ReleaseNotes: document recovery of encrypted multipart objects

Signed-off-by: Casey Bodley <cbodley@redhat.com>
author: Casey Bodley <cbodley@redhat.com> 2023-08-03 23:18:05 +0200
committer: Casey Bodley <cbodley@redhat.com> 2023-08-03 23:21:03 +0200
commit: 61cf6eec7b202cf91ee36a3f82f4d5605b110a25 (patch)
tree: 3b05d9fb19280f7448cd98fda4d627b20494a3cd /PendingReleaseNotes
parent: radosgw-admin: add command to resync encrypted multipart objects (diff)
download: ceph-61cf6eec7b202cf91ee36a3f82f4d5605b110a25.tar.xz
ceph-61cf6eec7b202cf91ee36a3f82f4d5605b110a25.zip
1 files changed, 11 insertions, 0 deletions
diff --git a/PendingReleaseNotes b/PendingReleaseNotes
index 2ea831bc401..df9c22cc192 100644
--- a/PendingReleaseNotes
+++ b/PendingReleaseNotes
@@ -1,3 +1,14 @@
+>=19.0.0
+
+* RGW: S3 multipart uploads using Server-Side Encryption now replicate correctly in
+  multi-site. Previously, the replicas of such objects were corrupted on decryption.
+  A new tool, ``radosgw-admin bucket resync encrypted multipart``, can be used to
+  identify these original multipart uploads. The ``LastModified`` timestamp of any
+  identified object is incremented by 1ns to cause peer zones to replicate it again.
+  For multi-site deployments that make any use of Server-Side Encryption, we
+  recommended running this command against every bucket in every zone after all
+  zones have upgraded.
+
 >=18.0.0
 
 * The RGW policy parser now rejects unknown principals by default. If you are
author	Casey Bodley <cbodley@redhat.com>	2023-08-03 23:18:05 +0200
committer	Casey Bodley <cbodley@redhat.com>	2023-08-03 23:21:03 +0200
commit	61cf6eec7b202cf91ee36a3f82f4d5605b110a25 (patch)
tree	3b05d9fb19280f7448cd98fda4d627b20494a3cd /PendingReleaseNotes
parent	radosgw-admin: add command to resync encrypted multipart objects (diff)
download	ceph-61cf6eec7b202cf91ee36a3f82f4d5605b110a25.tar.xz ceph-61cf6eec7b202cf91ee36a3f82f4d5605b110a25.zip