Bug 1995438 - [RGW][SSE-KMS: Vault] Add Support customed CA certificate from vault KMS for SSE encryption
Summary: [RGW][SSE-KMS: Vault] Add Support customed CA certificate from vault KMS for ...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Ceph Storage
Classification: Red Hat Storage
Component: RGW
Version: 5.0
Hardware: Unspecified
OS: Unspecified
unspecified
high
Target Milestone: ---
: 5.0z4
Assignee: Jiffin
QA Contact: Tejas
URL:
Whiteboard:
Depends On:
Blocks: 2000085
TreeView+ depends on / blocked
 
Reported: 2021-08-19 06:42 UTC by Jiffin
Modified: 2023-09-15 01:13 UTC (History)
7 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
: 2000085 (view as bug list)
Environment:
Last Closed: 2022-02-01 04:29:56 UTC
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHCEPH-752 0 None None None 2021-08-19 06:43:07 UTC

Description Jiffin 2021-08-19 06:42:57 UTC 
This bug was initially created as a copy of Bug #1952011

I am copying this bug because: 

including the change from 4.x release to 5.x

Description of problem:


The KMS backend vault supports multiple TLS config such as

Vault Client Certificate
Vault Client Key
Vault CA Certificate
Vault TLS Server Name

Currently, RGW can communicate with vault using default SSL installed in the system, not with customed one


Version-Release number of selected component (if applicable):
master

Additional info:
Parent tracker link https://tracker.ceph.com/issues/47776
Backport tracker: https://tracker.ceph.com/issues/51310

Upstream PR link:  https://github.com/ceph/ceph/pull/42093
Comment 15 Red Hat Bugzilla 2023-09-15 01:13:52 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 500 days
Note You need to log in before you can comment on or make changes to this bug.