Comments (7)
- Set api to s3v2
- Start wireshark or tcpdump with applicable flags
- Run mc with --debug flag
- Observe, that according to mc, the Authorization header is "AWS REDACTED:REDACTED". This corresponds to aws v2 signature, as it would be expected.
- Meanwhile, according to the packet capture, the Authorization header is "AWS4-HMAC-SHA256 Credential=something, SignedHeaders=host;x-amz-content-sha256;x-amz-date, Signature=something". This corresponds to aws v4 signature, which is not expected.
can you show me the packet capture?
from mc.
Yes. I anonimized some things in there with "W" letters. Also, this is a single GET request, but the headers in question are the same in every request.
s3v2v2.zip
from mc.
can you share mc ls --debug
output for this?
from mc.
and also mc alias list alias/
?
from mc.
Sure. Same anonimization rule applies.
root@WWWW:~# mc ls --debug localbucket/WWWWW
mc: <DEBUG> GET /WWWWW/?location= HTTP/1.1
Host: 10.185.0.144:8080
User-Agent: MinIO (linux; amd64) minio-go/v7.0.70 mc/RELEASE.2024-04-29T09-56-05Z
Accept-Encoding: zstd,gzip
Authorization: AWS **REDACTED**:**REDACTED**
X-Amz-Content-Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
X-Amz-Date: 20240502T112434Z
mc: <DEBUG> HTTP/1.1 200 OK
Content-Length: 137
Connection: Keep-Alive
Date: Thu, 02 May 2024 11:24:34 GMT
X-Amz-Request-Id: tx0000088fbb1c964bdd8cc-00663377f2-8a54f9-ceph-store
mc: <DEBUG> Response Time: 2.285532ms
mc: <DEBUG> HEAD /WWWWW/ HTTP/1.1
Host: 10.185.0.144:8080
User-Agent: MinIO (linux; amd64) minio-go/v7.0.70 mc/RELEASE.2024-04-29T09-56-05Z
Authorization: AWS **REDACTED**:**REDACTED**
X-Amz-Content-Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
X-Amz-Date: 20240502T112434Z
mc: <DEBUG> HTTP/1.1 200 OK
Connection: Keep-Alive
Date: Thu, 02 May 2024 11:24:34 GMT
X-Amz-Request-Id: tx000005f6c7ec01a3a8d9f-00663377f2-8a54f9-ceph-store
X-Rgw-Bytes-Used: 37567454
X-Rgw-Object-Count: 79
X-Rgw-Quota-Bucket-Objects: -1
X-Rgw-Quota-Bucket-Size: -1
X-Rgw-Quota-Max-Buckets: 1
X-Rgw-Quota-User-Objects: -1
X-Rgw-Quota-User-Size: 10737418240
Content-Length: 0
mc: <DEBUG> Response Time: 20.674677ms
mc: <DEBUG> GET /WWWWW/?delimiter=%2F&encoding-type=url&fetch-owner=true&list-type=2&prefix= HTTP/1.1
Host: 10.185.0.144:8080
User-Agent: MinIO (linux; amd64) minio-go/v7.0.70 mc/RELEASE.2024-04-29T09-56-05Z
Accept-Encoding: zstd,gzip
Authorization: AWS **REDACTED**:**REDACTED**
X-Amz-Content-Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
X-Amz-Date: 20240502T112434Z
mc: <DEBUG> HTTP/1.1 200 OK
Transfer-Encoding: chunked
Connection: Keep-Alive
Content-Type: application/xml
Date: Thu, 02 May 2024 11:24:34 GMT
X-Amz-Request-Id: tx0000014cc6a071d589201-00663377f2-8a54f9-ceph-store
mc: <DEBUG> Response Time: 2.84579ms
[2024-05-02 11:24:34 UTC] 0B sample1/
[2024-05-02 11:24:34 UTC] 0B sample2/
[2024-05-02 11:24:34 UTC] 0B sample3/
root@WWWW:~# mc alias list localbucket/
localbucket
URL : http://10.185.0.144:8080/
AccessKey : WWWWWW
SecretKey : WWWWWWW
API : S3v2
Path :
from mc.
Looks like a regression sending a fix.
from mc.
That was extremely quick! Thank you
from mc.
Related Issues (20)
- Data transfer going, disk space usage is expanding, but the number of objects is not growing HOT 1
- mcli: Unable to prepare URL for copying. Unable to guess the type of copy operation. HOT 9
- LDAP login prompts are written to stdout
- Usage message for 'ilm rule remove' subcommand is missing --id HOT 1
- Accept colons in `mc alias` commands HOT 3
- mc --enc-{c,s3,kms) require that input to match the argument
- mc mirror with ceph rgw as a source fails with --watch option (SignatureDoesNotMatch) HOT 3
- Set visibility/ACL public on an object
- `/usr/bin/mc` is not readable by non-root in docker image HOT 3
- mc cp bug HOT 1
- The type is a bucket prompt, indicating an error message of Invalid party shard count/sulplus shard count given HOT 2
- An error occurred with mc mirror/cp: read: connection reset by peer. HOT 2
- Extended site replication requires aliases for all existing peer sites
- mc ls --json does not return valid JSON or JSON lines HOT 7
- Retry attempt PUTs for 'mc cp' fail with early EOF HOT 2
- Adding tolerant reader pattern feature HOT 2
- mc alias list sometimes return the configured alias, sometimes not HOT 7
- No cycle start / end time in `mc admin scanner status` when in "between cycles" state HOT 1
- `mc rm --dryrun ...` fails while the help menu and the doc lists the option as `--dryrun` HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mc.