rgw: switch to the Completer interface for the AWSv4 payload check.

author Radoslaw Zarzynski <rzarzynski@mirantis.com>

Tue, 18 Apr 2017 19:45:03 +0000 (21:45 +0200)

committer Radoslaw Zarzynski <rzarzynski@mirantis.com>

Wed, 7 Jun 2017 10:43:17 +0000 (12:43 +0200)
author Radoslaw Zarzynski <rzarzynski@mirantis.com>
Tue, 18 Apr 2017 19:45:03 +0000 (21:45 +0200)
committer Radoslaw Zarzynski <rzarzynski@mirantis.com>
Wed, 7 Jun 2017 10:43:17 +0000 (12:43 +0200)
diff --git a/src/rgw/rgw_op.cc b/src/rgw/rgw_op.cc

index 59c8eb46cb9ac2973bfb49a3ab4adca93b3800a7..046dd6c07542abf9e77cc6a2b5df79fb49d0efaa 100644 (file)
--- a/src/rgw/rgw_op.cc
+++ b/src/rgw/rgw_op.cc
@@ -690,15 +690,18 @@ int RGWOp::verify_op_mask()
  
  int RGWOp::do_aws4_auth_completion()
  {
-  if (s->aws4_auth_needs_complete) {
-    /* complete */
-    int ret = RGW_Auth_S3::authorize_aws4_auth_complete(store, s);
-    s->aws4_auth_needs_complete = false;
-    if (ret) {
-      return ret;
+  ldout(s->cct, 5) << "NOTICE: call to do_aws4_auth_completion"  << dendl;
+  if (s->auth.completer) {
+    if (!s->auth.completer->complete()) {
+      return -ERR_AMZ_CONTENT_SHA256_MISMATCH;
+    } else {
+      dout(10) << "v4 auth ok -- do_aws4_auth_completion" << dendl;
      }
-    /* authorization ok */
-    dout(10) << "v4 auth ok" << dendl;
+
+    /* TODO(rzarzynski): yes, we're really called twice on PUTs. Only first
+     * call passes, so we disable second one. This is old behaviour, sorry!
+     * Plan for tomorrow: seek and destroy. */
+    s->auth.completer = nullptr;
    }
  
    return 0;
author	Radoslaw Zarzynski <rzarzynski@mirantis.com>
	Tue, 18 Apr 2017 19:45:03 +0000 (21:45 +0200)
committer	Radoslaw Zarzynski <rzarzynski@mirantis.com>
	Wed, 7 Jun 2017 10:43:17 +0000 (12:43 +0200)