Radosgw swift cli create container ACL failed

Detailed bug description:
 When in the controller shell swift command line is unable to add ACLs to containers (using CEPH Hammer backend)
Steps to reproduce:
 Created container through openstack cli with:
openstack container create marvel-art
attempted to add swift ACL with:
swift post -r ".r:*,.rlistings" marvel.art
No changes were made:
openstack container show marvel-art
+--------------+------------+
| Field | Value |
+--------------+------------+
| account | v1 |
| bytes_used | 18 |
| container | marvel-art |
| object_count | 1 |
+--------------+------------+
swift stat -v marvel-art
                          URL: http://172.16.109.130:8080/swift/v1/marvel-art
                   Auth Token: gAAAAABZlG-D2cuT6hK5vWZHttMTlEdiTDALuVKm_NHrslkiIKwbfb93tO2voMXD87VjLI_G1rYI9e9x6HKu4_lT9-aYtychaNludLfHPYmrxx-wcbQBNHwfaYS8puSvud0L4qA60J8EOJuLLT53ALLyCQtVV-7v3mxN4tMTNrskXI4t6sYL008
                      Account: v1
                    Container: marvel-art
                      Objects: 1
                        Bytes: 18
                     Read ACL:
                    Write ACL:
                      Sync To:
                     Sync Key:
                Accept-Ranges: bytes
                       Server: Apache
X-Container-Bytes-Used-Actual: 4096
                  X-Timestamp: 1502895119.00000
                   X-Trans-Id: tx0000000000000001d2956-0059946f83-aca9-default
             X-Storage-Policy: default-placement
                 Content-Type: text/plain; charset=utf-8

If I go through horizon though and make the container public then display the stats or container on the cli it shows this:

openstack container show marvel-art
+--------------+------------+
| Field | Value |
+--------------+------------+
| account | v1 |
| bytes_used | 18 |
| container | marvel-art |
| object_count | 1 |
| read_acl | .r:* |
+--------------+------------+

swift stat -v marvel-art
                          URL: http://172.16.109.130:8080/swift/v1/marvel-art
                   Auth Token: gAAAAABZlG_6U0XJjEloNsfE6WXzLgDSAmkym575avz846AriB3-mqA6FrUjyifkFR5a0eiI67G7MgQWKlzm7wBei68sNvzR_E1avsKKdOIFr8h8lGUUfvG9UEtfEdRlOaoIOQVhab0PqMJcY2aHiHk0ClC0IjJQ3wWBxmOMAyqWFlPUUR2-H3Q
                      Account: v1
                    Container: marvel-art
                      Objects: 1
                        Bytes: 18
                     Read ACL: .r:*
                    Write ACL:
                      Sync To:
                     Sync Key:
                Accept-Ranges: bytes
                   X-Trans-Id: tx0000000000000001d29f4-0059946ffa-acac-default
                       Server: Apache
X-Container-Bytes-Used-Actual: 4096
                  X-Timestamp: 1502895119.00000
             X-Storage-Policy: default-placement
                 Content-Type: text/plain; charset=utf-8

but if I try to add another ACL via the swift command line it deletes the existing ACL and displays no ACL output.
Expected results:
 It should list the correct ACLs
Actual result:
 ACLs are not listed and attempting to add ACL after making the container public in horizon deletes the public access ACL.
Reproducibility:
 100%
Workaround:
 Haven't found a work around beyond making the container public on horizon
Impact:
 low
Description of the environment:
- Operation system: 9.2
- Versions of components: <put your information here>
- Reference architecture: <put your information here>
- Network model: <put your information here>
- Related projects installed: <put your information here>
Additional information:
 <put your information here>