starred/s3fs-fuse
1
0
Fork 0
mirror of https://github.com/s3fs-fuse/s3fs-fuse.git synced 2026-04-25 05:16:00 +03:00
Code Issues 305 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #632] Prevent s3fs from downloading files from bucket? #358

New issue
Closed
opened 2026-03-04 01:44:44 +03:00 by kerem · 9 comments
kerem commented 2026-03-04 01:44:44 +03:00
Owner
Copy link

Originally created by @gavinrobertszeco on GitHub (Aug 17, 2017).
Original GitHub issue: https://github.com/s3fs-fuse/s3fs-fuse/issues/632

Additional Information

The following information is very important in order to help us to help you. Omission of the following details may delay your support request or receive no attention at all.

  • Version of s3fs being used (s3fs --version)

  • Amazon Simple Storage Service File System V1.82(commit:fa8c417) with OpenSSL

  • Version of fuse being used (pkg-config --modversion fuse)

  • 2.9.4

  • System information (uname -a)

  • Linux zecoenergy.com 3.2.34-55.46.amzn1.x86_64 #1 SMP Tue Nov 20 10:06:15 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux

  • Distro (cat /etc/issue)

  • Amazon Linux AMI release 2014.09

  • s3fs command line used (if applicable)

s3fs s3ftp-test /home/mount_point -o passwd_file=/home/passwd.s3

Details about issue

Everything works great as is, however I am keen on using s3fs to literally act as a proxy between my FTP clients and my S3 Bucket(s).

Because of the VAST amount of data we receive and push to S3 currently, it's not possible or even needed to download any of the existing files.

Is it possible to configure s3fs to simply upload files that are dropped into the mounted folder?

Thanks :)

Originally created by @gavinrobertszeco on GitHub (Aug 17, 2017). Original GitHub issue: https://github.com/s3fs-fuse/s3fs-fuse/issues/632 #### Additional Information _The following information is very important in order to help us to help you. Omission of the following details may delay your support request or receive no attention at all._ - Version of s3fs being used (s3fs --version) - Amazon Simple Storage Service File System V1.82(commit:fa8c417) with OpenSSL - Version of fuse being used (pkg-config --modversion fuse) - 2.9.4 - System information (uname -a) - Linux zecoenergy.com 3.2.34-55.46.amzn1.x86_64 #1 SMP Tue Nov 20 10:06:15 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux - Distro (cat /etc/issue) - Amazon Linux AMI release 2014.09 - s3fs command line used (if applicable) ``` s3fs s3ftp-test /home/mount_point -o passwd_file=/home/passwd.s3 ``` #### Details about issue Everything works great as is, however I am keen on using s3fs to literally act as a proxy between my FTP clients and my S3 Bucket(s). Because of the VAST amount of data we receive and push to S3 currently, it's not possible or even needed to download any of the existing files. Is it possible to configure s3fs to simply upload files that are dropped into the mounted folder? Thanks :)
kerem closed this issue 2026-03-04 01:44:44 +03:00
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@gavinrobertszeco commented on GitHub (Aug 29, 2017):

I've tried to create an IAM User role that only has write access but it fails to mount due to the 403 error when attempting to get the list of available files.

Any suggestions?

<!-- gh-comment-id:325601347 --> @gavinrobertszeco commented on GitHub (Aug 29, 2017): I've tried to create an IAM User role that only has write access but it fails to mount due to the 403 error when attempting to get the list of available files. Any suggestions?
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@ggtakec commented on GitHub (Sep 17, 2017):

The use_cache option is not specified for not using local disk for file cache.
And I think that IAM user role probably has to have list object for that s3fs could list file.
Regards,

<!-- gh-comment-id:330037097 --> @ggtakec commented on GitHub (Sep 17, 2017): The use_cache option is not specified for not using local disk for file cache. And I think that IAM user role probably has to have list object for that s3fs could list file. Regards,
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@gavinrobertszeco commented on GitHub (Sep 17, 2017):

Hey @ggtakec

It's more preventing S3FS from downloading the contents of the bucket when mounting.

If S3FS simply caches the file listings for LS until you request the file in some form, then it may not be an issue. Otherwise, I'll have to use a long polling method, i.e. cron + awscli.

Any suggestions?

<!-- gh-comment-id:330078300 --> @gavinrobertszeco commented on GitHub (Sep 17, 2017): Hey @ggtakec It's more preventing S3FS from downloading the contents of the bucket when mounting. If S3FS simply caches the file listings for LS until you request the file in some form, then it may not be an issue. Otherwise, I'll have to use a long polling method, i.e. cron + awscli. Any suggestions?
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@ggtakec commented on GitHub (Sep 17, 2017):

@gavinrobertszeco
s3fs has a stat (file access permission) cache of the file.
However, s3fs is part of the file system and s3fs does not prevent file listing behavior.
This cache is used to check the permissions of individual files.
Increasing the size of this cache will improve performance.

You can improve the performance of s3fs using options such as max_stat_cache_size, enable_noobj_cache, notsup_compat_dir etc.
Please try it and see man page(and wiki page).

Regards,

<!-- gh-comment-id:330097540 --> @ggtakec commented on GitHub (Sep 17, 2017): @gavinrobertszeco s3fs has a stat (file access permission) cache of the file. However, s3fs is part of the file system and s3fs does not prevent file listing behavior. This cache is used to check the permissions of individual files. Increasing the size of this cache will improve performance. You can improve the performance of s3fs using options such as max_stat_cache_size, enable_noobj_cache, notsup_compat_dir etc. Please try it and see man page(and wiki page). Regards,
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@sqlbot commented on GitHub (Sep 18, 2017):

It's more preventing S3FS from downloading the contents of the bucket when mounting.

@gavinrobertszeco define "contents of the bucket." S3FS doesn't download any objects unless you open the corresponding files for the objects. Directory listings iterate the objects and sends HEAD requests to get the permissions, mode (and timestamps?)... but the "contents" (to me, sounds like you mean the object body payloads) are not actually downloaded.

<!-- gh-comment-id:330333720 --> @sqlbot commented on GitHub (Sep 18, 2017): >It's more preventing S3FS from downloading the contents of the bucket when mounting. @gavinrobertszeco define "contents of the bucket." S3FS doesn't download any objects unless you open the corresponding files for the objects. Directory listings iterate the objects and sends `HEAD` requests to get the permissions, mode (and timestamps?)... but the "contents" (to me, sounds like you mean the object body payloads) are not actually downloaded.
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@gavinrobertszeco commented on GitHub (Sep 18, 2017):

Hey all,

@sqlbot - My S3 bucket contains GB's of CSV files across hundreds/thousands of folders.

I am using S3FS to simply connect our FTP Server directly to S3 so that Lambda can start processing files received. If it doesn't work, the only alternative would be to use aws s3 mv to move files received to S3.

The OS "should" never need to list or access the mounted folder or it's contents other than to facilitate the upload of the content, however I wasn't sure and I didn't want to try it to only find it's downloaded GB's of data 😦

Based on what you've said, it should all be OK.

Cheers 😄

<!-- gh-comment-id:330343636 --> @gavinrobertszeco commented on GitHub (Sep 18, 2017): Hey all, @sqlbot - My S3 bucket contains GB's of CSV files across hundreds/thousands of folders. I am using S3FS to simply connect our FTP Server directly to S3 so that Lambda can start processing files received. If it doesn't work, the only alternative would be to use `aws s3 mv` to move files received to S3. The OS "should" never need to list or access the mounted folder or it's contents other than to facilitate the upload of the content, however I wasn't sure and I didn't want to try it to only find it's downloaded GB's of data 😦 Based on what you've said, it should all be OK. Cheers :smile:
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@machty commented on GitHub (Jan 9, 2018):

@sqlbot that is very interesting about deferring downloads until the file is actually open (sounds FAQ-worthy).

I still think there's some value in there being a unidirectional sync where SFTP uploads go to S3 but don't detect new files on S3, since even if you defer downloads there's still the potential of a lot of metadata coming back when lots of objects are created/copied/etc on S3, and unfortunately this effect is multiplied when you try and provide an elastic cluster of SFTP "proxies" (they'll all receive the metadata sync from all the changes made by other nodes in the cluster). Of course, a unidirectional sync might be beyond the scope of this project, but I think a lot of people are using s3fs for this similar use case.

<!-- gh-comment-id:356440023 --> @machty commented on GitHub (Jan 9, 2018): @sqlbot that is very interesting about deferring downloads until the file is actually open (sounds FAQ-worthy). I still think there's some value in there being a unidirectional sync where SFTP uploads go to S3 but don't detect new files on S3, since even if you defer downloads there's still the potential of a lot of metadata coming back when lots of objects are created/copied/etc on S3, and unfortunately this effect is multiplied when you try and provide an elastic cluster of SFTP "proxies" (they'll all receive the metadata sync from all the changes made by other nodes in the cluster). Of course, a unidirectional sync might be beyond the scope of this project, but I think a lot of people are using s3fs for this similar use case.
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@sqlbot commented on GitHub (Jan 10, 2018):

s3fs mimics filesystem semantics, so -- just as when you mount a physical disk on a server, there's nothing that causes the data in the files to be read from the disk because there is no reason for the files to be read from the disk unless you actually open them -- the actual objects are never downloaded from S3 unless you actually do something that would cause the content of a file to be read.

There's no metadata syncing that occurs -- s3fs never learns anything spontaneously from S3, it only asks for what it needs to know, right now, based on some user action on the server -- not activity occurring against the bucket. File metadata is fetched when you list a directory (and the information isn't in the stat cache, if configured, as a result of a previous listing), and object payload is fetched when you read from a file, but not before that.

This can be confirmed via the bucket logs.

<!-- gh-comment-id:356474177 --> @sqlbot commented on GitHub (Jan 10, 2018): s3fs mimics filesystem semantics, so -- just as when you mount a physical disk on a server, there's nothing that causes the data in the files to be read from the disk because there is no reason for the files to be read from the disk unless you actually open them -- the actual objects are never downloaded from S3 unless you actually do something that would cause the content of a file to be read. There's no metadata syncing that occurs -- s3fs never learns anything spontaneously from S3, it only asks for what it needs to know, *right now*, based on some user action on the server -- not activity occurring against the bucket. File metadata is fetched when you list a directory (and the information isn't in the stat cache, if configured, as a result of a previous listing), and object payload is fetched when you read from a file, but not before that. This can be confirmed via the bucket logs.
kerem commented 2026-03-04 01:44:45 +03:00
Author
Owner
Copy link

@gaul commented on GitHub (Jul 11, 2019):

s3fs does not download file unless an application opens and read from them. However, updatedb or similar background task can unexpectedly read files. Closing since reporter understands this behavior in https://github.com/s3fs-fuse/s3fs-fuse/issues/632#issuecomment-330343636.

<!-- gh-comment-id:510295022 --> @gaul commented on GitHub (Jul 11, 2019): s3fs does not download file unless an application opens and read from them. However, `updatedb` or similar background task can unexpectedly read files. Closing since reporter understands this behavior in https://github.com/s3fs-fuse/s3fs-fuse/issues/632#issuecomment-330343636.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
v1.97
v1.96
v1.95
v1.94
v1.93
v1.92
v1.91
v1.90
v1.89
v1.88
v1.87
v1.86
v1.85
v1.84
v1.83
v1.82
v1.81
v1.80
v1.79
v1.78
Pre-v1.78
v1.77
v1.76
v1.75
v1.74
Labels
Clear labels   
bug

   
bug

   
dataloss

   
duplicate

   
enhancement

   
feature request

   
help wanted

   
invalid

   
need info

   
performance

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question

   
testing
No labels
bug
bug
dataloss
duplicate
enhancement
feature request
help wanted
invalid
need info
performance
pull-request
question
question
testing
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/s3fs-fuse#358
No description provided.