Bug #55123: When downloading a file encrypted with KMS method, when the key is wrong, the file will be downloaded successfully, but the file is encrypted. - rgw - Ceph

Actions

Copy link

Bug #55123

open

When downloading a file encrypted with KMS method, when the key is wrong, the file will be downloaded successfully, but the file is encrypted.

Added by wang kevin about 2 years ago. Updated about 2 years ago.

Status:

New

Priority:

Normal

Assignee:

Marcus Watts

Target version:

% Done:

Source:

Tags:

Backport:

Regression:

Severity:

3 - minor

Reviewed:

Affected Versions:

ceph-qa-suite:

Pull request ID:

Crash signature (v1):

Crash signature (v2):

Description

When uploading encrypted objects, we use kms encryption. After uploading, the corresponding relationship between key and keyID changes for some reasons, so we use keyID to obtain a key different from the previous one. When we download this object, the object can be downloaded successfully, but it is encrypted. We think it is reasonable to report an error when the key is wrong.

History
Property changes

Actions

Copy link

Updated by Casey Bodley about 2 years ago

Assignee set to Marcus Watts

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Ceph » rgw

Custom queries

Bug #55123

When downloading a file encrypted with KMS method, when the key is wrong, the file will be downloaded successfully, but the file is encrypted.

Updated by Casey Bodley about 2 years ago