f0c2eaee90
Bump org.junit.jupiter:junit-jupiter from 5.11.4 to 5.12.2
...
Bumps [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit5 ) from 5.11.4 to 5.12.2.
- [Release notes](https://github.com/junit-team/junit5/releases )
- [Commits](https://github.com/junit-team/junit5/compare/r5.11.4...r5.12.2 )
---
updated-dependencies:
- dependency-name: org.junit.jupiter:junit-jupiter
dependency-version: 5.12.2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-05-01 22:45:59 +00:00
73e5f3da1d
Check supported headers before signature
...
This gives better errors. Also use case-insensitive comparisons.
2025-04-09 14:09:45 +09:00
8417af1f6e
Ignore more new AWS checksum headers
...
Previously newer versions of aws-cli could not call
CreateMultipartUpload. References #760 . References #765 .
2025-04-03 08:00:12 -07:00
e2afed1fd9
Address deprecation and rawtypes warnings
2025-04-02 21:50:56 -07:00
27e51711a4
Bump slf4j.version from 2.0.16 to 2.0.17
...
Bumps `slf4j.version` from 2.0.16 to 2.0.17.
Updates `org.slf4j:slf4j-api` from 2.0.16 to 2.0.17
Updates `org.slf4j:jcl-over-slf4j` from 2.0.16 to 2.0.17
---
updated-dependencies:
- dependency-name: org.slf4j:slf4j-api
dependency-type: direct:production
update-type: version-update:semver-patch
- dependency-name: org.slf4j:jcl-over-slf4j
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-04-01 17:41:35 -07:00
134c6c5443
Bump aws-sdk.version from 1.12.780 to 1.12.782
...
Bumps `aws-sdk.version` from 1.12.780 to 1.12.782.
Updates `com.amazonaws:aws-java-sdk-s3` from 1.12.780 to 1.12.782
- [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-java/compare/1.12.780...1.12.782 )
Updates `com.amazonaws:aws-java-sdk-sts` from 1.12.780 to 1.12.782
- [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-java/compare/1.12.780...1.12.782 )
---
updated-dependencies:
- dependency-name: com.amazonaws:aws-java-sdk-s3
dependency-type: direct:development
update-type: version-update:semver-patch
- dependency-name: com.amazonaws:aws-java-sdk-sts
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-04-01 17:41:28 -07:00
5c88a4a388
Bump com.puppycrawl.tools:checkstyle from 10.21.2 to 10.22.0
...
Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle ) from 10.21.2 to 10.22.0.
- [Release notes](https://github.com/checkstyle/checkstyle/releases )
- [Commits](https://github.com/checkstyle/checkstyle/compare/checkstyle-10.21.2...checkstyle-10.22.0 )
---
updated-dependencies:
- dependency-name: com.puppycrawl.tools:checkstyle
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-04-01 17:41:23 -07:00
d191d58dab
Bump com.github.spotbugs:spotbugs-maven-plugin from 4.9.1.0 to 4.9.3.0
...
Bumps [com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin ) from 4.9.1.0 to 4.9.3.0.
- [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases )
- [Commits](https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.9.1.0...spotbugs-maven-plugin-4.9.3.0 )
---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-maven-plugin
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-04-01 17:41:15 -07:00
f5d14ba58b
Docker: Use dumb-init as init system
...
PID 1 is special in Linux kernels; do not start the `java` process as
PID 1. Instead, use dumb-init [1] as the init system and start it at
PID 1.
This is generally done for two main reasons [1]:
- Signal handling
When k8s terminates a Pod, it sends a SIGTERM to PID 1 in the
containers. When a non-PID-1 process receives SIGTERM and it does not
register a SIGTERM handler, the kernel will fall back to the default
behavior for a SIGTERM signal: killing the process.
However, this is not the case for PID 1; the kernel does not fallback to
killing the PID 1 process if no SIGTERM handler is registered. This
means that the SIGTERM will have no effect on the process. k8s will wait
for `terminationGracePeriodSeconds` (default: 30 seconds) and only then
SIGKILL the process (having wasted 30 seconds where nothing useful was
happening).
With `Java` as PID 1 though, I don't run into this issue. Even though
s3Proxy does not register a SIGTERM handler, it seems like the JVM does
react to the SIGTERM and immediately kills s3Proxy.
Still, let's use dumb-init as a best-practice. Init-systems like
dumb-init take the responsibliity for properly registering signal
handlers and passing signals to children processes correctly.
- Orphaned processes
Any running process that becomes an orphan (parent process dies) is
adopted by PID 1. This means PID 1 is responsible for cleaning up
(reaping) the orphan process after it has terminated (become zombie
/defunct) However, Java as PID 1 will not know about these zombie
processes and will not reap them. Using dumb-init will reap such
processes.
This is a non-breaking change; users of the docker image do not need any
action on their part.
[1] https://engineeringblog.yelp.com/2016/01/dumb-init-an-init-for-docker.html
[2] https://daveiscoding.hashnode.dev/why-do-you-need-an-init-process-inside-your-docker-container-pid-1
2025-03-06 22:30:54 -08:00
dff88b39f4
Pin Azurite version and update s3-tests
...
References #793 .
2025-03-06 22:28:35 -08:00
a8ebb3999d
Bump docker/metadata-action from 5.6.1 to 5.7.0
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 5.6.1 to 5.7.0.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Commits](https://github.com/docker/metadata-action/compare/v5.6.1...v5.7.0 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-03-01 22:56:22 -08:00
61459ace6c
Bump com.github.spotbugs:spotbugs-annotations from 4.9.0 to 4.9.2
...
Bumps [com.github.spotbugs:spotbugs-annotations](https://github.com/spotbugs/spotbugs ) from 4.9.0 to 4.9.2.
- [Release notes](https://github.com/spotbugs/spotbugs/releases )
- [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md )
- [Commits](https://github.com/spotbugs/spotbugs/compare/4.9.0...4.9.2 )
---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-annotations
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-03-01 22:56:16 -08:00
750fc5ad5f
Bump com.azure:azure-identity from 1.15.0 to 1.15.3
...
Bumps [com.azure:azure-identity](https://github.com/Azure/azure-sdk-for-java ) from 1.15.0 to 1.15.3.
- [Release notes](https://github.com/Azure/azure-sdk-for-java/releases )
- [Commits](https://github.com/Azure/azure-sdk-for-java/compare/azure-core_1.15.0...azure-identity_1.15.3 )
---
updated-dependencies:
- dependency-name: com.azure:azure-identity
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-03-01 22:56:08 -08:00
5d2640de24
Bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.6.6 to 4.9.1.0
...
Bumps [com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin ) from 4.8.6.6 to 4.9.1.0.
- [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases )
- [Commits](https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.8.6.6...spotbugs-maven-plugin-4.9.1.0 )
---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-maven-plugin
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-03-01 22:56:01 -08:00
415b5737e1
Bump ch.qos.logback:logback-classic from 1.5.16 to 1.5.17
...
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback ) from 1.5.16 to 1.5.17.
- [Release notes](https://github.com/qos-ch/logback/releases )
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.16...v_1.5.17 )
---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-03-01 22:55:55 -08:00
977c83cbe6
docker: Match s3proxy.v4-max-non-chunked-request-size default (128 MB)
...
- https://github.com/gaul/s3proxy/pull/594 changed the hardcoded default
value of `v4MaxNonChunkedRequestSize` to 128 MB
- The 128 MB default only kicks in if the
`s3proxy.v4-max-non-chunked-request-size` config is not set
- However, when using the Docker image (in k8s, for example), if you
don't explicitly override the `S3PROXY_V4_MAX_NON_CHUNKED_REQ_SIZE`
env variable, the `run-docker-container.sh` sets this env var [1] to a
default of 33554432 bytes (~32 MB)
- This commit changes this defualt to 128 MB, to match the default value
defined in the code itself
This change makes it such that an un-initiated user running s3Proxy via
Docker / k8s does not run into an error of the form:
400 MaxMessageLengthExceeded Your request was too big
, when uploading a file between 32 - 128 MB.
[1] https://github.com/gaul/s3proxy/blob/master/src/main/resources/run-docker-container.sh#L26
2025-02-28 22:08:58 -08:00
b6ce601c3b
Allow null localIdentify with bucket locators
...
This can be null when using none authorization. Regression from
4976e170c3Fixes #781 .
2025-02-08 12:48:59 -08:00
1a08bc25ad
Update copyright year to 2025
2025-02-01 20:36:47 -08:00
c5ce76921e
Bump to 2.6.1-SNAPSHOT
2025-02-01 19:21:29 -08:00
db34f6baaf
S3Proxy 2.6.0 release
2025-02-01 19:15:22 -08:00
0392df8dc7
Bump org.assertj:assertj-core from 3.27.1 to 3.27.3
...
Bumps [org.assertj:assertj-core](https://github.com/assertj/assertj ) from 3.27.1 to 3.27.3.
- [Release notes](https://github.com/assertj/assertj/releases )
- [Commits](https://github.com/assertj/assertj/compare/assertj-build-3.27.1...assertj-build-3.27.3 )
---
updated-dependencies:
- dependency-name: org.assertj:assertj-core
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 19:02:06 -08:00
5af1a125d3
Bump docker/metadata-action from 4.0.1 to 5.6.1
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 4.0.1 to 5.6.1.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Commits](https://github.com/docker/metadata-action/compare/v4.0.1...v5.6.1 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 19:01:53 -08:00
6ffeb75c2c
Bump docker/build-push-action from 5 to 6
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 5 to 6.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/v5...v6 )
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 19:01:42 -08:00
af0e67f96b
Bump docker/setup-qemu-action from 2 to 3
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 2 to 3.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](https://github.com/docker/setup-qemu-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 19:01:34 -08:00
4e25584ef3
Bump actions/setup-python from 4 to 5
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 4 to 5.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 19:01:27 -08:00
675d91093d
Allow Dependabot updates to Maven plugins
2025-02-01 18:49:20 -08:00
14134a50e6
Upgrade to aws-java-sdk-s3 1.12.780
2025-02-01 17:58:52 -08:00
aa5851eb84
Bump com.github.spotbugs:spotbugs-annotations from 4.8.6 to 4.9.0
...
Bumps [com.github.spotbugs:spotbugs-annotations](https://github.com/spotbugs/spotbugs ) from 4.8.6 to 4.9.0.
- [Release notes](https://github.com/spotbugs/spotbugs/releases )
- [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md )
- [Commits](https://github.com/spotbugs/spotbugs/compare/4.8.6...4.9.0 )
---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-annotations
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 17:54:12 -08:00
34a0a5170a
Bump com.azure:azure-identity from 1.14.2 to 1.15.0
...
Bumps [com.azure:azure-identity](https://github.com/Azure/azure-sdk-for-java ) from 1.14.2 to 1.15.0.
- [Release notes](https://github.com/Azure/azure-sdk-for-java/releases )
- [Commits](https://github.com/Azure/azure-sdk-for-java/compare/azure-identity_1.14.2...azure-core_1.15.0 )
---
updated-dependencies:
- dependency-name: com.azure:azure-identity
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 17:54:04 -08:00
1a51a3b70a
Bump com.puppycrawl.tools:checkstyle from 10.20.2 to 10.21.2
...
Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle ) from 10.20.2 to 10.21.2.
- [Release notes](https://github.com/checkstyle/checkstyle/releases )
- [Commits](https://github.com/checkstyle/checkstyle/compare/checkstyle-10.20.2...checkstyle-10.21.2 )
---
updated-dependencies:
- dependency-name: com.puppycrawl.tools:checkstyle
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 17:53:49 -08:00
f9032a93ca
Bump ch.qos.logback:logback-classic from 1.5.12 to 1.5.16
...
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback ) from 1.5.12 to 1.5.16.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.12...v_1.5.16 )
---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 17:53:42 -08:00
5da0fb4bcc
Bump com.amazonaws:aws-java-sdk-sts from 1.12.261 to 1.12.780
...
Bumps [com.amazonaws:aws-java-sdk-sts](https://github.com/aws/aws-sdk-java ) from 1.12.261 to 1.12.780.
- [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-java/compare/1.12.261...1.12.780 )
---
updated-dependencies:
- dependency-name: com.amazonaws:aws-java-sdk-sts
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-01 17:53:34 -08:00
86b6ee4749
Prevent parent path traversal in filesystem-nio2
...
Reported-by: Nico Waisman <nico@xbow.com>
2025-02-01 12:34:13 -08:00
83b159ee4b
Recommend to use filesystem-nio2 storage backend
2025-01-31 17:52:38 -08:00
e7d12ca011
Run s3-tests against minio
2025-01-29 22:03:03 -08:00
00e9f323af
Update storage tiers to include COOL and COLD
2025-01-29 21:43:54 -08:00
50715e0b4e
Upgrade to jclouds 2.7.0
...
Release notes:
https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12354430&styleName=Html&projectId=12314430&Create=Create&atl_token=A5KQ-2QAV-T4JA-FDED_bf4746c9b07e36572e23ca1006c18330c5ea778e_lin
Fixes #468 . Fixes #708 . Fixes #746 .
2025-01-29 21:04:14 -08:00
0e4ece45df
Change Docker storage backend to filesystem-nio2
2025-01-28 18:42:59 -08:00
ce8040671b
Ignore new AWS checksum headers
...
Previously newer versions of aws-cli could not put objects.
Fixes #760 . Fixes #765 .
2025-01-28 18:31:36 -08:00
c84d0eb13f
Prefer log replacement over concatenation
2025-01-27 19:23:47 -08:00
7239ed42e9
feat: Support json logging
2025-01-22 07:11:28 +09:00
b8bd258dcd
Remove explicit dependency on Apache commons-io
...
commons-fileupload2-javax exposes this as an implicit dependency but
S3Proxy can replace its uses with Guava and modern Java.
2025-01-20 18:36:40 -08:00
86aceaf45e
Remove dependency on commons-codec
2025-01-20 17:55:26 -08:00
f82ac9cbbd
Upgrade to modernizer-maven-plugin 3.1.0
...
This improves local variable suppressions.
2025-01-18 11:56:11 -08:00
2fd98d4447
Use ubuntu-24.04-arm GitHub runner
2025-01-19 03:48:45 +09:00
d45879c9d5
Add Minio config to run-s3-tests.sh
2025-01-19 03:48:35 +09:00
3ff077f550
Fix Checkstyle and Modernizer warnings
2025-01-02 22:32:08 -08:00
25110e5b26
Support IRSA for aws-s3 provider
2025-01-03 15:03:33 +09:00
da99e5be4e
Bump com.fasterxml.jackson.dataformat:jackson-dataformat-xml
...
Bumps [com.fasterxml.jackson.dataformat:jackson-dataformat-xml](https://github.com/FasterXML/jackson-dataformat-xml ) from 2.18.1 to 2.18.2.
- [Commits](https://github.com/FasterXML/jackson-dataformat-xml/compare/jackson-dataformat-xml-2.18.1...jackson-dataformat-xml-2.18.2 )
---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-xml
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-01-02 07:47:32 +09:00
f4ccaad107
Bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.6.4 to 4.8.6.6
...
Bumps [com.github.spotbugs:spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin ) from 4.8.6.4 to 4.8.6.6.
- [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases )
- [Commits](https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.8.6.4...spotbugs-maven-plugin-4.8.6.6 )
---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-maven-plugin
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-01-02 07:47:06 +09:00
dependabot[bot]