oyd
/
minio
6
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add common validation for compression and encryption (#7978)

Browse Source
master
Harshavardhana 5 years ago committed by GitHub
parent efb8b00db0
commit 007a52b546
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 29 additions and 18 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 19
      cmd/common-main.go
  2. 19
      cmd/gateway-main.go
  3. 9
      cmd/server-main.go

19
cmd/common-main.go
Unescape View File

@ -38,6 +38,25 @@ import (
xnet "github.com/minio/minio/pkg/net" xnet "github.com/minio/minio/pkg/net"
) )
func verifyObjectLayerFeatures(name string, objAPI ObjectLayer) {
if (globalAutoEncryption || GlobalKMS != nil) && !objAPI.IsEncryptionSupported() {
logger.Fatal(errInvalidArgument,
"Encryption support is requested but '%s' does not support encryption", name)
}
if strings.HasPrefix(name, "gateway") {
if GlobalGatewaySSE.IsSet() && GlobalKMS == nil {
uiErr := uiErrInvalidGWSSEEnvValue(nil).Msg("MINIO_GATEWAY_SSE set but KMS is not configured")
logger.Fatal(uiErr, "Unable to start gateway with SSE")
}
}
if globalIsCompressionEnabled && !objAPI.IsCompressionSupported() {
logger.Fatal(errInvalidArgument,
"Compression support is requested but '%s' does not support compression", name)
}
}
// Check for updates and print a notification message // Check for updates and print a notification message
func checkUpdate(mode string) { func checkUpdate(mode string) {
// Its OK to ignore any errors during doUpdate() here. // Its OK to ignore any errors during doUpdate() here.

19
cmd/gateway-main.go
Unescape View File

@ -278,23 +278,14 @@ func StartGateway(ctx *cli.Context, gw Gateway) {
// Create new notification system. // Create new notification system.
globalNotificationSys = NewNotificationSys(globalServerConfig, globalEndpoints) globalNotificationSys = NewNotificationSys(globalServerConfig, globalEndpoints)
if globalEtcdClient != nil && newObject.IsNotificationSupported() { if enableConfigOps && newObject.IsNotificationSupported() {
logger.LogIf(context.Background(), globalNotificationSys.Init(newObject)) logger.LogIf(context.Background(), globalNotificationSys.Init(newObject))
} }
// Encryption support checks in gateway mode. // Verify if object layer supports
{ // - encryption
// - compression
if (globalAutoEncryption || GlobalKMS != nil) && !newObject.IsEncryptionSupported() { verifyObjectLayerFeatures("gateway "+gatewayName, newObject)
logger.Fatal(errInvalidArgument,
"Encryption support is requested but (%s) gateway does not support encryption", gw.Name())
}
if GlobalGatewaySSE.IsSet() && GlobalKMS == nil {
logger.Fatal(uiErrInvalidGWSSEEnvValue(nil).Msg("MINIO_GATEWAY_SSE set but KMS is not configured"),
"Unable to start gateway with SSE")
}
}
// Once endpoints are finalized, initialize the new object api. // Once endpoints are finalized, initialize the new object api.
globalObjLayerMutex.Lock() globalObjLayerMutex.Lock()

9
cmd/server-main.go
Unescape View File

@ -19,7 +19,6 @@ package cmd
import ( import (
"context" "context"
"encoding/gob" "encoding/gob"
"errors"
"fmt" "fmt"
"net/http" "net/http"
"os" "os"
@ -380,9 +379,11 @@ func serverMain(ctx *cli.Context) {
if err = globalNotificationSys.Init(newObject); err != nil { if err = globalNotificationSys.Init(newObject); err != nil {
logger.LogIf(context.Background(), err) logger.LogIf(context.Background(), err)
} }
if globalAutoEncryption && !newObject.IsEncryptionSupported() {
logger.Fatal(errors.New("Invalid KMS configuration"), "auto-encryption is enabled but server does not support encryption") // Verify if object layer supports
} // - encryption
// - compression
verifyObjectLayerFeatures("server", newObject)
if globalIsXL { if globalIsXL {
initBackgroundHealing() initBackgroundHealing()

Write Preview
Loading…
Cancel
Save