]> git.apps.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 274e069) | patch
rgw: decrypt filter does not cross multipart boundaries
authorCasey Bodley <cbodley@redhat.com>
Fri, 22 Mar 2019 13:57:33 +0000 (09:57 -0400)
committerCasey Bodley <cbodley@redhat.com>
Tue, 26 Mar 2019 11:55:12 +0000 (07:55 -0400)
commitb782902954abd20e49c0ed1c14cebee4c8ab6f88
treec5e8214015f2e14fa4e900a03239f92a46bb095etree | snapshot
parent274e069d1c63569566940a5df071b6d6b793e7d3commit | diff
rgw: decrypt filter does not cross multipart boundaries

multipart uploads with sse encrypts each part separately, using an
initialization vector based on the part offset

decryption must respect the same part boundaries, and start each part
with a fresh initialization vector. this means that the decrypt filter
must flush data up to part boundaries before starting the next

Fixes: http://tracker.ceph.com/issues/38700
Signed-off-by: Casey Bodley <cbodley@redhat.com>
src/rgw/rgw_crypt.cc diff | blob | history
src/rgw/rgw_crypt.h diff | blob | history
src/rgw/rgw_rest_s3.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.