Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
This project is now read‑only. Starting Monday, February 2, please use https://ibm-ceph.atlassian.net/ for all bug tracking management.

Bug 2123335

Summary: swift authentication fails with a "some" chance
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Attila Fazekas <afazekas>
Component: RGWAssignee: Marcus Watts <mwatts>
Status: CLOSED ERRATA QA Contact: Hemanth Sai <hmaheswa>
Severity: high Docs Contact: Akash Raj <akraj>
Priority: unspecified    
Version: 5.2CC: akahat, akraj, cbodley, ceph-eng-bugs, cephqe-warriors, fpantano, gfidente, johfulto, kbader, kdreyer, kkeithle, mbenjamin, mkasturi, mwatts, tonyb, tserlin
Target Milestone: ---   
Target Release: 5.3   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ceph-16.2.10-94.el8cp Doc Type: Bug Fix
Doc Text:
.Header processing no longer causes sporadic swift-protocol authentication failures Previously, a combination of incorrect HTTP header processing and timestamp handling logic would either cause an invalid Keystone admin token to be used for operations, or non-renewal of Keystone's admin token as required. Due to this, sporadic swift-protocol authentication failures would occur. With this fix, header processing is corrected and new diagnostics are added. The logic now works as expected.
 Story Points: ---
Clone Of:
: 2140014 (view as bug list) Environment:
Last Closed: 2023-01-11 17:41:25 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2126049, 2140014, 2160009    

Comment 1 RHEL Program Management 2022-09-01 12:23:44 UTC 
Please specify the severity of this bug. Severity is defined here:
https://bugzilla.redhat.com/page.cgi?id=fields.html#bug_severity.
Comment 18 Alan Pevec 2022-09-12 14:32:55 UTC 
*** Bug 2126064 has been marked as a duplicate of this bug. ***
Comment 38 Marcus Watts 2022-09-20 20:02:18 UTC 
tempurl/newer hashlib support coming to ceph:
 https://bugzilla.redhat.com/show_bug.cgi?id=2105950
 https://github.com/ceph/ceph/pull/47723

older swift (at least up to train) does not advertise supported hash functions, and no version of tempestconf that I know of (at least up to 3.3.0) has a way to use it.  Latest swift does appear to advertise what it supports.  If I can figure out what the output is supposed to look like, I will add this to ceph.  So far, my centos7 reference swift cluster has run out of steam (last available version train), need to move to el8.
Comment 39 Luigi Toscano 2022-09-22 11:27:08 UTC 
*** Bug 2129026 has been marked as a duplicate of this bug. ***
Comment 66 errata-xmlrpc 2023-01-11 17:41:25 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: Red Hat Ceph Storage 5.3 security update and Bug Fix), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2023:0076