2118423 – Crash on malformed bucket URL

Bug 2118423 - Crash on malformed bucket URL

Summary: Crash on malformed bucket URL

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	RGW
Sub Component:
Version:	5.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	---
Target Release:	6.0
Assignee:	Adam C. Emerson
QA Contact:	Hemanth Sai
Docs Contact:	Masauso Lungu
URL:
Whiteboard:
Depends On:	2109256
Blocks:	2126050
TreeView+	depends on / blocked

Reported:	2022-08-15 19:45 UTC by tserlin
Modified:	2023-09-18 04:44 UTC (History)
CC List:	12 users (show)
Fixed In Version:	ceph-17.2.5-15.el9cp
Doc Type:	Bug Fix
Doc Text:	.The Ceph Object Gateway no longer crashes on accesses Previously, the Ceph Object Gateway would crash on some access due to the changes from in-place to allocated buckets as a malformed bucket URL caused a void pointer dereference to a bucket value that was not always initialized. With this fix, the Ceph Object Gateway properly checks that the pointer is non-null before doing permission checks and throws an error if it is not initialized.
Clone Of:	2109256
Environment:
Last Closed:	2023-03-20 18:57:23 UTC
Embargoed:
Dependent Products:
Flags:	aemerson: needinfo-

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Ceph Project Bug Tracker	55765	None	None	None	2022-08-15 19:47:13 UTC
Github	ceph ceph pull 47191	None	Merged	quincy: rgw: Guard against malformed bucket URLs	2022-08-15 19:47:57 UTC
Red Hat Issue Tracker	RHCEPH-5093	None	None	None	2022-08-15 19:45:36 UTC
Red Hat Product Errata	RHBA-2023:1360	None	None	None	2023-03-20 18:58:04 UTC

Comment 39 errata-xmlrpc 2023-03-20 18:57:23 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 6.0 Bug Fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:1360

Comment 40 Red Hat Bugzilla 2023-09-18 04:44:47 UTC

The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days

Note You need to log in before you can comment on or make changes to this bug.