update rulesguard with new rules (#10392)

Co-authored-by: Nitish Tiwari <nitish@minio.io> Co-authored-by: Praveen raj Mani <praveen@minio.io>
2026-02-04 18:00:15 -05:00 · 2020-09-01 16:58:13 -07:00
parent 3e1fb17b70
commit 2acb530ccd
12 changed files with 58 additions and 34 deletions
--- a/cmd/signature-v4-utils.go
+++ b/cmd/signature-v4-utils.go
@@ -163,9 +163,7 @@ func extractSignedHeaders(signedHeaders []string, r *http.Request) (http.Header,
 			val, ok = reqQueries[header]
 		}
 		if ok {
-			for _, enc := range val {
-				extractedSignedHeaders.Add(header, enc)
-			}
+			extractedSignedHeaders[http.CanonicalHeaderKey(header)] = val
 			continue
 		}
 		switch header {
@@ -192,9 +190,7 @@ func extractSignedHeaders(signedHeaders []string, r *http.Request) (http.Header,
 			extractedSignedHeaders.Set(header, r.Host)
 		case "transfer-encoding":
 			// Go http server removes "host" from Request.Header
-			for _, enc := range r.TransferEncoding {
-				extractedSignedHeaders.Add(header, enc)
-			}
+			extractedSignedHeaders[http.CanonicalHeaderKey(header)] = r.TransferEncoding
 		case "content-length":
 			// Signature-V4 spec excludes Content-Length from signed headers list for signature calculation.
 			// But some clients deviate from this rule. Hence we consider Content-Length for signature