1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
|
package s3api
import (
"encoding/base64"
"io"
"net/http"
"strings"
"github.com/seaweedfs/seaweedfs/weed/glog"
"github.com/seaweedfs/seaweedfs/weed/s3api/s3_constants"
"github.com/seaweedfs/seaweedfs/weed/s3api/s3err"
)
// PutToFilerEncryptionResult holds the result of encryption processing
type PutToFilerEncryptionResult struct {
DataReader io.Reader
SSEType string
CustomerKey *SSECustomerKey
SSEIV []byte
SSEKMSKey *SSEKMSKey
SSES3Key *SSES3Key
SSEKMSMetadata []byte
SSES3Metadata []byte
}
// calculatePartOffset calculates unique offset for each part to prevent IV reuse in multipart uploads
// AWS S3 part numbers must start from 1, never 0 or negative
func calculatePartOffset(partNumber int) int64 {
// AWS S3 part numbers must start from 1, never 0 or negative
if partNumber < 1 {
glog.Errorf("Invalid partNumber: %d. Must be >= 1.", partNumber)
return 0
}
// Using a large multiplier to ensure block offsets for different parts do not overlap.
// S3 part size limit is 5GB, so this provides a large safety margin.
partOffset := int64(partNumber-1) * s3_constants.PartOffsetMultiplier
return partOffset
}
// handleSSECEncryption processes SSE-C encryption for the data reader
func (s3a *S3ApiServer) handleSSECEncryption(r *http.Request, dataReader io.Reader) (io.Reader, *SSECustomerKey, []byte, s3err.ErrorCode) {
// Handle SSE-C encryption if requested
customerKey, err := ParseSSECHeaders(r)
if err != nil {
glog.Errorf("SSE-C header validation failed: %v", err)
// Use shared error mapping helper
errCode := MapSSECErrorToS3Error(err)
return nil, nil, nil, errCode
}
// Apply SSE-C encryption if customer key is provided
var sseIV []byte
if customerKey != nil {
encryptedReader, iv, encErr := CreateSSECEncryptedReader(dataReader, customerKey)
if encErr != nil {
return nil, nil, nil, s3err.ErrInternalError
}
dataReader = encryptedReader
sseIV = iv
}
return dataReader, customerKey, sseIV, s3err.ErrNone
}
// handleSSEKMSEncryption processes SSE-KMS encryption for the data reader
func (s3a *S3ApiServer) handleSSEKMSEncryption(r *http.Request, dataReader io.Reader, partOffset int64) (io.Reader, *SSEKMSKey, []byte, s3err.ErrorCode) {
// Handle SSE-KMS encryption if requested
if !IsSSEKMSRequest(r) {
return dataReader, nil, nil, s3err.ErrNone
}
glog.V(3).Infof("handleSSEKMSEncryption: SSE-KMS request detected, processing encryption")
// Parse SSE-KMS headers
keyID := r.Header.Get(s3_constants.AmzServerSideEncryptionAwsKmsKeyId)
bucketKeyEnabled := strings.ToLower(r.Header.Get(s3_constants.AmzServerSideEncryptionBucketKeyEnabled)) == "true"
// Build encryption context
bucket, object := s3_constants.GetBucketAndObject(r)
encryptionContext := BuildEncryptionContext(bucket, object, bucketKeyEnabled)
// Add any user-provided encryption context
if contextHeader := r.Header.Get(s3_constants.AmzServerSideEncryptionContext); contextHeader != "" {
userContext, err := parseEncryptionContext(contextHeader)
if err != nil {
return nil, nil, nil, s3err.ErrInvalidRequest
}
// Merge user context with default context
for k, v := range userContext {
encryptionContext[k] = v
}
}
// Check if a base IV is provided (for multipart uploads)
var encryptedReader io.Reader
var sseKey *SSEKMSKey
var encErr error
baseIVHeader := r.Header.Get(s3_constants.SeaweedFSSSEKMSBaseIVHeader)
if baseIVHeader != "" {
// Decode the base IV from the header
baseIV, decodeErr := base64.StdEncoding.DecodeString(baseIVHeader)
if decodeErr != nil {
glog.Errorf("handleSSEKMSEncryption: failed to decode base IV: %v", decodeErr)
return nil, nil, nil, s3err.ErrInternalError
}
if len(baseIV) != 16 {
glog.Errorf("handleSSEKMSEncryption: invalid base IV length: %d (expected 16)", len(baseIV))
return nil, nil, nil, s3err.ErrInternalError
}
// Use the provided base IV with unique part offset for multipart upload consistency
glog.V(4).Infof("handleSSEKMSEncryption: creating encrypted reader with baseIV=%x, partOffset=%d", baseIV[:8], partOffset)
encryptedReader, sseKey, encErr = CreateSSEKMSEncryptedReaderWithBaseIVAndOffset(dataReader, keyID, encryptionContext, bucketKeyEnabled, baseIV, partOffset)
} else {
// Generate a new IV for single-part uploads
glog.V(4).Infof("handleSSEKMSEncryption: creating encrypted reader for single-part (no base IV)")
encryptedReader, sseKey, encErr = CreateSSEKMSEncryptedReaderWithBucketKey(dataReader, keyID, encryptionContext, bucketKeyEnabled)
}
if encErr != nil {
glog.Errorf("handleSSEKMSEncryption: encryption failed: %v", encErr)
return nil, nil, nil, s3err.ErrInternalError
}
glog.V(3).Infof("handleSSEKMSEncryption: encryption successful, keyID=%s", keyID)
// Prepare SSE-KMS metadata for later header setting
sseKMSMetadata, metaErr := SerializeSSEKMSMetadata(sseKey)
if metaErr != nil {
return nil, nil, nil, s3err.ErrInternalError
}
return encryptedReader, sseKey, sseKMSMetadata, s3err.ErrNone
}
// handleSSES3MultipartEncryption handles multipart upload logic for SSE-S3 encryption
func (s3a *S3ApiServer) handleSSES3MultipartEncryption(r *http.Request, dataReader io.Reader, partOffset int64) (io.Reader, *SSES3Key, s3err.ErrorCode) {
keyDataHeader := r.Header.Get(s3_constants.SeaweedFSSSES3KeyDataHeader)
baseIVHeader := r.Header.Get(s3_constants.SeaweedFSSSES3BaseIVHeader)
glog.V(4).Infof("handleSSES3MultipartEncryption: using provided key and base IV for multipart part")
// Decode the key data
keyData, decodeErr := base64.StdEncoding.DecodeString(keyDataHeader)
if decodeErr != nil {
return nil, nil, s3err.ErrInternalError
}
// Deserialize the SSE-S3 key
keyManager := GetSSES3KeyManager()
key, deserializeErr := DeserializeSSES3Metadata(keyData, keyManager)
if deserializeErr != nil {
return nil, nil, s3err.ErrInternalError
}
// Decode the base IV
baseIV, decodeErr := base64.StdEncoding.DecodeString(baseIVHeader)
if decodeErr != nil || len(baseIV) != s3_constants.AESBlockSize {
return nil, nil, s3err.ErrInternalError
}
// Use the provided base IV with unique part offset for multipart upload consistency
// CRITICAL: Capture the derived IV returned by CreateSSES3EncryptedReaderWithBaseIV
// This function calculates adjustedIV = calculateIVWithOffset(baseIV, partOffset)
// We MUST store this derived IV in metadata, not the base IV, for decryption to work
encryptedReader, derivedIV, encErr := CreateSSES3EncryptedReaderWithBaseIV(dataReader, key, baseIV, partOffset)
if encErr != nil {
return nil, nil, s3err.ErrInternalError
}
// Update the key with the derived IV so it gets serialized into chunk metadata
// This ensures decryption uses the correct offset-adjusted IV
key.IV = derivedIV
glog.V(4).Infof("handleSSES3MultipartEncryption: using base IV %x, derived IV %x for offset %d",
baseIV[:8], derivedIV[:8], partOffset)
return encryptedReader, key, s3err.ErrNone
}
// handleSSES3SinglePartEncryption handles single-part upload logic for SSE-S3 encryption
func (s3a *S3ApiServer) handleSSES3SinglePartEncryption(dataReader io.Reader) (io.Reader, *SSES3Key, s3err.ErrorCode) {
glog.V(4).Infof("handleSSES3SinglePartEncryption: generating new key for single-part upload")
keyManager := GetSSES3KeyManager()
key, err := keyManager.GetOrCreateKey("")
if err != nil {
return nil, nil, s3err.ErrInternalError
}
// Create encrypted reader
encryptedReader, iv, encErr := CreateSSES3EncryptedReader(dataReader, key)
if encErr != nil {
return nil, nil, s3err.ErrInternalError
}
// Store IV on the key object for later decryption
key.IV = iv
// Store the key for later use
keyManager.StoreKey(key)
return encryptedReader, key, s3err.ErrNone
}
// handleSSES3Encryption processes SSE-S3 encryption for the data reader
func (s3a *S3ApiServer) handleSSES3Encryption(r *http.Request, dataReader io.Reader, partOffset int64) (io.Reader, *SSES3Key, []byte, s3err.ErrorCode) {
if !IsSSES3RequestInternal(r) {
return dataReader, nil, nil, s3err.ErrNone
}
glog.V(3).Infof("handleSSES3Encryption: SSE-S3 request detected, processing encryption")
var encryptedReader io.Reader
var sseS3Key *SSES3Key
var errCode s3err.ErrorCode
// Check if this is multipart upload (key data and base IV provided)
keyDataHeader := r.Header.Get(s3_constants.SeaweedFSSSES3KeyDataHeader)
baseIVHeader := r.Header.Get(s3_constants.SeaweedFSSSES3BaseIVHeader)
if keyDataHeader != "" && baseIVHeader != "" {
// Multipart upload: use provided key and base IV
encryptedReader, sseS3Key, errCode = s3a.handleSSES3MultipartEncryption(r, dataReader, partOffset)
} else {
// Single-part upload: generate new key and IV
encryptedReader, sseS3Key, errCode = s3a.handleSSES3SinglePartEncryption(dataReader)
}
if errCode != s3err.ErrNone {
return nil, nil, nil, errCode
}
// Prepare SSE-S3 metadata for later header setting
sseS3Metadata, metaErr := SerializeSSES3Metadata(sseS3Key)
if metaErr != nil {
return nil, nil, nil, s3err.ErrInternalError
}
glog.V(3).Infof("handleSSES3Encryption: prepared SSE-S3 metadata for object")
return encryptedReader, sseS3Key, sseS3Metadata, s3err.ErrNone
}
// handleAllSSEEncryption processes all SSE types in sequence and returns the final encrypted reader
// This eliminates repetitive dataReader assignments and centralizes SSE processing
func (s3a *S3ApiServer) handleAllSSEEncryption(r *http.Request, dataReader io.Reader, partOffset int64) (*PutToFilerEncryptionResult, s3err.ErrorCode) {
result := &PutToFilerEncryptionResult{
DataReader: dataReader,
}
// Handle SSE-C encryption first
encryptedReader, customerKey, sseIV, errCode := s3a.handleSSECEncryption(r, result.DataReader)
if errCode != s3err.ErrNone {
return nil, errCode
}
result.DataReader = encryptedReader
result.CustomerKey = customerKey
result.SSEIV = sseIV
// Handle SSE-KMS encryption
encryptedReader, sseKMSKey, sseKMSMetadata, errCode := s3a.handleSSEKMSEncryption(r, result.DataReader, partOffset)
if errCode != s3err.ErrNone {
return nil, errCode
}
result.DataReader = encryptedReader
result.SSEKMSKey = sseKMSKey
result.SSEKMSMetadata = sseKMSMetadata
// Handle SSE-S3 encryption
encryptedReader, sseS3Key, sseS3Metadata, errCode := s3a.handleSSES3Encryption(r, result.DataReader, partOffset)
if errCode != s3err.ErrNone {
return nil, errCode
}
result.DataReader = encryptedReader
result.SSES3Key = sseS3Key
result.SSES3Metadata = sseS3Metadata
// Set SSE type for response headers
if customerKey != nil {
result.SSEType = s3_constants.SSETypeC
} else if sseKMSKey != nil {
result.SSEType = s3_constants.SSETypeKMS
} else if sseS3Key != nil {
result.SSEType = s3_constants.SSETypeS3
}
return result, s3err.ErrNone
}
|
