Deuxfleurs
/
garage
41
37
Fork 55
Code Issues 70 Pull Requests 6 Releases 29 Wiki Activity

k2v-client does not work with partition keys that require urlencoding #573

New Issue
Closed
opened 2023-05-17 21:49:24 +00:00 by lx · 0 comments
lx commented 2023-05-17 21:49:24 +00:00
Owner
Copy Link

https://docs.rs/rusoto_signature/latest/src/rusoto_signature/signature.rs.html#464 : we learn that for all AWS services except S3, the canonical URL must be urlencoded twice (wtf???). The k2v-client library is using rusoto_signature that abides to this: since the service is not s3, it urlencodes twice the canonical URL and then computes the signature. On the server side, we use the same code for S3 and K2V, therefore we only urlencode once, and signatures therefore don't match when they contain characters that require encoding.

Official source: https://docs.aws.amazon.com/general/latest/gr/sigv4-create-canonical-request.html makes no mention of the "S3 exception", and actually makes no mention of the double-URLencoding.

<https://docs.rs/rusoto_signature/latest/src/rusoto_signature/signature.rs.html#464> : we learn that for all AWS services except S3, the canonical URL must be urlencoded twice (wtf???). The k2v-client library is using rusoto_signature that abides to this: since the service is not `s3`, it urlencodes twice the canonical URL and then computes the signature. On the server side, we use the same code for S3 and K2V, therefore we only urlencode once, and signatures therefore don't match when they contain characters that require encoding. Official source: <https://docs.aws.amazon.com/general/latest/gr/sigv4-create-canonical-request.html> makes no mention of the "S3 exception", and actually makes no mention of the double-URLencoding.
lx changed title from k2v-client does not urlencode correctly when computing signature to k2v-client does not work with partition keys that require urlencoding 2023-05-17 21:49:52 +00:00
lx added the
Bug
 label 2023-05-17 22:08:18 +00:00
lx closed this issue 2023-05-18 09:33:04 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
main-0.9.x
db-no-unsafe
main-0.8.x
k2v/shared_http_client
feat/website-redir
smithy2
test/compilation
poc/nomad-ci
test-ci-wait
pnet_datalink-0.33.0
optimal-layout
k2v-watch-range
db-debug-log
build-convert-db
demonstrate-cargo2nix-bug
dangerous/no-fsync
dev0.7.3
doc/benchmarks
bug/check_static
bucket-cors-more
storage-optimizations
old-main
v1.0.0
v0.9.4
v1.0.0-rc1
v0.8.7
v0.9.3
v0.9.2
v0.8.6
v0.9.2-rc1
v0.9.1
v0.8.5
v0.10.0-beta1
v0.9.0
v0.9.0-rc2
v0.9.0-rc1
v0.9.0-beta4
v0.9.0-beta3
v0.9.0-beta2
v0.8.4
v0.9.0-beta1
v0.8.3
v0.8.3-rc1
format_table-v0.1.1
format_table-v0.1.0
v0.8.2
v0.8.1
v0.8.0
v0.8.0-rc2
v0.8.0-rc1
v0.8.0-dangerous-no-fsync
v0.8.0-beta2-k2v
v0.8.0-beta2
v0.8.0-beta1-k2v
v0.8.0-beta1
v0.7.99.3-k2v
v0.7.3
v0.7.3-beta2
v0.7.3-beta1
v0.7.2.1
v0.7.2
v0.7.2_ci-test-2
v0.7.2+ci-test-version
v0.7.99.2-k2v
v0.7.99.1-k2v
v0.7.99-k2v
v0.7.2-k2v
v0.7.1-admin-k2v-2
v0.7.1-admin-k2v
v0.7.1-k2v
v0.7.1
v0.7.0
v0.7.0-rc1
v0.6.1
v0.6.0
v0.6.0-rc1
v0.5.1
v0.5.0.1
v0.5.0
v0.5-beta1
v0.4.0
v0.4-rc2
v0.4-rc1
0.4-beta
0.4-alpha
v0.3.0.2
v0.3.0.1
v0.3.0
v0.2.1.5
v0.2.1
v0.2.0
0.1.1b
0.1.1
0.1.0b
0.1.0
Labels
Clear labels   
AdminAPI

Issues concerning the administration API

  
Bug

   
Check AWS

The behaviour should be checked against AWS S3

  
CI

Issues with Nix, Drone, Rust Compiler, etc.

  
Correctness

Issues of theoretical correctness that may impact edge-case scenarios

  
Critical

   
Documentation

   
Ideas

For abstract ideas/proposal to make Garage better, to better communicate our not yet achieved aims

  
Improvement

   
Low priority

For issues that we don't want to spend time on until made absolutely necessary

  
Newcomer

A bug that should be newcomer friendly.

  
Performance

   
S3 Compatibility

   
Testing

   
Usability

Propositions to make Garage easier to operate, by improving error reporting, CLI, etc.

No Label
AdminAPI
Bug
Check AWS
CI
Correctness
Critical
Documentation
Ideas
Improvement
Low priority
Newcomer
Performance
S3 Compatibility
Testing
Usability
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Deuxfleurs/garage#573
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?