[rgw]:Validate bucket names as per revised s3 spec

[soumyakoduri]

As per amazon s3 spec -
https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-s3-bucket-naming-requirements.html

The s3 bucket names should not contain upper case letters or underscore.
Name cannot end with dash or have consecutive periods, or dashes adjacent to periods

This change is to enforce these rules if rgw_relaxed_s3_bucket_names is set to 'false'.

Fixes: https://tracker.ceph.com/issues/36293

Signed-off-by: Soumya Koduri skoduri@redhat.com

[soumyakoduri]

@mattbenjamin @pritha-srivastava @cbodley @yehudasa .. kindly review the changes.

[stale]

This pull request has been automatically marked as stale because it has not had any activity for 60 days. It will be closed if no further activity occurs for another 30 days.
If you are a maintainer or core committer, please follow-up on this pull request to identify what steps should be taken by the author to move this proposed change forward.
If you are the author of this pull request, thank you for your proposed contribution. If you believe this change is still appropriate, please ensure that any feedback has been addressed and ask for a code review.

[mattbenjamin]

unstale this

[cbodley]

we document our bucket name requirements in doc/radosgw/s3/bucketops.rst (see http://docs.ceph.com/docs/master/radosgw/s3/bucketops/#constraints) - could you please update that to reflect the changes? also worth mentioning which parts are conditional on rgw_relaxed_s3_bucket_names

[soumyakoduri]

we document our bucket name requirements in doc/radosgw/s3/bucketops.rst (see http://docs.ceph.com/docs/master/radosgw/s3/bucketops/#constraints) - could you please update that to reflect the changes? also worth mentioning which parts are conditional on rgw_relaxed_s3_bucket_names

Sure. Will make the changes.

[soumyakoduri]

@cbodley ..
Amazon spec states that bucket name can be between 3 and 63 characters long whereas in the code we currently seem to be allowing upto 255 characters. Do you suggest I limit the size too if the relaxed option is not set?

[cbodley]

yes please, we should limit to 63 as well

[soumyakoduri]

yes please, we should limit to 63 as well

Thanks. Will update.

[cbodley]

jenkins render docs

[ceph-jenkins]

Doc render available at http://docs.ceph.com/ceph-prs/26787/

[soumyakoduri]

jenkins render docs

[ceph-jenkins]

Doc render available at http://docs.ceph.com/ceph-prs/26787/

[cbodley]

retest this please

[cbodley]

issue#36293

could you please replace this part of the commit message with:

Fixes: https://tracker.ceph.com/issues/36293

[soumyakoduri]

Fixes: https://tracker.ceph.com/issues/36293

Done.

[soumyakoduri]

@soumyakoduri one last piece of documentation that i'd like to see is in PendingReleaseNotes; we should make it clear that a) the bucket naming restrictions are changing, b) the changes are likely to cause InvalidBucketName errors, and c) that rgw_relaxed_s3_bucket_names=true is recommended as a workaround

Done. Please review.

[monschein]

Hi all. I've tested this PR locally and I see that it is missing one rule for bucket names. Per the AWS S3 specification:

Each label must start and end with a lowercase letter or a number.

https://docs.aws.amazon.com/AmazonS3/latest/dev/BucketRestrictions.html

$ s3cmd mb s3://nametest.
Bucket 's3://nametest./' created

I am able to create buckets that end with a period.

[soumyakoduri]

Hi all. I've tested this PR locally and I see that it is missing one rule for bucket names. Per the AWS S3 specification:

Each label must start and end with a lowercase letter or a number.

https://docs.aws.amazon.com/AmazonS3/latest/dev/BucketRestrictions.html

$ s3cmd mb s3://nametest.
Bucket 's3://nametest./' created

I am able to create buckets that end with a period.

Thanks David. I was referring to https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-s3-bucket-naming-requirements.html while working on this. That page must not have been updated with this rule.

@cbodley .. please let me know your thoughts.

[cbodley]

good catch @monschein!

[alimaredia]

jenkins retest this please

[robbat2]

@soumyakoduri One of my asking items is that RGW gets TWO toggles for bucket names: one toggle for strict bucket names on creation, and the other that still permits access to pre-existing buckets with names that can no longer be created. Can you confirm this is implemented in your PR?

[cbodley]

@robbat2 verifying that existing buckets with invalid names are still accessible is important, yeah. can you think of a reason, though, that an admin would want to deny access to existing buckets? what motivates that second toggle/config option?

[robbat2]

@robbat2 verifying that existing buckets with invalid names are still accessible is important, yeah. can you think of a reason, though, that an admin would want to deny access to existing buckets? what motivates that second toggle/config option?

Specifically announcing a migration plan, and locking the old names at part of the enforcement stick.

[soumyakoduri]

@robbat2 verifying that existing buckets with invalid names are still accessible is important, yeah. can you think of a reason, though, that an admin would want to deny access to existing buckets? what motivates that second toggle/config option?

I verified this use-case -

• Create relaxed bucket name (eg., bucket_underscore)
• Toggle s3 relaxed bucket name option (to false)
• Try to create an object in 'bucket_underscore'. The request fails now.

Seems like the s3 bucket name is validated for every request which contains bucket name in 'postauth_init()'. As of now there is no option to toggle that behavior. To let old buckets (with invalid names) to be used post migration/upgrade, admin needs to set option "rgw relaxed s3 bucket names" to true.

[soumyakoduri]

jenkins retest this please

[soumyakoduri]

@robbat2 verifying that existing buckets with invalid names are still accessible is important, yeah. can you think of a reason, though, that an admin would want to deny access to existing buckets? what motivates that second toggle/config option?

I verified this use-case -

* Create relaxed bucket name (eg., bucket_underscore)

* Toggle s3 relaxed bucket name option (to false)

* Try to create an object in 'bucket_underscore'. The request fails now.

Seems like the s3 bucket name is validated for every request which contains bucket name in 'postauth_init()'. As of now there is no option to toggle that behavior. To let old buckets (with invalid names) to be used post migration/upgrade, admin needs to set option "rgw relaxed s3 bucket names" to true.

To avoid the old names becoming inaccessible post migration, we decided to validate s3 bucket names only during bucket creation now. This way old buckets (with relaxed names) can still be operated post migration but no new buckets with those invalid names can be created by default.

If any need arises in future to enforce this validation for all requests , a new option can be added to toggle this behavior. But it is not being addressed as part of this PR.

[soumyakoduri]

jenkins retest this please

[cbodley]

jenkins test make check

[soumyakoduri]

jenkins test make check

[soumyakoduri]

jenkins retest

[cbodley]

@soumyakoduri thanks for working through all the issues in testing!