Deuxfleurs
/
garage
42
39
Fork 55
Code Issues 71 Pull Requests 8 Releases 29 Wiki Activity

Minio : Bad request: Invalid content sha256 hash: Invalid character 'S' at position 0 #205

New Issue
Closed
opened 2022-01-25 17:18:43 +00:00 by KillianKemps · 3 comments
KillianKemps commented 2022-01-25 17:18:43 +00:00
Copy Link

Hello, I'm trying Garage locally running with Docker and I'm having issues to do a copy operation with the Minio client.

I followed the quick start guide, and I also adapated the Multi-Node Deployment guide to run it with Docker Compose.

How to reproduce

$ echo 1 > a.txt
$ mcli cp a.txt my-test-garage/data-test-bucket
mcli: <ERROR> Failed to copy `a.txt`. Bad request: Invalid content sha256 hash: Invalid character 'S' at position 0

What to expect

The same behaviour as with aws-cli

$ aws --endpoint-url http://127.0.0.1:3900 s3 cp a.txt s3://data-test-bucket
upload: ./a.txt to s3://data-test-bucket/a.txt                  
$ aws --endpoint-url http://127.0.0.1:3900 s3 ls data-test-bucket
2022-01-25 18:15:57          2 a.txt

Context

garage.toml:

metadata_dir = "/tmp/garage/meta"
data_dir = "/tmp/garage/data"

replication_mode = "none"

rpc_bind_addr = "[::]:3901"
rpc_public_addr = "127.0.0.1:3901"
rpc_secret = "1799bccfd7411eddcf9ebd316bc1f5287ad12a68094e1c6ac6abde7e6feae1ec"

bootstrap_peers = []

[s3_api]
s3_region = "garage"
api_bind_addr = "[::]:3900"
root_domain = ".s3.garage"

[s3_web]
bind_addr = "[::]:3902"
root_domain = ".web.garage"
index = "index.html"

docker-compose.yml:

version: '3'
services:
  garaged:
    image: dxflrs/amd64_garage:v0.5.1
    network_mode: 'host'
    volumes:
        - ./garage.toml:/etc/garage.toml
        - /tmp/garage/meta:/tmp/garage/meta
        - /tmp/garage/data:/tmp/garage/data

Minio client version : mcli version RELEASE.2021-12-10T00-14-28Z
Garage version : garage 0.5.1

Hello, I'm trying Garage locally running with Docker and I'm having issues to do a copy operation with the Minio client. I followed the [quick start guide](https://garagehq.deuxfleurs.fr/quick_start/index.html), and I also adapated the [Multi-Node Deployment guide](https://garagehq.deuxfleurs.fr/cookbook/real_world.html?highlight=docker#get-a-docker-image) to run it with Docker Compose. ## How to reproduce ``` $ echo 1 > a.txt $ mcli cp a.txt my-test-garage/data-test-bucket mcli: <ERROR> Failed to copy `a.txt`. Bad request: Invalid content sha256 hash: Invalid character 'S' at position 0 ``` ## What to expect The same behaviour as with aws-cli ``` $ aws --endpoint-url http://127.0.0.1:3900 s3 cp a.txt s3://data-test-bucket upload: ./a.txt to s3://data-test-bucket/a.txt $ aws --endpoint-url http://127.0.0.1:3900 s3 ls data-test-bucket 2022-01-25 18:15:57 2 a.txt ``` ## Context `garage.toml`: ``` metadata_dir = "/tmp/garage/meta" data_dir = "/tmp/garage/data" replication_mode = "none" rpc_bind_addr = "[::]:3901" rpc_public_addr = "127.0.0.1:3901" rpc_secret = "1799bccfd7411eddcf9ebd316bc1f5287ad12a68094e1c6ac6abde7e6feae1ec" bootstrap_peers = [] [s3_api] s3_region = "garage" api_bind_addr = "[::]:3900" root_domain = ".s3.garage" [s3_web] bind_addr = "[::]:3902" root_domain = ".web.garage" index = "index.html" ``` `docker-compose.yml`: ``` version: '3' services: garaged: image: dxflrs/amd64_garage:v0.5.1 network_mode: 'host' volumes: - ./garage.toml:/etc/garage.toml - /tmp/garage/meta:/tmp/garage/meta - /tmp/garage/data:/tmp/garage/data ``` Minio client version : `mcli version RELEASE.2021-12-10T00-14-28Z` Garage version : `garage 0.5.1`
KillianKemps changed title from Bad request: Invalid content sha256 hash: Invalid character 'S' at position 0 to Minio : Bad request: Invalid content sha256 hash: Invalid character 'S' at position 0 2022-01-25 17:19:45 +00:00
trinity-1686a commented 2022-01-25 18:16:26 +00:00
Owner
Copy Link

I believe this S is the start of STREAMING-AWS4-HMAC-SHA256-PAYLOAD (if you could confirm this by looking in Garage logs or by using Wireshark it would be amazing).

This mode of payload verification is used my minio when sending an object over http (but not https). Support for it was added in #156. It is already available on main, and will be on next release.

There is already a release candidate for it that you can test : dxflrs/amd64_garage:v0.6.0-rc1. Note that there is a manual migration to do if you plan to keep the same data from 0.5 to 0.6, which is documented here, or you can delete garage meta and data to start fresh.

I believe this `S` is the start of `STREAMING-AWS4-HMAC-SHA256-PAYLOAD` (if you could confirm this by looking in Garage logs or by using Wireshark it would be amazing). This mode of payload verification is used my minio when sending an object over http (but not https). Support for it was added in #156. It is already available on `main`, and will be on next release. There is already a release candidate for it that you can test : `dxflrs/amd64_garage:v0.6.0-rc1`. Note that there is a manual migration to do if you plan to keep the same data from 0.5 to 0.6, which [is documented here](https://garagehq.deuxfleurs.fr/working_documents/migration_06.html), or you can delete garage meta and data to start fresh.
KillianKemps commented 2022-01-26 09:02:15 +00:00
Author
Copy Link

Here are Garage logs when doing a mcli cp b.txt my-test-garage/data-test-bucket:

garage_demo-garaged-1  |  INFO  garage_api::api_server  > [::ffff:127.0.0.1]:45688 HEAD /data-test-bucket/
garage_demo-garaged-1  |  INFO  garage_api::api_server  > [::ffff:127.0.0.1]:45688 HEAD /data-test-bucket/
garage_demo-garaged-1  |  INFO  garage_api::api_server  > [::ffff:127.0.0.1]:45688 GET /data-test-bucket/?object-lock=
garage_demo-garaged-1  |  WARN  garage_api::api_server  > Response: error 501 Not Implemented, Unimplemented action: GetObjectLockConfiguration
garage_demo-garaged-1  |  INFO  garage_api::api_server  > [::ffff:127.0.0.1]:45688 HEAD /data-test-bucket/
garage_demo-garaged-1  |  INFO  garage_api::api_server  > [::ffff:127.0.0.1]:45688 PUT /data-test-bucket/b.txt
garage_demo-garaged-1  |  INFO  garage_api::api_server  > Response: error 400 Bad Request, Bad request: Invalid content sha256 hash: Invalid character 'S' at position 0

While searching on Wireshark I found this which seems to confirm your idea :

Hypertext Transfer Protocol
    PUT /data-test-bucket/b.txt HTTP/1.1\r\n
    Host: 127.0.0.1:3900\r\n
    User-Agent: MinIO (linux; amd64) minio-go/v7.0.16 mcli/RELEASE.2021-12-10T00-14-28Z\r\n
    Content-Length: 177\r\n
     [truncated]Authorization: AWS4-HMAC-SHA256 Credential=GK734a31068a86550c25b22e01/20220126/garage/s3/aws4_request,SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-decoded-content-length,Signature=b5292e6bc66485a8ac95531fa90a8953ab
    Content-Type: text/plain\r\n
    X-Amz-Content-Sha256: STREAMING-AWS4-HMAC-SHA256-PAYLOAD\r\n
    X-Amz-Date: 20220126T085343Z\r\n
    X-Amz-Decoded-Content-Length: 5\r\n
    \r\n
    [Full request URI: http://127.0.0.1:3900/data-test-bucket/b.txt]
    [HTTP request 5/5]
    [Prev request in frame: 84]
    [Response in frame: 94]
    File Data: 177 bytes
Line-based text data: text/plain (5 lines)

I will try with Garage v0.6.0-rc1

Here are Garage logs when doing a `mcli cp b.txt my-test-garage/data-test-bucket`: ``` garage_demo-garaged-1 | INFO garage_api::api_server > [::ffff:127.0.0.1]:45688 HEAD /data-test-bucket/ garage_demo-garaged-1 | INFO garage_api::api_server > [::ffff:127.0.0.1]:45688 HEAD /data-test-bucket/ garage_demo-garaged-1 | INFO garage_api::api_server > [::ffff:127.0.0.1]:45688 GET /data-test-bucket/?object-lock= garage_demo-garaged-1 | WARN garage_api::api_server > Response: error 501 Not Implemented, Unimplemented action: GetObjectLockConfiguration garage_demo-garaged-1 | INFO garage_api::api_server > [::ffff:127.0.0.1]:45688 HEAD /data-test-bucket/ garage_demo-garaged-1 | INFO garage_api::api_server > [::ffff:127.0.0.1]:45688 PUT /data-test-bucket/b.txt garage_demo-garaged-1 | INFO garage_api::api_server > Response: error 400 Bad Request, Bad request: Invalid content sha256 hash: Invalid character 'S' at position 0 ``` While searching on Wireshark I found this which seems to confirm your idea : ``` Hypertext Transfer Protocol PUT /data-test-bucket/b.txt HTTP/1.1\r\n Host: 127.0.0.1:3900\r\n User-Agent: MinIO (linux; amd64) minio-go/v7.0.16 mcli/RELEASE.2021-12-10T00-14-28Z\r\n Content-Length: 177\r\n [truncated]Authorization: AWS4-HMAC-SHA256 Credential=GK734a31068a86550c25b22e01/20220126/garage/s3/aws4_request,SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-decoded-content-length,Signature=b5292e6bc66485a8ac95531fa90a8953ab Content-Type: text/plain\r\n X-Amz-Content-Sha256: STREAMING-AWS4-HMAC-SHA256-PAYLOAD\r\n X-Amz-Date: 20220126T085343Z\r\n X-Amz-Decoded-Content-Length: 5\r\n \r\n [Full request URI: http://127.0.0.1:3900/data-test-bucket/b.txt] [HTTP request 5/5] [Prev request in frame: 84] [Response in frame: 94] File Data: 177 bytes Line-based text data: text/plain (5 lines) ``` I will try with Garage v0.6.0-rc1
KillianKemps commented 2022-01-26 09:08:12 +00:00
Author
Copy Link

I tried with Garage v0.6.0-rc1 and now mcli cp b.txt my-test-garage/data-test-bucket works!

I tried with Garage v0.6.0-rc1 and now `mcli cp b.txt my-test-garage/data-test-bucket ` works!
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
main-0.9.x
db-no-unsafe
main-0.8.x
k2v/shared_http_client
feat/website-redir
smithy2
test/compilation
poc/nomad-ci
test-ci-wait
pnet_datalink-0.33.0
optimal-layout
k2v-watch-range
db-debug-log
build-convert-db
demonstrate-cargo2nix-bug
dangerous/no-fsync
dev0.7.3
doc/benchmarks
bug/check_static
bucket-cors-more
storage-optimizations
old-main
v1.0.0
v0.9.4
v1.0.0-rc1
v0.8.7
v0.9.3
v0.9.2
v0.8.6
v0.9.2-rc1
v0.9.1
v0.8.5
v0.10.0-beta1
v0.9.0
v0.9.0-rc2
v0.9.0-rc1
v0.9.0-beta4
v0.9.0-beta3
v0.9.0-beta2
v0.8.4
v0.9.0-beta1
v0.8.3
v0.8.3-rc1
format_table-v0.1.1
format_table-v0.1.0
v0.8.2
v0.8.1
v0.8.0
v0.8.0-rc2
v0.8.0-rc1
v0.8.0-dangerous-no-fsync
v0.8.0-beta2-k2v
v0.8.0-beta2
v0.8.0-beta1-k2v
v0.8.0-beta1
v0.7.99.3-k2v
v0.7.3
v0.7.3-beta2
v0.7.3-beta1
v0.7.2.1
v0.7.2
v0.7.2_ci-test-2
v0.7.2+ci-test-version
v0.7.99.2-k2v
v0.7.99.1-k2v
v0.7.99-k2v
v0.7.2-k2v
v0.7.1-admin-k2v-2
v0.7.1-admin-k2v
v0.7.1-k2v
v0.7.1
v0.7.0
v0.7.0-rc1
v0.6.1
v0.6.0
v0.6.0-rc1
v0.5.1
v0.5.0.1
v0.5.0
v0.5-beta1
v0.4.0
v0.4-rc2
v0.4-rc1
0.4-beta
0.4-alpha
v0.3.0.2
v0.3.0.1
v0.3.0
v0.2.1.5
v0.2.1
v0.2.0
0.1.1b
0.1.1
0.1.0b
0.1.0
Labels
Clear labels   
AdminAPI

Issues concerning the administration API

  
Bug

   
Check AWS

The behaviour should be checked against AWS S3

  
CI

Issues with Nix, Drone, Rust Compiler, etc.

  
Correctness

Issues of theoretical correctness that may impact edge-case scenarios

  
Critical

   
Documentation

   
Ideas

For abstract ideas/proposal to make Garage better, to better communicate our not yet achieved aims

  
Improvement

   
Low priority

For issues that we don't want to spend time on until made absolutely necessary

  
Newcomer

A bug that should be newcomer friendly.

  
Performance

   
S3 Compatibility

   
Testing

   
Usability

Propositions to make Garage easier to operate, by improving error reporting, CLI, etc.

No Label
AdminAPI
Bug
Check AWS
CI
Correctness
Critical
Documentation
Ideas
Improvement
Low priority
Newcomer
Performance
S3 Compatibility
Testing
Usability
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Deuxfleurs/garage#205
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?