openstack/swift
Code Issues Proposed changes
5cb53838a6
swift/test/unit/common/test_constraints.py

686 lines
31 KiB
Python
Raw Normal View History

Change OpenStack LLC to Foundation Change-Id: I7c3df47c31759dbeb3105f8883e2688ada848d58 Closes-bug: #1214176
2013-09-20 01:00:54 +08:00
# Copyright (c) 2010-2012 OpenStack Foundation
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
# implied.
# See the License for the specific language governing permissions and
# limitations under the License.
import unittest
Remove extra lstat() calls from check_mount The os.path.exists call performs an lstat, but os.path.ismount already performs the same check. However, it performs a separate lstat() call to check for a symlink, which we remove as well, cutting the number performed in half. Sample program to be straced for comparison: from swift.common.constraints import check_mount import os os.write(1, "Starting\n") if check_mount("/", "tmp"): os.write(1, "Mounted\n") Here is the output of a check on a mounted file system (common case) using the new method: ---- strace new ---- write(1, "Starting\n", 9) = 9 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp/..", {st_mode=S_IFDIR|0555, st_size=4096, ...}) = 0 write(1, "Mounted\n", 8) = 8 ---- strace old ---- write(1, "Starting\n", 9) = 9 stat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp/..", {st_mode=S_IFDIR|0555, st_size=4096, ...}) = 0 write(1, "Mounted\n", 8) = 8 Change-Id: I027c862a2b7d9ff99d7f61bd43ccc0825dba525c Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-07-19 11:34:12 -04:00
import mock
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
import tempfile
Add two vector timestamps The normalized form of the X-Timestamp header looks like a float with a fixed width to ensure stable string sorting - normalized timestamps look like "1402464677.04188" To support overwrites of existing data without modifying the original timestamp but still maintain consistency a second internal offset vector is append to the normalized timestamp form which compares and sorts greater than the fixed width float format but less than a newer timestamp. The internalized format of timestamps looks like "1402464677.04188_0000000000000000" - the portion after the underscore is the offset and is a formatted hexadecimal integer. The internalized form is not exposed to clients in responses from Swift. Normal client operations will not create a timestamp with an offset. The Timestamp class in common.utils supports internalized and normalized formatting of timestamps and also comparison of timestamp values. When the offset value of a Timestamp is 0 - it's considered insignificant and need not be represented in the string format; to support backwards compatibility during a Swift upgrade the internalized and normalized form of a Timestamp with an insignificant offset are identical. When a timestamp includes an offset it will always be represented in the internalized form, but is still excluded from the normalized form. Timestamps with an equivalent timestamp portion (the float part) will compare and order by their offset. Timestamps with a greater timestamp portion will always compare and order greater than a Timestamp with a lesser timestamp regardless of it's offset. String comparison and ordering is guaranteed for the internalized string format, and is backwards compatible for normalized timestamps which do not include an offset. The reconciler currently uses a offset bump to ensure that objects can move to the wrong storage policy and be moved back. This use-case is valid because the content represented by the user-facing timestamp is not modified in way. Future consumers of the offset vector of timestamps should be mindful of HTTP semantics of If-Modified and take care to avoid deviation in the response from the object server without an accompanying change to the user facing timestamp. DocImpact Implements: blueprint storage-policies Change-Id: Id85c960b126ec919a481dc62469bf172b7fb8549
2014-06-10 22:17:47 -07:00
import time
Remove extra lstat() calls from check_mount The os.path.exists call performs an lstat, but os.path.ismount already performs the same check. However, it performs a separate lstat() call to check for a symlink, which we remove as well, cutting the number performed in half. Sample program to be straced for comparison: from swift.common.constraints import check_mount import os os.write(1, "Starting\n") if check_mount("/", "tmp"): os.write(1, "Mounted\n") Here is the output of a check on a mounted file system (common case) using the new method: ---- strace new ---- write(1, "Starting\n", 9) = 9 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp/..", {st_mode=S_IFDIR|0555, st_size=4096, ...}) = 0 write(1, "Mounted\n", 8) = 8 ---- strace old ---- write(1, "Starting\n", 9) = 9 stat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp/..", {st_mode=S_IFDIR|0555, st_size=4096, ...}) = 0 write(1, "Mounted\n", 8) = 8 Change-Id: I027c862a2b7d9ff99d7f61bd43ccc0825dba525c Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-07-19 11:34:12 -04:00
Replace xrange() with six.moves.range() Patch generated by the xrange operation of the sixer tool: https://pypi.python.org/pypi/sixer Manual changes: * Fix indentation for pep8 checks * Fix TestGreenthreadSafeIterator.test_access_is_serialized of test.unit.common.test_utils: replace range(1, 11) with list(range(1, 11)) * Fix UnsafeXrange docstring, revert change Change-Id: Icb7e26135c5e57b5302b8bfe066b33cafe69fe4d
2015-05-25 18:28:02 +02:00
from six.moves import range
Always require device dir for containers For test purposes (e.g. saio probetests) even if mount_check is False, still require check_dir for account/container server storage when real mount points are not used. This behavior is consistent with the object-server's checks in diskfile. Co-Author: Clay Gerrard <clay.gerrard@gmail.com> Related lp bug #1693005 Related-Change-Id: I344f9daaa038c6946be11e1cf8c4ef104a09e68b Depends-On: I52c4ecb70b1ae47e613ba243da5a4d94e5adedf2 Change-Id: I3362a6ebff423016bb367b4b6b322bb41ae08764
2017-04-19 15:09:40 +02:00
from test.unit import mock_check_drive
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
Require account/container metadata be UTF-8 Otherwise, we get a UnicodeDecodeError when we call json.dumps() Change-Id: Ie200d029e1fd7f0ff0956c8ced98207e11ef9080
2016-02-28 01:18:07 +00:00
from swift.common.swob import Request, HTTPException
local WSGI Request and Response classes This change replaces WebOb with a mostly compatible local library, swift.common.swob. Subtle changes to WebOb's API over the years have been a huge headache. Swift doesn't even run on the current version. There are a few incompatibilities to simplify the implementation/interface: * It only implements the header properties we use. More can be easily added. * Casts header values to str on assignment. * Response classes ("HTTPNotFound") are no longer subclasses, but partials on Response, so things like isinstance no longer work on them. * Unlike newer webob versions, will never return unicode objects. Change-Id: I76617a0903ee2286b25a821b3c935c86ff95233f
2012-09-04 14:02:19 -07:00
from swift.common.http import HTTP_REQUEST_ENTITY_TOO_LARGE, \
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
HTTP_BAD_REQUEST, HTTP_LENGTH_REQUIRED, HTTP_NOT_IMPLEMENTED
Rework use of constraints to ease testing Prior to this patch both mainline code and testing modules imported and used constraints directly into their own namespace, or relied on the namespace of other modules that were not the constraints module. This meant that if a unit test wanted to change a constraint for its operation, it had to know how that module was using the constraint, instead of referencing the constraint module itself. This patch unifies the use of constraints so that all constraints are referenced via the constraints module. In turn, this allows a test to leverage the re-loadable nature of the constraints in the constraints module. It addition, a number of functional tests where using the default values for constraints, instead of the configured value discovered in a test.conf or in an existing swift.conf. This patch removes those direct references in favor of the load_constraint() method from the test/functional/tests.py module. Change-Id: Ia5313d653c667dd9ca800786de59b59334c34eaa
2014-04-02 16:16:21 -04:00
from swift.common import constraints, utils
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
from swift.common.constraints import MAX_OBJECT_NAME_LENGTH
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
Server-side implementation for segmented objects
2010-11-16 15:35:39 -08:00
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
class TestConstraints(unittest.TestCase):
def test_check_metadata_empty(self):
headers = {}
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_metadata(Request.blank(
'/', headers=headers), 'object'))
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_metadata_good(self):
headers = {'X-Object-Meta-Name': 'Value'}
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_metadata(Request.blank(
'/', headers=headers), 'object'))
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_metadata_empty_name(self):
headers = {'X-Object-Meta-': 'Value'}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_metadata(Request.blank(
'/', headers=headers), 'object')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Metadata name cannot be empty', resp.body)
Require account/container metadata be UTF-8 Otherwise, we get a UnicodeDecodeError when we call json.dumps() Change-Id: Ie200d029e1fd7f0ff0956c8ced98207e11ef9080
2016-02-28 01:18:07 +00:00
def test_check_metadata_non_utf8(self):
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
# Consciously using native "WSGI strings" in headers
headers = {'X-Account-Meta-Foo': '\xff'}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_metadata(Request.blank(
'/', headers=headers), 'account')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Metadata must be valid UTF-8', resp.body)
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
headers = {'X-Container-Meta-\xff': 'foo'}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_metadata(Request.blank(
'/', headers=headers), 'container')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Metadata must be valid UTF-8', resp.body)
Require account/container metadata be UTF-8 Otherwise, we get a UnicodeDecodeError when we call json.dumps() Change-Id: Ie200d029e1fd7f0ff0956c8ced98207e11ef9080
2016-02-28 01:18:07 +00:00
# Object's OK; its metadata isn't serialized as JSON
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
headers = {'X-Object-Meta-Foo': '\xff'}
Require account/container metadata be UTF-8 Otherwise, we get a UnicodeDecodeError when we call json.dumps() Change-Id: Ie200d029e1fd7f0ff0956c8ced98207e11ef9080
2016-02-28 01:18:07 +00:00
self.assertIsNone(constraints.check_metadata(Request.blank(
'/', headers=headers), 'object'))
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_metadata_name_length(self):
name = 'a' * constraints.MAX_META_NAME_LENGTH
headers = {'X-Object-Meta-%s' % name: 'v'}
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_metadata(Request.blank(
'/', headers=headers), 'object'))
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
name = 'a' * (constraints.MAX_META_NAME_LENGTH + 1)
headers = {'X-Object-Meta-%s' % name: 'v'}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_metadata(Request.blank(
'/', headers=headers), 'object')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
Pep8 remaining unit test modules in common (8 of 12) Change-Id: I6fa3291eeacb7ee5c095ad9bccbd33f027bf11e3 Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-09-01 01:14:40 -04:00
self.assertIn(
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
b'x-object-meta-%s' % name.encode('ascii'), resp.body.lower())
self.assertIn(b'Metadata name too long', resp.body)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_metadata_value_length(self):
value = 'a' * constraints.MAX_META_VALUE_LENGTH
headers = {'X-Object-Meta-Name': value}
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_metadata(Request.blank(
'/', headers=headers), 'object'))
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
value = 'a' * (constraints.MAX_META_VALUE_LENGTH + 1)
headers = {'X-Object-Meta-Name': value}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_metadata(Request.blank(
'/', headers=headers), 'object')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'x-object-meta-name', resp.body.lower())
Pep8 remaining unit test modules in common (8 of 12) Change-Id: I6fa3291eeacb7ee5c095ad9bccbd33f027bf11e3 Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-09-01 01:14:40 -04:00
self.assertIn(
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
str(constraints.MAX_META_VALUE_LENGTH).encode('ascii'), resp.body)
self.assertIn(b'Metadata value longer than 256', resp.body)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_metadata_count(self):
headers = {}
Replace xrange() with six.moves.range() Patch generated by the xrange operation of the sixer tool: https://pypi.python.org/pypi/sixer Manual changes: * Fix indentation for pep8 checks * Fix TestGreenthreadSafeIterator.test_access_is_serialized of test.unit.common.test_utils: replace range(1, 11) with list(range(1, 11)) * Fix UnsafeXrange docstring, revert change Change-Id: Icb7e26135c5e57b5302b8bfe066b33cafe69fe4d
2015-05-25 18:28:02 +02:00
for x in range(constraints.MAX_META_COUNT):
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
headers['X-Object-Meta-%d' % x] = 'v'
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_metadata(Request.blank(
'/', headers=headers), 'object'))
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
headers['X-Object-Meta-Too-Many'] = 'v'
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_metadata(Request.blank(
'/', headers=headers), 'object')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Too many metadata items', resp.body)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_metadata_size(self):
headers = {}
size = 0
chunk = constraints.MAX_META_NAME_LENGTH + \
Pep8 remaining unit test modules in common (8 of 12) Change-Id: I6fa3291eeacb7ee5c095ad9bccbd33f027bf11e3 Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-09-01 01:14:40 -04:00
constraints.MAX_META_VALUE_LENGTH
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
x = 0
while size + chunk < constraints.MAX_META_OVERALL_SIZE:
headers['X-Object-Meta-%04d%s' %
(x, 'a' * (constraints.MAX_META_NAME_LENGTH - 4))] = \
Pep8 remaining unit test modules in common (8 of 12) Change-Id: I6fa3291eeacb7ee5c095ad9bccbd33f027bf11e3 Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-09-01 01:14:40 -04:00
'v' * constraints.MAX_META_VALUE_LENGTH
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
size += chunk
x += 1
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_metadata(Request.blank(
'/', headers=headers), 'object'))
swift constraints are now settable via config Change previously hard-coded constants into config variables. This allows deployers to tune their cluster more specifically based on their needs. For example, a deployment that uses direct swift access for public content may need to set a larger header value constraint to allow for the full object name to be represented in the Content- Disposition header (which browsers check to determine the name of a downloaded object). The new settings are set in the [swift-constraints] section of /etc/swift/swift.conf. Comments were also added to this config file. Cleaned up swift/common/constraints.py to pass pep8 1.3.3 Funtional tests now require constraints to be defined in /etc/test.conf or in /etc/swift/swift.conf (in the case of running the functional tests against a local swift cluster). To have any hope of tests passing, the defined constraints must match the constraints on the tested cluster. Removed a ton of "magic numbers" in both unit and functional tests. Change-Id: Ie4588e052fd158314ddca6cd8fca9bc793311465
2012-09-05 20:49:50 -07:00
# add two more headers in case adding just one falls exactly on the
# limit (eg one header adds 1024 and the limit is 2048)
headers['X-Object-Meta-%04d%s' %
(x, 'a' * (constraints.MAX_META_NAME_LENGTH - 4))] = \
Pep8 remaining unit test modules in common (8 of 12) Change-Id: I6fa3291eeacb7ee5c095ad9bccbd33f027bf11e3 Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-09-01 01:14:40 -04:00
'v' * constraints.MAX_META_VALUE_LENGTH
swift constraints are now settable via config Change previously hard-coded constants into config variables. This allows deployers to tune their cluster more specifically based on their needs. For example, a deployment that uses direct swift access for public content may need to set a larger header value constraint to allow for the full object name to be represented in the Content- Disposition header (which browsers check to determine the name of a downloaded object). The new settings are set in the [swift-constraints] section of /etc/swift/swift.conf. Comments were also added to this config file. Cleaned up swift/common/constraints.py to pass pep8 1.3.3 Funtional tests now require constraints to be defined in /etc/test.conf or in /etc/swift/swift.conf (in the case of running the functional tests against a local swift cluster). To have any hope of tests passing, the defined constraints must match the constraints on the tested cluster. Removed a ton of "magic numbers" in both unit and functional tests. Change-Id: Ie4588e052fd158314ddca6cd8fca9bc793311465
2012-09-05 20:49:50 -07:00
headers['X-Object-Meta-%04d%s' %
(x + 1, 'a' * (constraints.MAX_META_NAME_LENGTH - 4))] = \
Pep8 remaining unit test modules in common (8 of 12) Change-Id: I6fa3291eeacb7ee5c095ad9bccbd33f027bf11e3 Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-09-01 01:14:40 -04:00
'v' * constraints.MAX_META_VALUE_LENGTH
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_metadata(Request.blank(
'/', headers=headers), 'object')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Total metadata too large', resp.body)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_object_creation_content_length(self):
headers = {'Content-Length': str(constraints.MAX_FILE_SIZE),
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_object_creation(Request.blank(
'/', headers=headers), 'object_name'))
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
headers = {'Content-Length': str(constraints.MAX_FILE_SIZE + 1),
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_object_creation(
Request.blank('/', headers=headers), 'object_name')
self.assertEqual(resp.status_int, HTTP_REQUEST_ENTITY_TOO_LARGE)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
headers = {'Transfer-Encoding': 'chunked',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_object_creation(Request.blank(
'/', headers=headers), 'object_name'))
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
headers = {'Transfer-Encoding': 'gzip',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_object_creation(Request.blank(
'/', headers=headers), 'object_name')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Invalid Transfer-Encoding header value', resp.body)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_object_creation(
Request.blank('/', headers=headers), 'object_name')
self.assertEqual(resp.status_int, HTTP_LENGTH_REQUIRED)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
headers = {'Content-Length': 'abc',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_object_creation(Request.blank(
'/', headers=headers), 'object_name')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Invalid Content-Length header value', resp.body)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
headers = {'Transfer-Encoding': 'gzip,chunked',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_object_creation(Request.blank(
'/', headers=headers), 'object_name')
self.assertEqual(resp.status_int, HTTP_NOT_IMPLEMENTED)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_object_creation_name_length(self):
headers = {'Transfer-Encoding': 'chunked',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
name = 'o' * constraints.MAX_OBJECT_NAME_LENGTH
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_object_creation(Request.blank(
'/', headers=headers), name))
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
name = 'o' * (MAX_OBJECT_NAME_LENGTH + 1)
resp = constraints.check_object_creation(
Request.blank('/', headers=headers), name)
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Object name length of %d longer than %d' %
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
(MAX_OBJECT_NAME_LENGTH + 1, MAX_OBJECT_NAME_LENGTH),
resp.body)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_object_creation_content_type(self):
headers = {'Transfer-Encoding': 'chunked',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': 'text/plain',
'X-Timestamp': str(time.time())}
Test: Use assertIsNone() in unittest Use assertIsNone() instead of assertEqual(), because assertEqual() still fails on false values when compared to None Change-Id: Ic52c319e3e55135df834fdf857982e1721bc44bb
2017-06-25 10:29:23 +08:00
self.assertIsNone(constraints.check_object_creation(Request.blank(
'/', headers=headers), 'object_name'))
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'Transfer-Encoding': 'chunked',
'X-Timestamp': str(time.time())}
add assert error information There are the same error resp.status_int in different operators of one function, then I can't point out which one returns this status_int. Therefore, I assert error information. Change-Id: I58bcba97a9f92e43e0f8ef26b801b69a6906af41
2016-09-29 20:24:23 +08:00
resp = constraints.check_object_creation(
Request.blank('/', headers=headers), 'object_name')
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'No content type', resp.body)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
def test_check_object_creation_bad_content_type(self):
headers = {'Transfer-Encoding': 'chunked',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'Content-Type': '\xff\xff',
'X-Timestamp': str(time.time())}
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
resp = constraints.check_object_creation(
Request.blank('/', headers=headers), 'object_name')
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Content-Type', resp.body)
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
def test_check_object_creation_bad_delete_headers(self):
headers = {'Transfer-Encoding': 'chunked',
'Content-Type': 'text/plain',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'X-Delete-After': 'abc',
'X-Timestamp': str(time.time())}
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
resp = constraints.check_object_creation(
Request.blank('/', headers=headers), 'object_name')
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Non-integer X-Delete-After', resp.body)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
t = str(int(time.time() - 60))
headers = {'Transfer-Encoding': 'chunked',
'Content-Type': 'text/plain',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'X-Delete-At': t,
'X-Timestamp': str(time.time())}
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
resp = constraints.check_object_creation(
Request.blank('/', headers=headers), 'object_name')
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(resp.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'X-Delete-At in past', resp.body)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
def test_check_delete_headers(self):
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
# x-delete-at value should be relative to the request timestamp rather
# than time.time() so separate the two to ensure the checks are robust
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
ts = utils.Timestamp(time.time() + 100)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
# X-Delete-After
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'X-Delete-After': '600',
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
req = constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertIsInstance(req, Request)
self.assertIn('x-delete-at', req.headers)
self.assertNotIn('x-delete-after', req.headers)
expected_delete_at = str(int(ts) + 600)
self.assertEqual(req.headers.get('X-Delete-At'), expected_delete_at)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'X-Delete-After': 'abc',
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Non-integer X-Delete-After', cm.exception.body)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'X-Delete-After': '60.1',
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Non-integer X-Delete-After', cm.exception.body)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'X-Delete-After': '-1',
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'X-Delete-After in past', cm.exception.body)
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Correct 400 response message when x-delete-after is zero Before an x-delete-after header with value '0' would almost certainly result in a 400 response, but the response body would report a problem with x-delete-at. Now the response correctly blames the x-delete-after header. Related-Change: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Change-Id: Ia8d00fcef8893e3b3dd5720da2c8a5ae1e6e4cb8
2018-01-05 14:44:52 +00:00
headers = {'X-Delete-After': '0',
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Correct 400 response message when x-delete-after is zero Before an x-delete-after header with value '0' would almost certainly result in a 400 response, but the response body would report a problem with x-delete-at. Now the response correctly blames the x-delete-after header. Related-Change: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Change-Id: Ia8d00fcef8893e3b3dd5720da2c8a5ae1e6e4cb8
2018-01-05 14:44:52 +00:00
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
Request.blank('/', headers=headers))
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'X-Delete-After in past', cm.exception.body)
Correct 400 response message when x-delete-after is zero Before an x-delete-after header with value '0' would almost certainly result in a 400 response, but the response body would report a problem with x-delete-at. Now the response correctly blames the x-delete-after header. Related-Change: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Change-Id: Ia8d00fcef8893e3b3dd5720da2c8a5ae1e6e4cb8
2018-01-05 14:44:52 +00:00
Disallow x-delete-at equal to x-timestamp Previously an x-delete-at value equal to the x-timestamp value was allowed. This could only occur when x-timestamp happened to take an integer value and would result in an object that was immediately unreadable. Similarly an x-delete-after value of zero may previously have been accepted if x-timestamp happened to be an integer value. With this change an x-delete-at value equal to x-timestamp or an x-delete-after value of zero always results in a 400 BadRequest. Also cleans up check_delete_headers docstring. Related-Change: Ia8d00fcef8893e3b3dd5720da2c8a5ae1e6e4cb8 Related-Change: Ib2483444d3999e13ba83ca2edd3a8ef8e5c48548 Change-Id: I27fdd800d8e149302ff4d6531101e9726a14d471
2018-01-08 10:14:06 +00:00
# x-delete-after = 0 disallowed when it results in x-delete-at equal to
# the timestamp
headers = {'X-Delete-After': '0',
'X-Timestamp': utils.Timestamp(int(ts)).internal}
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
Request.blank('/', headers=headers))
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'X-Delete-After in past', cm.exception.body)
Disallow x-delete-at equal to x-timestamp Previously an x-delete-at value equal to the x-timestamp value was allowed. This could only occur when x-timestamp happened to take an integer value and would result in an object that was immediately unreadable. Similarly an x-delete-after value of zero may previously have been accepted if x-timestamp happened to be an integer value. With this change an x-delete-at value equal to x-timestamp or an x-delete-after value of zero always results in a 400 BadRequest. Also cleans up check_delete_headers docstring. Related-Change: Ia8d00fcef8893e3b3dd5720da2c8a5ae1e6e4cb8 Related-Change: Ib2483444d3999e13ba83ca2edd3a8ef8e5c48548 Change-Id: I27fdd800d8e149302ff4d6531101e9726a14d471
2018-01-08 10:14:06 +00:00
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
# X-Delete-At
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
delete_at = str(int(ts) + 100)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'X-Delete-At': delete_at,
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
req = constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertIsInstance(req, Request)
self.assertIn('x-delete-at', req.headers)
self.assertEqual(req.headers.get('X-Delete-At'), delete_at)
headers = {'X-Delete-At': 'abc',
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Non-integer X-Delete-At', cm.exception.body)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
delete_at = str(int(ts) + 100) + '.1'
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'X-Delete-At': delete_at,
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'Non-integer X-Delete-At', cm.exception.body)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
delete_at = str(int(ts) - 1)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'X-Delete-At': delete_at,
Fix intermittent check_delete_headers failure Use a utils.Timestamp object to set a more realistic x-timestamp header to avoid intermittent failure when str(time.time()) results in a rounded up value. Closes-Bug: 1741912 Change-Id: I0c54d07e30ecb391f9429e7bcfb782f965ece1ea
2018-01-08 14:36:53 +00:00
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Request.blank('/', headers=headers))
Disallow x-delete-at equal to x-timestamp Previously an x-delete-at value equal to the x-timestamp value was allowed. This could only occur when x-timestamp happened to take an integer value and would result in an object that was immediately unreadable. Similarly an x-delete-after value of zero may previously have been accepted if x-timestamp happened to be an integer value. With this change an x-delete-at value equal to x-timestamp or an x-delete-after value of zero always results in a 400 BadRequest. Also cleans up check_delete_headers docstring. Related-Change: Ia8d00fcef8893e3b3dd5720da2c8a5ae1e6e4cb8 Related-Change: Ib2483444d3999e13ba83ca2edd3a8ef8e5c48548 Change-Id: I27fdd800d8e149302ff4d6531101e9726a14d471
2018-01-08 10:14:06 +00:00
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'X-Delete-At in past', cm.exception.body)
Disallow x-delete-at equal to x-timestamp Previously an x-delete-at value equal to the x-timestamp value was allowed. This could only occur when x-timestamp happened to take an integer value and would result in an object that was immediately unreadable. Similarly an x-delete-after value of zero may previously have been accepted if x-timestamp happened to be an integer value. With this change an x-delete-at value equal to x-timestamp or an x-delete-after value of zero always results in a 400 BadRequest. Also cleans up check_delete_headers docstring. Related-Change: Ia8d00fcef8893e3b3dd5720da2c8a5ae1e6e4cb8 Related-Change: Ib2483444d3999e13ba83ca2edd3a8ef8e5c48548 Change-Id: I27fdd800d8e149302ff4d6531101e9726a14d471
2018-01-08 10:14:06 +00:00
# x-delete-at disallowed when exactly equal to timestamp
delete_at = str(int(ts))
headers = {'X-Delete-At': delete_at,
'X-Timestamp': utils.Timestamp(int(ts)).internal}
with self.assertRaises(HTTPException) as cm:
constraints.check_delete_headers(
Request.blank('/', headers=headers))
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertEqual(cm.exception.status_int, HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertIn(b'X-Delete-At in past', cm.exception.body)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
def test_check_delete_headers_removes_delete_after(self):
Fix intermittent unit test failure test_check_delete_headers_removes_delete_after was failing intermittently due to rounding of float time values. Change-Id: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b Closes-Bug: #1743804
2018-01-17 15:25:33 +00:00
ts = utils.Timestamp.now()
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
headers = {'Content-Length': '0',
'Content-Type': 'text/plain',
'X-Delete-After': '42',
Fix intermittent unit test failure test_check_delete_headers_removes_delete_after was failing intermittently due to rounding of float time values. Change-Id: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b Closes-Bug: #1743804
2018-01-17 15:25:33 +00:00
'X-Delete-At': str(int(ts) + 40),
'X-Timestamp': ts.internal}
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
req = Request.blank('/', headers=headers)
constraints.check_delete_headers(req)
self.assertNotIn('X-Delete-After', req.headers)
Fix intermittent unit test failure test_check_delete_headers_removes_delete_after was failing intermittently due to rounding of float time values. Change-Id: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b Closes-Bug: #1743804
2018-01-17 15:25:33 +00:00
self.assertEqual(req.headers['X-Delete-At'], str(int(ts) + 42))
moving object validation checks to top of PUT method This adds a sanity check on x-delete headers as part of check_object_creation method Change-Id: If5069469e433189235b1178ea203b5c8a926f553 Signed-off-by: Thiago da Silva <thiago@redhat.com>
2014-08-21 10:33:30 -04:00
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
def test_check_delete_headers_sets_delete_at(self):
Fix flakey test_check_delete_headers_sets_delete_at It was rare (saw it once in 10k runs running locally), but it's ocassionally blown up in the gate [1]. With this, no fails locally even after 100k runs. [1] http://logs.openstack.org/11/538011/3/gate/swift-tox-py27/06c06f0/job-output.txt.gz#_2018-02-07_03_29_09_578389 Change-Id: I7701d2db2ec82b48559c5b74a2e08c4403fd5dec Related-Change: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b
2018-02-07 05:50:12 +00:00
ts = utils.Timestamp.now()
expected = str(int(ts) + 1000)
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
# check delete-at is passed through
headers = {'Content-Length': '0',
'Content-Type': 'text/plain',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'X-Delete-At': expected,
Fix flakey test_check_delete_headers_sets_delete_at It was rare (saw it once in 10k runs running locally), but it's ocassionally blown up in the gate [1]. With this, no fails locally even after 100k runs. [1] http://logs.openstack.org/11/538011/3/gate/swift-tox-py27/06c06f0/job-output.txt.gz#_2018-02-07_03_29_09_578389 Change-Id: I7701d2db2ec82b48559c5b74a2e08c4403fd5dec Related-Change: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b
2018-02-07 05:50:12 +00:00
'X-Timestamp': ts.internal}
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
req = Request.blank('/', headers=headers)
constraints.check_delete_headers(req)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertIn('X-Delete-At', req.headers)
self.assertEqual(req.headers['X-Delete-At'], expected)
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
# check delete-after is converted to delete-at
headers = {'Content-Length': '0',
'Content-Type': 'text/plain',
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
'X-Delete-After': '42',
Fix flakey test_check_delete_headers_sets_delete_at It was rare (saw it once in 10k runs running locally), but it's ocassionally blown up in the gate [1]. With this, no fails locally even after 100k runs. [1] http://logs.openstack.org/11/538011/3/gate/swift-tox-py27/06c06f0/job-output.txt.gz#_2018-02-07_03_29_09_578389 Change-Id: I7701d2db2ec82b48559c5b74a2e08c4403fd5dec Related-Change: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b
2018-02-07 05:50:12 +00:00
'X-Timestamp': ts.internal}
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
req = Request.blank('/', headers=headers)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
constraints.check_delete_headers(req)
self.assertIn('X-Delete-At', req.headers)
Fix flakey test_check_delete_headers_sets_delete_at It was rare (saw it once in 10k runs running locally), but it's ocassionally blown up in the gate [1]. With this, no fails locally even after 100k runs. [1] http://logs.openstack.org/11/538011/3/gate/swift-tox-py27/06c06f0/job-output.txt.gz#_2018-02-07_03_29_09_578389 Change-Id: I7701d2db2ec82b48559c5b74a2e08c4403fd5dec Related-Change: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b
2018-02-07 05:50:12 +00:00
expected = str(int(ts) + 42)
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
self.assertEqual(req.headers['X-Delete-At'], expected)
# check delete-after takes precedence over delete-at
headers = {'Content-Length': '0',
'Content-Type': 'text/plain',
'X-Delete-After': '42',
Fix flakey test_check_delete_headers_sets_delete_at It was rare (saw it once in 10k runs running locally), but it's ocassionally blown up in the gate [1]. With this, no fails locally even after 100k runs. [1] http://logs.openstack.org/11/538011/3/gate/swift-tox-py27/06c06f0/job-output.txt.gz#_2018-02-07_03_29_09_578389 Change-Id: I7701d2db2ec82b48559c5b74a2e08c4403fd5dec Related-Change: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b
2018-02-07 05:50:12 +00:00
'X-Delete-At': str(int(ts) + 40),
'X-Timestamp': ts.internal}
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
req = Request.blank('/', headers=headers)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
constraints.check_delete_headers(req)
self.assertIn('X-Delete-At', req.headers)
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
self.assertEqual(req.headers['X-Delete-At'], expected)
headers = {'Content-Length': '0',
'Content-Type': 'text/plain',
'X-Delete-After': '42',
Fix flakey test_check_delete_headers_sets_delete_at It was rare (saw it once in 10k runs running locally), but it's ocassionally blown up in the gate [1]. With this, no fails locally even after 100k runs. [1] http://logs.openstack.org/11/538011/3/gate/swift-tox-py27/06c06f0/job-output.txt.gz#_2018-02-07_03_29_09_578389 Change-Id: I7701d2db2ec82b48559c5b74a2e08c4403fd5dec Related-Change: Ia126ad6988f387bbd2d1f5ddff0a56d457a1fc9b
2018-02-07 05:50:12 +00:00
'X-Delete-At': str(int(ts) + 44),
'X-Timestamp': ts.internal}
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
req = Request.blank('/', headers=headers)
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
constraints.check_delete_headers(req)
self.assertIn('X-Delete-At', req.headers)
Extra unit tests for check_delete_headers A few extra tests to verify check_delete_headers in constraints.py. A little duplication of coverage of existing proxy/controllers/test_obj.py:TestObjController.test_POST_delete_at but these tests call the recently refactored function directly, and also add tests for X-Delete-After taking precedence over X-Delete-At. Change-Id: I129cef15a6feac8a60fd4efbb3535d93f0eaab36
2014-09-08 14:06:00 +01:00
self.assertEqual(req.headers['X-Delete-At'], expected)
Always require device dir for containers For test purposes (e.g. saio probetests) even if mount_check is False, still require check_dir for account/container server storage when real mount points are not used. This behavior is consistent with the object-server's checks in diskfile. Co-Author: Clay Gerrard <clay.gerrard@gmail.com> Related lp bug #1693005 Related-Change-Id: I344f9daaa038c6946be11e1cf8c4ef104a09e68b Depends-On: I52c4ecb70b1ae47e613ba243da5a4d94e5adedf2 Change-Id: I3362a6ebff423016bb367b4b6b322bb41ae08764
2017-04-19 15:09:40 +02:00
def test_check_drive_invalid_path(self):
root = '/srv/'
with mock_check_drive() as mocks:
Have check_drive raise ValueError on errors ...which helps us differentiate between a drive that's not mounted vs. not a dir better in log messages. We were already doing that a bit in diskfile.py, and it seems like a useful distinction; let's do it more. While we're at it, remove some log translations. Related-Change: I941ffbc568ebfa5964d49964dc20c382a5e2ec2a Related-Change: I3362a6ebff423016bb367b4b6b322bb41ae08764 Change-Id: Ife0d34f9482adb4524d1ab1fe6c335c6b287c2fd Partial-Bug: 1674543
2017-09-15 06:15:40 +00:00
drive = 'foo?bar'
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_dir(root, drive)
self.assertEqual(str(exc_mgr.exception),
'%s is not a valid drive name' % drive)
drive = 'foo bar'
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_mount(root, drive)
self.assertEqual(str(exc_mgr.exception),
'%s is not a valid drive name' % drive)
drive = 'foo/bar'
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_drive(root, drive, True)
self.assertEqual(str(exc_mgr.exception),
'%s is not a valid drive name' % drive)
drive = 'foo%bar'
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_drive(root, drive, False)
self.assertEqual(str(exc_mgr.exception),
'%s is not a valid drive name' % drive)
Always require device dir for containers For test purposes (e.g. saio probetests) even if mount_check is False, still require check_dir for account/container server storage when real mount points are not used. This behavior is consistent with the object-server's checks in diskfile. Co-Author: Clay Gerrard <clay.gerrard@gmail.com> Related lp bug #1693005 Related-Change-Id: I344f9daaa038c6946be11e1cf8c4ef104a09e68b Depends-On: I52c4ecb70b1ae47e613ba243da5a4d94e5adedf2 Change-Id: I3362a6ebff423016bb367b4b6b322bb41ae08764
2017-04-19 15:09:40 +02:00
self.assertEqual([], mocks['isdir'].call_args_list)
self.assertEqual([], mocks['ismount'].call_args_list)
def test_check_drive_ismount(self):
root = '/srv'
path = 'sdb1'
with mock_check_drive(ismount=True) as mocks:
Have check_drive raise ValueError on errors ...which helps us differentiate between a drive that's not mounted vs. not a dir better in log messages. We were already doing that a bit in diskfile.py, and it seems like a useful distinction; let's do it more. While we're at it, remove some log translations. Related-Change: I941ffbc568ebfa5964d49964dc20c382a5e2ec2a Related-Change: I3362a6ebff423016bb367b4b6b322bb41ae08764 Change-Id: Ife0d34f9482adb4524d1ab1fe6c335c6b287c2fd Partial-Bug: 1674543
2017-09-15 06:15:40 +00:00
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_dir(root, path)
self.assertEqual(str(exc_mgr.exception),
'/srv/sdb1 is not a directory')
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_drive(root, path, False)
self.assertEqual(str(exc_mgr.exception),
'/srv/sdb1 is not a directory')
Always require device dir for containers For test purposes (e.g. saio probetests) even if mount_check is False, still require check_dir for account/container server storage when real mount points are not used. This behavior is consistent with the object-server's checks in diskfile. Co-Author: Clay Gerrard <clay.gerrard@gmail.com> Related lp bug #1693005 Related-Change-Id: I344f9daaa038c6946be11e1cf8c4ef104a09e68b Depends-On: I52c4ecb70b1ae47e613ba243da5a4d94e5adedf2 Change-Id: I3362a6ebff423016bb367b4b6b322bb41ae08764
2017-04-19 15:09:40 +02:00
self.assertEqual([mock.call('/srv/sdb1'), mock.call('/srv/sdb1')],
mocks['isdir'].call_args_list)
self.assertEqual([], mocks['ismount'].call_args_list)
Have check_drive raise ValueError on errors ...which helps us differentiate between a drive that's not mounted vs. not a dir better in log messages. We were already doing that a bit in diskfile.py, and it seems like a useful distinction; let's do it more. While we're at it, remove some log translations. Related-Change: I941ffbc568ebfa5964d49964dc20c382a5e2ec2a Related-Change: I3362a6ebff423016bb367b4b6b322bb41ae08764 Change-Id: Ife0d34f9482adb4524d1ab1fe6c335c6b287c2fd Partial-Bug: 1674543
2017-09-15 06:15:40 +00:00
Always require device dir for containers For test purposes (e.g. saio probetests) even if mount_check is False, still require check_dir for account/container server storage when real mount points are not used. This behavior is consistent with the object-server's checks in diskfile. Co-Author: Clay Gerrard <clay.gerrard@gmail.com> Related lp bug #1693005 Related-Change-Id: I344f9daaa038c6946be11e1cf8c4ef104a09e68b Depends-On: I52c4ecb70b1ae47e613ba243da5a4d94e5adedf2 Change-Id: I3362a6ebff423016bb367b4b6b322bb41ae08764
2017-04-19 15:09:40 +02:00
with mock_check_drive(ismount=True) as mocks:
self.assertEqual('/srv/sdb1', constraints.check_mount(root, path))
self.assertEqual('/srv/sdb1', constraints.check_drive(
root, path, True))
self.assertEqual([], mocks['isdir'].call_args_list)
self.assertEqual([mock.call('/srv/sdb1'), mock.call('/srv/sdb1')],
mocks['ismount'].call_args_list)
def test_check_drive_isdir(self):
root = '/srv'
path = 'sdb2'
with mock_check_drive(isdir=True) as mocks:
self.assertEqual('/srv/sdb2', constraints.check_dir(root, path))
self.assertEqual('/srv/sdb2', constraints.check_drive(
root, path, False))
self.assertEqual([mock.call('/srv/sdb2'), mock.call('/srv/sdb2')],
mocks['isdir'].call_args_list)
self.assertEqual([], mocks['ismount'].call_args_list)
Have check_drive raise ValueError on errors ...which helps us differentiate between a drive that's not mounted vs. not a dir better in log messages. We were already doing that a bit in diskfile.py, and it seems like a useful distinction; let's do it more. While we're at it, remove some log translations. Related-Change: I941ffbc568ebfa5964d49964dc20c382a5e2ec2a Related-Change: I3362a6ebff423016bb367b4b6b322bb41ae08764 Change-Id: Ife0d34f9482adb4524d1ab1fe6c335c6b287c2fd Partial-Bug: 1674543
2017-09-15 06:15:40 +00:00
Always require device dir for containers For test purposes (e.g. saio probetests) even if mount_check is False, still require check_dir for account/container server storage when real mount points are not used. This behavior is consistent with the object-server's checks in diskfile. Co-Author: Clay Gerrard <clay.gerrard@gmail.com> Related lp bug #1693005 Related-Change-Id: I344f9daaa038c6946be11e1cf8c4ef104a09e68b Depends-On: I52c4ecb70b1ae47e613ba243da5a4d94e5adedf2 Change-Id: I3362a6ebff423016bb367b4b6b322bb41ae08764
2017-04-19 15:09:40 +02:00
with mock_check_drive(isdir=True) as mocks:
Have check_drive raise ValueError on errors ...which helps us differentiate between a drive that's not mounted vs. not a dir better in log messages. We were already doing that a bit in diskfile.py, and it seems like a useful distinction; let's do it more. While we're at it, remove some log translations. Related-Change: I941ffbc568ebfa5964d49964dc20c382a5e2ec2a Related-Change: I3362a6ebff423016bb367b4b6b322bb41ae08764 Change-Id: Ife0d34f9482adb4524d1ab1fe6c335c6b287c2fd Partial-Bug: 1674543
2017-09-15 06:15:40 +00:00
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_mount(root, path)
self.assertEqual(str(exc_mgr.exception),
'/srv/sdb2 is not mounted')
with self.assertRaises(ValueError) as exc_mgr:
constraints.check_drive(root, path, True)
self.assertEqual(str(exc_mgr.exception),
'/srv/sdb2 is not mounted')
Always require device dir for containers For test purposes (e.g. saio probetests) even if mount_check is False, still require check_dir for account/container server storage when real mount points are not used. This behavior is consistent with the object-server's checks in diskfile. Co-Author: Clay Gerrard <clay.gerrard@gmail.com> Related lp bug #1693005 Related-Change-Id: I344f9daaa038c6946be11e1cf8c4ef104a09e68b Depends-On: I52c4ecb70b1ae47e613ba243da5a4d94e5adedf2 Change-Id: I3362a6ebff423016bb367b4b6b322bb41ae08764
2017-04-19 15:09:40 +02:00
self.assertEqual([], mocks['isdir'].call_args_list)
self.assertEqual([mock.call('/srv/sdb2'), mock.call('/srv/sdb2')],
mocks['ismount'].call_args_list)
moved LIMIT_LISTING const to swift.common.constraints, added test.unit.MockTrue, 100% test coverage on swift.common.constraints
2010-07-29 13:30:16 -05:00
def test_check_float(self):
self.assertFalse(constraints.check_float(''))
self.assertTrue(constraints.check_float('0'))
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
Add two vector timestamps The normalized form of the X-Timestamp header looks like a float with a fixed width to ensure stable string sorting - normalized timestamps look like "1402464677.04188" To support overwrites of existing data without modifying the original timestamp but still maintain consistency a second internal offset vector is append to the normalized timestamp form which compares and sorts greater than the fixed width float format but less than a newer timestamp. The internalized format of timestamps looks like "1402464677.04188_0000000000000000" - the portion after the underscore is the offset and is a formatted hexadecimal integer. The internalized form is not exposed to clients in responses from Swift. Normal client operations will not create a timestamp with an offset. The Timestamp class in common.utils supports internalized and normalized formatting of timestamps and also comparison of timestamp values. When the offset value of a Timestamp is 0 - it's considered insignificant and need not be represented in the string format; to support backwards compatibility during a Swift upgrade the internalized and normalized form of a Timestamp with an insignificant offset are identical. When a timestamp includes an offset it will always be represented in the internalized form, but is still excluded from the normalized form. Timestamps with an equivalent timestamp portion (the float part) will compare and order by their offset. Timestamps with a greater timestamp portion will always compare and order greater than a Timestamp with a lesser timestamp regardless of it's offset. String comparison and ordering is guaranteed for the internalized string format, and is backwards compatible for normalized timestamps which do not include an offset. The reconciler currently uses a offset bump to ensure that objects can move to the wrong storage policy and be moved back. This use-case is valid because the content represented by the user-facing timestamp is not modified in way. Future consumers of the offset vector of timestamps should be mindful of HTTP semantics of If-Modified and take care to avoid deviation in the response from the object server without an accompanying change to the user facing timestamp. DocImpact Implements: blueprint storage-policies Change-Id: Id85c960b126ec919a481dc62469bf172b7fb8549
2014-06-10 22:17:47 -07:00
def test_valid_timestamp(self):
self.assertRaises(HTTPException,
constraints.valid_timestamp,
Request.blank('/'))
self.assertRaises(HTTPException,
constraints.valid_timestamp,
Request.blank('/', headers={
'X-Timestamp': 'asdf'}))
Add Timestamp.now() helper Often, we want the current timestamp. May as well improve the ergonomics a bit and provide a class method for it. Change-Id: I3581c635c094a8c4339e9b770331a03eab704074
2017-04-27 14:19:00 -07:00
timestamp = utils.Timestamp.now()
Add two vector timestamps The normalized form of the X-Timestamp header looks like a float with a fixed width to ensure stable string sorting - normalized timestamps look like "1402464677.04188" To support overwrites of existing data without modifying the original timestamp but still maintain consistency a second internal offset vector is append to the normalized timestamp form which compares and sorts greater than the fixed width float format but less than a newer timestamp. The internalized format of timestamps looks like "1402464677.04188_0000000000000000" - the portion after the underscore is the offset and is a formatted hexadecimal integer. The internalized form is not exposed to clients in responses from Swift. Normal client operations will not create a timestamp with an offset. The Timestamp class in common.utils supports internalized and normalized formatting of timestamps and also comparison of timestamp values. When the offset value of a Timestamp is 0 - it's considered insignificant and need not be represented in the string format; to support backwards compatibility during a Swift upgrade the internalized and normalized form of a Timestamp with an insignificant offset are identical. When a timestamp includes an offset it will always be represented in the internalized form, but is still excluded from the normalized form. Timestamps with an equivalent timestamp portion (the float part) will compare and order by their offset. Timestamps with a greater timestamp portion will always compare and order greater than a Timestamp with a lesser timestamp regardless of it's offset. String comparison and ordering is guaranteed for the internalized string format, and is backwards compatible for normalized timestamps which do not include an offset. The reconciler currently uses a offset bump to ensure that objects can move to the wrong storage policy and be moved back. This use-case is valid because the content represented by the user-facing timestamp is not modified in way. Future consumers of the offset vector of timestamps should be mindful of HTTP semantics of If-Modified and take care to avoid deviation in the response from the object server without an accompanying change to the user facing timestamp. DocImpact Implements: blueprint storage-policies Change-Id: Id85c960b126ec919a481dc62469bf172b7fb8549
2014-06-10 22:17:47 -07:00
req = Request.blank('/', headers={'X-Timestamp': timestamp.internal})
self.assertEqual(timestamp, constraints.valid_timestamp(req))
req = Request.blank('/', headers={'X-Timestamp': timestamp.normal})
self.assertEqual(timestamp, constraints.valid_timestamp(req))
Adapt Swift for WebOb 1.2 Based on PatchSet 3 of https://review.openstack.org/#/c/7569/ , make them to pass all funcional tests with both webob 1.x and 1.2. The additional following compatibility issues were addressed: - Until patch for range header issue is merged into official webob release, testRangedGetsWithLWSinHeader() should skip test against webob 1.2 (https://github.com/Pylons/webob/commit/49c175aec2b5c134511dfea6564bfb1d37ab23a9) - common.constraints.check_utf8() can accept both utf8 str and unicode. - To convert unicode to utf-8 str if necessary. - Making proxy_logging can handle invalid utf-8 str bug 888371 bug 959881 blueprint webob-support Change-Id: I00e5fd04cd1653259606a4ffdd4926db3c84c496
2012-06-06 03:39:53 +09:00
def test_check_utf8(self):
unicode_sample = u'\uc77c\uc601'
Reject names with NULL characters Unfortunately, SQLite truncates strings with null characters. Additionally, XML pretty much hates them too. Change-Id: Id9a8eaa27b841db6350d6959c202d3e3d6462b35
2013-01-12 06:54:17 +00:00
unicode_with_null = u'abc\u0000def'
Adapt Swift for WebOb 1.2 Based on PatchSet 3 of https://review.openstack.org/#/c/7569/ , make them to pass all funcional tests with both webob 1.x and 1.2. The additional following compatibility issues were addressed: - Until patch for range header issue is merged into official webob release, testRangedGetsWithLWSinHeader() should skip test against webob 1.2 (https://github.com/Pylons/webob/commit/49c175aec2b5c134511dfea6564bfb1d37ab23a9) - common.constraints.check_utf8() can accept both utf8 str and unicode. - To convert unicode to utf-8 str if necessary. - Making proxy_logging can handle invalid utf-8 str bug 888371 bug 959881 blueprint webob-support Change-Id: I00e5fd04cd1653259606a4ffdd4926db3c84c496
2012-06-06 03:39:53 +09:00
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
# Some false-y values
self.assertFalse(constraints.check_utf8(None))
self.assertFalse(constraints.check_utf8(''))
self.assertFalse(constraints.check_utf8(b''))
self.assertFalse(constraints.check_utf8(u''))
# invalid utf8 bytes
self.assertFalse(constraints.check_utf8(
unicode_sample.encode('utf-8')[::-1]))
# unicode with null
self.assertFalse(constraints.check_utf8(unicode_with_null))
# utf8 bytes with null
self.assertFalse(constraints.check_utf8(
unicode_with_null.encode('utf8')))
self.assertTrue(constraints.check_utf8('this is ascii and utf-8, too'))
self.assertTrue(constraints.check_utf8(unicode_sample))
self.assertTrue(constraints.check_utf8(unicode_sample.encode('utf8')))
Adapt Swift for WebOb 1.2 Based on PatchSet 3 of https://review.openstack.org/#/c/7569/ , make them to pass all funcional tests with both webob 1.x and 1.2. The additional following compatibility issues were addressed: - Until patch for range header issue is merged into official webob release, testRangedGetsWithLWSinHeader() should skip test against webob 1.2 (https://github.com/Pylons/webob/commit/49c175aec2b5c134511dfea6564bfb1d37ab23a9) - common.constraints.check_utf8() can accept both utf8 str and unicode. - To convert unicode to utf-8 str if necessary. - Making proxy_logging can handle invalid utf-8 str bug 888371 bug 959881 blueprint webob-support Change-Id: I00e5fd04cd1653259606a4ffdd4926db3c84c496
2012-06-06 03:39:53 +09:00
reject problematic object names We had this problem: >> : x = '\xed\xa0\xbc\xed\xbc\xb8' >> : x == x.decode('utf-8').encode('utf-8') << : False That str contains two utf-8 codepoints, which I guess python is normalizing into one unicode character, which it then encodes as one utf-8 codepoint. Like this: >> : u'\ud83c\udf38' << : u'\U0001f338' I don't entirely understand that, but having a different byte representation after round-tripping through unicode causes problems with replication and listings. This patch just rejects anything that doesn't re-encode to the same thing. If someone smarter wants to do something different, please speak up. Change-Id: I9ac48ac2693e4121be6585c6e4f5d0079e9bb3e4
2014-10-27 16:29:07 +00:00
def test_check_utf8_non_canonical(self):
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertFalse(constraints.check_utf8(b'\xed\xa0\xbc\xed\xbc\xb8'))
self.assertTrue(constraints.check_utf8(u'\U0001f338'))
self.assertTrue(constraints.check_utf8(b'\xf0\x9f\x8c\xb8'))
self.assertTrue(constraints.check_utf8(u'\U0001f338'.encode('utf8')))
self.assertFalse(constraints.check_utf8(b'\xed\xa0\xbd\xed\xb9\x88'))
self.assertTrue(constraints.check_utf8(u'\U0001f648'))
reject problematic object names We had this problem: >> : x = '\xed\xa0\xbc\xed\xbc\xb8' >> : x == x.decode('utf-8').encode('utf-8') << : False That str contains two utf-8 codepoints, which I guess python is normalizing into one unicode character, which it then encodes as one utf-8 codepoint. Like this: >> : u'\ud83c\udf38' << : u'\U0001f338' I don't entirely understand that, but having a different byte representation after round-tripping through unicode causes problems with replication and listings. This patch just rejects anything that doesn't re-encode to the same thing. If someone smarter wants to do something different, please speak up. Change-Id: I9ac48ac2693e4121be6585c6e4f5d0079e9bb3e4
2014-10-27 16:29:07 +00:00
Reject object names with Unicode surrogates Technically, you can't encode surrogates into UTF-8 at all, but Python 2 lets you get away with it. Python 3 does not. We already have a check for surrogate pairs (commit 0080337), but not one for lone surrogates. This commit forbids object names with lone surrogates in them. The problem with surrogates is trivially reproducible: swift@saio:~$ python2.7 Python 2.7.3 (default, Feb 27 2014, 19:58:35) [GCC 4.6.3] on linux2 Type "help", "copyright", "credits" or "license" for more information. >>> b'\xed\xa0\xbc'.decode('utf-8') u'\ud83c' >>> swift@saio:~$ python3.3 Python 3.3.5 (default, Aug 4 2014, 15:27:24) [GCC 4.6.3] on linux Type "help", "copyright", "credits" or "license" for more information. >>> b'\xed\xa0\xbc'.decode('utf-8') Traceback (most recent call last): File "<stdin>", line 1, in <module> UnicodeDecodeError: 'utf-8' codec can't decode byte 0xed in position 0: invalid continuation byte >>> See also http://bugs.python.org/issue9133 Change-Id: I7c31022e8a028c3cdf2ed1586349509d96cfded9
2014-11-07 13:53:46 -08:00
def test_check_utf8_lone_surrogates(self):
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertFalse(constraints.check_utf8(b'\xed\xa0\xbc'))
self.assertFalse(constraints.check_utf8(u'\ud83c'))
self.assertFalse(constraints.check_utf8(b'\xed\xb9\x88'))
self.assertFalse(constraints.check_utf8(u'\ude48'))
self.assertFalse(constraints.check_utf8(u'\ud800'))
self.assertFalse(constraints.check_utf8(u'\udc00'))
self.assertFalse(constraints.check_utf8(u'\udcff'))
self.assertFalse(constraints.check_utf8(u'\udfff'))
Reject object names with Unicode surrogates Technically, you can't encode surrogates into UTF-8 at all, but Python 2 lets you get away with it. Python 3 does not. We already have a check for surrogate pairs (commit 0080337), but not one for lone surrogates. This commit forbids object names with lone surrogates in them. The problem with surrogates is trivially reproducible: swift@saio:~$ python2.7 Python 2.7.3 (default, Feb 27 2014, 19:58:35) [GCC 4.6.3] on linux2 Type "help", "copyright", "credits" or "license" for more information. >>> b'\xed\xa0\xbc'.decode('utf-8') u'\ud83c' >>> swift@saio:~$ python3.3 Python 3.3.5 (default, Aug 4 2014, 15:27:24) [GCC 4.6.3] on linux Type "help", "copyright", "credits" or "license" for more information. >>> b'\xed\xa0\xbc'.decode('utf-8') Traceback (most recent call last): File "<stdin>", line 1, in <module> UnicodeDecodeError: 'utf-8' codec can't decode byte 0xed in position 0: invalid continuation byte >>> See also http://bugs.python.org/issue9133 Change-Id: I7c31022e8a028c3cdf2ed1586349509d96cfded9
2014-11-07 13:53:46 -08:00
Static Large Object Support DocImpact Change-Id: I7edaa5e44208ab451f7f7566b64bb571b8eea1f9
2013-02-13 12:31:55 -08:00
def test_validate_bad_meta(self):
req = Request.blank(
'/v/a/c/o',
headers={'x-object-meta-hello':
'ab' * constraints.MAX_HEADER_SIZE})
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(constraints.check_metadata(req, 'object').status_int,
HTTP_BAD_REQUEST)
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
resp = constraints.check_metadata(req, 'object')
self.assertIsNotNone(resp)
self.assertIn(b'x-object-meta-hello', resp.body.lower())
Static Large Object Support DocImpact Change-Id: I7edaa5e44208ab451f7f7566b64bb571b8eea1f9
2013-02-13 12:31:55 -08:00
Add max_header_size to swift.conf-sample and relative UT 1. Add explanation of MAX_HEADER_SIZE into swift.conf-sample as same as other settings in swift.conf. Especially point out the default size of header line in eventlet is 8192 which is the main reason why we set 8192 for MAX_HEADER_SIZE in swift. 2. Add some unit tests to check valid settings in swift.conf. Test cases in test_constraints use /etc/swift/swift.conf if exists, and if any wrong settings are in it (MAX_META_VALE > MAX_META_OVERALL_SIZE), swift's unit test must fail. These new unit tests is used in this case. Change-Id: I7bb21951d46050163c1b7bceac8d49302b9209f7
2013-06-19 01:02:37 +08:00
def test_validate_constraints(self):
c = constraints
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertGreater(c.MAX_META_OVERALL_SIZE, c.MAX_META_NAME_LENGTH)
self.assertGreater(c.MAX_META_OVERALL_SIZE, c.MAX_META_VALUE_LENGTH)
self.assertGreater(c.MAX_HEADER_SIZE, c.MAX_META_NAME_LENGTH)
self.assertGreater(c.MAX_HEADER_SIZE, c.MAX_META_VALUE_LENGTH)
Add max_header_size to swift.conf-sample and relative UT 1. Add explanation of MAX_HEADER_SIZE into swift.conf-sample as same as other settings in swift.conf. Especially point out the default size of header line in eventlet is 8192 which is the main reason why we set 8192 for MAX_HEADER_SIZE in swift. 2. Add some unit tests to check valid settings in swift.conf. Test cases in test_constraints use /etc/swift/swift.conf if exists, and if any wrong settings are in it (MAX_META_VALE > MAX_META_OVERALL_SIZE), swift's unit test must fail. These new unit tests is used in this case. Change-Id: I7bb21951d46050163c1b7bceac8d49302b9209f7
2013-06-19 01:02:37 +08:00
account to account copy implementation Adds ability to copy objects between different accounts (on server side) Adds new header to `PUT` request: `X-Copy-From-Account: <account name>` Account name corresponds to the last part of storage URL. Adds new header to `COPY` request: `Destination-Account: <account name>` Account name corresponds to the last part of storage URL. If your storage URL is: http://server:8080/v1/AUTH_test Then the account name is `AUTH_test` These headers should be used alongside `X-Copy-From` and `Destination` headers The legacy headers should specify `<container name>/<object name>` path as usual. DocImpact Change-Id: I0285fe6a47df9e699ac20ae4a83b0bf23829e1e6
2014-04-30 15:00:49 +03:00
def test_check_account_format(self):
req = Request.blank(
'/v/a/c/o',
headers={'X-Copy-From-Account': 'account/with/slashes'})
self.assertRaises(HTTPException,
constraints.check_account_format,
req, req.headers['X-Copy-From-Account'])
small bug with account to account copy Change-Id: I7fdf432666f7640082e9839b9dc3d7af94a0715f
2015-02-11 11:37:31 -08:00
req = Request.blank(
'/v/a/c/o',
headers={'X-Copy-From-Account': ''})
self.assertRaises(HTTPException,
constraints.check_account_format,
req, req.headers['X-Copy-From-Account'])
account to account copy implementation Adds ability to copy objects between different accounts (on server side) Adds new header to `PUT` request: `X-Copy-From-Account: <account name>` Account name corresponds to the last part of storage URL. Adds new header to `COPY` request: `Destination-Account: <account name>` Account name corresponds to the last part of storage URL. If your storage URL is: http://server:8080/v1/AUTH_test Then the account name is `AUTH_test` These headers should be used alongside `X-Copy-From` and `Destination` headers The legacy headers should specify `<container name>/<object name>` path as usual. DocImpact Change-Id: I0285fe6a47df9e699ac20ae4a83b0bf23829e1e6
2014-04-30 15:00:49 +03:00
versioned writes middleware Rewrite object versioning as middleware to simplify the PUT method in the object controller. The functionality remains basically the same with the only major difference being the ability to now version slo manifest files. dlo manifests are still not supported as part of this patch. Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> DocImpact Change-Id: Ie899290b3312e201979eafefb253d1a60b65b837 Signed-off-by: Thiago da Silva <thiago@redhat.com> Signed-off-by: Prashanth Pai <ppai@redhat.com>
2014-11-09 13:13:27 -05:00
def test_check_container_format(self):
invalid_versions_locations = (
'container/with/slashes',
'', # empty
)
for versions_location in invalid_versions_locations:
req = Request.blank(
'/v/a/c/o', headers={
'X-Versions-Location': versions_location})
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
with self.assertRaises(HTTPException) as cm:
versioned writes middleware Rewrite object versioning as middleware to simplify the PUT method in the object controller. The functionality remains basically the same with the only major difference being the ability to now version slo manifest files. dlo manifests are still not supported as part of this patch. Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> DocImpact Change-Id: Ie899290b3312e201979eafefb253d1a60b65b837 Signed-off-by: Thiago da Silva <thiago@redhat.com> Signed-off-by: Prashanth Pai <ppai@redhat.com>
2014-11-09 13:13:27 -05:00
constraints.check_container_format(
req, req.headers['X-Versions-Location'])
Fix time skew when using X-Delete-After When a client sent "X-Delete-After: <n>", the proxy and all object servers would each compute X-Delete-At as "int(time.time() + n)". However, since they don't all compute it at exactly the same time, the objects stored on disk can end up with differing values for X-Delete-At, and in that case, the object-expirer queue has multiple entries for the same object (one for each distinct X-Delete-At value). This commit makes two changes, either one of which is sufficient to fix the bug. First, after computing X-Delete-At from X-Delete-After, X-Delete-After is removed from the request's headers. Thus, the proxy computes X-Delete-At, and the object servers don't, so there's only a single value. Second, computation of X-Delete-At now uses the request's X-Timestamp instead of time.time(). In the proxy, these values are essentially the same; the proxy is responsible for setting X-Timestamp. In the object server, this ensures that all computed X-Delete-At values are identical, even if the object servers' clocks are not, or if one object server takes an extra second to respond to a PUT request. Co-Authored-By: Alistair Coles <alistairncoles@gmail.com> Change-Id: I9a1b6826c4c553f0442cfe2bb78cdf49508fa4a5 Closes-Bug: 1741371
2018-01-04 20:28:28 -08:00
self.assertTrue(cm.exception.body.startswith(
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
b'Container name cannot'))
versioned writes middleware Rewrite object versioning as middleware to simplify the PUT method in the object controller. The functionality remains basically the same with the only major difference being the ability to now version slo manifest files. dlo manifests are still not supported as part of this patch. Co-Authored-By: Clay Gerrard <clay.gerrard@gmail.com> DocImpact Change-Id: Ie899290b3312e201979eafefb253d1a60b65b837 Signed-off-by: Thiago da Silva <thiago@redhat.com> Signed-off-by: Prashanth Pai <ppai@redhat.com>
2014-11-09 13:13:27 -05:00
Add test_valid_api_version in the test_constraints There is a valid_api_version function in the constraints,but it has no tests in the test_constraints. Therefore, I add test_valid_api_version. Change-Id: Ic8dbe9c00f762513ec9a4ffc0b77e4e5d3e5d47b
2016-09-06 11:55:41 +08:00
def test_valid_api_version(self):
version = 'v1'
self.assertTrue(constraints.valid_api_version(version))
version = 'v1.0'
self.assertTrue(constraints.valid_api_version(version))
version = 'v2'
self.assertFalse(constraints.valid_api_version(version))
Remove extra lstat() calls from check_mount The os.path.exists call performs an lstat, but os.path.ismount already performs the same check. However, it performs a separate lstat() call to check for a symlink, which we remove as well, cutting the number performed in half. Sample program to be straced for comparison: from swift.common.constraints import check_mount import os os.write(1, "Starting\n") if check_mount("/", "tmp"): os.write(1, "Mounted\n") Here is the output of a check on a mounted file system (common case) using the new method: ---- strace new ---- write(1, "Starting\n", 9) = 9 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp/..", {st_mode=S_IFDIR|0555, st_size=4096, ...}) = 0 write(1, "Mounted\n", 8) = 8 ---- strace old ---- write(1, "Starting\n", 9) = 9 stat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=8460, ...}) = 0 lstat("/tmp/..", {st_mode=S_IFDIR|0555, st_size=4096, ...}) = 0 write(1, "Mounted\n", 8) = 8 Change-Id: I027c862a2b7d9ff99d7f61bd43ccc0825dba525c Signed-off-by: Peter Portante <peter.portante@redhat.com>
2013-07-19 11:34:12 -04:00
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
class TestConstraintsConfig(unittest.TestCase):
def test_default_constraints(self):
for key in constraints.DEFAULT_CONSTRAINTS:
# if there is local over-rides in swift.conf we just continue on
if key in constraints.OVERRIDE_CONSTRAINTS:
continue
# module level attrs (that aren't in OVERRIDE) should have the
# same value as the DEFAULT map
module_level_value = getattr(constraints, key.upper())
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(constraints.DEFAULT_CONSTRAINTS[key],
module_level_value)
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
def test_effective_constraints(self):
for key in constraints.DEFAULT_CONSTRAINTS:
# module level attrs should always mirror the same value as the
# EFFECTIVE map
module_level_value = getattr(constraints, key.upper())
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(constraints.EFFECTIVE_CONSTRAINTS[key],
module_level_value)
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
# if there are local over-rides in swift.conf those should be
# reflected in the EFFECTIVE, otherwise we expect the DEFAULTs
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(constraints.EFFECTIVE_CONSTRAINTS[key],
constraints.OVERRIDE_CONSTRAINTS.get(
key, constraints.DEFAULT_CONSTRAINTS[key]))
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
def test_override_constraints(self):
try:
with tempfile.NamedTemporaryFile() as f:
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
f.write(b'[swift-constraints]\n')
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
# set everything to 1
for key in constraints.DEFAULT_CONSTRAINTS:
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
f.write(b'%s = 1\n' % key.encode('ascii'))
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
f.flush()
Rework use of constraints to ease testing Prior to this patch both mainline code and testing modules imported and used constraints directly into their own namespace, or relied on the namespace of other modules that were not the constraints module. This meant that if a unit test wanted to change a constraint for its operation, it had to know how that module was using the constraint, instead of referencing the constraint module itself. This patch unifies the use of constraints so that all constraints are referenced via the constraints module. In turn, this allows a test to leverage the re-loadable nature of the constraints in the constraints module. It addition, a number of functional tests where using the default values for constraints, instead of the configured value discovered in a test.conf or in an existing swift.conf. This patch removes those direct references in favor of the load_constraint() method from the test/functional/tests.py module. Change-Id: Ia5313d653c667dd9ca800786de59b59334c34eaa
2014-04-02 16:16:21 -04:00
with mock.patch.object(utils, 'SWIFT_CONF_FILE', f.name):
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
constraints.reload_constraints()
for key in constraints.DEFAULT_CONSTRAINTS:
# module level attrs should all be 1
module_level_value = getattr(constraints, key.upper())
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(module_level_value, 1)
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
# all keys should be in OVERRIDE
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(constraints.OVERRIDE_CONSTRAINTS[key],
module_level_value)
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
# module level attrs should always mirror the same value as
# the EFFECTIVE map
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(constraints.EFFECTIVE_CONSTRAINTS[key],
module_level_value)
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
finally:
constraints.reload_constraints()
def test_reload_reset(self):
try:
with tempfile.NamedTemporaryFile() as f:
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
f.write(b'[swift-constraints]\n')
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
# set everything to 1
for key in constraints.DEFAULT_CONSTRAINTS:
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
f.write(b'%s = 1\n' % key.encode('ascii'))
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
f.flush()
Rework use of constraints to ease testing Prior to this patch both mainline code and testing modules imported and used constraints directly into their own namespace, or relied on the namespace of other modules that were not the constraints module. This meant that if a unit test wanted to change a constraint for its operation, it had to know how that module was using the constraint, instead of referencing the constraint module itself. This patch unifies the use of constraints so that all constraints are referenced via the constraints module. In turn, this allows a test to leverage the re-loadable nature of the constraints in the constraints module. It addition, a number of functional tests where using the default values for constraints, instead of the configured value discovered in a test.conf or in an existing swift.conf. This patch removes those direct references in favor of the load_constraint() method from the test/functional/tests.py module. Change-Id: Ia5313d653c667dd9ca800786de59b59334c34eaa
2014-04-02 16:16:21 -04:00
with mock.patch.object(utils, 'SWIFT_CONF_FILE', f.name):
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
constraints.reload_constraints()
self.assertTrue(constraints.SWIFT_CONSTRAINTS_LOADED)
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(sorted(constraints.DEFAULT_CONSTRAINTS.keys()),
sorted(constraints.OVERRIDE_CONSTRAINTS.keys()))
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
# file is now deleted...
Rework use of constraints to ease testing Prior to this patch both mainline code and testing modules imported and used constraints directly into their own namespace, or relied on the namespace of other modules that were not the constraints module. This meant that if a unit test wanted to change a constraint for its operation, it had to know how that module was using the constraint, instead of referencing the constraint module itself. This patch unifies the use of constraints so that all constraints are referenced via the constraints module. In turn, this allows a test to leverage the re-loadable nature of the constraints in the constraints module. It addition, a number of functional tests where using the default values for constraints, instead of the configured value discovered in a test.conf or in an existing swift.conf. This patch removes those direct references in favor of the load_constraint() method from the test/functional/tests.py module. Change-Id: Ia5313d653c667dd9ca800786de59b59334c34eaa
2014-04-02 16:16:21 -04:00
with mock.patch.object(utils, 'SWIFT_CONF_FILE', f.name):
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
constraints.reload_constraints()
Fix several typos in the codebase. These were found using https://github.com/intgr/topy Change-Id: I0dc7b76c44b8b17b1dcd79184dad1516fb11173c
2014-04-25 19:54:49 -07:00
# no constraints have been loaded from non-existent swift.conf
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
self.assertFalse(constraints.SWIFT_CONSTRAINTS_LOADED)
# no constraints are in OVERRIDE
py3: Port common/constraints Alternate approach to https://review.openstack.org/#/c/559902 Change-Id: I1e244c231753b8f4b6f1cf95cb0ae4c3c959ae0f
2018-06-20 15:45:50 -07:00
self.assertEqual([], list(constraints.OVERRIDE_CONSTRAINTS.keys()))
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
# the EFFECTIVE constraints mirror DEFAULT
pep8 fix: assertEquals -> assertEqual assertEquals is deprecated in py3, replacing it. Change-Id: Ida206abbb13c320095bb9e3b25a2b66cc31bfba8 Co-Authored-By: Ondřej Nový <ondrej.novy@firma.seznam.cz>
2015-08-05 23:58:14 +05:30
self.assertEqual(constraints.EFFECTIVE_CONSTRAINTS,
constraints.DEFAULT_CONSTRAINTS)
DRY out common.constraints a bit more Change-Id: If8a71692b79e381036b34245e09697ac1009beca
2014-03-11 14:18:55 -07:00
finally:
constraints.reload_constraints()
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
if __name__ == '__main__':
unittest.main()
Copy Permalink