2256967 – [rgw] uploads with java and golang SDKs can fail when checksum is requested

Bug 2256967 - [rgw] uploads with java and golang SDKs can fail when checksum is requested

Summary: [rgw] uploads with java and golang SDKs can fail when checksum is requested

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	RGW
Sub Component:
Version:	6.1
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	high
Target Milestone:	---
Target Release:	7.1
Assignee:	Matt Benjamin (redhat)
QA Contact:	Tejas
Docs Contact:	Akash Raj
URL:
Whiteboard:
Duplicates (1):	2268348 (view as bug list)
Depends On:
Blocks:	2256969 2260311 2260354 2260356 2267614 2268348 2298578 2298579
TreeView+	depends on / blocked

Reported:	2024-01-05 18:30 UTC by Matt Benjamin (redhat)
Modified:	2024-11-16 04:25 UTC (History)
CC List:	5 users (show)
Fixed In Version:	ceph-18.2.1-2.el9cp
Doc Type:	Bug Fix
Doc Text:	.Ceph Object gateway now passes requests with well-formed payloads of the new stream encoding forms Previously, Ceph Object gateway would not recognize `STREAMING-AWS4-HMAC-SHA256-PAYLOAD` and `STREAMING-UNSIGNED-PAYLOAD-TRAILER` encoding forms resulting in request failures. With this fix, the logic to recognize, parse, and wherever applicable, verify new trailing request signatures provided for the new encoding forms is implemented. The Ceph Object gateway now passes requests with well-formed payloads of the new stream encoding forms.
Clone Of:
Clones:	2256969 (view as bug list)
Environment:
Last Closed:	2024-06-13 14:24:15 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Ceph Project Bug Tracker	63153	None	None	None	2024-01-05 18:30:53 UTC
Github	ceph ceph pull 54856	None	open	rgw: cumulatively fix 6 AWS SigV4 request failure cases	2024-01-05 18:36:10 UTC
Red Hat Issue Tracker	RHCEPH-8140	None	None	None	2024-01-05 18:31:51 UTC
Red Hat Product Errata	RHSA-2024:3925	None	None	None	2024-06-13 14:24:37 UTC

Description Matt Benjamin (redhat) 2024-01-05 18:30:53 UTC

Description of problem:
RGW lacks support for new content checksums, and, in particular, two new forms of AWS STREAMING request formats.

This bz tracks support for the new STREAMING-AWS4-HMAC-SHA256-PAYLOAD STREAMING-UNSIGNED-PAYLOAD-TRAILER forms, which introduce new aws-chunked behavior, which cause RGW to fail otherwise valid requests

Comment 1 RHEL Program Management 2024-01-05 18:31:06 UTC

Please specify the severity of this bug. Severity is defined here:
https://bugzilla.redhat.com/page.cgi?id=fields.html#bug_severity.

Comment 3 Matt Benjamin (redhat) 2024-03-26 15:29:00 UTC

*** Bug 2268348 has been marked as a duplicate of this bug. ***

Comment 8 errata-xmlrpc 2024-06-13 14:24:15 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Critical: Red Hat Ceph Storage 7.1 security, enhancements, and bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2024:3925

Comment 9 Red Hat Bugzilla 2024-11-16 04:25:16 UTC

The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days

Note You need to log in before you can comment on or make changes to this bug.