root
/
minio
mirror of https://github.com/minio/minio.git
1
0
Fork 0
Code Issues Actions 1 Packages Projects Releases Wiki Activity
minio/cmd
History
Andreas Auernhammer fbd1c5f51a
certs: refactor cert manager to support multiple certificates (#10207) 
This commit refactors the certificate management implementation
in the `certs` package such that multiple certificates can be
specified at the same time. Therefore, the following layout of
the `certs/` directory is expected:
```
certs/
 │
 ├─ public.crt
 ├─ private.key
 ├─ CAs/          // CAs directory is ignored
 │   │
 │    ...
 │
 ├─ example.com/
 │   │
 │   ├─ public.crt
 │   └─ private.key
 └─ foobar.org/
     │
     ├─ public.crt
     └─ private.key
   ...
```

However, directory names like `example.com` are just for human
readability/organization and don't have any meaning w.r.t whether
a particular certificate is served or not. This decision is made based
on the SNI sent by the client and the SAN of the certificate.

***

The `Manager` will pick a certificate based on the client trying
to establish a TLS connection. In particular, it looks at the client
hello (i.e. SNI) to determine which host the client tries to access.
If the manager can find a certificate that matches the SNI it
returns this certificate to the client.

However, the client may choose to not send an SNI or tries to access
a server directly via IP (`https://<ip>:<port>`). In this case, we
cannot use the SNI to determine which certificate to serve. However,
we also should not pick "the first" certificate that would be accepted
by the client (based on crypto. parameters - like a signature algorithm)
because it may be an internal certificate that contains internal hostnames. 
We would disclose internal infrastructure details doing so.

Therefore, the `Manager` returns the "default" certificate when the
client does not specify an SNI. The default certificate the top-level
`public.crt` - i.e. `certs/public.crt`.

This approach has some consequences:
 - It's the operator's responsibility to ensure that the top-level
   `public.crt` does not disclose any information (i.e. hostnames)
   that are not publicly visible. However, this was the case in the
   past already.
 - Any other `public.crt` - except for the top-level one - must not
   contain any IP SAN. The reason for this restriction is that the
   Manager cannot match a SNI to an IP b/c the SNI is the server host
   name. The entire purpose of SNI is to indicate which host the client
   tries to connect to when multiple hosts run on the same IP. So, a
   client will not set the SNI to an IP.
   If we would allow IP SANs in a lower-level `public.crt` a user would
   expect that it is possible to connect to MinIO directly via IP address
   and that the MinIO server would pick "the right" certificate. However,
   the MinIO server cannot determine which certificate to serve, and
   therefore always picks the "default" one. This may lead to all sorts
   of confusing errors like:
   "It works if I use `https:instance.minio.local` but not when I use
   `https://10.0.2.1`.

These consequences/limitations should be pointed out / explained in our
docs in an appropriate way. However, the support for multiple
certificates should not have any impact on how deployment with a single
certificate function today.

Co-authored-by: Harshavardhana <harsha@minio.io>
 		2020-09-03 23:33:37 -07:00
..
config certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
crypto crypto: reduce retry delay when retrying KES requests (#10394) 2020-09-02 11:04:10 -07:00
gateway hdfs gateway handle listing single files (#10362) 2020-08-26 16:03:53 -07:00
http Fix common Windows failure (#10397) 2020-09-01 10:11:15 -07:00
jwt fix: send valid claims in AuditLogs for browser requests (#9713) 2020-05-27 12:38:44 -07:00
logger add validation logs for configured Logger/Audit HTTP targets (#10274) 2020-08-16 10:25:00 -07:00
rest fix: Pass context all the way down to the network call in lockers (#10161) 2020-07-29 23:15:34 -07:00
acl-handlers.go migrate all bucket metadata into a single file (#9586) 2020-05-19 13:53:54 -07:00
admin-bucket-handlers.go fix: Change ListBucketTargets handler (#10217) 2020-08-06 17:10:21 -07:00
admin-handlers-config-kv.go fix: make sure to use uniform drive count calculation (#10208) 2020-08-05 13:31:12 -07:00
admin-handlers-users.go Export bucket usage counts as part of bucket metrics (#9710) 2020-05-27 06:45:43 -07:00
admin-handlers.go certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
admin-handlers_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
admin-heal-ops.go update continous heal metrics appropriately for scanned items (#10352) 2020-08-26 08:53:33 -07:00
admin-router.go fix: Change ListBucketTargets handler (#10217) 2020-08-06 17:10:21 -07:00
admin-server-info.go fix: admin info output and improve overall performance (#10015) 2020-07-13 09:51:07 -07:00
api-datatypes.go azure: Return success when deleting non-existent object (#9981) 2020-07-10 08:30:23 -07:00
api-errors.go Allow region errors to be dynamic (#10323) 2020-08-23 22:06:22 -07:00
api-errors_test.go
api-headers.go security: Remove insecure custom headers (#10244) 2020-08-11 08:29:29 -07:00
api-headers_test.go
api-resources.go
api-resources_test.go
api-response.go fix: bring back delayed leaf detection in listing (#10346) 2020-08-25 12:26:48 -07:00
api-response_test.go fix: obtain correct location string with DNS style buckets (#10060) 2020-07-16 13:28:29 -07:00
api-router.go fix: add missing content-disposition from CORS handler (#10137) 2020-07-27 09:03:38 -07:00
api-utils.go
api-utils_test.go
auth-handler.go add missing ListBucketVersions from policy actions (#10414) 2020-09-03 18:25:06 -07:00
auth-handler_test.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
background-heal-ops.go update continous heal metrics appropriately for scanned items (#10352) 2020-08-26 08:53:33 -07:00
background-newdisks-heal-ops.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
benchmark-utils_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
bitrot-streaming.go add disk for more context in bitrot errors (#10296) 2020-08-20 09:41:15 -07:00
bitrot-whole.go add disk for more context in bitrot errors (#10296) 2020-08-20 09:41:15 -07:00
bitrot.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
bitrot_test.go Disregard healing disks in crawling (#10349) 2020-08-25 10:55:15 -07:00
bootstrap-peer-server.go fix: proxies set keep-alive timeouts to be system dependent (#10199) 2020-08-04 14:55:53 -07:00
bucket-encryption-handlers.go Relax content-md5 requirement in set encryption handler (#9750) 2020-06-01 18:08:19 -07:00
bucket-encryption.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
bucket-encryption_test.go
bucket-handlers.go fix: delete marker compatibility behavior for suspended bucket (#10395) 2020-09-02 00:19:03 -07:00
bucket-handlers_test.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
bucket-lifecycle-handlers.go simplify further bucket configuration properly (#9650) 2020-05-20 10:18:15 -07:00
bucket-lifecycle-handlers_test.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
bucket-lifecycle.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
bucket-listobjects-handlers.go add missing ListBucketVersions from policy actions (#10414) 2020-09-03 18:25:06 -07:00
bucket-metadata-sys.go Use constants for gateway names to avoid bugs caused by spelling. (#10355) 2020-08-26 08:52:46 -07:00
bucket-metadata.go fix: allow FS mode situations when conflicting files exist (#10185) 2020-08-03 13:20:49 -07:00
bucket-metadata_gen.go Rename replication target handler (#10142) 2020-07-28 11:50:47 -07:00
bucket-metadata_gen_test.go migrate all bucket metadata into a single file (#9586) 2020-05-19 13:53:54 -07:00
bucket-notification-handlers.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
bucket-object-lock.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
bucket-policy-handlers.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
bucket-policy-handlers_test.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
bucket-policy.go support 'ldap:user' variable replacement properly (#10391) 2020-09-01 12:26:22 +05:30
bucket-quota.go Apply quota usage cache invalidation per second (#10127) 2020-07-24 12:24:21 -07:00
bucket-replication.go fix: web handlers to enforce replication (#10249) 2020-08-12 17:32:24 -07:00
bucket-targets.go load all blocking metadata in background (#10298) 2020-08-20 10:38:53 -07:00
bucket-versioning-handler.go fix: disallow versioning to be suspended with object lock (#9930) 2020-06-28 08:15:15 -07:00
bucket-versioning.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
build-constants.go Add support for minioreleaser a fork for goreleaser (#9890) 2020-06-22 08:26:40 -07:00
common-main.go certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
config-common.go fix: allow FS mode situations when conflicting files exist (#10185) 2020-08-03 13:20:49 -07:00
config-current.go certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
config-current_test.go
config-dir.go
config-encrypted.go fix: migrate to go.etcd.io import path (#9987) 2020-07-07 19:04:29 -07:00
config-encrypted_test.go
config-migrate.go fix: support healing older content (#10076) 2020-07-17 17:41:29 -07:00
config-migrate_test.go
config-versions.go
config.go fix: support healing older content (#10076) 2020-07-17 17:41:29 -07:00
consolelogger.go add validation logs for configured Logger/Audit HTTP targets (#10274) 2020-08-16 10:25:00 -07:00
copy-part-range.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
copy-part-range_test.go
crossdomain-xml-handler.go
crossdomain-xml-handler_test.go
data-crawler.go keep crawler cycle at 5 minutes 2020-08-24 14:05:16 -07:00
data-update-tracker.go continous healing based on crawler (#10103) 2020-08-24 13:47:01 -07:00
data-update-tracker_test.go add validation logs for configured Logger/Audit HTTP targets (#10274) 2020-08-16 10:25:00 -07:00
data-usage-cache.go continous healing based on crawler (#10103) 2020-08-24 13:47:01 -07:00
data-usage-cache_gen.go merge object lifecycle checks into usage crawler (#9579) 2020-06-12 10:28:21 -07:00
data-usage-cache_gen_test.go merge object lifecycle checks into usage crawler (#9579) 2020-06-12 10:28:21 -07:00
data-usage.go merge object lifecycle checks into usage crawler (#9579) 2020-06-12 10:28:21 -07:00
data-usage_test.go continous healing based on crawler (#10103) 2020-08-24 13:47:01 -07:00
disk-cache-backend.go cache: Only start at high watermark (#10403) 2020-09-02 17:48:44 -07:00
disk-cache-check-support_other.go Use registry to check Atime support on Windows (#9741) 2020-05-30 09:47:42 -07:00
disk-cache-check-support_windows.go Use registry to check Atime support on Windows (#9741) 2020-05-30 09:47:42 -07:00
disk-cache-stats.go fix: export prometheus metrics for cache GC triggers (#9815) 2020-06-15 09:05:35 -07:00
disk-cache-utils.go cache: Only start at high watermark (#10403) 2020-09-02 17:48:44 -07:00
disk-cache-utils_test.go cache: Only start at high watermark (#10403) 2020-09-02 17:48:44 -07:00
disk-cache.go cache: Only start at high watermark (#10403) 2020-09-02 17:48:44 -07:00
disk-cache_test.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
dummy-data-generator_test.go
dummy-handlers.go Add support for server side bucket replication (#9882) 2020-07-21 17:49:56 -07:00
dynamic-timeouts.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
dynamic-timeouts_test.go
encryption-v1.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
encryption-v1_test.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
endpoint-ellipses.go fix: make sure to use uniform drive count calculation (#10208) 2020-08-05 13:31:12 -07:00
endpoint-ellipses_test.go fix: make sure to use uniform drive count calculation (#10208) 2020-08-05 13:31:12 -07:00
endpoint.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
endpoint_test.go Move dependency from minio-go v6 to v7 (#10042) 2020-07-14 09:38:05 -07:00
erasure-bucket.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
erasure-coding.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
erasure-common.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
erasure-common_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-decode.go fix: pop entries from each drives in parallel (#9918) 2020-06-25 23:20:12 -07:00
erasure-decode_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-encode.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-encode_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-errors.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-heal_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-healing-common.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-healing-common_test.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
erasure-healing.go allow server to start even with corrupted/faulty disks (#10175) 2020-08-03 18:17:48 -07:00
erasure-healing_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-list-objects.go fix: make sure to honor versioning from browser UI deletes (#10016) 2020-07-10 22:21:04 -07:00
erasure-lowlevel-heal.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-metadata-utils.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-metadata-utils_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-metadata.go add CopyObject optimization when source and destination are same (#10170) 2020-08-03 16:21:10 -07:00
erasure-metadata_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-multipart.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
erasure-object.go fix: delete marker compatibility behavior for suspended bucket (#10395) 2020-09-02 00:19:03 -07:00
erasure-object_test.go fix: quorum calculation mistake with reduced parity (#10186) 2020-08-03 12:15:08 -07:00
erasure-sets.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
erasure-sets_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-utils.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
erasure-zones.go Cluster healthcheck improvements (#10408) 2020-09-02 22:54:56 -07:00
erasure.go Cluster healthcheck improvements (#10408) 2020-09-02 22:54:56 -07:00
erasure_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
etcd.go fix: migrate to go.etcd.io import path (#9987) 2020-07-07 19:04:29 -07:00
fallocate.go
fallocate_linux.go
fallocate_linux_test.go
fastwalk.go Forward RPC errors from crawler (#9569) 2020-05-11 20:41:38 -07:00
format-disk-cache.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
format-disk-cache_test.go
format-erasure.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
format-erasure_test.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
format-fs.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
format-fs_test.go
format-meta.go
fs-v1-helpers.go simplify removing temporary files (#10389) 2020-08-31 12:35:40 -07:00
fs-v1-helpers_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
fs-v1-metadata.go
fs-v1-metadata_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
fs-v1-multipart.go simplify removing temporary files (#10389) 2020-08-31 12:35:40 -07:00
fs-v1-multipart_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
fs-v1-rwpool.go use GlobalContext whenever possible (#9280) 2020-04-09 09:30:02 -07:00
fs-v1-rwpool_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
fs-v1.go simplify removing temporary files (#10389) 2020-08-31 12:35:40 -07:00
fs-v1_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
gateway-common.go fix: bring back delayed leaf detection in listing (#10346) 2020-08-25 12:26:48 -07:00
gateway-common_test.go
gateway-env.go
gateway-interface.go Use constants for gateway names to avoid bugs caused by spelling. (#10355) 2020-08-26 08:52:46 -07:00
gateway-main.go certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
gateway-main_test.go
gateway-metrics.go simplify usage of mutexes and atomic constants (#9501) 2020-05-03 22:35:40 -07:00
gateway-startup-msg.go print proper certinfo on console when starting up (#9479) 2020-04-30 16:15:29 -07:00
gateway-startup-msg_test.go
gateway-unsupported.go fix: make sure to use uniform drive count calculation (#10208) 2020-08-05 13:31:12 -07:00
generic-handlers.go Add support for server side bucket replication (#9882) 2020-07-21 17:49:56 -07:00
generic-handlers_test.go update rulesguard with new rules (#10392) 2020-09-01 16:58:13 -07:00
global-heal.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
globals.go certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
handler-api.go add dnsStore interface for upcoming operator webhook (#10077) 2020-07-20 12:28:48 -07:00
handler-utils.go ListObjectsV1 requests unnecessarily fail with offline nodes (#10386) 2020-08-31 12:37:31 -07:00
handler-utils_test.go
hasher.go
healthcheck-handler.go Cluster healthcheck improvements (#10408) 2020-09-02 22:54:56 -07:00
healthcheck-router.go fix: readiness needs to be like liveness (#9941) 2020-06-30 11:28:27 -07:00
http-stats.go fix: use unused cacheMetrics code in prometheus (#9588) 2020-05-13 08:15:26 -07:00
http-tracer.go update rulesguard with new rules (#10392) 2020-09-01 16:58:13 -07:00
httprange.go
httprange_test.go
iam-etcd-store.go feat: allow service accounts to be generated with OpenID STS (#10184) 2020-08-05 13:08:40 -07:00
iam-object-store.go use GlobalContext instead of context.Background when possible (#10254) 2020-08-13 09:16:01 -07:00
iam.go use single dynamic timeout for most locked API/heal ops (#10275) 2020-08-17 11:29:58 -07:00
jwt.go fix: Disable presigned without appropriate policy (#9621) 2020-05-17 23:38:52 -07:00
jwt_test.go
leak-detect_test.go
listen-notification-handlers.go Add nancy vulnerability scanner (#10289) 2020-08-19 14:25:21 -07:00
local-locker.go fix: Pass context all the way down to the network call in lockers (#10161) 2020-07-29 23:15:34 -07:00
lock-rest-client.go feat: time to bring back http2.0 support (#10230) 2020-08-10 09:02:29 -07:00
lock-rest-client_test.go fix: Pass context all the way down to the network call in lockers (#10161) 2020-07-29 23:15:34 -07:00
lock-rest-server-common.go Add a custom healthcheck function for online status (#9858) 2020-06-17 14:49:26 -07:00
lock-rest-server-common_test.go
lock-rest-server.go fix: health handler for lockers (#10280) 2020-08-18 07:27:41 -07:00
main.go enable --compat flag by default (#9326) 2020-04-12 18:08:27 -07:00
merge-walk-pool.go fix: fix lockup in merge-walk pool (#10098) 2020-07-20 17:28:26 -07:00
merge-walk-pool_test.go fix: fix lockup in merge-walk pool (#10098) 2020-07-20 17:28:26 -07:00
metrics-router.go enable full linter across the codebase (#9620) 2020-05-18 09:59:45 -07:00
metrics.go Use constants for gateway names to avoid bugs caused by spelling. (#10355) 2020-08-26 08:52:46 -07:00
namespace-lock.go allow lock tolerance to match storage-class drive tolerance (#10270) 2020-08-14 18:17:14 -07:00
namespace-lock_test.go fix: possiblity of double write lockers on same resource (#9616) 2020-05-18 17:33:35 -07:00
naughty-disk_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
net.go Move dependency from minio-go v6 to v7 (#10042) 2020-07-14 09:38:05 -07:00
net_test.go update for smartos build (solaris too) (#10378) 2020-08-31 10:19:25 -07:00
notification.go load all blocking metadata in background (#10298) 2020-08-20 10:38:53 -07:00
obdinfo.go add additional fdatasync before close() on writes (#9947) 2020-07-01 10:57:23 -07:00
obdinfo_other.go add additional fdatasync before close() on writes (#9947) 2020-07-01 10:57:23 -07:00
obdinfo_unix.go add additional fdatasync before close() on writes (#9947) 2020-07-01 10:57:23 -07:00
object-api-common.go fix: bring back delayed leaf detection in listing (#10346) 2020-08-25 12:26:48 -07:00
object-api-datatypes.go add CopyObject optimization when source and destination are same (#10170) 2020-08-03 16:21:10 -07:00
object-api-deleteobject_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
object-api-errors.go fix: Change ListBucketTargets handler (#10217) 2020-08-06 17:10:21 -07:00
object-api-getobject_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
object-api-getobjectinfo_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
object-api-input-checks.go Move dependency from minio-go v6 to v7 (#10042) 2020-07-14 09:38:05 -07:00
object-api-interface.go fix: delete marker compatibility behavior for suspended bucket (#10395) 2020-09-02 00:19:03 -07:00
object-api-listobjects_test.go fix: commonPrefixes behavior in ListObjectVersions (#10286) 2020-08-18 12:19:44 -07:00
object-api-multipart_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
object-api-options.go fix: delete marker compatibility behavior for suspended bucket (#10395) 2020-09-02 00:19:03 -07:00
object-api-putobject_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
object-api-utils.go decrypt ETags in parallel around 500 at a time (#10261) 2020-08-14 11:56:35 -07:00
object-api-utils_test.go fix size accounting for encrypted/compressed objects (#9690) 2020-05-24 11:19:17 -07:00
object-handlers-common.go fix: return Range errors after If-Matches (#10045) 2020-07-17 13:01:22 -07:00
object-handlers-common_test.go
object-handlers.go update rulesguard with new rules (#10392) 2020-09-01 16:58:13 -07:00
object-handlers_test.go update rulesguard with new rules (#10392) 2020-09-01 16:58:13 -07:00
object_api_suite_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
os-dirent_fileino.go allow large buffer to list more entries per directory (#9785) 2020-06-09 09:44:50 -07:00
os-dirent_ino.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
os-dirent_namelen_bsd.go allow large buffer to list more entries per directory (#9785) 2020-06-09 09:44:50 -07:00
os-dirent_namelen_linux.go allow large buffer to list more entries per directory (#9785) 2020-06-09 09:44:50 -07:00
os-readdir_other.go update for smartos build (solaris too) (#10378) 2020-08-31 10:19:25 -07:00
os-readdir_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
os-readdir_unix.go fix: bring back delayed leaf detection in listing (#10346) 2020-08-25 12:26:48 -07:00
os-readdir_windows.go Fix crash on Windows when crawling (#10385) 2020-09-01 09:33:16 -07:00
os-reliable.go tests: Fix one multi-delete test failure in Windows CI (#9602) 2020-05-14 18:09:30 -07:00
os-reliable_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
peer-rest-client.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
peer-rest-common.go refactor server update behavior (#10107) 2020-07-23 08:03:31 -07:00
peer-rest-server.go use GlobalContext instead of context.Background when possible (#10254) 2020-08-13 09:16:01 -07:00
policy_test.go Move dependency from minio-go v6 to v7 (#10042) 2020-07-14 09:38:05 -07:00
post-policy_test.go Allow region errors to be dynamic (#10323) 2020-08-23 22:06:22 -07:00
postpolicyform.go
postpolicyform_test.go Move dependency from minio-go v6 to v7 (#10042) 2020-07-14 09:38:05 -07:00
prepare-storage.go tolerate listing with only readQuorum disks (#10357) 2020-08-26 19:29:35 -07:00
routers.go fix: cors handling after gorilla mux update (#9980) 2020-07-06 20:55:19 -07:00
server-main.go certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
server-main_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
server-rlimit.go
server-startup-msg.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
server-startup-msg_test.go print proper certinfo on console when starting up (#9479) 2020-04-30 16:15:29 -07:00
server_test.go update rulesguard with new rules (#10392) 2020-09-01 16:58:13 -07:00
service.go re-implement data usage crawler to be more efficient (#9075) 2020-03-18 16:19:29 -07:00
setup-type.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
signals.go certs: refactor cert manager to support multiple certificates (#10207) 2020-09-03 23:33:37 -07:00
signature-v2.go add missing signature v2 query params (#9670) 2020-05-21 18:51:23 -07:00
signature-v2_test.go
signature-v4-parser.go Allow region errors to be dynamic (#10323) 2020-08-23 22:06:22 -07:00
signature-v4-parser_test.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
signature-v4-utils.go update rulesguard with new rules (#10392) 2020-09-01 16:58:13 -07:00
signature-v4-utils_test.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
signature-v4.go Allow region errors to be dynamic (#10323) 2020-08-23 22:06:22 -07:00
signature-v4_test.go Allow region errors to be dynamic (#10323) 2020-08-23 22:06:22 -07:00
storage-datatypes.go fix: support healing older content (#10076) 2020-07-17 17:41:29 -07:00
storage-errors.go fix: reduce an extra system call for writes instead fail later (#10187) 2020-08-04 12:09:41 -07:00
storage-interface.go handle fresh setup with mixed drives (#10273) 2020-08-18 14:37:26 -07:00
storage-rest-client.go continous healing based on crawler (#10103) 2020-08-24 13:47:01 -07:00
storage-rest-common.go fix: crash in storage rest client due to spurious query params (#9924) 2020-06-26 16:49:49 -07:00
storage-rest-server.go Disregard healing disks in crawling (#10349) 2020-08-25 10:55:15 -07:00
storage-rest_test.go fix: make sure to use uniform drive count calculation (#10208) 2020-08-05 13:31:12 -07:00
streaming-signature-v4.go re-implement data usage crawler to be more efficient (#9075) 2020-03-18 16:19:29 -07:00
streaming-signature-v4_test.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
sts-datatypes.go
sts-errors.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
sts-handlers.go support 'ldap:user' variable replacement properly (#10391) 2020-09-01 12:26:22 +05:30
test-utils_test.go update rulesguard with new rules (#10392) 2020-09-01 16:58:13 -07:00
tree-walk-pool.go fix: fix lockup in merge-walk pool (#10098) 2020-07-20 17:28:26 -07:00
tree-walk-pool_test.go fix: threadwalk lockup under high load (#9992) 2020-07-09 07:02:18 -07:00
tree-walk.go fix: bring back delayed leaf detection in listing (#10346) 2020-08-25 12:26:48 -07:00
tree-walk_test.go fix: bring back delayed leaf detection in listing (#10346) 2020-08-25 12:26:48 -07:00
typed-errors.go fix: optimize IAM users load, add fallback (#9809) 2020-06-11 14:11:30 -07:00
update-notifier.go
update-notifier_test.go
update.go refactor server update behavior (#10107) 2020-07-23 08:03:31 -07:00
update_test.go add ruleguard support, fix all the reported issues (#10335) 2020-08-24 12:11:20 -07:00
utils.go fix write quorum calculation for bucket operations (#10364) 2020-08-27 12:55:32 -07:00
utils_test.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
version_test.go
web-handler-context.go use GlobalContext whenever possible (#9280) 2020-04-09 09:30:02 -07:00
web-handler-context_test.go
web-handlers.go fix: delete marker compatibility behavior for suspended bucket (#10395) 2020-09-02 00:19:03 -07:00
web-handlers_test.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
web-router.go feat: Add notification support for bucketCreates and removal (#10075) 2020-07-20 12:52:49 -07:00
xl-storage-disk-id-check.go fix: diskInfo should check diskID only if disk is online (#10058) 2020-07-16 07:30:05 -07:00
xl-storage-errors.go update for smartos build (solaris too) (#10378) 2020-08-31 10:19:25 -07:00
xl-storage-errors_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
xl-storage-format-utils.go fix: support healing older content (#10076) 2020-07-17 17:41:29 -07:00
xl-storage-format-v1.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
xl-storage-format-v1_gen.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
xl-storage-format-v1_gen_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
xl-storage-format-v2.go fix: delete marker compatibility behavior for suspended bucket (#10395) 2020-09-02 00:19:03 -07:00
xl-storage-format-v2_gen.go fix: simplify data structure before release (#9968) 2020-07-04 12:25:53 -07:00
xl-storage-format-v2_gen_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
xl-storage-format_test.go Support bucket versioning (#9377) 2020-06-12 20:04:01 -07:00
xl-storage.go fix: delete marker compatibility behavior for suspended bucket (#10395) 2020-09-02 00:19:03 -07:00
xl-storage_test.go Fix flaky TestXLStorageVerifyFile (#10398) 2020-09-02 09:42:24 -07:00
xl-storage_unix_test.go Disregard healing disks in crawling (#10349) 2020-08-25 10:55:15 -07:00
xl-storage_windows_test.go Disregard healing disks in crawling (#10349) 2020-08-25 10:55:15 -07:00