address comments

2 months ago · 9d4d131043
5 changed files with 34 additions and 25 deletions
--- a/test/s3/iam/DISTRIBUTED.md
+++ b/test/s3/iam/DISTRIBUTED.md
@ -227,8 +227,8 @@ time weed filer.cat /seaweedfs/iam/roles/TestRole.json
 - **Implement alerts** for IAM storage issues

 ### Capacity Planning
- **Estimate IAM data size**: Roles + Policies + Sessions
- **Plan for growth**: Active sessions scale with user count  
+- **Estimate IAM data size**: Roles + Policies (no sessions - stateless JWT)
+- **Plan for growth**: Role and policy count scales with user/application count  
 - **Monitor filer disk usage**: `/seaweedfs/iam/` path
 - **Set up log rotation**: For IAM audit logs

@ -264,8 +264,7 @@ time weed filer.cat /seaweedfs/iam/roles/TestRole.json
                │ │ /seaweedfs/   │ │
                │ │ iam/          │ │
                │ │ ├─roles/      │ │
-                │ │ ├─policies/   │ │
-                │ │ └─sessions/   │ │
+                │ │ └─policies/   │ │
                │ └───────────────┘ │
                └───────────────────┘
                        ✅
--- a/test/s3/iam/STS_DISTRIBUTED.md
+++ b/test/s3/iam/STS_DISTRIBUTED.md
@ -289,11 +289,8 @@ User Request → Load Balancer → Any S3 Gateway Instance
                                      ↓
                              Extract JWT Session Token
                                      ↓
-                              Validate with TokenGenerator
-                              (Same signing key on all instances)
-                                      ↓
-                              Retrieve Session from Filer
-                              (Shared session store)
+                              Validate JWT Token
+                              (Self-contained - no external storage needed)
                                      ↓
                              Check Permissions
                              (Shared policy engine)
--- a/test/s3/iam/s3_iam_distributed_test.go
+++ b/test/s3/iam/s3_iam_distributed_test.go
@ -215,14 +215,25 @@ func TestS3IAMDistributedTests(t *testing.T) {
 			}
 		}

-		// STRICT CONCURRENCY TESTING: Use much lower error rate thresholds
-		// Serious errors (race conditions, deadlocks, etc.) should be near zero
-		if seriousErrorRate > 0.01 { // Max 1% serious error rate
-			t.Errorf("❌ Serious error rate too high: %.1f%% (>1%%). This indicates potential race conditions, deadlocks, or other concurrency bugs that must be fixed.", seriousErrorRate*100)
-		} else if errorRate > 0.05 { // Max 5% total error rate (including transient)
-			t.Errorf("❌ Total error rate too high: %.1f%% (>5%%). While some transient errors are acceptable, this rate suggests system instability under concurrent load.", errorRate*100)
+		// STRICT CONCURRENCY TESTING: Use appropriate thresholds for the operation count
+		// For totalOperations=6, error thresholds need to be adjusted to avoid unreachable conditions
+
+		// Serious errors (race conditions, deadlocks) should be zero or very rare
+		maxSeriousErrors := 1 // Allow 1 serious error max (16.7%) for small test size
+		if len(seriousErrors) > maxSeriousErrors {
+			t.Errorf("❌ Too many serious errors: %d (%.1f%%) - max allowed: %d. This indicates potential race conditions, deadlocks, or other concurrency bugs.",
+				len(seriousErrors), seriousErrorRate*100, maxSeriousErrors)
+		} else if len(seriousErrors) > 0 {
+			t.Logf("⚠️  %d serious error detected (%.1f%%) - within threshold but should be investigated", len(seriousErrors), seriousErrorRate*100)
+		}
+
+		// For total errors, allow more flexibility with small operation counts
+		maxTotalErrors := 2 // Allow 2 total errors max (33.3%) for small test size
+		if len(errorList) > maxTotalErrors {
+			t.Errorf("❌ Too many total errors: %d (%.1f%%) - max allowed: %d. This suggests system instability under concurrent load.",
+				len(errorList), errorRate*100, maxTotalErrors)
 		} else if len(errorList) > 0 {
-			t.Logf("⚠️  Concurrent operations completed with acceptable error rate: %.1f%% (mostly transient errors)", errorRate*100)
+			t.Logf("⚠️  Concurrent operations completed with %d errors (%.1f%%) - within acceptable range for testing", len(errorList), errorRate*100)
 		} else {
 			t.Logf("✅ All concurrent operations completed successfully - excellent concurrency handling!")
 		}
--- a/weed/s3api/s3_multipart_iam.go
+++ b/weed/s3api/s3_multipart_iam.go
@ -289,7 +289,9 @@ func determineMultipartS3Action(operation MultipartOperation) Action {
 	case MultipartOpListParts:
 		return s3_constants.ACTION_LIST_PARTS
 	default:
-		return s3_constants.ACTION_READ // Default fallback
+		// Fail closed for unmapped operations to prevent unintended access
+		glog.Errorf("unmapped multipart operation: %s", operation)
+		return "s3:InternalErrorUnknownMultipartAction" // Non-existent action ensures denial
 	}
 }

--- a/weed/s3api/s3_multipart_iam_test.go
+++ b/weed/s3api/s3_multipart_iam_test.go
@ -266,7 +266,7 @@ func TestMultipartS3ActionMapping(t *testing.T) {
 		{MultipartOpAbort, s3_constants.ACTION_ABORT_MULTIPART},
 		{MultipartOpList, s3_constants.ACTION_LIST_MULTIPART_UPLOADS},
 		{MultipartOpListParts, s3_constants.ACTION_LIST_PARTS},
-		{MultipartOperation("unknown"), s3_constants.ACTION_READ}, // Default fallback
+		{MultipartOperation("unknown"), "s3:InternalErrorUnknownMultipartAction"}, // Fail-closed for security
 	}

 	for _, tt := range tests {