ReleaseNotes: document recovery of encrypted multipart objects

author Casey Bodley <cbodley@redhat.com>

Thu, 3 Aug 2023 21:18:05 +0000 (17:18 -0400)

committer Casey Bodley <cbodley@redhat.com>

Fri, 4 Aug 2023 18:30:12 +0000 (14:30 -0400)
author Casey Bodley <cbodley@redhat.com>
Thu, 3 Aug 2023 21:18:05 +0000 (17:18 -0400)
committer Casey Bodley <cbodley@redhat.com>
Fri, 4 Aug 2023 18:30:12 +0000 (14:30 -0400)
diff --git a/PendingReleaseNotes b/PendingReleaseNotes

index 5113444f99cb585972b1238d447e4340a14abfcc..3da6cd743d4eafc75382d0e1946c5208b4f14241 100644 (file)
--- a/PendingReleaseNotes
+++ b/PendingReleaseNotes
@@ -1,3 +1,14 @@
+>=19.0.0
+
+* RGW: S3 multipart uploads using Server-Side Encryption now replicate correctly in
+  multi-site. Previously, the replicas of such objects were corrupted on decryption.
+  A new tool, ``radosgw-admin bucket resync encrypted multipart``, can be used to
+  identify these original multipart uploads. The ``LastModified`` timestamp of any
+  identified object is incremented by 1ns to cause peer zones to replicate it again.
+  For multi-site deployments that make any use of Server-Side Encryption, we
+  recommended running this command against every bucket in every zone after all
+  zones have upgraded.
+
  >=18.0.0
  
  * The RGW policy parser now rejects unknown principals by default. If you are
author	Casey Bodley <cbodley@redhat.com>
	Thu, 3 Aug 2023 21:18:05 +0000 (17:18 -0400)
committer	Casey Bodley <cbodley@redhat.com>
	Fri, 4 Aug 2023 18:30:12 +0000 (14:30 -0400)