swift 2.31.1__py2.py3-none-any.whl → 2.32.1__py2.py3-none-any.whl

swift/common/middleware/crossdomain.py

@@ -23,20 +23,24 @@ class CrossDomainMiddleware(object):
     Cross domain middleware used to respond to requests for cross domain
     policy information.
 
-    If the path is /crossdomain.xml it will respond with an xml cross domain
-    policy document. This allows web pages hosted elsewhere to use client
-    side technologies such as Flash, Java and Silverlight to interact
+    If the path is ``/crossdomain.xml`` it will respond with an xml cross
+    domain policy document. This allows web pages hosted elsewhere to use
+    client side technologies such as Flash, Java and Silverlight to interact
     with the Swift API.
 
     To enable this middleware, add it to the pipeline in your proxy-server.conf
     file. It should be added before any authentication (e.g., tempauth or
     keystone) middleware. In this example ellipsis (...) indicate other
-    middleware you may have chosen to use::
+    middleware you may have chosen to use:
+
+    .. code:: cfg
 
         [pipeline:main]
         pipeline =  ... crossdomain ... authtoken ... proxy-server
 
-    And add a filter section, such as::
+    And add a filter section, such as:
+
+    .. code:: cfg
 
         [filter:crossdomain]
         use = egg:swift#crossdomain
@@ -45,13 +49,22 @@ class CrossDomainMiddleware(object):
 
     For continuation lines, put some whitespace before the continuation
     text. Ensure you put a completely blank line to terminate the
-    cross_domain_policy value.
+    ``cross_domain_policy`` value.
+
+    The ``cross_domain_policy`` name/value is optional. If omitted, the policy
+    defaults as if you had specified:
 
-    The cross_domain_policy name/value is optional. If omitted, the policy
-    defaults as if you had specified::
+    .. code:: cfg
 
         cross_domain_policy = <allow-access-from domain="*" secure="false" />
 
+    .. note::
+
+       The default policy is very permissive; this is appropriate
+       for most public cloud deployments, but may not be appropriate
+       for all deployments. See also:
+       `CWE-942 <https://cwe.mitre.org/data/definitions/942.html>`__
+
 
     """
 

swift/common/middleware/listing_formats.py

@@ -18,6 +18,7 @@ import six
 from xml.etree.cElementTree import Element, SubElement, tostring
 
 from swift.common.constraints import valid_api_version
+from swift.common.header_key_dict import HeaderKeyDict
 from swift.common.http import HTTP_NO_CONTENT
 from swift.common.request_helpers import get_param
 from swift.common.swob import HTTPException, HTTPNotAcceptable, Request, \
@@ -178,52 +179,39 @@ class ListingFilter(object):
             start_response(status, headers)
             return resp_iter
 
-        header_to_index = {}
-        resp_content_type = resp_length = None
-        for i, (header, value) in enumerate(headers):
-            header = header.lower()
-            if header == 'content-type':
-                header_to_index[header] = i
-                resp_content_type = value.partition(';')[0]
-            elif header == 'content-length':
-                header_to_index[header] = i
-                resp_length = int(value)
-            elif header == 'vary':
-                header_to_index[header] = i
-
         if not status.startswith(('200 ', '204 ')):
             start_response(status, headers)
             return resp_iter
 
+        headers_dict = HeaderKeyDict(headers)
+        resp_content_type = headers_dict.get(
+            'content-type', '').partition(';')[0]
+        resp_length = headers_dict.get('content-length')
+
         if can_vary:
-            if 'vary' in header_to_index:
-                value = headers[header_to_index['vary']][1]
+            if 'vary' in headers_dict:
+                value = headers_dict['vary']
                 if 'accept' not in list_from_csv(value.lower()):
-                    headers[header_to_index['vary']] = (
-                        'Vary', value + ', Accept')
+                    headers_dict['vary'] = value + ', Accept'
             else:
-                headers.append(('Vary', 'Accept'))
+                headers_dict['vary'] = 'Accept'
 
         if resp_content_type != 'application/json':
-            start_response(status, headers)
+            start_response(status, list(headers_dict.items()))
             return resp_iter
 
-        if resp_length is None or \
-                resp_length > MAX_CONTAINER_LISTING_CONTENT_LENGTH:
-            start_response(status, headers)
+        if req.method == 'HEAD':
+            headers_dict['content-type'] = out_content_type + '; charset=utf-8'
+            # proxy logging (and maybe other mw?) seem to be good about
+            # sticking this on HEAD/204 but we do it here to be responsible
+            # and explicit
+            headers_dict['content-length'] = 0
+            start_response(status, list(headers_dict.items()))
             return resp_iter
 
-        def set_header(header, value):
-            if value is None:
-                del headers[header_to_index[header]]
-            else:
-                headers[header_to_index[header]] = (
-                    headers[header_to_index[header]][0], str(value))
-
-        if req.method == 'HEAD':
-            set_header('content-type', out_content_type + '; charset=utf-8')
-            set_header('content-length', None)  # don't know, can't determine
-            start_response(status, headers)
+        if resp_length is None or \
+                int(resp_length) > MAX_CONTAINER_LISTING_CONTENT_LENGTH:
+            start_response(status, list(headers_dict.items()))
             return resp_iter
 
         body = b''.join(resp_iter)
@@ -237,7 +225,7 @@ class ListingFilter(object):
         except ValueError:
             # Static web listing that's returning invalid JSON?
             # Just pass it straight through; that's about all we *can* do.
-            start_response(status, headers)
+            start_response(status, list(headers_dict.items()))
             return [body]
 
         if not req.allow_reserved_names:
@@ -257,16 +245,16 @@ class ListingFilter(object):
                 body = json.dumps(listing).encode('ascii')
         except KeyError:
             # listing was in a bad format -- funky static web listing??
-            start_response(status, headers)
+            start_response(status, list(headers_dict.items()))
             return [body]
 
         if not body:
             status = '%s %s' % (HTTP_NO_CONTENT,
                                 RESPONSE_REASONS[HTTP_NO_CONTENT][0])
 
-        set_header('content-type', out_content_type + '; charset=utf-8')
-        set_header('content-length', len(body))
-        start_response(status, headers)
+        headers_dict['content-type'] = out_content_type + '; charset=utf-8'
+        headers_dict['content-length'] = len(body)
+        start_response(status, list(headers_dict.items()))
         return [body]
 
 

swift/common/middleware/proxy_logging.py

@@ -19,12 +19,12 @@ Logging middleware for the Swift proxy.
 This serves as both the default logging implementation and an example of how
 to plug in your own logging format/method.
 
-The logging format implemented below is as follows:
+The logging format implemented below is as follows::
 
-client_ip remote_addr end_time.datetime method path protocol
-    status_int referer user_agent auth_token bytes_recvd bytes_sent
-    client_etag transaction_id headers request_time source log_info
-    start_time end_time policy_index
+    client_ip remote_addr end_time.datetime method path protocol
+        status_int referer user_agent auth_token bytes_recvd bytes_sent
+        client_etag transaction_id headers request_time source log_info
+        start_time end_time policy_index
 
 These values are space-separated, and each is url-encoded, so that they can
 be separated with a simple .split()
@@ -49,6 +49,11 @@ be separated with a simple .split()
 * Values that are missing (e.g. due to a header not being present) or zero
   are generally represented by a single hyphen ('-').
 
+.. note::
+   The message format may be configured using the ``log_msg_template`` option,
+   allowing fields to be added, removed, re-ordered, and even anonymized. For
+   more information, see https://docs.openstack.org/swift/latest/logs.html
+
 The proxy-logging can be used twice in the proxy server's pipeline when there
 is middleware installed that can return custom responses that don't follow the
 standard pipeline to the proxy server.
@@ -78,7 +83,7 @@ from swift.common.middleware.catch_errors import enforce_byte_count
 from swift.common.swob import Request
 from swift.common.utils import (get_logger, get_remote_client,
                                 config_true_value, reiterate,
-                                close_if_possible,
+                                close_if_possible, cap_length,
                                 InputProxy, list_from_csv, get_policy_index,
                                 split_path, StrAnonymizer, StrFormatTime,
                                 LogStringFormatter)
@@ -200,9 +205,7 @@ class ProxyLoggingMiddleware(object):
         env['swift.proxy_access_log_made'] = True
 
     def obscure_sensitive(self, value):
-        if value and len(value) > self.reveal_sensitive_prefix:
-            return value[:self.reveal_sensitive_prefix] + '...'
-        return value
+        return cap_length(value, self.reveal_sensitive_prefix)
 
     def obscure_req(self, req):
         for header in get_sensitive_headers():

swift/common/middleware/s3api/controllers/bucket.py

@@ -23,7 +23,8 @@ from swift.common import swob
 from swift.common.http import HTTP_OK
 from swift.common.middleware.versioned_writes.object_versioning import \
     DELETE_MARKER_CONTENT_TYPE
-from swift.common.utils import json, public, config_true_value, Timestamp
+from swift.common.utils import json, public, config_true_value, Timestamp, \
+    cap_length
 from swift.common.registry import get_swift_info
 
 from swift.common.middleware.s3api.controllers.base import Controller
@@ -343,7 +344,12 @@ class BucketController(Controller):
 
         resp = req.get_response(self.app, query=query)
 
-        objects = json.loads(resp.body)
+        try:
+            objects = json.loads(resp.body)
+        except (TypeError, ValueError):
+            self.logger.error('Got non-JSON response trying to list %s: %r',
+                              req.path, cap_length(resp.body, 60))
+            raise
 
         is_truncated = max_keys > 0 and len(objects) > max_keys
         objects = objects[:max_keys]

swift/common/middleware/s3api/s3api.py

@@ -151,6 +151,7 @@ from swift.common.middleware.listing_formats import \
     MAX_CONTAINER_LISTING_CONTENT_LENGTH
 from swift.common.wsgi import PipelineWrapper, loadcontext, WSGIContext
 
+from swift.common.middleware import app_property
 from swift.common.middleware.s3api.exception import NotS3Request, \
     InvalidSubresource
 from swift.common.middleware.s3api.s3request import get_request_class
@@ -167,9 +168,12 @@ from swift.common.registry import register_swift_info, \
 class ListingEtagMiddleware(object):
     def __init__(self, app):
         self.app = app
-        # Pass this along so get_container_info will have the configured
-        # odds to skip cache
-        self._pipeline_final_app = app._pipeline_final_app
+
+    # Pass these along so get_container_info will have the configured
+    # odds to skip cache
+    _pipeline_final_app = app_property('_pipeline_final_app')
+    _pipeline_request_logging_app = app_property(
+        '_pipeline_request_logging_app')
 
     def __call__(self, env, start_response):
         # a lot of this is cribbed from listing_formats / swob.Request
@@ -293,7 +297,7 @@ class S3ApiMiddleware(object):
             wsgi_conf.get('ratelimit_as_client_error', False))
 
         self.logger = get_logger(
-            wsgi_conf, log_route=wsgi_conf.get('log_name', 's3api'))
+            wsgi_conf, log_route='s3api', statsd_tail_prefix='s3api')
         self.check_pipeline(wsgi_conf)
 
     def is_s3_cors_preflight(self, env):
@@ -348,6 +352,7 @@ class S3ApiMiddleware(object):
         except InvalidSubresource as e:
             self.logger.debug(e.cause)
         except ErrorResponse as err_resp:
+            self.logger.increment(err_resp.metric_name)
             if isinstance(err_resp, InternalError):
                 self.logger.exception(err_resp)
             resp = err_resp

swift/common/middleware/s3api/s3request.py

@@ -189,11 +189,13 @@ class SigV4Mixin(object):
                         timestamp = mktime(self.headers.get('Date'))
             except (ValueError, TypeError):
                 raise AccessDenied('AWS authentication requires a valid Date '
-                                   'or x-amz-date header')
+                                   'or x-amz-date header',
+                                   reason='invalid_date')
 
             if timestamp < 0:
                 raise AccessDenied('AWS authentication requires a valid Date '
-                                   'or x-amz-date header')
+                                   'or x-amz-date header',
+                                   reason='invalid_date')
 
             try:
                 self._timestamp = S3Timestamp(timestamp)
@@ -214,7 +216,7 @@ class SigV4Mixin(object):
         try:
             expires = int(self.params['X-Amz-Expires'])
         except KeyError:
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_expires')
         except ValueError:
             err = 'X-Amz-Expires should be a number'
         else:
@@ -230,14 +232,14 @@ class SigV4Mixin(object):
             raise AuthorizationQueryParametersError(err)
 
         if int(self.timestamp) + expires < S3Timestamp.now():
-            raise AccessDenied('Request has expired')
+            raise AccessDenied('Request has expired', reason='expired')
 
     def _parse_credential(self, credential_string):
         parts = credential_string.split("/")
         # credential must be in following format:
         # <access-key-id>/<date>/<AWS-region>/<AWS-service>/aws4_request
         if not parts[0] or len(parts) != 5:
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_credential')
         return dict(zip(['access', 'date', 'region', 'service', 'terminal'],
                         parts))
 
@@ -257,9 +259,9 @@ class SigV4Mixin(object):
                 swob.wsgi_to_str(self.params['X-Amz-Credential']))
             sig = swob.wsgi_to_str(self.params['X-Amz-Signature'])
             if not sig:
-                raise AccessDenied()
+                raise AccessDenied(reason='invalid_query_auth')
         except KeyError:
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_query_auth')
 
         try:
             signed_headers = swob.wsgi_to_str(
@@ -311,7 +313,7 @@ class SigV4Mixin(object):
             "Credential=")[2].split(',')[0])
         sig = auth_str.partition("Signature=")[2].split(',')[0]
         if not sig:
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_header_auth')
         signed_headers = auth_str.partition(
             "SignedHeaders=")[2].split(',', 1)[0]
         if not signed_headers:
@@ -582,11 +584,13 @@ class S3Request(swob.Request):
                                          self.headers.get('Date')))
             except ValueError:
                 raise AccessDenied('AWS authentication requires a valid Date '
-                                   'or x-amz-date header')
+                                   'or x-amz-date header',
+                                   reason='invalid_date')
 
             if timestamp < 0:
                 raise AccessDenied('AWS authentication requires a valid Date '
-                                   'or x-amz-date header')
+                                   'or x-amz-date header',
+                                   reason='invalid_date')
             try:
                 self._timestamp = S3Timestamp(timestamp)
             except ValueError:
@@ -658,10 +662,10 @@ class S3Request(swob.Request):
             expires = swob.wsgi_to_str(self.params['Expires'])
             sig = swob.wsgi_to_str(self.params['Signature'])
         except KeyError:
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_query_auth')
 
         if not all([access, sig, expires]):
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_query_auth')
 
         return access, sig
 
@@ -674,7 +678,7 @@ class S3Request(swob.Request):
         """
         auth_str = swob.wsgi_to_str(self.headers['Authorization'])
         if not auth_str.startswith('AWS ') or ':' not in auth_str:
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_header_auth')
         # This means signature format V2
         access, sig = auth_str.split(' ', 1)[1].rsplit(':', 1)
         return access, sig
@@ -705,15 +709,15 @@ class S3Request(swob.Request):
         try:
             ex = S3Timestamp(float(self.params['Expires']))
         except (KeyError, ValueError):
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_expires')
 
         if S3Timestamp.now() > ex:
-            raise AccessDenied('Request has expired')
+            raise AccessDenied('Request has expired', reason='expired')
 
         if ex >= 2 ** 31:
             raise AccessDenied(
                 'Invalid date (should be seconds since epoch): %s' %
-                self.params['Expires'])
+                self.params['Expires'], reason='invalid_expires')
 
     def _validate_dates(self):
         """
@@ -725,12 +729,13 @@ class S3Request(swob.Request):
         amz_date_header = self.headers.get('X-Amz-Date')
         if not date_header and not amz_date_header:
             raise AccessDenied('AWS authentication requires a valid Date '
-                               'or x-amz-date header')
+                               'or x-amz-date header',
+                               reason='invalid_date')
 
         # Anyways, request timestamp should be validated
         epoch = S3Timestamp(0)
         if self.timestamp < epoch:
-            raise AccessDenied()
+            raise AccessDenied(reason='invalid_date')
 
         # If the standard date is too far ahead or behind, it is an
         # error
@@ -984,7 +989,7 @@ class S3Request(swob.Request):
         else:
             # Should have already raised NotS3Request in _parse_auth_info,
             # but as a sanity check...
-            raise AccessDenied()
+            raise AccessDenied(reason='not_s3')
 
         for key, value in sorted(amz_headers.items()):
             buf.append(swob.wsgi_to_bytes("%s:%s" % (key, value)))
@@ -1348,15 +1353,18 @@ class S3Request(swob.Request):
         try:
             sw_resp = sw_req.get_response(app)
         except swob.HTTPException as err:
+            # Maybe a 422 from HashingInput? Put something in
+            # s3api.backend_path - hopefully by now any modifications to the
+            # path (e.g. tenant to account translation) will have been made by
+            # auth middleware
+            self.environ['s3api.backend_path'] = sw_req.environ['PATH_INFO']
             sw_resp = err
         else:
             # reuse account
             _, self.account, _ = split_path(sw_resp.environ['PATH_INFO'],
                                             2, 3, True)
-            # Propagate swift.backend_path in environ for middleware
-            # in pipeline that need Swift PATH_INFO like ceilometermiddleware.
-            self.environ['s3api.backend_path'] = \
-                sw_resp.environ['PATH_INFO']
+            # Update s3.backend_path from the response environ
+            self.environ['s3api.backend_path'] = sw_resp.environ['PATH_INFO']
             # Propogate backend headers back into our req headers for logging
             for k, v in sw_req.headers.items():
                 if k.lower().startswith('x-backend-'):
@@ -1412,7 +1420,7 @@ class S3Request(swob.Request):
             raise SignatureDoesNotMatch(
                 **self.signature_does_not_match_kwargs())
         if status == HTTP_FORBIDDEN:
-            raise AccessDenied()
+            raise AccessDenied(reason='forbidden')
         if status == HTTP_SERVICE_UNAVAILABLE:
             raise ServiceUnavailable()
         if status in (HTTP_RATE_LIMITED, HTTP_TOO_MANY_REQUESTS):

swift/common/middleware/s3api/s3response.py

@@ -229,11 +229,12 @@ class ErrorResponse(S3ResponseBase, swob.HTTPException):
     _code = ''
     xml_declaration = True
 
-    def __init__(self, msg=None, *args, **kwargs):
+    def __init__(self, msg=None, reason=None, *args, **kwargs):
         if msg:
             self._msg = msg
         if not self._code:
             self._code = self.__class__.__name__
+        self.reason = reason
 
         self.info = kwargs.copy()
         for reserved_key in ('headers', 'body'):
@@ -247,6 +248,14 @@ class ErrorResponse(S3ResponseBase, swob.HTTPException):
             **kwargs)
         self.headers = HeaderKeyDict(self.headers)
 
+    @property
+    def metric_name(self):
+        parts = [str(self.status_int), self._code]
+        if self.reason:
+            parts.append(self.reason)
+        metric = '.'.join(parts)
+        return metric.replace(' ', '_')
+
     def _body_iter(self):
         error_elem = Element('Error')
         SubElement(error_elem, 'Code').text = self._code

swift/common/middleware/tempauth.py

@@ -804,24 +804,23 @@ class TempAuth(object):
                 key = req.headers.get('x-storage-pass')
         else:
             return HTTPBadRequest(request=req)
+        unauthed_headers = {
+            'Www-Authenticate': 'Swift realm="%s"' % (account or 'unknown'),
+        }
         if not all((account, user, key)):
             self.logger.increment('token_denied')
-            realm = account or 'unknown'
-            return HTTPUnauthorized(request=req, headers={'Www-Authenticate':
-                                                          'Swift realm="%s"' %
-                                                          realm})
+            return HTTPUnauthorized(request=req, headers=unauthed_headers)
         # Authenticate user
+        account = wsgi_to_str(account)
+        user = wsgi_to_str(user)
+        key = wsgi_to_str(key)
         account_user = account + ':' + user
         if account_user not in self.users:
             self.logger.increment('token_denied')
-            auth = 'Swift realm="%s"' % account
-            return HTTPUnauthorized(request=req,
-                                    headers={'Www-Authenticate': auth})
+            return HTTPUnauthorized(request=req, headers=unauthed_headers)
         if self.users[account_user]['key'] != key:
             self.logger.increment('token_denied')
-            auth = 'Swift realm="unknown"'
-            return HTTPUnauthorized(request=req,
-                                    headers={'Www-Authenticate': auth})
+            return HTTPUnauthorized(request=req, headers=unauthed_headers)
         account_id = self.users[account_user]['url'].rsplit('/', 1)[-1]
         # Get memcache client
         memcache_client = cache_from_env(req.environ)

swift/common/middleware/versioned_writes/__init__.py

@@ -47,8 +47,5 @@ def filter_factory(global_conf, **local_conf):
             if 'symlink' not in get_swift_info():
                 raise ValueError('object versioning requires symlinks')
             app = ObjectVersioningMiddleware(app, conf)
-            # Pass this along so get_container_info will have the configured
-            # odds to skip cache
-            app._pipeline_final_app = app.app._pipeline_final_app
         return VersionedWritesMiddleware(app, conf)
     return versioning_filter

swift/common/middleware/versioned_writes/object_versioning.py

@@ -158,6 +158,7 @@ from swift.common.http import is_success, is_client_error, HTTP_NOT_FOUND, \
 from swift.common.request_helpers import get_sys_meta_prefix, \
     copy_header_subset, get_reserved_name, split_reserved_name, \
     constrain_req_limit
+from swift.common.middleware import app_property
 from swift.common.middleware.symlink import TGT_OBJ_SYMLINK_HDR, \
     TGT_ETAG_SYSMETA_SYMLINK_HDR, SYMLOOP_EXTEND, ALLOW_RESERVED_NAMES, \
     TGT_BYTES_SYSMETA_SYMLINK_HDR, TGT_ACCT_SYMLINK_HDR
@@ -1165,12 +1166,22 @@ class ContainerContext(ObjectVersioningContext):
             params['prefix'] = get_reserved_name(params['prefix'])
 
         # NB: no end_marker support (yet)
-        versions_req.params = {
-            k: params.get(k, '')
-            for k in ('prefix', 'marker', 'limit', 'delimiter', 'reverse')}
-        versions_resp = versions_req.get_response(self.app)
+        if get_container_info(versions_req.environ, self.app,
+                              swift_source='OV')['status'] == 404:
+            # we don't usually like to LBYL like this, but 404s tend to be
+            # expensive (since we check all primaries and a bunch of handoffs)
+            # and we expect this to be a reasonably common way to listing
+            # objects since it's more complete from the user's perspective
+            # (see also: s3api and that client ecosystem)
+            versions_resp = None
+        else:
+            versions_req.params = {
+                k: params.get(k, '') for k in (
+                    'prefix', 'marker', 'limit', 'delimiter', 'reverse')}
+            versions_resp = versions_req.get_response(self.app)
 
-        if versions_resp.status_int == HTTP_NOT_FOUND:
+        if versions_resp is None \
+                or versions_resp.status_int == HTTP_NOT_FOUND:
             subdir_listing = [{'subdir': s} for s in subdir_set]
             broken_listing = []
             for item in current_versions.values():
@@ -1379,6 +1390,12 @@ class ObjectVersioningMiddleware(object):
         self.conf = conf
         self.logger = get_logger(conf, log_route='object_versioning')
 
+    # Pass these along so get_container_info will have the configured
+    # odds to skip cache
+    _pipeline_final_app = app_property('_pipeline_final_app')
+    _pipeline_request_logging_app = app_property(
+        '_pipeline_request_logging_app')
+
     def account_request(self, req, api_version, account, start_response):
         account_ctx = AccountContext(self.app, self.logger)
         if req.method == 'GET':

swift/common/middleware/x_profile/html_viewer.py

@@ -246,7 +246,7 @@ class HTMLViewer(object):
         if multiple:
             return value
         if isinstance(value, list):
-            return eval(value[0]) if isinstance(default, int) else value[0]
+            return int(value[0]) if isinstance(default, int) else value[0]
         else:
             return value
 

swift/common/middleware/xprofile.py

@@ -16,6 +16,11 @@
 """
 Profiling middleware for Swift Servers.
 
+.. note::
+    This middleware is intended for development and testing environments only,
+    not production. No authentication is expected or required for the web UI,
+    and profiling may incur noticeable performance penalties.
+
 The current implementation is based on eventlet aware profiler.(For the
 future, more profilers could be added in to collect more data for analysis.)
 Profiling all incoming requests and accumulating cpu timing statistics

swift/common/request_helpers.py

@@ -27,7 +27,6 @@ import time
 import six
 from swift.common.header_key_dict import HeaderKeyDict
 
-from swift import gettext_ as _
 from swift.common.constraints import AUTO_CREATE_ACCOUNT_PREFIX, \
     CONTAINER_LISTING_LIMIT
 from swift.common.storage_policy import POLICIES
@@ -202,7 +201,7 @@ def get_name_and_placement(request, minsegs=1, maxsegs=None,
     policy = POLICIES.get_by_index(policy_index)
     if not policy:
         raise HTTPServiceUnavailable(
-            body=_("No policy with index %s") % policy_index,
+            body="No policy with index %s" % policy_index,
             request=request, content_type='text/plain')
     results = split_and_validate_path(request, minsegs=minsegs,
                                       maxsegs=maxsegs,