient) GetBucketTagging(ctx context.Context, bktInfo *data.BucketI return tags, nil } -func (c *TreeClient) PutBucketTagging(ctx context.Context, bktInfo *data.BucketInfo, tagSet map[string]string) error { +func (c *Tree) PutBucketTagging(ctx context.Context, bktInfo *data.BucketInfo, tagSet map[string]string) error { node, err := c.getSystemNode(ctx, bktInfo, []string{bucketTaggingFilename}, []string{}) isErrNotFound := errors.Is(err, layer.ErrNodeNotFound) if err != nil && !isErrNotFound { @@ -466,35 +470,35 @@ func (c *TreeClient) PutBucketTagging(ctx context.Context, bktInfo *data.BucketI } treeTagSet := make(map[string]string) - treeTagSet[fileNameKV] = bucketTaggingFilename + treeTagSet[FileNameKey] = bucketTaggingFilename for key, val := range tagSet { treeTagSet[userDefinedTagPrefix+key] = val } if isErrNotFound { - _, err = c.addNode(ctx, bktInfo, systemTree, 0, treeTagSet) + _, err = c.service.AddNode(ctx, bktInfo, systemTree, 0, treeTagSet) } else { - err = c.moveNode(ctx, bktInfo, systemTree, node.ID, 0, treeTagSet) + err = c.service.MoveNode(ctx, bktInfo, systemTree, node.ID, 0, treeTagSet) } return err } -func (c *TreeClient) DeleteBucketTagging(ctx context.Context, bktInfo *data.BucketInfo) error { +func (c *Tree) DeleteBucketTagging(ctx context.Context, bktInfo *data.BucketInfo) error { node, err := c.getSystemNode(ctx, bktInfo, []string{bucketTaggingFilename}, nil) if err != nil && !errors.Is(err, layer.ErrNodeNotFound) { return err } if node != nil { - return c.removeNode(ctx, bktInfo, systemTree, node.ID) + return c.service.RemoveNode(ctx, bktInfo, systemTree, node.ID) } return nil } -func (c *TreeClient) getTreeNode(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, key string) (*TreeNode, error) { +func (c *Tree) getTreeNode(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, key string) (*treeNode, error) { nodes, err := c.getTreeNodes(ctx, bktInfo, nodeID, key) if err != nil { return nil, err @@ -504,13 +508,13 @@ func (c *TreeClient) getTreeNode(ctx context.Context, bktInfo *data.BucketInfo, return nodes[key], nil } -func (c *TreeClient) getTreeNodes(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, keys ...string) (map[string]*TreeNode, error) { - subtree, err := c.getSubTree(ctx, bktInfo, versionTree, nodeID, 2) +func (c *Tree) getTreeNodes(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, keys ...string) (map[string]*treeNode, error) { + subtree, err := c.service.GetSubTree(ctx, bktInfo, versionTree, nodeID, 2) if err != nil { return nil, err } - treeNodes := make(map[string]*TreeNode, len(keys)) + treeNodes := make(map[string]*treeNode, len(keys)) for _, s := range subtree { node, err := newTreeNode(s) @@ -531,15 +535,15 @@ func (c *TreeClient) getTreeNodes(ctx context.Context, bktInfo *data.BucketInfo, return treeNodes, nil } -func (c *TreeClient) GetVersions(ctx context.Context, bktInfo *data.BucketInfo, filepath string) ([]*data.NodeVersion, error) { +func (c *Tree) GetVersions(ctx context.Context, bktInfo *data.BucketInfo, filepath string) ([]*data.NodeVersion, error) { return c.getVersions(ctx, bktInfo, versionTree, filepath, false) } -func (c *TreeClient) GetLatestVersion(ctx context.Context, bktInfo *data.BucketInfo, objectName string) (*data.NodeVersion, error) { +func (c *Tree) GetLatestVersion(ctx context.Context, bktInfo *data.BucketInfo, objectName string) (*data.NodeVersion, error) { meta := []string{oidKV, isUnversionedKV, isDeleteMarkerKV, etagKV, sizeKV} path := pathFromName(objectName) - p := &getNodesParams{ + p := &GetNodesParams{ BktInfo: bktInfo, TreeID: versionTree, Path: path, @@ -547,7 +551,7 @@ func (c *TreeClient) GetLatestVersion(ctx context.Context, bktInfo *data.BucketI LatestOnly: true, AllAttrs: false, } - nodes, err := c.getNodes(ctx, p) + nodes, err := c.service.GetNodes(ctx, p) if err != nil { return nil, err } @@ -564,11 +568,11 @@ func pathFromName(objectName string) []string { return strings.Split(objectName, separator) } -func (c *TreeClient) GetLatestVersionsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string) ([]*data.NodeVersion, error) { +func (c *Tree) GetLatestVersionsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string) ([]*data.NodeVersion, error) { return c.getVersionsByPrefix(ctx, bktInfo, prefix, true) } -func (c *TreeClient) determinePrefixNode(ctx context.Context, bktInfo *data.BucketInfo, treeID, prefix string) (uint64, string, error) { +func (c *Tree) determinePrefixNode(ctx context.Context, bktInfo *data.BucketInfo, treeID, prefix string) (uint64, string, error) { var rootID uint64 path := strings.Split(prefix, separator) tailPrefix := path[len(path)-1] @@ -584,15 +588,15 @@ func (c *TreeClient) determinePrefixNode(ctx context.Context, bktInfo *data.Buck return rootID, tailPrefix, nil } -func (c *TreeClient) getPrefixNodeID(ctx context.Context, bktInfo *data.BucketInfo, treeID string, prefixPath []string) (uint64, error) { - p := &getNodesParams{ +func (c *Tree) getPrefixNodeID(ctx context.Context, bktInfo *data.BucketInfo, treeID string, prefixPath []string) (uint64, error) { + p := &GetNodesParams{ BktInfo: bktInfo, TreeID: treeID, Path: prefixPath, LatestOnly: false, AllAttrs: true, } - nodes, err := c.getNodes(ctx, p) + nodes, err := c.service.GetNodes(ctx, p) if err != nil { return 0, err } @@ -600,7 +604,7 @@ func (c *TreeClient) getPrefixNodeID(ctx context.Context, bktInfo *data.BucketIn var intermediateNodes []uint64 for _, node := range nodes { if isIntermediate(node) { - intermediateNodes = append(intermediateNodes, node.GetNodeId()) + intermediateNodes = append(intermediateNodes, node.GetNodeID()) } } @@ -614,7 +618,7 @@ func (c *TreeClient) getPrefixNodeID(ctx context.Context, bktInfo *data.BucketIn return intermediateNodes[0], nil } -func (c *TreeClient) getSubTreeByPrefix(ctx context.Context, bktInfo *data.BucketInfo, treeID, prefix string, latestOnly bool) ([]*tree.GetSubTreeResponse_Body, string, error) { +func (c *Tree) getSubTreeByPrefix(ctx context.Context, bktInfo *data.BucketInfo, treeID, prefix string, latestOnly bool) ([]NodeResponse, string, error) { rootID, tailPrefix, err := c.determinePrefixNode(ctx, bktInfo, treeID, prefix) if err != nil { if errors.Is(err, layer.ErrNodeNotFound) { @@ -623,7 +627,7 @@ func (c *TreeClient) getSubTreeByPrefix(ctx context.Context, bktInfo *data.Bucke return nil, "", err } - subTree, err := c.getSubTree(ctx, bktInfo, treeID, rootID, 2) + subTree, err := c.service.GetSubTree(ctx, bktInfo, treeID, rootID, 2) if err != nil { if errors.Is(err, layer.ErrNodeNotFound) { return nil, "", nil @@ -631,9 +635,9 @@ func (c *TreeClient) getSubTreeByPrefix(ctx context.Context, bktInfo *data.Bucke return nil, "", err } - nodesMap := make(map[string][]*tree.GetSubTreeResponse_Body, len(subTree)) + nodesMap := make(map[string][]NodeResponse, len(subTree)) for _, node := range subTree { - if node.GetNodeId() == rootID { + if node.GetNodeID() == rootID { continue } @@ -648,11 +652,11 @@ func (c *TreeClient) getSubTreeByPrefix(ctx context.Context, bktInfo *data.Bucke // Add all intermediate nodes (actually should be exactly one intermediate node with the same name) // and only latest leaf (object) nodes. To do this store and replace last leaf (object) node in nodes[0] if len(nodes) == 0 { - nodes = []*tree.GetSubTreeResponse_Body{node} + nodes = []NodeResponse{node} } else if !latestOnly || isIntermediate(node) { nodes = append(nodes, node) } else if isIntermediate(nodes[0]) { - nodes = append([]*tree.GetSubTreeResponse_Body{node}, nodes...) + nodes = append([]NodeResponse{node}, nodes...) } else if node.GetTimestamp() > nodes[0].GetTimestamp() { nodes[0] = node } @@ -660,7 +664,7 @@ func (c *TreeClient) getSubTreeByPrefix(ctx context.Context, bktInfo *data.Bucke nodesMap[fileName] = nodes } - result := make([]*tree.GetSubTreeResponse_Body, 0, len(subTree)) + result := make([]NodeResponse, 0, len(subTree)) for _, nodes := range nodesMap { result = append(result, nodes...) } @@ -668,9 +672,9 @@ func (c *TreeClient) getSubTreeByPrefix(ctx context.Context, bktInfo *data.Bucke return result, strings.TrimSuffix(prefix, tailPrefix), nil } -func getFilename(node *tree.GetSubTreeResponse_Body) string { +func getFilename(node NodeResponse) string { for _, kv := range node.GetMeta() { - if kv.GetKey() == fileNameKV { + if kv.GetKey() == FileNameKey { return string(kv.GetValue()) } } @@ -683,11 +687,11 @@ func isIntermediate(node NodeResponse) bool { return false } - return node.GetMeta()[0].GetKey() == fileNameKV + return node.GetMeta()[0].GetKey() == FileNameKey } -func (c *TreeClient) getSubTreeVersions(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, parentFilePath string, latestOnly bool) ([]*data.NodeVersion, error) { - subTree, err := c.getSubTree(ctx, bktInfo, versionTree, nodeID, maxGetSubTreeDepth) +func (c *Tree) getSubTreeVersions(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, parentFilePath string, latestOnly bool) ([]*data.NodeVersion, error) { + subTree, err := c.service.GetSubTree(ctx, bktInfo, versionTree, nodeID, maxGetSubTreeDepth) if err != nil { return nil, err } @@ -721,7 +725,7 @@ func (c *TreeClient) getSubTreeVersions(ctx context.Context, bktInfo *data.Bucke continue } - key := formLatestNodeKey(node.GetParentId(), fileName) + key := formLatestNodeKey(node.GetParentID(), fileName) versionNodes, ok := versions[key] if !ok { versionNodes = []*data.NodeVersion{newNodeVersionFromTreeNode(filepath, treeNode)} @@ -745,19 +749,19 @@ func (c *TreeClient) getSubTreeVersions(ctx context.Context, bktInfo *data.Bucke return result, nil } -func formFilePath(node *tree.GetSubTreeResponse_Body, fileName string, namesMap map[uint64]string) (string, error) { - parentPath, ok := namesMap[node.GetParentId()] +func formFilePath(node NodeResponse, fileName string, namesMap map[uint64]string) (string, error) { + parentPath, ok := namesMap[node.GetParentID()] if !ok { return "", fmt.Errorf("couldn't get parent path") } filepath := parentPath + separator + fileName - namesMap[node.GetNodeId()] = filepath + namesMap[node.GetNodeID()] = filepath return filepath, nil } -func parseTreeNode(node *tree.GetSubTreeResponse_Body) (*TreeNode, string, error) { +func parseTreeNode(node NodeResponse) (*treeNode, string, error) { treeNode, err := newTreeNode(node) if err != nil { // invalid OID attribute return nil, "", err @@ -775,11 +779,11 @@ func formLatestNodeKey(parentID uint64, fileName string) string { return strconv.FormatUint(parentID, 10) + "." + fileName } -func (c *TreeClient) GetAllVersionsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string) ([]*data.NodeVersion, error) { +func (c *Tree) GetAllVersionsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string) ([]*data.NodeVersion, error) { return c.getVersionsByPrefix(ctx, bktInfo, prefix, false) } -func (c *TreeClient) getVersionsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string, latestOnly bool) ([]*data.NodeVersion, error) { +func (c *Tree) getVersionsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string, latestOnly bool) ([]*data.NodeVersion, error) { prefixNodes, headPrefix, err := c.getSubTreeByPrefix(ctx, bktInfo, versionTree, prefix, latestOnly) if err != nil { return nil, err @@ -787,7 +791,7 @@ func (c *TreeClient) getVersionsByPrefix(ctx context.Context, bktInfo *data.Buck var result []*data.NodeVersion for _, node := range prefixNodes { - versions, err := c.getSubTreeVersions(ctx, bktInfo, node.GetNodeId(), headPrefix, latestOnly) + versions, err := c.getSubTreeVersions(ctx, bktInfo, node.GetNodeID(), headPrefix, latestOnly) if err != nil { return nil, err } @@ -797,11 +801,11 @@ func (c *TreeClient) getVersionsByPrefix(ctx context.Context, bktInfo *data.Buck return result, nil } -func (c *TreeClient) GetUnversioned(ctx context.Context, bktInfo *data.BucketInfo, filepath string) (*data.NodeVersion, error) { +func (c *Tree) GetUnversioned(ctx context.Context, bktInfo *data.BucketInfo, filepath string) (*data.NodeVersion, error) { return c.getUnversioned(ctx, bktInfo, versionTree, filepath) } -func (c *TreeClient) getUnversioned(ctx context.Context, bktInfo *data.BucketInfo, treeID, filepath string) (*data.NodeVersion, error) { +func (c *Tree) getUnversioned(ctx context.Context, bktInfo *data.BucketInfo, treeID, filepath string) (*data.NodeVersion, error) { nodes, err := c.getVersions(ctx, bktInfo, treeID, filepath, true) if err != nil { return nil, err @@ -818,23 +822,23 @@ func (c *TreeClient) getUnversioned(ctx context.Context, bktInfo *data.BucketInf return nodes[0], nil } -func (c *TreeClient) AddVersion(ctx context.Context, bktInfo *data.BucketInfo, version *data.NodeVersion) (uint64, error) { +func (c *Tree) AddVersion(ctx context.Context, bktInfo *data.BucketInfo, version *data.NodeVersion) (uint64, error) { return c.addVersion(ctx, bktInfo, versionTree, version) } -func (c *TreeClient) RemoveVersion(ctx context.Context, bktInfo *data.BucketInfo, id uint64) error { - return c.removeNode(ctx, bktInfo, versionTree, id) +func (c *Tree) RemoveVersion(ctx context.Context, bktInfo *data.BucketInfo, id uint64) error { + return c.service.RemoveNode(ctx, bktInfo, versionTree, id) } -func (c *TreeClient) CreateMultipartUpload(ctx context.Context, bktInfo *data.BucketInfo, info *data.MultipartInfo) error { +func (c *Tree) CreateMultipartUpload(ctx context.Context, bktInfo *data.BucketInfo, info *data.MultipartInfo) error { path := pathFromName(info.Key) meta := metaFromMultipart(info, path[len(path)-1]) - _, err := c.addNodeByPath(ctx, bktInfo, systemTree, path[:len(path)-1], meta) + _, err := c.service.AddNodeByPath(ctx, bktInfo, systemTree, path[:len(path)-1], meta) return err } -func (c *TreeClient) GetMultipartUploadsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string) ([]*data.MultipartInfo, error) { +func (c *Tree) GetMultipartUploadsByPrefix(ctx context.Context, bktInfo *data.BucketInfo, prefix string) ([]*data.MultipartInfo, error) { subTreeNodes, _, err := c.getSubTreeByPrefix(ctx, bktInfo, systemTree, prefix, false) if err != nil { return nil, err @@ -842,7 +846,7 @@ func (c *TreeClient) GetMultipartUploadsByPrefix(ctx context.Context, bktInfo *d var result []*data.MultipartInfo for _, node := range subTreeNodes { - multipartUploads, err := c.getSubTreeMultipartUploads(ctx, bktInfo, node.GetNodeId()) + multipartUploads, err := c.getSubTreeMultipartUploads(ctx, bktInfo, node.GetNodeID()) if err != nil { return nil, err } @@ -852,8 +856,8 @@ func (c *TreeClient) GetMultipartUploadsByPrefix(ctx context.Context, bktInfo *d return result, nil } -func (c *TreeClient) getSubTreeMultipartUploads(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64) ([]*data.MultipartInfo, error) { - subTree, err := c.getSubTree(ctx, bktInfo, systemTree, nodeID, maxGetSubTreeDepth) +func (c *Tree) getSubTreeMultipartUploads(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64) ([]*data.MultipartInfo, error) { + subTree, err := c.service.GetSubTree(ctx, bktInfo, systemTree, nodeID, maxGetSubTreeDepth) if err != nil { return nil, err } @@ -870,16 +874,16 @@ func (c *TreeClient) getSubTreeMultipartUploads(ctx context.Context, bktInfo *da return result, nil } -func (c *TreeClient) GetMultipartUpload(ctx context.Context, bktInfo *data.BucketInfo, objectName, uploadID string) (*data.MultipartInfo, error) { +func (c *Tree) GetMultipartUpload(ctx context.Context, bktInfo *data.BucketInfo, objectName, uploadID string) (*data.MultipartInfo, error) { path := pathFromName(objectName) - p := &getNodesParams{ + p := &GetNodesParams{ BktInfo: bktInfo, TreeID: systemTree, Path: path, AllAttrs: true, } - nodes, err := c.getNodes(ctx, p) + nodes, err := c.service.GetNodes(ctx, p) if err != nil { return nil, err } @@ -897,8 +901,8 @@ func (c *TreeClient) GetMultipartUpload(ctx context.Context, bktInfo *data.Bucke return nil, layer.ErrNodeNotFound } -func (c *TreeClient) AddPart(ctx context.Context, bktInfo *data.BucketInfo, multipartNodeID uint64, info *data.PartInfo) (oldObjIDToDelete oid.ID, err error) { - parts, err := c.getSubTree(ctx, bktInfo, systemTree, multipartNodeID, 2) +func (c *Tree) AddPart(ctx context.Context, bktInfo *data.BucketInfo, multipartNodeID uint64, info *data.PartInfo) (oldObjIDToDelete oid.ID, err error) { + parts, err := c.service.GetSubTree(ctx, bktInfo, systemTree, multipartNodeID, 2) if err != nil { return oid.ID{}, err } @@ -913,7 +917,7 @@ func (c *TreeClient) AddPart(ctx context.Context, bktInfo *data.BucketInfo, mult var foundPartID uint64 for _, part := range parts { - if part.GetNodeId() == multipartNodeID { + if part.GetNodeID() == multipartNodeID { continue } partInfo, err := newPartInfo(part) @@ -921,31 +925,31 @@ func (c *TreeClient) AddPart(ctx context.Context, bktInfo *data.BucketInfo, mult continue } if partInfo.Number == info.Number { - foundPartID = part.GetNodeId() + foundPartID = part.GetNodeID() oldObjIDToDelete = partInfo.OID break } } if foundPartID != multipartNodeID { - if _, err = c.addNode(ctx, bktInfo, systemTree, multipartNodeID, meta); err != nil { + if _, err = c.service.AddNode(ctx, bktInfo, systemTree, multipartNodeID, meta); err != nil { return oid.ID{}, err } return oid.ID{}, layer.ErrNoNodeToRemove } - return oldObjIDToDelete, c.moveNode(ctx, bktInfo, systemTree, foundPartID, multipartNodeID, meta) + return oldObjIDToDelete, c.service.MoveNode(ctx, bktInfo, systemTree, foundPartID, multipartNodeID, meta) } -func (c *TreeClient) GetParts(ctx context.Context, bktInfo *data.BucketInfo, multipartNodeID uint64) ([]*data.PartInfo, error) { - parts, err := c.getSubTree(ctx, bktInfo, systemTree, multipartNodeID, 2) +func (c *Tree) GetParts(ctx context.Context, bktInfo *data.BucketInfo, multipartNodeID uint64) ([]*data.PartInfo, error) { + parts, err := c.service.GetSubTree(ctx, bktInfo, systemTree, multipartNodeID, 2) if err != nil { return nil, err } result := make([]*data.PartInfo, 0, len(parts)) for _, part := range parts { - if part.GetNodeId() == multipartNodeID { + if part.GetNodeID() == multipartNodeID { continue } partInfo, err := newPartInfo(part) @@ -958,11 +962,11 @@ func (c *TreeClient) GetParts(ctx context.Context, bktInfo *data.BucketInfo, mul return result, nil } -func (c *TreeClient) DeleteMultipartUpload(ctx context.Context, bktInfo *data.BucketInfo, multipartNodeID uint64) error { - return c.removeNode(ctx, bktInfo, systemTree, multipartNodeID) +func (c *Tree) DeleteMultipartUpload(ctx context.Context, bktInfo *data.BucketInfo, multipartNodeID uint64) error { + return c.service.RemoveNode(ctx, bktInfo, systemTree, multipartNodeID) } -func (c *TreeClient) PutLock(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, lock *data.LockInfo) error { +func (c *Tree) PutLock(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64, lock *data.LockInfo) error { meta := map[string]string{isLockKV: "true"} if lock.IsLegalHoldSet() { @@ -977,14 +981,14 @@ func (c *TreeClient) PutLock(ctx context.Context, bktInfo *data.BucketInfo, node } if lock.ID() == 0 { - _, err := c.addNode(ctx, bktInfo, versionTree, nodeID, meta) + _, err := c.service.AddNode(ctx, bktInfo, versionTree, nodeID, meta) return err } - return c.moveNode(ctx, bktInfo, versionTree, lock.ID(), nodeID, meta) + return c.service.MoveNode(ctx, bktInfo, versionTree, lock.ID(), nodeID, meta) } -func (c *TreeClient) GetLock(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64) (*data.LockInfo, error) { +func (c *Tree) GetLock(ctx context.Context, bktInfo *data.BucketInfo, nodeID uint64) (*data.LockInfo, error) { lockNode, err := c.getTreeNode(ctx, bktInfo, nodeID, isLockKV) if err != nil { return nil, err @@ -993,7 +997,7 @@ func (c *TreeClient) GetLock(ctx context.Context, bktInfo *data.BucketInfo, node return getLock(lockNode) } -func getLock(lockNode *TreeNode) (*data.LockInfo, error) { +func getLock(lockNode *treeNode) (*data.LockInfo, error) { if lockNode == nil { return &data.LockInfo{}, nil } @@ -1020,7 +1024,7 @@ func getLock(lockNode *TreeNode) (*data.LockInfo, error) { return lockInfo, nil } -func (c *TreeClient) GetObjectTaggingAndLock(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion) (map[string]string, *data.LockInfo, error) { +func (c *Tree) GetObjectTaggingAndLock(ctx context.Context, bktInfo *data.BucketInfo, objVersion *data.NodeVersion) (map[string]string, *data.LockInfo, error) { nodes, err := c.getTreeNodes(ctx, bktInfo, objVersion.ID, isTagKV, isLockKV) if err != nil { return nil, nil, err @@ -1034,19 +1038,11 @@ func (c *TreeClient) GetObjectTaggingAndLock(ctx context.Context, bktInfo *data. return getObjectTagging(nodes[isTagKV]), lockInfo, nil } -func (c *TreeClient) Close() error { - if c.conn != nil { - return c.conn.Close() - } - - return nil -} - -func (c *TreeClient) addVersion(ctx context.Context, bktInfo *data.BucketInfo, treeID string, version *data.NodeVersion) (uint64, error) { +func (c *Tree) addVersion(ctx context.Context, bktInfo *data.BucketInfo, treeID string, version *data.NodeVersion) (uint64, error) { path := pathFromName(version.FilePath) meta := map[string]string{ - oidKV: version.OID.EncodeToString(), - fileNameKV: path[len(path)-1], + oidKV: version.OID.EncodeToString(), + FileNameKey: path[len(path)-1], } if version.Size > 0 { @@ -1067,7 +1063,7 @@ func (c *TreeClient) addVersion(ctx context.Context, bktInfo *data.BucketInfo, t node, err := c.getUnversioned(ctx, bktInfo, treeID, version.FilePath) if err == nil { - if err = c.moveNode(ctx, bktInfo, treeID, node.ID, node.ParenID, meta); err != nil { + if err = c.service.MoveNode(ctx, bktInfo, treeID, node.ID, node.ParenID, meta); err != nil { return 0, err } @@ -1079,25 +1075,25 @@ func (c *TreeClient) addVersion(ctx context.Context, bktInfo *data.BucketInfo, t } } - return c.addNodeByPath(ctx, bktInfo, treeID, path[:len(path)-1], meta) + return c.service.AddNodeByPath(ctx, bktInfo, treeID, path[:len(path)-1], meta) } -func (c *TreeClient) clearOutdatedVersionInfo(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID uint64) error { +func (c *Tree) clearOutdatedVersionInfo(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID uint64) error { taggingNode, err := c.getTreeNode(ctx, bktInfo, nodeID, isTagKV) if err != nil { return err } if taggingNode != nil { - return c.removeNode(ctx, bktInfo, treeID, taggingNode.ID) + return c.service.RemoveNode(ctx, bktInfo, treeID, taggingNode.ID) } return nil } -func (c *TreeClient) getVersions(ctx context.Context, bktInfo *data.BucketInfo, treeID, filepath string, onlyUnversioned bool) ([]*data.NodeVersion, error) { +func (c *Tree) getVersions(ctx context.Context, bktInfo *data.BucketInfo, treeID, filepath string, onlyUnversioned bool) ([]*data.NodeVersion, error) { keysToReturn := []string{oidKV, isUnversionedKV, isDeleteMarkerKV, etagKV, sizeKV} path := pathFromName(filepath) - p := &getNodesParams{ + p := &GetNodesParams{ BktInfo: bktInfo, TreeID: treeID, Path: path, @@ -1105,7 +1101,7 @@ func (c *TreeClient) getVersions(ctx context.Context, bktInfo *data.BucketInfo, LatestOnly: false, AllAttrs: false, } - nodes, err := c.getNodes(ctx, p) + nodes, err := c.service.GetNodes(ctx, p) if err != nil { if errors.Is(err, layer.ErrNodeNotFound) { return nil, nil @@ -1130,49 +1126,10 @@ func (c *TreeClient) getVersions(ctx context.Context, bktInfo *data.BucketInfo, return result, nil } -func (c *TreeClient) getSubTree(ctx context.Context, bktInfo *data.BucketInfo, treeID string, rootID uint64, depth uint32) ([]*tree.GetSubTreeResponse_Body, error) { - request := &tree.GetSubTreeRequest{ - Body: &tree.GetSubTreeRequest_Body{ - ContainerId: bktInfo.CID[:], - TreeId: treeID, - RootId: rootID, - Depth: depth, - BearerToken: getBearer(ctx, bktInfo), - }, - } - - if err := c.signRequest(request.Body, func(key, sign []byte) { - request.Signature = &tree.Signature{ - Key: key, - Sign: sign, - } - }); err != nil { - return nil, err - } - - cli, err := c.service.GetSubTree(ctx, request) - if err != nil { - return nil, handleError("failed to get sub tree client", err) - } - - var subtree []*tree.GetSubTreeResponse_Body - for { - resp, err := cli.Recv() - if err == io.EOF { - break - } else if err != nil { - return nil, handleError("failed to get sub tree", err) - } - subtree = append(subtree, resp.Body) - } - - return subtree, nil -} - func metaFromSettings(settings *data.BucketSettings) map[string]string { results := make(map[string]string, 3) - results[fileNameKV] = settingsFileName + results[FileNameKey] = settingsFileName results[versioningKV] = settings.Versioning results[lockConfigurationKV] = encodeLockConfiguration(settings.LockConfiguration) @@ -1180,7 +1137,7 @@ func metaFromSettings(settings *data.BucketSettings) map[string]string { } func metaFromMultipart(info *data.MultipartInfo, fileName string) map[string]string { - info.Meta[fileNameKV] = fileName + info.Meta[FileNameKey] = fileName info.Meta[uploadIDKV] = info.UploadID info.Meta[ownerKV] = info.Owner.EncodeToString() info.Meta[createdKV] = strconv.FormatInt(info.Created.UTC().UnixMilli(), 10) @@ -1188,16 +1145,16 @@ func metaFromMultipart(info *data.MultipartInfo, fileName string) map[string]str return info.Meta } -func (c *TreeClient) getSystemNode(ctx context.Context, bktInfo *data.BucketInfo, path, meta []string) (*TreeNode, error) { +func (c *Tree) getSystemNode(ctx context.Context, bktInfo *data.BucketInfo, path, meta []string) (*treeNode, error) { return c.getNode(ctx, bktInfo, systemTree, path, meta, false) } -func (c *TreeClient) getSystemNodeWithAllAttributes(ctx context.Context, bktInfo *data.BucketInfo, path []string) (*TreeNode, error) { +func (c *Tree) getSystemNodeWithAllAttributes(ctx context.Context, bktInfo *data.BucketInfo, path []string) (*treeNode, error) { return c.getNode(ctx, bktInfo, systemTree, path, []string{}, true) } -func (c *TreeClient) getNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, path, meta []string, allAttrs bool) (*TreeNode, error) { - p := &getNodesParams{ +func (c *Tree) getNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, path, meta []string, allAttrs bool) (*treeNode, error) { + p := &GetNodesParams{ BktInfo: bktInfo, TreeID: treeID, Path: path, @@ -1205,7 +1162,7 @@ func (c *TreeClient) getNode(ctx context.Context, bktInfo *data.BucketInfo, tree LatestOnly: false, AllAttrs: allAttrs, } - nodes, err := c.getNodes(ctx, p) + nodes, err := c.service.GetNodes(ctx, p) if err != nil { return nil, err } @@ -1219,184 +1176,6 @@ func (c *TreeClient) getNode(ctx context.Context, bktInfo *data.BucketInfo, tree return newTreeNode(nodes[0]) } -func (c *TreeClient) getNodes(ctx context.Context, p *getNodesParams) ([]*tree.GetNodeByPathResponse_Info, error) { - request := &tree.GetNodeByPathRequest{ - Body: &tree.GetNodeByPathRequest_Body{ - ContainerId: p.BktInfo.CID[:], - TreeId: p.TreeID, - Path: p.Path, - Attributes: p.Meta, - PathAttribute: fileNameKV, - LatestOnly: p.LatestOnly, - AllAttributes: p.AllAttrs, - BearerToken: getBearer(ctx, p.BktInfo), - }, - } - - if err := c.signRequest(request.Body, func(key, sign []byte) { - request.Signature = &tree.Signature{ - Key: key, - Sign: sign, - } - }); err != nil { - return nil, err - } - - resp, err := c.service.GetNodeByPath(ctx, request) - if err != nil { - return nil, handleError("failed to get node by path", err) - } - - return resp.GetBody().GetNodes(), nil -} - -func handleError(msg string, err error) error { - if strings.Contains(err.Error(), "not found") { - return fmt.Errorf("%w: %s", layer.ErrNodeNotFound, err.Error()) - } else if strings.Contains(err.Error(), "is denied by") { - return fmt.Errorf("%w: %s", layer.ErrNodeAccessDenied, err.Error()) - } - return fmt.Errorf("%s: %w", msg, err) -} - -func getBearer(ctx context.Context, bktInfo *data.BucketInfo) []byte { - if bd, ok := ctx.Value(api.BoxData).(*accessbox.Box); ok && bd != nil && bd.Gate != nil { - if bd.Gate.BearerToken != nil { - if bktInfo.Owner.Equals(bearer.ResolveIssuer(*bd.Gate.BearerToken)) { - return bd.Gate.BearerToken.Marshal() - } - } - } - return nil -} - -func (c *TreeClient) addNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, parent uint64, meta map[string]string) (uint64, error) { - request := &tree.AddRequest{ - Body: &tree.AddRequest_Body{ - ContainerId: bktInfo.CID[:], - TreeId: treeID, - ParentId: parent, - Meta: metaToKV(meta), - BearerToken: getBearer(ctx, bktInfo), - }, - } - if err := c.signRequest(request.Body, func(key, sign []byte) { - request.Signature = &tree.Signature{ - Key: key, - Sign: sign, - } - }); err != nil { - return 0, err - } - - resp, err := c.service.Add(ctx, request) - if err != nil { - return 0, handleError("failed to add node", err) - } - - return resp.GetBody().GetNodeId(), nil -} - -func (c *TreeClient) addNodeByPath(ctx context.Context, bktInfo *data.BucketInfo, treeID string, path []string, meta map[string]string) (uint64, error) { - request := &tree.AddByPathRequest{ - Body: &tree.AddByPathRequest_Body{ - ContainerId: bktInfo.CID[:], - TreeId: treeID, - Path: path, - Meta: metaToKV(meta), - PathAttribute: fileNameKV, - BearerToken: getBearer(ctx, bktInfo), - }, - } - - if err := c.signRequest(request.Body, func(key, sign []byte) { - request.Signature = &tree.Signature{ - Key: key, - Sign: sign, - } - }); err != nil { - return 0, err - } - - resp, err := c.service.AddByPath(ctx, request) - if err != nil { - return 0, handleError("failed to add node by path", err) - } - - body := resp.GetBody() - if body == nil { - return 0, errors.New("nil body in tree service response") - } else if len(body.Nodes) == 0 { - return 0, errors.New("empty list of added nodes in tree service response") - } - - // The first node is the leaf that we add, according to tree service docs. - return body.Nodes[0], nil -} - -func (c *TreeClient) moveNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID, parentID uint64, meta map[string]string) error { - request := &tree.MoveRequest{ - Body: &tree.MoveRequest_Body{ - ContainerId: bktInfo.CID[:], - TreeId: treeID, - NodeId: nodeID, - ParentId: parentID, - Meta: metaToKV(meta), - BearerToken: getBearer(ctx, bktInfo), - }, - } - - if err := c.signRequest(request.Body, func(key, sign []byte) { - request.Signature = &tree.Signature{ - Key: key, - Sign: sign, - } - }); err != nil { - return err - } - - if _, err := c.service.Move(ctx, request); err != nil { - return handleError("failed to move node", err) - } - - return nil -} - -func (c *TreeClient) removeNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID uint64) error { - request := &tree.RemoveRequest{ - Body: &tree.RemoveRequest_Body{ - ContainerId: bktInfo.CID[:], - TreeId: treeID, - NodeId: nodeID, - BearerToken: getBearer(ctx, bktInfo), - }, - } - if err := c.signRequest(request.Body, func(key, sign []byte) { - request.Signature = &tree.Signature{ - Key: key, - Sign: sign, - } - }); err != nil { - return err - } - - if _, err := c.service.Remove(ctx, request); err != nil { - return handleError("failed to remove node", err) - } - - return nil -} - -func metaToKV(meta map[string]string) []*tree.KeyValue { - result := make([]*tree.KeyValue, 0, len(meta)) - - for key, value := range meta { - result = append(result, &tree.KeyValue{Key: key, Value: []byte(value)}) - } - - return result -} - func parseLockConfiguration(value string) (*data.ObjectLockConfiguration, error) { result := &data.ObjectLockConfiguration{} if len(value) == 0 { diff --git a/pkg/service/tree/tree_client_grpc.go b/pkg/service/tree/tree_client_grpc.go new file mode 100644 index 000000000..e447627a2 --- /dev/null +++ b/pkg/service/tree/tree_client_grpc.go @@ -0,0 +1,311 @@ +package tree + +import ( + "context" + "errors" + "fmt" + "io" + "strings" + + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api" + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data" + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox" + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/frostfs/services/tree" + "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer" + "github.com/nspcc-dev/neo-go/pkg/crypto/keys" + "google.golang.org/grpc" +) + +type GetNodeByPathResponseInfoWrapper struct { + response *tree.GetNodeByPathResponse_Info +} + +func (n GetNodeByPathResponseInfoWrapper) GetNodeID() uint64 { + return n.response.GetNodeId() +} + +func (n GetNodeByPathResponseInfoWrapper) GetParentID() uint64 { + return n.response.GetParentId() +} + +func (n GetNodeByPathResponseInfoWrapper) GetTimestamp() uint64 { + return n.response.GetTimestamp() +} + +func (n GetNodeByPathResponseInfoWrapper) GetMeta() []Meta { + res := make([]Meta, len(n.response.Meta)) + for i, value := range n.response.Meta { + res[i] = value + } + return res +} + +type GetSubTreeResponseBodyWrapper struct { + response *tree.GetSubTreeResponse_Body +} + +func (n GetSubTreeResponseBodyWrapper) GetNodeID() uint64 { + return n.response.GetNodeId() +} + +func (n GetSubTreeResponseBodyWrapper) GetParentID() uint64 { + return n.response.GetParentId() +} + +func (n GetSubTreeResponseBodyWrapper) GetTimestamp() uint64 { + return n.response.GetTimestamp() +} + +func (n GetSubTreeResponseBodyWrapper) GetMeta() []Meta { + res := make([]Meta, len(n.response.Meta)) + for i, value := range n.response.Meta { + res[i] = value + } + return res +} + +type ServiceClientGRPC struct { + key *keys.PrivateKey + conn *grpc.ClientConn + service tree.TreeServiceClient +} + +func NewTreeServiceClientGRPC(ctx context.Context, addr string, key *keys.PrivateKey, grpcOpts ...grpc.DialOption) (*ServiceClientGRPC, error) { + conn, err := grpc.Dial(addr, grpcOpts...) + if err != nil { + return nil, fmt.Errorf("did not connect: %v", err) + } + + c := tree.NewTreeServiceClient(conn) + if _, err = c.Healthcheck(ctx, &tree.HealthcheckRequest{}); err != nil { + return nil, fmt.Errorf("healthcheck: %w", err) + } + + return &ServiceClientGRPC{ + key: key, + conn: conn, + service: c, + }, nil +} + +func (c *ServiceClientGRPC) GetNodes(ctx context.Context, p *GetNodesParams) ([]NodeResponse, error) { + request := &tree.GetNodeByPathRequest{ + Body: &tree.GetNodeByPathRequest_Body{ + ContainerId: p.BktInfo.CID[:], + TreeId: p.TreeID, + Path: p.Path, + Attributes: p.Meta, + PathAttribute: FileNameKey, + LatestOnly: p.LatestOnly, + AllAttributes: p.AllAttrs, + BearerToken: getBearer(ctx, p.BktInfo), + }, + } + + if err := c.signRequest(request.Body, func(key, sign []byte) { + request.Signature = &tree.Signature{ + Key: key, + Sign: sign, + } + }); err != nil { + return nil, err + } + + resp, err := c.service.GetNodeByPath(ctx, request) + if err != nil { + return nil, handleError("failed to get node by path", err) + } + + res := make([]NodeResponse, len(resp.GetBody().GetNodes())) + for i, info := range resp.GetBody().GetNodes() { + res[i] = GetNodeByPathResponseInfoWrapper{info} + } + + return res, nil +} + +func (c *ServiceClientGRPC) GetSubTree(ctx context.Context, bktInfo *data.BucketInfo, treeID string, rootID uint64, depth uint32) ([]NodeResponse, error) { + request := &tree.GetSubTreeRequest{ + Body: &tree.GetSubTreeRequest_Body{ + ContainerId: bktInfo.CID[:], + TreeId: treeID, + RootId: rootID, + Depth: depth, + BearerToken: getBearer(ctx, bktInfo), + }, + } + + if err := c.signRequest(request.Body, func(key, sign []byte) { + request.Signature = &tree.Signature{ + Key: key, + Sign: sign, + } + }); err != nil { + return nil, err + } + + cli, err := c.service.GetSubTree(ctx, request) + if err != nil { + return nil, handleError("failed to get sub tree client", err) + } + + var subtree []NodeResponse + for { + resp, err := cli.Recv() + if err == io.EOF { + break + } else if err != nil { + return nil, handleError("failed to get sub tree", err) + } + subtree = append(subtree, GetSubTreeResponseBodyWrapper{resp.Body}) + } + + return subtree, nil +} + +func (c *ServiceClientGRPC) AddNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, parent uint64, meta map[string]string) (uint64, error) { + request := &tree.AddRequest{ + Body: &tree.AddRequest_Body{ + ContainerId: bktInfo.CID[:], + TreeId: treeID, + ParentId: parent, + Meta: metaToKV(meta), + BearerToken: getBearer(ctx, bktInfo), + }, + } + if err := c.signRequest(request.Body, func(key, sign []byte) { + request.Signature = &tree.Signature{ + Key: key, + Sign: sign, + } + }); err != nil { + return 0, err + } + + resp, err := c.service.Add(ctx, request) + if err != nil { + return 0, handleError("failed to add node", err) + } + + return resp.GetBody().GetNodeId(), nil +} + +func (c *ServiceClientGRPC) AddNodeByPath(ctx context.Context, bktInfo *data.BucketInfo, treeID string, path []string, meta map[string]string) (uint64, error) { + request := &tree.AddByPathRequest{ + Body: &tree.AddByPathRequest_Body{ + ContainerId: bktInfo.CID[:], + TreeId: treeID, + Path: path, + Meta: metaToKV(meta), + PathAttribute: FileNameKey, + BearerToken: getBearer(ctx, bktInfo), + }, + } + + if err := c.signRequest(request.Body, func(key, sign []byte) { + request.Signature = &tree.Signature{ + Key: key, + Sign: sign, + } + }); err != nil { + return 0, err + } + + resp, err := c.service.AddByPath(ctx, request) + if err != nil { + return 0, handleError("failed to add node by path", err) + } + + body := resp.GetBody() + if body == nil { + return 0, errors.New("nil body in tree service response") + } else if len(body.Nodes) == 0 { + return 0, errors.New("empty list of added nodes in tree service response") + } + + // The first node is the leaf that we add, according to tree service docs. + return body.Nodes[0], nil +} + +func (c *ServiceClientGRPC) MoveNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID, parentID uint64, meta map[string]string) error { + request := &tree.MoveRequest{ + Body: &tree.MoveRequest_Body{ + ContainerId: bktInfo.CID[:], + TreeId: treeID, + NodeId: nodeID, + ParentId: parentID, + Meta: metaToKV(meta), + BearerToken: getBearer(ctx, bktInfo), + }, + } + + if err := c.signRequest(request.Body, func(key, sign []byte) { + request.Signature = &tree.Signature{ + Key: key, + Sign: sign, + } + }); err != nil { + return err + } + + if _, err := c.service.Move(ctx, request); err != nil { + return handleError("failed to move node", err) + } + + return nil +} + +func (c *ServiceClientGRPC) RemoveNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID uint64) error { + request := &tree.RemoveRequest{ + Body: &tree.RemoveRequest_Body{ + ContainerId: bktInfo.CID[:], + TreeId: treeID, + NodeId: nodeID, + BearerToken: getBearer(ctx, bktInfo), + }, + } + if err := c.signRequest(request.Body, func(key, sign []byte) { + request.Signature = &tree.Signature{ + Key: key, + Sign: sign, + } + }); err != nil { + return err + } + + if _, err := c.service.Remove(ctx, request); err != nil { + return handleError("failed to remove node", err) + } + + return nil +} + +func metaToKV(meta map[string]string) []*tree.KeyValue { + result := make([]*tree.KeyValue, 0, len(meta)) + + for key, value := range meta { + result = append(result, &tree.KeyValue{Key: key, Value: []byte(value)}) + } + + return result +} + +func getBearer(ctx context.Context, bktInfo *data.BucketInfo) []byte { + if bd, ok := ctx.Value(api.BoxData).(*accessbox.Box); ok && bd != nil && bd.Gate != nil { + if bd.Gate.BearerToken != nil { + if bktInfo.Owner.Equals(bearer.ResolveIssuer(*bd.Gate.BearerToken)) { + return bd.Gate.BearerToken.Marshal() + } + } + } + return nil +} + +func handleError(msg string, err error) error { + if strings.Contains(err.Error(), "not found") { + return fmt.Errorf("%w: %s", ErrNodeNotFound, err.Error()) + } else if strings.Contains(err.Error(), "is denied by") { + return fmt.Errorf("%w: %s", ErrNodeAccessDenied, err.Error()) + } + return fmt.Errorf("%s: %w", msg, err) +} diff --git a/internal/frostfs/tree_signature.go b/pkg/service/tree/tree_client_grpc_signature.go similarity index 77% rename from internal/frostfs/tree_signature.go rename to pkg/service/tree/tree_client_grpc_signature.go index 410a59202..7eb656430 100644 --- a/internal/frostfs/tree_signature.go +++ b/pkg/service/tree/tree_client_grpc_signature.go @@ -1,12 +1,12 @@ /*REMOVE THIS AFTER SIGNATURE WILL BE AVAILABLE IN TREE CLIENT FROM FROSTFS NODE*/ -package frostfs +package tree import ( crypto "git.frostfs.info/TrueCloudLab/frostfs-crypto" "google.golang.org/protobuf/proto" ) -func (c *TreeClient) signData(buf []byte, f func(key, sign []byte)) error { +func (c *ServiceClientGRPC) signData(buf []byte, f func(key, sign []byte)) error { // crypto package should not be used outside of API libraries (see neofs-node#491). // For now tree service does not include into SDK Client nor SDK Pool, so there is no choice. // When SDK library adopts Tree service client, this should be dropped. @@ -19,7 +19,7 @@ func (c *TreeClient) signData(buf []byte, f func(key, sign []byte)) error { return nil } -func (c *TreeClient) signRequest(requestBody proto.Message, f func(key, sign []byte)) error { +func (c *ServiceClientGRPC) signRequest(requestBody proto.Message, f func(key, sign []byte)) error { buf, err := proto.Marshal(requestBody) if err != nil { return err diff --git a/pkg/service/tree/tree_client_grpc_test.go b/pkg/service/tree/tree_client_grpc_test.go new file mode 100644 index 000000000..b9f0f8c32 --- /dev/null +++ b/pkg/service/tree/tree_client_grpc_test.go @@ -0,0 +1,35 @@ +package tree + +import ( + "errors" + "testing" + + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer" + "github.com/stretchr/testify/require" +) + +func TestHandleError(t *testing.T) { + defaultError := errors.New("default error") + for _, tc := range []struct { + err error + expectedError error + }{ + { + err: defaultError, + expectedError: defaultError, + }, + { + err: errors.New("something not found"), + expectedError: layer.ErrNodeNotFound, + }, + { + err: errors.New("something is denied by some acl rule"), + expectedError: layer.ErrNodeAccessDenied, + }, + } { + t.Run("", func(t *testing.T) { + err := handleError("err message", tc.err) + require.True(t, errors.Is(err, tc.expectedError)) + }) + } +} diff --git a/pkg/service/tree/tree_client_in_memory.go b/pkg/service/tree/tree_client_in_memory.go new file mode 100644 index 000000000..740c48239 --- /dev/null +++ b/pkg/service/tree/tree_client_in_memory.go @@ -0,0 +1,393 @@ +package tree + +import ( + "context" + "fmt" + "sort" + "time" + + "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data" +) + +type nodeMeta struct { + key string + value []byte +} + +func (m nodeMeta) GetKey() string { + return m.key +} + +func (m nodeMeta) GetValue() []byte { + return m.value +} + +type nodeResponse struct { + meta []nodeMeta + nodeID uint64 + parentID uint64 + timestamp uint64 +} + +func (n nodeResponse) GetNodeID() uint64 { + return n.nodeID +} + +func (n nodeResponse) GetParentID() uint64 { + return n.parentID +} + +func (n nodeResponse) GetTimestamp() uint64 { + return n.timestamp +} + +func (n nodeResponse) GetMeta() []Meta { + res := make([]Meta, len(n.meta)) + for i, value := range n.meta { + res[i] = value + } + return res +} + +func (n nodeResponse) getValue(key string) string { + for _, value := range n.meta { + if value.key == key { + return string(value.value) + } + } + return "" +} + +type ServiceClientMemory struct { + containers map[string]containerInfo +} + +type containerInfo struct { + bkt *data.BucketInfo + trees map[string]memoryTree +} + +type memoryTree struct { + idCounter uint64 + treeData *treeNodeMemory +} + +type treeNodeMemory struct { + data nodeResponse + parent *treeNodeMemory + children []*treeNodeMemory +} + +func (t *treeNodeMemory) getNode(nodeID uint64) *treeNodeMemory { + if t.data.nodeID == nodeID { + return t + } + + for _, child := range t.children { + if node := child.getNode(nodeID); node != nil { + return node + } + } + + return nil +} + +func (t *memoryTree) getNodesByPath(path []string) []nodeResponse { + if len(path) == 0 { + return nil + } + + var res []nodeResponse + for _, child := range t.treeData.children { + res = child.listNodesByPath(res, path) + } + + return res +} + +func (t *treeNodeMemory) listNodesByPath(res []nodeResponse, path []string) []nodeResponse { + if len(path) == 0 || t.data.getValue(FileNameKey) != path[0] { + return res + } + + if len(path) == 1 { + return append(res, t.data) + } + + for _, ch := range t.children { + res = ch.listNodesByPath(res, path[1:]) + } + + return res +} + +func (t *memoryTree) createPathIfNotExist(parent *treeNodeMemory, path []string) *treeNodeMemory { + if len(path) == 0 { + return parent + } + + var node *treeNodeMemory + for _, child := range parent.children { + if len(child.data.meta) == 1 && child.data.getValue(FileNameKey) == path[0] { + node = child + break + } + } + + if node == nil { + node = &treeNodeMemory{ + data: nodeResponse{ + meta: []nodeMeta{{key: FileNameKey, value: []byte(path[0])}}, + nodeID: t.idCounter, + parentID: parent.data.nodeID, + timestamp: uint64(time.Now().UnixMicro()), + }, + parent: parent, + } + t.idCounter++ + parent.children = append(parent.children, node) + } + + return t.createPathIfNotExist(node, path[1:]) +} + +func (t *treeNodeMemory) removeChild(nodeID uint64) { + ind := -1 + for i, ch := range t.children { + if ch.data.nodeID == nodeID { + ind = i + break + } + } + if ind != -1 { + t.children = append(t.children[:ind], t.children[ind+1:]...) + } +} + +func (t *treeNodeMemory) listNodes(res []NodeResponse, depth uint32) []NodeResponse { + res = append(res, t.data) + + if depth == 0 { + return res + } + + for _, ch := range t.children { + res = ch.listNodes(res, depth-1) + } + return res +} + +func NewTreeServiceClientMemory() (*ServiceClientMemory, error) { + return &ServiceClientMemory{ + containers: make(map[string]containerInfo), + }, nil +} + +func (c *ServiceClientMemory) GetNodes(ctx context.Context, p *GetNodesParams) ([]NodeResponse, error) { + cnr, ok := c.containers[p.BktInfo.CID.EncodeToString()] + if !ok { + return nil, nil + } + + tr, ok := cnr.trees[p.TreeID] + if !ok { + return nil, nil + } + + res := tr.getNodesByPath(p.Path) + sort.Slice(res, func(i, j int) bool { + return res[i].timestamp < res[j].timestamp + }) + + if p.LatestOnly && len(res) != 0 { + res = res[len(res)-1:] + } + + res2 := make([]NodeResponse, len(res)) + for i, n := range res { + res2[i] = n + } + + return res2, nil +} + +func (c *ServiceClientMemory) GetSubTree(ctx context.Context, bktInfo *data.BucketInfo, treeID string, rootID uint64, depth uint32) ([]NodeResponse, error) { + cnr, ok := c.containers[bktInfo.CID.EncodeToString()] + if !ok { + return nil, nil + } + + tr, ok := cnr.trees[treeID] + if !ok { + return nil, ErrNodeNotFound + } + + node := tr.treeData.getNode(rootID) + if node == nil { + return nil, ErrNodeNotFound + } + + return node.listNodes(nil, depth-1), nil +} + +func newContainerInfo(bktInfo *data.BucketInfo, treeID string) containerInfo { + return containerInfo{ + bkt: bktInfo, + trees: map[string]memoryTree{ + treeID: { + idCounter: 1, + treeData: &treeNodeMemory{ + data: nodeResponse{ + timestamp: uint64(time.Now().UnixMicro()), + }, + }, + }, + }, + } +} + +func newMemoryTree() memoryTree { + return memoryTree{ + idCounter: 1, + treeData: &treeNodeMemory{ + data: nodeResponse{ + timestamp: uint64(time.Now().UnixMicro()), + }, + }, + } +} + +func (c *ServiceClientMemory) AddNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, parent uint64, meta map[string]string) (uint64, error) { + cnr, ok := c.containers[bktInfo.CID.EncodeToString()] + if !ok { + cnr = newContainerInfo(bktInfo, treeID) + c.containers[bktInfo.CID.EncodeToString()] = cnr + } + + tr, ok := cnr.trees[treeID] + if !ok { + tr = newMemoryTree() + cnr.trees[treeID] = tr + } + + parentNode := tr.treeData.getNode(parent) + if parentNode == nil { + return 0, ErrNodeNotFound + } + + newID := tr.idCounter + tr.idCounter++ + + tn := &treeNodeMemory{ + data: nodeResponse{ + meta: metaToNodeMeta(meta), + nodeID: newID, + parentID: parent, + timestamp: uint64(time.Now().UnixMicro()), + }, + parent: parentNode, + } + + parentNode.children = append(parentNode.children, tn) + cnr.trees[treeID] = tr + + return newID, nil +} + +func (c *ServiceClientMemory) AddNodeByPath(ctx context.Context, bktInfo *data.BucketInfo, treeID string, path []string, meta map[string]string) (uint64, error) { + cnr, ok := c.containers[bktInfo.CID.EncodeToString()] + if !ok { + cnr = newContainerInfo(bktInfo, treeID) + c.containers[bktInfo.CID.EncodeToString()] = cnr + } + + tr, ok := cnr.trees[treeID] + if !ok { + tr = newMemoryTree() + cnr.trees[treeID] = tr + } + + parentNode := tr.createPathIfNotExist(tr.treeData, path) + if parentNode == nil { + return 0, fmt.Errorf("create path '%s'", path) + } + + newID := tr.idCounter + tr.idCounter++ + + tn := &treeNodeMemory{ + data: nodeResponse{ + meta: metaToNodeMeta(meta), + nodeID: newID, + parentID: parentNode.data.nodeID, + timestamp: uint64(time.Now().UnixMicro()), + }, + parent: parentNode, + } + + parentNode.children = append(parentNode.children, tn) + cnr.trees[treeID] = tr + + return newID, nil +} + +func (c *ServiceClientMemory) MoveNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID, parentID uint64, meta map[string]string) error { + cnr, ok := c.containers[bktInfo.CID.EncodeToString()] + if !ok { + return ErrNodeNotFound + } + + tr, ok := cnr.trees[treeID] + if !ok { + return ErrNodeNotFound + } + + node := tr.treeData.getNode(nodeID) + if node == nil { + return ErrNodeNotFound + } + + newParent := tr.treeData.getNode(parentID) + if newParent == nil { + return ErrNodeNotFound + } + + node.data.meta = metaToNodeMeta(meta) + node.data.parentID = parentID + + newParent.children = append(newParent.children, node) + node.parent.removeChild(nodeID) + + return nil +} + +func (c *ServiceClientMemory) RemoveNode(ctx context.Context, bktInfo *data.BucketInfo, treeID string, nodeID uint64) error { + cnr, ok := c.containers[bktInfo.CID.EncodeToString()] + if !ok { + return ErrNodeNotFound + } + + tr, ok := cnr.trees[treeID] + if !ok { + return ErrNodeNotFound + } + + node := tr.treeData.getNode(nodeID) + if node == nil { + return ErrNodeNotFound + } + + node.parent.removeChild(nodeID) + + return nil +} + +func metaToNodeMeta(m map[string]string) []nodeMeta { + result := make([]nodeMeta, 0, len(m)) + + for key, value := range m { + result = append(result, nodeMeta{key: key, value: []byte(value)}) + } + + return result +} diff --git a/internal/frostfs/tree_test.go b/pkg/service/tree/tree_test.go similarity index 51% rename from internal/frostfs/tree_test.go rename to pkg/service/tree/tree_test.go index 58aa9bf2e..271027f9b 100644 --- a/internal/frostfs/tree_test.go +++ b/pkg/service/tree/tree_test.go @@ -1,11 +1,12 @@ -package frostfs +package tree import ( - "errors" + "context" "testing" "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data" - "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer" + cidtest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id/test" + oidtest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id/test" "github.com/stretchr/testify/require" ) @@ -96,28 +97,73 @@ func TestLockConfigurationEncoding(t *testing.T) { } } -func TestHandleError(t *testing.T) { - defaultError := errors.New("default error") - for _, tc := range []struct { - err error - expectedError error - }{ - { - err: defaultError, - expectedError: defaultError, - }, - { - err: errors.New("something not found"), - expectedError: layer.ErrNodeNotFound, - }, - { - err: errors.New("something is denied by some acl rule"), - expectedError: layer.ErrNodeAccessDenied, - }, - } { - t.Run("", func(t *testing.T) { - err := handleError("err message", tc.err) - require.True(t, errors.Is(err, tc.expectedError)) - }) +func TestTreeServiceSettings(t *testing.T) { + ctx := context.Background() + + memCli, err := NewTreeServiceClientMemory() + require.NoError(t, err) + treeService := NewTree(memCli) + + bktInfo := &data.BucketInfo{ + CID: cidtest.ID(), } + + settings := &data.BucketSettings{ + Versioning: "Versioning", + LockConfiguration: &data.ObjectLockConfiguration{ + ObjectLockEnabled: "Enabled", + Rule: &data.ObjectLockRule{ + DefaultRetention: &data.DefaultRetention{ + Days: 1, + Mode: "mode", + }, + }, + }, + } + + err = treeService.PutSettingsNode(ctx, bktInfo, settings) + require.NoError(t, err) + + storedSettings, err := treeService.GetSettingsNode(ctx, bktInfo) + require.NoError(t, err) + require.Equal(t, settings, storedSettings) +} + +func TestTreeServiceAddVersion(t *testing.T) { + ctx := context.Background() + + memCli, err := NewTreeServiceClientMemory() + require.NoError(t, err) + treeService := NewTree(memCli) + + bktInfo := &data.BucketInfo{ + CID: cidtest.ID(), + } + + version := &data.NodeVersion{ + BaseNodeVersion: data.BaseNodeVersion{ + OID: oidtest.ID(), + Size: 10, + ETag: "etag", + FilePath: "path/to/version", + }, + IsUnversioned: true, + } + + nodeID, err := treeService.AddVersion(ctx, bktInfo, version) + require.NoError(t, err) + + storedNode, err := treeService.GetUnversioned(ctx, bktInfo, "path/to/version") + require.NoError(t, err) + require.Equal(t, nodeID, storedNode.ID) + require.Equal(t, version.BaseNodeVersion.Size, storedNode.Size) + require.Equal(t, version.BaseNodeVersion.ETag, storedNode.ETag) + require.Equal(t, version.BaseNodeVersion.ETag, storedNode.ETag) + require.Equal(t, version.BaseNodeVersion.FilePath, storedNode.FilePath) + require.Equal(t, version.BaseNodeVersion.OID, storedNode.OID) + + versions, err := treeService.GetVersions(ctx, bktInfo, "path/to/version") + require.NoError(t, err) + require.Len(t, versions, 1) + require.Equal(t, storedNode, versions[0]) } -- 2.45.2 From 6c68e217775c0b5c15a07f7c3ed61bfd48210868 Mon Sep 17 00:00:00 2001 From: Denis Kirillov Date: Thu, 30 Mar 2023 15:55:53 +0300 Subject: [PATCH 3/4] [#69] Update SDK to fix handle request canceling Signed-off-by: Denis Kirillov --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index c5129e5a8..60cd8d7d2 100644 --- a/go.mod +++ b/go.mod @@ -5,7 +5,7 @@ go 1.18 require ( git.frostfs.info/TrueCloudLab/frostfs-api-go/v2 v2.11.2-0.20230315095236-9dc375346703 git.frostfs.info/TrueCloudLab/frostfs-crypto v0.6.0 - git.frostfs.info/TrueCloudLab/frostfs-sdk-go v0.0.0-20230316081442-bec77f280a85 + git.frostfs.info/TrueCloudLab/frostfs-sdk-go v0.0.0-20230329125804-552219b8e130 github.com/aws/aws-sdk-go v1.44.6 github.com/bluele/gcache v0.0.2 github.com/google/uuid v1.3.0 diff --git a/go.sum b/go.sum index b9f693d01..47a265368 100644 --- a/go.sum +++ b/go.sum @@ -42,8 +42,8 @@ git.frostfs.info/TrueCloudLab/frostfs-contract v0.0.0-20230307110621-19a8ef2d02f git.frostfs.info/TrueCloudLab/frostfs-contract v0.0.0-20230307110621-19a8ef2d02fb/go.mod h1:nkR5gaGeez3Zv2SE7aceP0YwxG2FzIB5cGKpQO2vV2o= git.frostfs.info/TrueCloudLab/frostfs-crypto v0.6.0 h1:FxqFDhQYYgpe41qsIHVOcdzSVCB8JNSfPG7Uk4r2oSk= git.frostfs.info/TrueCloudLab/frostfs-crypto v0.6.0/go.mod h1:RUIKZATQLJ+TaYQa60X2fTDwfuhMfm8Ar60bQ5fr+vU= -git.frostfs.info/TrueCloudLab/frostfs-sdk-go v0.0.0-20230316081442-bec77f280a85 h1:TUcJ5A0C1gWi3bAhw4b+V+iVM3E9mbBOdJIWWkAPNxo= -git.frostfs.info/TrueCloudLab/frostfs-sdk-go v0.0.0-20230316081442-bec77f280a85/go.mod h1:23fUGlEv/ImaOi3vck6vZj0v0b4hteOhLLPnVWHSQeA= +git.frostfs.info/TrueCloudLab/frostfs-sdk-go v0.0.0-20230329125804-552219b8e130 h1:V+3dGwEXwEvvSvseMKn8S6ZEMNhxBBYrcyx+F7VaptM= +git.frostfs.info/TrueCloudLab/frostfs-sdk-go v0.0.0-20230329125804-552219b8e130/go.mod h1:23fUGlEv/ImaOi3vck6vZj0v0b4hteOhLLPnVWHSQeA= git.frostfs.info/TrueCloudLab/hrw v1.2.0 h1:KvAES7xIqmQBGd2q8KanNosD9+4BhU/zqD5Kt5KSflk= git.frostfs.info/TrueCloudLab/hrw v1.2.0/go.mod h1:mq2sbvYfO+BB6iFZwYBkgC0yc6mJNx+qZi4jW918m+Y= git.frostfs.info/TrueCloudLab/rfc6979 v0.4.0 h1:M2KR3iBj7WpY3hP10IevfIB9MURr4O9mwVfJ+SjT3HA= -- 2.45.2 From 01288cfa76ec247958cd03aec20a4d988d5576ba Mon Sep 17 00:00:00 2001 From: Evgenii Stratonikov Date: Thu, 30 Mar 2023 19:06:34 +0300 Subject: [PATCH 4/4] [#2] config: Rename `.yaml` to `.yml` Make them consistent across all our repos. Signed-off-by: Evgenii Stratonikov --- config/{config.yaml => config.yml} | 0 debian/frostfs-s3-gw.install | 2 +- debian/frostfs-s3-gw.postinst | 4 ++-- debian/frostfs-s3-gw.service | 2 +- docs/configuration.md | 12 ++++++------ 5 files changed, 10 insertions(+), 10 deletions(-) rename config/{config.yaml => config.yml} (100%) diff --git a/config/config.yaml b/config/config.yml similarity index 100% rename from config/config.yaml rename to config/config.yml diff --git a/debian/frostfs-s3-gw.install b/debian/frostfs-s3-gw.install index 7e4b6e1da..d87f93518 100644 --- a/debian/frostfs-s3-gw.install +++ b/debian/frostfs-s3-gw.install @@ -1,4 +1,4 @@ -config/config.yaml etc/frostfs/s3 +config/config.yml etc/frostfs/s3 config/rules.json var/lib/frostfs/s3 bin/frostfs-s3-gw usr/bin bin/frostfs-s3-authmate usr/bin diff --git a/debian/frostfs-s3-gw.postinst b/debian/frostfs-s3-gw.postinst index 117b88273..21acee620 100755 --- a/debian/frostfs-s3-gw.postinst +++ b/debian/frostfs-s3-gw.postinst @@ -24,9 +24,9 @@ case "$1" in id -u frostfs-$USERNAME >/dev/null 2>&1 || useradd -s /usr/sbin/nologin -d /var/lib/frostfs/s3 --system -M -U -c "FrostFS S3 gateway" frostfs-$USERNAME if ! dpkg-statoverride --list /etc/frostfs/$USERNAME >/dev/null; then chown -f -R root:frostfs-$USERNAME /etc/frostfs/$USERNAME - chown -f root:frostfs-$USERNAME /etc/frostfs/$USERNAME/config.yaml || true + chown -f root:frostfs-$USERNAME /etc/frostfs/$USERNAME/config.yml || true chmod -f 0750 /etc/frostfs/$USERNAME - chmod -f 0640 /etc/frostfs/$USERNAME/config.yaml || true + chmod -f 0640 /etc/frostfs/$USERNAME/config.yml || true fi USERDIR=$(getent passwd "frostfs-$USERNAME" | cut -d: -f6) if ! dpkg-statoverride --list frostfs-"$USERDIR" >/dev/null; then diff --git a/debian/frostfs-s3-gw.service b/debian/frostfs-s3-gw.service index baad2d10e..027bb0534 100644 --- a/debian/frostfs-s3-gw.service +++ b/debian/frostfs-s3-gw.service @@ -4,7 +4,7 @@ Requires=network.target [Service] Type=simple -ExecStart=/usr/bin/frostfs-s3-gw --config /etc/frostfs/s3/config.yaml +ExecStart=/usr/bin/frostfs-s3-gw --config /etc/frostfs/s3/config.yml User=frostfs-s3 Group=frostfs-s3 WorkingDirectory=/var/lib/frostfs/s3 diff --git a/docs/configuration.md b/docs/configuration.md index 695109cdb..14bd27248 100644 --- a/docs/configuration.md +++ b/docs/configuration.md @@ -101,13 +101,13 @@ Pprof and Prometheus are integrated into the gateway. To enable them, use `--ppr ## YAML file and environment variables -Example of a YAML configuration file: [yaml-example](/config/config.yaml) +Example of a YAML configuration file: [yaml-example](/config/config.yml) Examples of environment variables: [env-example](/config/config.env). A path to a configuration file can be specified with `--config` parameter: ```shell -$ frostfs-s3-gw --config your-config.yaml +$ frostfs-s3-gw --config your-config.yml ``` ### Multiple configs @@ -118,13 +118,13 @@ You can either provide several files with repeating `--config` flag or provide p Also, you can combine these flags: ```shell -$ frostfs-s3-gw --config ./config/config.yaml --config /your/partial/config.yaml --config-dir ./config/dir +$ frostfs-s3-gw --config ./config/config.yml --config /your/partial/config.yml --config-dir ./config/dir ``` **Note:** next file in `--config` flag overwrites values from the previous one. Files from `--config-dir` directory overwrite values from `--config` files. -So the command above run `frostfs-s3-gw` to listen on `0.0.0.0:8080` address (value from `./config/config.yaml`), -applies parameters from `/your/partial/config.yaml`, +So the command above run `frostfs-s3-gw` to listen on `0.0.0.0:8080` address (value from `./config/config.yml`), +applies parameters from `/your/partial/config.yml`, enable pprof (value from `./config/dir/pprof.yaml`) and prometheus (value from `./config/dir/prometheus.yaml`). ### Reload on SIGHUP @@ -141,7 +141,7 @@ $ kill -s SIGHUP Example: ```shell -$ ./bin/frostfs-s3-gw --config config.yaml &> s3.log & +$ ./bin/frostfs-s3-gw --config config.yml &> s3.log & [1] 998346 $ cat s3.log -- 2.45.2