Comments (1)
harshavardhana
commented on May 20, 2024
Looks like Content-Length is not set for all the S3 call replies, there is no easier and effective way to verify server sending malicious data right now, since S3 itself doesn't set Content-Length.
The reason is also i think they don't set Content-Length is since server is sending data with Transfer-Encoding set to 'chunked' . Because of this reason they do not have to. Since they guarantee that server is sending in chunks not as one large blobs for client to consume. So i think we can defer the handling of response bodies for now.. Since for chunked transfer-encoding Content-Length will not be set and we cannot effectively limit and verify this.
from minio-go.
Related Issues (20)
- The credentials::IAM implementation doesn't work for multiple regions HOT 1
- How to download a folder using a method similar to PresignedGetObject HOT 1
- MinIO SDK support service account connectivity in AWS EKS HOT 2
- Minio Client re-connected HOT 1
- Unable to delete the folder inside the bucket. HOT 1
- How do I get sts with access_key and secret_key
- The program crashed when creating the bucket and why it is necessary to splice an http:// to the endpoint. Why not first determine the splicing process? HOT 4
- How disable chunks encoding? HOT 3
- Backblaze B2: The XML you provided was not well-formed or did not validate against our published schema HOT 5
- test issue
- make multipart part size configurable HOT 1
- Add ability to use AWS SSO profile as a credential provider HOT 6
- `minio/minio-go/[email protected]/utils.go:627:67: undefined: tls.CertificateVerificationError` with Go 1.19. HOT 5
- Sec vul CVE-2022-28948 from sirupsen/logrus > stretchr/testify > yaml.v3 HOT 2
- Parallel upload in PutObject is only selected for os.File, not for other io.ReaderAt instances. Possibly bug? HOT 4
- Add Amazon EKS Pod Identity support HOT 3
- Resize image with minio client HOT 1
- RemoveObject() does not work as i expect! HOT 4
- Service account GCP HOT 1
- Retrieve object metadata on GCS HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from minio-go.