{ ERR_INVALID_DIGEST, {400, "InvalidDigest" }},
{ ERR_BAD_DIGEST, {400, "BadDigest" }},
{ ERR_INVALID_LOCATION_CONSTRAINT, {400, "InvalidLocationConstraint" }},
+ { ERR_ZONEGROUP_DEFAULT_PLACEMENT_MISCONFIGURATION, {400, "ZonegroupDefaultPlacementMisconfiguration" }},
{ ERR_INVALID_BUCKET_NAME, {400, "InvalidBucketName" }},
{ ERR_INVALID_OBJECT_NAME, {400, "InvalidObjectName" }},
{ ERR_UNRESOLVABLE_EMAIL, {400, "UnresolvableGrantByEmailAddress" }},
{ ERR_TOO_MANY_BUCKETS, {400, "TooManyBuckets" }},
{ ERR_MALFORMED_XML, {400, "MalformedXML" }},
{ ERR_AMZ_CONTENT_SHA256_MISMATCH, {400, "XAmzContentSHA256Mismatch" }},
+ { ERR_INVALID_TAG, {400, "InvalidTag"}},
+ { ERR_MALFORMED_ACL_ERROR, {400, "MalformedACLError" }},
{ ERR_LENGTH_REQUIRED, {411, "MissingContentLength" }},
{ EACCES, {403, "AccessDenied" }},
{ EPERM, {403, "AccessDenied" }},
{ ERR_NOT_FOUND, {404, "Not Found"}},
{ ERR_NO_SUCH_LC, {404, "NoSuchLifecycleConfiguration"}},
{ ERR_NO_SUCH_BUCKET_POLICY, {404, "NoSuchBucketPolicy"}},
+ { ERR_NO_SUCH_USER, {404, "NoSuchUser"}},
+ { ERR_NO_SUCH_SUBUSER, {404, "NoSuchSubUser"}},
{ ERR_METHOD_NOT_ALLOWED, {405, "MethodNotAllowed" }},
{ ETIMEDOUT, {408, "RequestTimeout" }},
{ EEXIST, {409, "BucketAlreadyExists" }},
{ ERR_USER_EXIST, {409, "UserAlreadyExists" }},
{ ERR_EMAIL_EXIST, {409, "EmailExists" }},
{ ERR_KEY_EXIST, {409, "KeyExists"}},
+ { ERR_TAG_CONFLICT, {409, "OperationAborted"}},
{ ERR_INVALID_SECRET_KEY, {400, "InvalidSecretKey"}},
{ ERR_INVALID_KEY_TYPE, {400, "InvalidKeyType"}},
{ ERR_INVALID_CAP, {400, "InvalidCapability"}},
{ ERR_INTERNAL_ERROR, {500, "InternalError" }},
{ ERR_NOT_IMPLEMENTED, {501, "NotImplemented" }},
{ ERR_SERVICE_UNAVAILABLE, {503, "ServiceUnavailable"}},
+ { ERR_ZERO_IN_URL, {400, "InvalidRequest" }},
});
rgw_http_errors rgw_http_swift_errors({
{ ERR_BAD_URL, {412, "Bad URL" }},
{ ERR_NOT_SLO_MANIFEST, {400, "Not an SLO manifest" }},
{ ERR_QUOTA_EXCEEDED, {413, "QuotaExceeded" }},
+ /* FIXME(rzarzynski): we need to find a way to apply Swift's error handling
+ * procedures also for ERR_ZERO_IN_URL. This make a problem as the validation
+ * is performed very early, even before setting the req_state::proto_flags. */
+ { ERR_ZERO_IN_URL, {412, "Invalid UTF8 or contains NULL"}},
});
int rgw_perf_start(CephContext *cct)
content_started = false;
format = 0;
formatter = NULL;
- bucket_acl = NULL;
- object_acl = NULL;
expect_cont = false;
obj_size = 0;
req_state::~req_state() {
delete formatter;
- delete bucket_acl;
- delete object_acl;
}
bool search_err(rgw_http_errors& errs, int err_no, bool is_website_redirect, int& http_ret, string& code)
*dest = buf;
}
+
+string rgw_to_asctime(const utime_t& t)
+{
+ stringstream s;
+ t.asctime(s);
+ return s.str();
+}
+
/*
* calculate the sha1 value of a given msg and key
*/
(name.compare("versioning") == 0) ||
(name.compare("website") == 0) ||
(name.compare("requestPayment") == 0) ||
- (name.compare("torrent") == 0)) {
+ (name.compare("torrent") == 0) ||
+ (name.compare("tagging") == 0)) {
sub_resources[name] = val;
} else if (name[0] == 'r') { // root of all evil
if ((name.compare("response-content-type") == 0) ||
return empty_str;
}
+boost::optional<const std::string&>
+RGWHTTPArgs::get_optional(const std::string& name) const
+{
+ bool exists;
+ const std::string& value = get(name, &exists);
+ if (exists) {
+ return value;
+ } else {
+ return boost::none;
+ }
+}
+
int RGWHTTPArgs::get_bool(const string& name, bool *val, bool *exists)
{
map<string, string>::iterator iter;
return false;
return verify_bucket_permission_no_policy(s,
- s->user_acl.get(),
- s->bucket_acl,
- perm);
+ s->user_acl.get(),
+ s->bucket_acl.get(),
+ perm);
}
bool verify_bucket_permission(struct req_state * const s, const uint64_t op)
{
return verify_bucket_permission(s,
- s->bucket,
+ s->bucket,
s->user_acl.get(),
- s->bucket_acl,
- s->iam_policy,
+ s->bucket_acl.get(),
+ s->iam_policy,
op);
}
if (!verify_requester_payer_permission(s))
return false;
- return verify_object_permission_no_policy(s, s->user_acl.get(),
- s->bucket_acl, s->object_acl,
- perm);
+ return verify_object_permission_no_policy(s,
+ s->user_acl.get(),
+ s->bucket_acl.get(),
+ s->object_acl.get(),
+ perm);
}
bool verify_object_permission(struct req_state *s, uint64_t op)
{
return verify_object_permission(s,
- rgw_obj(s->bucket, s->object),
- s->user_acl.get(),
- s->bucket_acl,
- s->object_acl,
- s->iam_policy,
+ rgw_obj(s->bucket, s->object),
+ s->user_acl.get(),
+ s->bucket_acl.get(),
+ s->object_acl.get(),
+ s->iam_policy,
op);
}
return parse_list_of_flags(op_type_mapping, str, perm);
}
-static int match_internal(boost::string_ref pattern, boost::string_ref input, int (*function)(const char&, const char&))
-{
- boost::string_ref::iterator it1 = pattern.begin();
- boost::string_ref::iterator it2 = input.begin();
- while(true) {
- if (it1 == pattern.end() && it2 == input.end())
- return 1;
- if (it1 == pattern.end() || it2 == input.end())
- return 0;
- if (*it1 == '*' && (it1 + 1) == pattern.end() && it2 != input.end())
- return 1;
- if (*it1 == '*' && (it1 + 1) == pattern.end() && it2 == input.end())
- return 0;
- if (function(*it1, *it2) || *it1 == '?') {
- ++it1;
- ++it2;
- continue;
- }
- if (*it1 == '*') {
- if (function(*(it1 + 1), *it2))
- ++it1;
- else
- ++it2;
- continue;
- }
- return 0;
- }
- return 0;
-}
-
-static int matchcase(const char& c1, const char& c2)
+bool match_policy(boost::string_view pattern, boost::string_view input,
+ uint32_t flag)
{
- if (c1 == c2)
- return 1;
- return 0;
-}
+ const uint32_t flag2 = flag & (MATCH_POLICY_ACTION|MATCH_POLICY_ARN) ?
+ MATCH_CASE_INSENSITIVE : 0;
-static int matchignorecase(const char& c1, const char& c2)
-{
- if (tolower(c1) == tolower(c2))
- return 1;
- return 0;
-}
-
-int match(const string& pattern, const string& input, uint32_t flag)
-{
- auto last_pos_input = 0, last_pos_pattern = 0;
-
- while(true) {
+ const auto npos = boost::string_view::npos;
+ boost::string_view::size_type last_pos_input = 0, last_pos_pattern = 0;
+ while (true) {
auto cur_pos_input = input.find(":", last_pos_input);
auto cur_pos_pattern = pattern.find(":", last_pos_pattern);
- string substr_input = input.substr(last_pos_input, cur_pos_input);
- string substr_pattern = pattern.substr(last_pos_pattern, cur_pos_pattern);
+ auto substr_input = input.substr(last_pos_input, cur_pos_input);
+ auto substr_pattern = pattern.substr(last_pos_pattern, cur_pos_pattern);
- int res;
- if (substr_pattern == "*") {
- res = 1;
- } else if (flag & MATCH_POLICY_ACTION || flag & MATCH_POLICY_ARN) {
- res = match_internal(substr_pattern, substr_input, &matchignorecase);
- } else {
- res = match_internal(substr_pattern, substr_input, &matchcase);
- }
- if (res == 0)
- return 0;
-
- if (cur_pos_pattern == string::npos && cur_pos_input == string::npos)
- return 1;
- else if ((cur_pos_pattern == string::npos && cur_pos_input != string::npos) ||
- (cur_pos_pattern != string::npos && cur_pos_input == string::npos))
- return 0;
+ if (!match_wildcards(substr_pattern, substr_input, flag2))
+ return false;
+
+ if (cur_pos_pattern == npos)
+ return cur_pos_input == npos;
+ if (cur_pos_input == npos)
+ return false;
last_pos_pattern = cur_pos_pattern + 1;
last_pos_input = cur_pos_input + 1;
projects / ceph.git / blobdiff