Skip to content

fix(s3): treat empty sse_c_key as not set #50483

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
st3iny wants to merge 1 commit into from
Closed

fix(s3): treat empty sse_c_key as not set #50483

st3iny wants to merge 1 commit into from

Conversation

@st3iny
Copy link
Member

@st3iny st3iny commented Jan 27, 2025
edited
Loading

  • Resolves: # none

Summary

Setting the sse_c_key to an empty string enables encryption despite no key actually being available.

Have a look at the following usage:

server/lib/private/Files/ObjectStore/S3ConnectionTrait.php

Lines 224 to 228 in abd7958

$key = $this->getSSECKey();
if ($key === null) {
return [];
}

Checklist

@st3iny st3iny added bug 3. to review Waiting for reviews labels Jan 27, 2025
@st3iny st3iny self-assigned this Jan 27, 2025
@solracsf
Copy link
Member

solracsf commented Jan 27, 2025

Since we're using similar logic on the file (empty check) function could be simplified to:

protected function getSSECKey(): ?string {
	return !empty($this->params['sse_c_key']) ? $this->params['sse_c_key'] : null;
}

@szaimen szaimen added this to the Nextcloud 32 milestone Jan 28, 2025
@juliusknorr
Copy link
Member

juliusknorr commented Jan 28, 2025

Conflicts with #50326 where I asked for the adjustment 🙈

@st3iny st3iny mentioned this pull request Jan 28, 2025
Merged
4 tasks
@st3iny
Copy link
Member Author

st3iny commented Jan 28, 2025

Let's continue here: #50514

@st3iny st3iny closed this Jan 28, 2025
@st3iny st3iny deleted the fix/s3/empty-sse-c-key branch January 28, 2025 22:04
@skjnldsv skjnldsv modified the milestones: Nextcloud 32, Nextcloud 33 Sep 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@juliusknorr juliusknorr juliusknorr approved these changes

@solracsf solracsf solracsf approved these changes

@come-nc come-nc come-nc approved these changes

@icewind1991 icewind1991 Awaiting requested review from icewind1991

Assignees

@st3iny st3iny

Labels

3. to review Waiting for reviews bug

Projects

None yet

Milestone

Nextcloud 33

Development

Successfully merging this pull request may close these issues.

7 participants

@st3iny @solracsf @juliusknorr @come-nc @skjnldsv @szaimen