Merge upstream 2.8.0 by jupblb · Pull Request #8 · sourcegraph/s3proxy

jupblb · 2025-10-10T14:11:43Z

Blocking https://github.com/sourcegraph/sourcegraph/pull/7536

Bumps [com.azure:azure-storage-blob](https://github.com/Azure/azure-sdk-for-java) from 12.29.0 to 12.30.0. - [Release notes](https://github.com/Azure/azure-sdk-for-java/releases) - [Commits](Azure/azure-sdk-for-java@azure-storage-blob_12.29.0...azure-storage-blob_12.30.0) --- updated-dependencies: - dependency-name: com.azure:azure-storage-blob dependency-version: 12.30.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps `aws-sdk.version` from 1.12.782 to 1.12.783. Updates `com.amazonaws:aws-java-sdk-s3` from 1.12.782 to 1.12.783 - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.782...1.12.783) Updates `com.amazonaws:aws-java-sdk-sts` from 1.12.782 to 1.12.783 - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.782...1.12.783) --- updated-dependencies: - dependency-name: com.amazonaws:aws-java-sdk-s3 dependency-version: 1.12.783 dependency-type: direct:development update-type: version-update:semver-patch - dependency-name: com.amazonaws:aws-java-sdk-sts dependency-version: 1.12.783 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps org.eclipse.jetty:jetty-servlet from 11.0.24 to 11.0.25. --- updated-dependencies: - dependency-name: org.eclipse.jetty:jetty-servlet dependency-version: 11.0.25 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) from 10.22.0 to 10.23.1. - [Release notes](https://github.com/checkstyle/checkstyle/releases) - [Commits](checkstyle/checkstyle@checkstyle-10.22.0...checkstyle-10.23.1) --- updated-dependencies: - dependency-name: com.puppycrawl.tools:checkstyle dependency-version: 10.23.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…efault to PRIVATE on non-POSIX systems

…use writeCommonMetadataAttr in all relevant places

Bumps [com.google.guava:guava](https://github.com/google/guava) from 33.4.0-jre to 33.4.8-jre. - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-version: 33.4.8-jre dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [org.apache.maven.plugins:maven-assembly-plugin](https://github.com/apache/maven-assembly-plugin) from 3.5.0 to 3.7.1. - [Release notes](https://github.com/apache/maven-assembly-plugin/releases) - [Commits](apache/maven-assembly-plugin@maven-assembly-plugin-3.5.0...maven-assembly-plugin-3.7.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-assembly-plugin dependency-version: 3.7.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [org.apache.maven.plugins:maven-resources-plugin](https://github.com/apache/maven-resources-plugin) from 3.3.0 to 3.3.1. - [Release notes](https://github.com/apache/maven-resources-plugin/releases) - [Commits](apache/maven-resources-plugin@maven-resources-plugin-3.3.0...maven-resources-plugin-3.3.1) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-resources-plugin dependency-version: 3.3.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

'yield' keyword is allowed in fixtures, but not in tests (test_routing_generator)

Exclude everything from Docker build context that is not used by COPY steps in the Dockerfile. This speeds up the container build on macOS, Windows or remote builders as less files and directories are copied over to the container builder. https://docs.docker.com/build/concepts/context/#dockerignore-files

…g suffix Some mostly S3 REST API compatible storage backends do not return the number of multipart upload parts as a suffix to the eTag as Amazon does and as the previous code expects. An example for this is NetApp StorageGRID S3 REST API. The old code had a fallback to just assume one encrypted part, but this is actually wrong in the multipart upload case for these backends, thus this is replace in this commit. Example eTag structure from real AWS S3 for multipart uploads with 2 parts:`xyzabc-2` In this case the number of parts is also not present in the object metadata, as metadata is set on S3 API when starting the multipart upload, and not when completing it, thus the number of parts is not yet known at this earlier point in time. This change adds a third fallback option to just read the number of parts from the final part padding, which is the only place guaranteed to always be present for encrypted blobs. Only for these backends this adds an additional GET request to the backend, but only for the actual 64 bytes of the padding.

Bumps `aws-sdk.version` from 1.12.783 to 1.12.787. Updates `com.amazonaws:aws-java-sdk-s3` from 1.12.783 to 1.12.787 - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.783...1.12.787) Updates `com.amazonaws:aws-java-sdk-sts` from 1.12.783 to 1.12.787 - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.783...1.12.787) --- updated-dependencies: - dependency-name: com.amazonaws:aws-java-sdk-s3 dependency-version: 1.12.787 dependency-type: direct:development update-type: version-update:semver-patch - dependency-name: com.amazonaws:aws-java-sdk-sts dependency-version: 1.12.787 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [com.fasterxml.jackson.dataformat:jackson-dataformat-xml](https://github.com/FasterXML/jackson-dataformat-xml) from 2.18.2 to 2.19.1. - [Commits](FasterXML/jackson-dataformat-xml@jackson-dataformat-xml-2.18.2...jackson-dataformat-xml-2.19.1) --- updated-dependencies: - dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-xml dependency-version: 2.19.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) from 10.23.1 to 10.26.1. - [Release notes](https://github.com/checkstyle/checkstyle/releases) - [Commits](checkstyle/checkstyle@checkstyle-10.23.1...checkstyle-10.26.1) --- updated-dependencies: - dependency-name: com.puppycrawl.tools:checkstyle dependency-version: 10.26.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…match (e.g. upper case charset used in S3Proxy, but lowercase used in original signature calculation)

Bumps [com.google.jimfs:jimfs](https://github.com/google/jimfs) from 1.3.0 to 1.3.1. - [Release notes](https://github.com/google/jimfs/releases) - [Commits](google/jimfs@v1.3.0...v1.3.1) --- updated-dependencies: - dependency-name: com.google.jimfs:jimfs dependency-version: 1.3.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5.7.0 to 5.8.0. - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](docker/metadata-action@v5.7.0...v5.8.0) --- updated-dependencies: - dependency-name: docker/metadata-action dependency-version: 5.8.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [com.github.spotbugs:spotbugs-annotations](https://github.com/spotbugs/spotbugs) from 4.9.2 to 4.9.3. - [Release notes](https://github.com/spotbugs/spotbugs/releases) - [Changelog](https://github.com/spotbugs/spotbugs/blob/master/CHANGELOG.md) - [Commits](spotbugs/spotbugs@4.9.2...4.9.3) --- updated-dependencies: - dependency-name: com.github.spotbugs:spotbugs-annotations dependency-version: 4.9.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.17 to 1.5.18. - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.5.17...v_1.5.18) --- updated-dependencies: - dependency-name: ch.qos.logback:logback-classic dependency-version: 1.5.18 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

3.5.3 seems to have a junit incompatibility. References gaul#819.

Filesystems cannot support this path but we can support s3fs's use case for setting different user metadata. References s3fs-fuse/s3fs-fuse#2656.

As OSS service is being sunset.

Bumps [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) from 3.5.0 to 3.12.0. - [Release notes](https://github.com/apache/maven-javadoc-plugin/releases) - [Commits](apache/maven-javadoc-plugin@maven-javadoc-plugin-3.5.0...maven-javadoc-plugin-3.12.0) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-javadoc-plugin dependency-version: 3.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [org.assertj:assertj-core](https://github.com/assertj/assertj) from 3.27.4 to 3.27.6. - [Release notes](https://github.com/assertj/assertj/releases) - [Commits](assertj/assertj@assertj-build-3.27.4...assertj-build-3.27.6) --- updated-dependencies: - dependency-name: org.assertj:assertj-core dependency-version: 3.27.6 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.18 to 1.5.19. - [Release notes](https://github.com/qos-ch/logback/releases) - [Commits](qos-ch/logback@v_1.5.18...v_1.5.19) --- updated-dependencies: - dependency-name: ch.qos.logback:logback-classic dependency-version: 1.5.19 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [com.google.guava:guava](https://github.com/google/guava) from 33.4.8-jre to 33.5.0-jre. - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-version: 33.5.0-jre dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [com.azure:azure-storage-blob](https://github.com/Azure/azure-sdk-for-java) from 12.31.2 to 12.31.3. - [Release notes](https://github.com/Azure/azure-sdk-for-java/releases) - [Commits](Azure/azure-sdk-for-java@azure-storage-blob_12.31.2...azure-storage-blob_12.31.3) --- updated-dependencies: - dependency-name: com.azure:azure-storage-blob dependency-version: 12.31.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps software.amazon.awssdk:s3 from 2.33.4 to 2.34.7. --- updated-dependencies: - dependency-name: software.amazon.awssdk:s3 dependency-version: 2.34.7 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Fixes gaul#805.

This blocks Docker pushes and the 2.8.0 release.

Fixes gaul#895. Suggested by: https://stackoverflow.com/questions/76716463/maven-compiler-plugin-annotation-processor-not-found

Bumps [org.apache.maven.plugins:maven-enforcer-plugin](https://github.com/apache/maven-enforcer) from 3.6.1 to 3.6.2. - [Release notes](https://github.com/apache/maven-enforcer/releases) - [Commits](apache/maven-enforcer@enforcer-3.6.1...enforcer-3.6.2) --- updated-dependencies: - dependency-name: org.apache.maven.plugins:maven-enforcer-plugin dependency-version: 3.6.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps software.amazon.awssdk:s3 from 2.34.7 to 2.35.3. --- updated-dependencies: - dependency-name: software.amazon.awssdk:s3 dependency-version: 2.35.3 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps `aws-sdk.version` from 1.12.791 to 1.12.792. Updates `com.amazonaws:aws-java-sdk-s3` from 1.12.791 to 1.12.792 - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.791...1.12.792) Updates `com.amazonaws:aws-java-sdk-sts` from 1.12.791 to 1.12.792 - [Changelog](https://github.com/aws/aws-sdk-java/blob/master/CHANGELOG.md) - [Commits](aws/aws-sdk-java@1.12.791...1.12.792) --- updated-dependencies: - dependency-name: com.amazonaws:aws-java-sdk-s3 dependency-version: 1.12.792 dependency-type: direct:development update-type: version-update:semver-patch - dependency-name: com.amazonaws:aws-java-sdk-sts dependency-version: 1.12.792 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Fixes gaul#896.

S3Proxy 2.8.0 release

willdollman

You'll also need to push a git tag for the merged commit on main so that https://github.com/sourcegraph/sourcegraph/pull/7536/files#diff-58b84609f47de44de15687dcd5fe2e91245a1f546f6ed0086f7f1ed262aab3c6R36 can pull this

jupblb · 2025-10-10T14:15:08Z

Running git tag I see s3proxy-2.8.0 as part of the output (on this branch). This should be good enough.

dependabot bot and others added 30 commits May 2, 2025 12:28

Catch UnsupportedOperationException for getPosixFilePermissions and d…

bf2d506

…efault to PRIVATE on non-POSIX systems

Handle UnsupportedOperationException for getPosixFilePermissions and …

144f56a

…use writeCommonMetadataAttr in all relevant places

Fix Python yield error in s3-tests

17e490e

'yield' keyword is allowed in fixtures, but not in tests (test_routing_generator)

Run on Eclipse Temurin OpenJDK 21 instead of 17

5f7e597

Remove linux/arm/v7 container

9b0f4cc

Force Jetty header cache to be case-sensitive, to avoid signature mis…

5ff5896

…match (e.g. upper case charset used in S3Proxy, but lowercase used in original signature calculation)

Update s3-tests

24e869c

Upgrade Surefire to 3.5.2

aadba1f

3.5.3 seems to have a junit incompatibility. References gaul#819.

Munge / key to container name

cc4cbfe

Filesystems cannot support this path but we can support s3fs's use case for setting different user metadata. References s3fs-fuse/s3fs-fuse#2656.

Add latency blobstore middleware

944d19d

Prepare for Central Portal releasing

f8ebf43

As OSS service is being sunset.

S3Proxy 2.7.0 release

c13a49d

Bump to 2.7.1-SNAPSHOT

2acdb96

Update README.md to include latency middleware

664a94d

dependabot bot and others added 25 commits October 1, 2025 21:10

Increase number of Dependabot PRs

de03a3b

Limit CI to read-only access

b07c27b

Do not require identity and credential for nio2

3029cbc

Fixes gaul#805.

Allow Containerize write permission

0bf4cb4

Allow top-level write permission for Docker push

5eec0f2

Add If-Match and If-None-Match support for PutObject operations

07d420e

replace if-match / if-none-match Java tests with existing Python tests

aecf3f8

fix if-match logic for put operations

548036d

document non-atomic conditional put operations

b697c82

fix checkstyle violations

4bad761

fix azureblob-sdk handling for non-existant objects

97494ee

Remove incorrect permissions for now

ada7482

This blocks Docker pushes and the 2.8.0 release.

Update s3-tests to include condition put tests

0a6f683

Add auto-service annotation processor to compiler

50c368e

Fixes gaul#895. Suggested by: https://stackoverflow.com/questions/76716463/maven-compiler-plugin-annotation-processor-not-found

S3Proxy 2.8.0 release

8456d19

Fixes gaul#896.

Merge tag 's3proxy-2.8.0' into merge-upstream-2.8.0

679912b

S3Proxy 2.8.0 release

jupblb requested a review from willdollman October 10, 2025 14:12

jupblb self-assigned this Oct 10, 2025

willdollman approved these changes Oct 10, 2025

View reviewed changes

jupblb merged commit d1800d5 into master Oct 10, 2025
5 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge upstream 2.8.0#8

Merge upstream 2.8.0#8
jupblb merged 100 commits intomasterfrom
merge-upstream-2.8.0

jupblb commented Oct 10, 2025

Uh oh!

willdollman left a comment

Uh oh!

jupblb commented Oct 10, 2025 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

7 participants

Conversation

jupblb commented Oct 10, 2025

Uh oh!

willdollman left a comment

Choose a reason for hiding this comment

Uh oh!

jupblb commented Oct 10, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

7 participants

jupblb commented Oct 10, 2025 •

edited

Loading