Home Explore Help
Register Sign In
Apq
/
winscp
mirror of https://github.com/winscp/winscp.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Bug 1914: Failure when using S3/AWS access ID or region longer than 32 characters

https://winscp.net/tracker/1914
(cherry picked from commit 7d5ac75315408dab3321558e4b223fb9bdb71b1f)

Source commit: 954bc29c9bf32cdb42434e063e601a4e0ba4c7e5
Martin Prikryl 5 years ago
parent
a9f5137300
commit
e9ec882b35
5 changed files with 17 additions and 5 deletions
Split View Show Diff Stats
  1. 5 0
      libs/libs3/inc/libs3.h
  2. 2 3
      libs/libs3/inc/util.h
  3. 8 0
      source/core/S3FileSystem.cpp
  4. 1 1
      source/forms/Login.dfm
  5. 1 1
      source/forms/SiteAdvanced.dfm

+ 5 - 0
libs/libs3/inc/libs3.h
View File 

@@ -246,6 +246,11 @@ extern "C" {
 
  */
 
 #define S3_DEFAULT_REGION                  "us-east-1"
 
 
+// WINSCP
 
+// according to https://docs.aws.amazon.com/IAM/latest/APIReference/API_AccessKey.html max length is nowadays 128
 
+#define S3_MAX_ACCESS_KEY_ID_LENGTH 128
 
+#define S3_MAX_REGION_LENGTH 32
 
+
 
 
 /** **************************************************************************
 
  * Enumerations

+ 2 - 3
libs/libs3/inc/util.h
View File 

@@ -71,13 +71,12 @@
 
 #define MAX_CANONICALIZED_RESOURCE_SIZE \
 
     (1 + 255 + 1 + MAX_URLENCODED_KEY_SIZE + (sizeof("?torrent") - 1) + 1)
 
 
-// according to https://docs.aws.amazon.com/IAM/latest/APIReference/API_AccessKey.html max length is nowadays 128
 
-#define MAX_ACCESS_KEY_ID_LENGTH 128
 
+#define MAX_ACCESS_KEY_ID_LENGTH S3_MAX_ACCESS_KEY_ID_LENGTH
 
 
 // Maximum length of a credential string
 
 // <access key>/<yyyymmdd>/<region>/s3/aws4_request
 
 #define MAX_CREDENTIAL_SIZE \
 
-   (MAX_ACCESS_KEY_ID_LENGTH + 1) + 8 + 1 + 32 + sizeof("/s3/aws4_request")
 
+   (MAX_ACCESS_KEY_ID_LENGTH + 1) + 8 + 1 + S3_MAX_REGION_LENGTH + sizeof("/s3/aws4_request")
 
 
 // Utilities -----------------------------------------------------------------

+ 8 - 0
source/core/S3FileSystem.cpp
View File 

@@ -100,6 +100,10 @@ void __fastcall TS3FileSystem::Open()
 
     }

   }

   FAccessKeyId = UTF8String(AccessKeyId);

+  if (FAccessKeyId.Length() > MAX_ACCESS_KEY_ID_LENGTH)

+  {

+    FAccessKeyId.SetLength(MAX_ACCESS_KEY_ID_LENGTH);

+  }

 

   UnicodeString SecretAccessKey = UTF8String(NormalizeString(Data->Password));

   if (SecretAccessKey.IsEmpty() && !FTerminal->SessionData->FingerprintScan)

@@ -517,6 +521,10 @@ TLibS3BucketContext TS3FileSystem::GetBucketContext(const UnicodeString & Bucket
 
     Result.secretAccessKey = FSecretAccessKey.c_str();

     Result.securityToken = NULL;

     Result.AuthRegionBuf = UTF8String(Region);

+    if (Result.AuthRegionBuf.Length() > S3_MAX_REGION_LENGTH)

+    {

+      Result.AuthRegionBuf.SetLength(S3_MAX_REGION_LENGTH);

+    }

     Result.authRegion = Result.AuthRegionBuf.c_str();

 

     if (Retry)

+ 1 - 1
source/forms/Login.dfm
View File 

@@ -191,7 +191,7 @@ object LoginDialog: TLoginDialog
 
           Top = 139

           Width = 159

           Height = 21

-          MaxLength = 100

+          MaxLength = 128

           TabOrder = 7

           Text = 'UserNameEdit'

           OnChange = DataChange

+ 1 - 1
source/forms/SiteAdvanced.dfm
View File 

@@ -1021,7 +1021,7 @@ object SiteAdvancedDialog: TSiteAdvancedDialog
 
             Width = 213

             Height = 21

             Anchors = [akLeft, akTop, akRight]

-            MaxLength = 100

+            MaxLength = 32

             TabOrder = 0

             Text = 'S3DefaultRegionCombo'

             OnChange = DataChange