2279912 – sse-s3: on bucket deletion, rgw fails to delete the per-bucket keys it created in vault

Bug 2279912 - sse-s3: on bucket deletion, rgw fails to delete the per-bucket keys it created in vault

Summary: sse-s3: on bucket deletion, rgw fails to delete the per-bucket keys it create...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	RGW
Sub Component:
Version:	7.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	---
Target Release:	8.0
Assignee:	Marcus Watts
QA Contact:	Vidushi Mishra
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2024-05-09 18:44 UTC by Casey Bodley
Modified:	2025-03-26 04:25 UTC (History)
CC List:	8 users (show)
Fixed In Version:	ceph-19.1.1-91.el9cp
Doc Type:	Bug Fix
Doc Text:	.Ceph Object Gateway SSE-S3 now deletes generated keys during bucket deletion Previously, when Ceph Object Gateway SSE-S3 was implemented, generated keys were not deleted when the corresponding bucket was deleted. This resulted in the non-deleted keys leaking space into the KMS. With this fix, generated keys are deleted and cleaned up when no longer in use.
Clone Of:
Environment:
Last Closed:	2024-11-25 09:01:19 UTC
Embargoed:
Dependent Products:
Flags:	mkasturi: needinfo+

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Ceph Project Bug Tracker	65626	None	None	None	2024-05-09 18:46:14 UTC
Github	ceph ceph pull 56597	None	open	rgw reshard: optimize reshard process to minimum blocking time	2024-05-09 18:46:14 UTC
Red Hat Issue Tracker	RHCEPH-8987	None	None	None	2024-05-09 18:45:13 UTC
Red Hat Product Errata	RHBA-2024:10216	None	None	None	2024-11-25 09:01:22 UTC

Description Casey Bodley 2024-05-09 18:44:23 UTC

Description of problem:

from upstream https://tracker.ceph.com/issues/65626:
> On bucket key deletion when the request to change the property of the key for deletion_allowed to true, it is expected that the response body be empty. But this assumption is false and there would be a dump of the new config in the response. this condition would prevent the key deletion to be done.

Comment 1 RHEL Program Management 2024-05-09 18:44:34 UTC

Please specify the severity of this bug. Severity is defined here:
https://bugzilla.redhat.com/page.cgi?id=fields.html#bug_severity.

Comment 9 errata-xmlrpc 2024-11-25 09:01:19 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 8.0 security, bug fix, and enhancement updates), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2024:10216

Comment 10 Red Hat Bugzilla 2025-03-26 04:25:29 UTC

The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days

Note You need to log in before you can comment on or make changes to this bug.