From 8935c1f14bc05f2be7ceef6c5dbbb729fa56373b Mon Sep 17 00:00:00 2001
From: Yuval Lifshitz <ylifshit@ibm.com>
Date: Wed, 18 Feb 2026 13:50:52 +0000
Subject: [PATCH] test/rgw/notifications: fixes needed to run the tests in a
 multisite environment

the main issue was that a system user would get a JSON reply when
creating a bucket. the boto3 client is failing when this is happening.
so, the solution is to use a non-system user in the tests

Signed-off-by: Yuval Lifshitz <ylifshit@ibm.com>
---
 src/test/rgw/bucket_notification/README.rst   |  4 ++--
 src/test/rgw/bucket_notification/api.py       | 22 +++++++++++++------
 .../bntests.conf.multisite                    | 13 +++++++++++
 src/test/rgw/bucket_notification/test_bn.py   | 11 ++++++----
 src/test/rgw/test-rgw-multisite.sh            |  4 ++++
 5 files changed, 41 insertions(+), 13 deletions(-)
 create mode 100644 src/test/rgw/bucket_notification/bntests.conf.multisite

diff --git a/src/test/rgw/bucket_notification/README.rst b/src/test/rgw/bucket_notification/README.rst
index 9e553cea432..02d42a2abd6 100644
--- a/src/test/rgw/bucket_notification/README.rst
+++ b/src/test/rgw/bucket_notification/README.rst
@@ -22,8 +22,8 @@ we would need the following configuration file::
 				version = v1
 
 				[s3 main]
-				access_key = 1234567890
-				secret_key = pencil
+				access_key = 0987654321
+				secret_key = crayon
 
 Add boto3 extension to the standard client: https://github.com/ceph/ceph/tree/main/examples/rgw/boto3#introduction.
 
diff --git a/src/test/rgw/bucket_notification/api.py b/src/test/rgw/bucket_notification/api.py
index ce9495d8b09..e4f9851ad72 100644
--- a/src/test/rgw/bucket_notification/api.py
+++ b/src/test/rgw/bucket_notification/api.py
@@ -10,6 +10,7 @@ from urllib import parse as urlparse
 from time import gmtime, strftime
 import boto3
 from botocore.client import Config
+from botocore.exceptions import ClientError
 import os
 import subprocess
 import json
@@ -210,19 +211,24 @@ class S3Connection:
         self.endpoint_url = f'{protocol}://{host}:{port}'
 
         # Create boto3 client and resource
+        # Use path-style addressing to match the old boto OrdinaryCallingFormat
         self._s3_client = boto3.client(
             's3',
             endpoint_url=self.endpoint_url,
             aws_access_key_id=aws_access_key_id,
             aws_secret_access_key=aws_secret_access_key,
-            config=boto3.session.Config(retries={'max_attempts': self.num_retries})
+            config=Config(
+                retries={'max_attempts': self.num_retries},
+                s3={'addressing_style': 'path'}
+            )
         )
 
         self._s3_resource = boto3.resource(
             's3',
             endpoint_url=self.endpoint_url,
             aws_access_key_id=aws_access_key_id,
-            aws_secret_access_key=aws_secret_access_key
+            aws_secret_access_key=aws_secret_access_key,
+            config=Config(s3={'addressing_style': 'path'})
         )
 
         # For SSL connections
@@ -230,9 +236,8 @@ class S3Connection:
 
     def create_bucket(self, bucket_name, **kwargs):
         """Create a bucket"""
-        acl = kwargs.get('ACL', 'private')
         try:
-            self._s3_client.create_bucket(Bucket=bucket_name, ACL=acl)
+            self._s3_client.create_bucket(Bucket=bucket_name)
         except ClientError as e:
             # Bucket might already exist
             if e.response['Error']['Code'] != 'BucketAlreadyOwnedByYou':
@@ -255,7 +260,8 @@ def put_object_tagging(conn, bucket_name, key, tags):
     client = boto3.client('s3',
             endpoint_url='http://'+conn.host+':'+str(conn.port),
             aws_access_key_id=conn.aws_access_key_id,
-            aws_secret_access_key=conn.aws_secret_access_key)
+            aws_secret_access_key=conn.aws_secret_access_key,
+            config=Config(s3={'addressing_style': 'path'}))
     return client.put_object(Body='aaaaaaaaaaa', Bucket=bucket_name, Key=key, Tagging=tags)
 
 def make_request(conn, method, resource, parameters=None, sign_parameters=False, extra_parameters=None):
@@ -295,7 +301,8 @@ def delete_all_objects(conn, bucket_name):
     client = boto3.client('s3',
                       endpoint_url='http://'+conn.host+':'+str(conn.port),
                       aws_access_key_id=conn.aws_access_key_id,
-                      aws_secret_access_key=conn.aws_secret_access_key)
+                      aws_secret_access_key=conn.aws_secret_access_key,
+                      config=Config(s3={'addressing_style': 'path'}))
 
     objects = []
     for key in client.list_objects(Bucket=bucket_name)['Contents']:
@@ -426,7 +433,8 @@ class PSNotificationS3:
         self.client = boto3.client('s3',
                                    endpoint_url='http://'+conn.host+':'+str(conn.port),
                                    aws_access_key_id=conn.aws_access_key_id,
-                                   aws_secret_access_key=conn.aws_secret_access_key)
+                                   aws_secret_access_key=conn.aws_secret_access_key,
+                                   config=Config(s3={'addressing_style': 'path'}))
 
     def send_request(self, method, parameters=None):
         """send request to radosgw"""
diff --git a/src/test/rgw/bucket_notification/bntests.conf.multisite b/src/test/rgw/bucket_notification/bntests.conf.multisite
new file mode 100644
index 00000000000..f09e5389b20
--- /dev/null
+++ b/src/test/rgw/bucket_notification/bntests.conf.multisite
@@ -0,0 +1,13 @@
+[DEFAULT]
+port = 8101
+host = localhost
+zonegroup = zg1
+cluster = c1
+version = v2
+
+[s3 main]
+access_key = 0987654321
+secret_key = crayon
+display_name = RegularUser
+user_id = regular.user
+email =
diff --git a/src/test/rgw/bucket_notification/test_bn.py b/src/test/rgw/bucket_notification/test_bn.py
index 9168841e288..81879ef76f0 100644
--- a/src/test/rgw/bucket_notification/test_bn.py
+++ b/src/test/rgw/bucket_notification/test_bn.py
@@ -11,6 +11,7 @@ import os
 import io
 import string
 import sys
+from botocore.client import Config
 from botocore.exceptions import ClientError
 from http.server import ThreadingHTTPServer, BaseHTTPRequestHandler
 from random import randint
@@ -1960,7 +1961,8 @@ def lifecycle(endpoint_type, conn, number_of_objects, topic_events, create_threa
     client = boto3.client('s3',
                           endpoint_url='http://'+conn.host+':'+str(conn.port),
                           aws_access_key_id=conn.aws_access_key_id,
-                          aws_secret_access_key=conn.aws_secret_access_key)
+                          aws_secret_access_key=conn.aws_secret_access_key,
+                          config=Config(s3={'addressing_style': 'path'}))
     yesterday = datetime.date.today() - datetime.timedelta(days=1)
     response = client.put_bucket_lifecycle_configuration(Bucket=bucket_name,
                                                          LifecycleConfiguration={'Rules': rules_creator(yesterday, obj_prefix)}
@@ -2330,6 +2332,7 @@ def test_post_object_upload_amqp():
                          aws_access_key_id=get_access_key(),
                          aws_secret_access_key=get_secret_key(),
                          endpoint_url=endpoint,
+                         config=Config(s3={'addressing_style': 'path'})
                         )
 
     bucket_name = gen_bucket_name()
@@ -5617,7 +5620,7 @@ def persistent_notification_shard_config_change(endpoint_type, conn, new_num_sha
     default_num_shards = 11
     rgw_client = f'client.rgw.{get_config_port()}'
     if (old_num_shards != default_num_shards):
-        set_rgw_config_option(rgw_client, 'rgw_bucket_persistent_notif_num_shards', old_num_shards)
+        set_rgw_config_option(rgw_client, 'rgw_bucket_persistent_notif_num_shards', old_num_shards, get_config_cluster())
 
     bucket_name = gen_bucket_name()
     bucket = conn.create_bucket(bucket_name)
@@ -5663,7 +5666,7 @@ def persistent_notification_shard_config_change(endpoint_type, conn, new_num_sha
     create_object_and_verify_events(bucket, 'foo', topic_name, receiver, expected_keys, deletions=True)
 
     ## change config value for num_shards to new_num_shards
-    set_rgw_config_option(rgw_client, 'rgw_bucket_persistent_notif_num_shards', new_num_shards)
+    set_rgw_config_option(rgw_client, 'rgw_bucket_persistent_notif_num_shards', new_num_shards, get_config_cluster())
     
     ## create objects in the bucket (async)
     expected_keys = []
@@ -5678,7 +5681,7 @@ def persistent_notification_shard_config_change(endpoint_type, conn, new_num_sha
 
     ##revert config value for num_shards to default
     if (new_num_shards != default_num_shards):
-        set_rgw_config_option(rgw_client, 'rgw_bucket_persistent_notif_num_shards', default_num_shards)
+        set_rgw_config_option(rgw_client, 'rgw_bucket_persistent_notif_num_shards', default_num_shards, get_config_cluster())
 
 
 def create_object_and_verify_events(bucket, key_name, topic_name, receiver, expected_keys, deletions=False):
diff --git a/src/test/rgw/test-rgw-multisite.sh b/src/test/rgw/test-rgw-multisite.sh
index d3a1b265ca6..7718c1ec03a 100755
--- a/src/test/rgw/test-rgw-multisite.sh
+++ b/src/test/rgw/test-rgw-multisite.sh
@@ -18,6 +18,8 @@ zg=zg1
 
 system_access_key="1234567890"
 system_secret="pencil"
+regular_access_key="0987654321"
+regular_secret="crayon"
 
 # bring up first cluster
 x $(start_ceph_cluster c1) -n $(get_mstart_parameters 1)
@@ -39,6 +41,8 @@ done
 
 # create realm, zonegroup, zone, start rgws
 init_first_zone c1 $realm_name $zg ${zg}-1 $endpoints $system_access_key $system_secret
+# create a regular (non-system) user for S3 operations
+x $(rgw_admin c1) user create --uid=regular.user --display-name=RegularUser --access-key=${regular_access_key} --secret=${regular_secret}
 i=1
 while [ $i -le $rgws ]; do
   port=$((8100+i))
-- 
2.47.3