New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
rgw/sse-s3: fix bucket encryption of multipart upload #49409
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What tracker ID goes with this fix? This should be in the commit message.
src/rgw/rgw_rest_s3.cc
Outdated
@@ -3876,10 +3876,19 @@ void RGWSetRequestPayment_ObjStore_S3::send_response() | |||
|
|||
int RGWInitMultipart_ObjStore_S3::get_params(optional_yield y) | |||
{ | |||
int ret; | |||
|
|||
map_qs_metadata(s, true); |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Is this call necessary? The aws doc doesn't appear to document using query parameters to set encryption parameters when creating a multipart upload.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Removed.
i've opened https://tracker.ceph.com/issues/59218 to track backports for this. we'll also want an s3test case that exercises this |
Multipart upload missing encryption when we have bucket encryption policy. Fix it by fetching bucket encryption policy and resolving defaults at multipart init op. Fixes: https://tracker.ceph.com/issues/59218 Signed-off-by: Tongliang Deng <dengtongliang@gmail.com>
8c67720
to
6d9e4f7
Compare
Thanks very much, I've updated the commit message with it. |
there's a test_sse_s3_default_multipart_upload test case that looks like it should have caught this; i opened ceph/s3-tests#505 to add a check for the encryption header. does that look right, @mdw-at-linuxbox @5cs? |
jenkins test make check |
passed qa against tests from ceph/s3-tests#505:
|
Multipart upload missing encryption when we have bucket encryption policy. Fix it by fetching bucket encryption policy and resolving defaults at multipart init op.
Fixes: https://tracker.ceph.com/issues/59218
Signed-off-by: Tongliang Deng dengtongliang@gmail.com
Contribution Guidelines
To sign and title your commits, please refer to Submitting Patches to Ceph.
If you are submitting a fix for a stable branch (e.g. "pacific"), please refer to Submitting Patches to Ceph - Backports for the proper workflow.
Checklist
Show available Jenkins commands
jenkins retest this please
jenkins test classic perf
jenkins test crimson perf
jenkins test signed
jenkins test make check
jenkins test make check arm64
jenkins test submodules
jenkins test dashboard
jenkins test dashboard cephadm
jenkins test api
jenkins test docs
jenkins render docs
jenkins test ceph-volume all
jenkins test ceph-volume tox
jenkins test windows