]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c46e045) | patch
rgw/cloud-transition: url-encode rgwx-source-key metadata header 68784/head
authorMatthew N. Heler <matthew.heler@hotmail.com>
Wed, 6 May 2026 16:10:32 +0000 (11:10 -0500)
committerMatthew N. Heler <matthew.heler@hotmail.com>
Thu, 14 May 2026 23:43:03 +0000 (18:43 -0500)
commit6226e68b744fa33de62fcc1aa19629d541b8df6e
tree91286b77dc66f23e66f723b2074aa35e6d4821edtree | snapshot
parentc46e0454c1f6d1f4efa54dd8b0bcc3e7467a43b9commit | diff
rgw/cloud-transition: url-encode rgwx-source-key metadata header

For non-ASCII object keys, raw UTF-8 bytes end up in the signed
x-amz-meta-rgwx-source-key header. Strict S3-compatible backends
normalize non-ASCII bytes when verifying SigV4, producing a signature
mismatch -> HTTP 403, surfaced in LC as -EACCES (-13).

url_encode() the value before signing. The header is write-only,
so no decode is needed.

Signed-off-by: Matthew N. Heler <matthew.heler@hotmail.com>
src/rgw/driver/rados/rgw_lc_tier.cc diff | blob | history
src/rgw/driver/rados/rgw_sync_module_aws.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.