storj-gerrit[bot]
commented
2 months ago Change pkg/bucket/object/lock: fix lock settings copied incorrectly mentions this issue.
Closed halkyon closed 1 month ago
storj-gerrit[bot]
commented
2 months ago Change pkg/bucket/object/lock: fix lock settings copied incorrectly mentions this issue.
storj-gerrit[bot]
commented
2 months ago Change cmd: remove global lock setting checks for CopyObjectHandler mentions this issue.
halkyon
commented
1 month ago
Goal
CopyObject without specifying retention settings should not copy any settings from the source object. We seem to be copying across lock settings to the destination object which misleads the user into thinking locks were copied. However, the lock on the destination is not enforced, which is correct. I think this may be because object lock settings are stored in object metadata, and
CopyObjectHandlerin minio blindly copies over all the metadata to the destination. Quite possibly this line here is causing the trouble and isn't filtering out the metadata (https://github.com/storj/minio/blob/main/cmd/object-handlers.go#L1197):When you do specify retention settings on CopyObject, then it fails with an
InvalidRequest: Bucket is missing ObjectLockConfigurationerror, even if the bucket has locking enabled. Minio has code to check if locking is enabled on the bucket, but this only checks a global minio-specific flag for the bucket: https://github.com/storj/minio/blob/main/cmd/bucket-object-lock.go#L266. Do we still need all the validation here? One idea might be to removecheckPutObjectLockAllowedand not call it fromCopyObjectHandlerso our object layer does the validation instead.Acceptance Criteria