Ceph: Sever side encryption (SSE) or Pool Compression with RGW Multi-Site may lead to data corruption of objects, written with MultiPart Upload (MPU)

Solution Verified - Updated -

Issue

Sever side encryption (SSE) or Pool Compression with RGW Multi-Site may lead to data corruption of objects, written with MultiPart Upload (MPU)

More specifically, if these conditions are part of your Ceph environment, it is possible some objects in the remote Ceph Cluster can become silently corrupted.

  • A Rados Gateway (RGW) with a Multi-Site configuration
  • Server Side Encryption (SSE) or Pool Compression is in use
  • Data written via S3 MultiPart Upload (MPU)
  • S3 Applications which appended to an object after it was initially written

Environment

Red Hat Ceph Storage (RHCS) 3.x
Red Hat Ceph Storage (RHCS) 4.x
Red Hat Ceph Storage (RHCS) 5.x
Red Hat Ceph Storage (RHCS) 6.x
Ceph Rados Gateway (RGW)
Ceph Server Side Encryption (SSE)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content