Recent Commits to s3fs-fuse:master

Fix ssl_verify_hostname documentation to match code

The documentation incorrectly stated default="2" for ssl_verify_hostname,
but the code defaults to 1 and only accepts values 0 or 1.

Add security warnings for disabled SSL verification

Users disabling SSL certificate or hostname verification via
no_check_certificate or ssl_verify_hostname=0 were not adequately
warned about the security implications.

This helps prevent accidental deployment of insecure configurations
to production environments.

Abort requests when SSE headers cannot be set (#2806)

AddSseRequestHead() returned true even when the SSE-C key
lookup failed, and all eight callers logged a warning but
continued without encryption. If something goes wrong with
SSE setup, data would be sent unencrypted.

In practice the error path is unreachable today because
startup validation in FinalCheckSse() prevents s3fs from
running with SSE-C and an empty key list. But the code
should not rely on that -- if AddSseRequestHead fails, the
request must not proceed.

Return false from AddSseRequestHead on SSE-C key failure
and abort with -EIO at all call sites, consistent with how
PreHeadRequest already handles this case.

Use string literals more consistently (#2803)

This gives the std::string constructor access to the length and helps static
analysis.

Changed string::assign to explicitly specify last argument

Improved message output when check bucket error occurs

Add macOS compilation instructions (#2800)

Changed to not call PreventStatCacheExpire

Updated comments in FdManager::CleanupCacheDir

Mask sensitive authentication information to log

Add error logging to scope_guard cleanup functions

The scope_guard lambdas for close() and closedir() now check the
return value and log an error with errno if the call fails. The
error messages include the file or directory path to aid debugging.