Bug 1624678

Summary: iSCSI Login negotiation failed due to Initiator is requesting CSG: 1, has not been successfully authenticated, and the Target is enforcing iSCSI Authentication
Product: Red Hat Enterprise Linux 7 Reporter: Xiubo Li <xiubli>
Component: iscsi-initiator-utilsAssignee: Chris Leech <cleech>
Status: CLOSED DUPLICATE QA Contact: Filip Suba <fsuba>
Severity: high Docs Contact:
Priority: high    
Version: 7.5CC: asambast, atumball, bkunal, bward, cleech, msaini, pdhange, prasanna.kalever, revers, rgeorge, sankarshan, shsrivas
Target Milestone: rc   
Target Release: 7.7   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2019-07-05 18:10:18 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1554642, 1577173, 1597320, 1625824, 1646945, 1654409, 1657156    

Description Xiubo Li 2018-09-03 04:30:58 UTC 
Description of problem:

For our CNS product, we can hit the "iSCSI Login negotiation failed" very frequently, and from the target side dmesg logs we can see the following logs:

Sep 02 22:39:28 rhel1 kernel: Added timeout timer to iSCSI login request for 15 seconds.
Sep 02 22:39:28 rhel1 kernel: Moving to TARG_CONN_STATE_XPT_UP.
Sep 02 22:39:28 rhel1 tcmu-runner[1042]: 2018-09-02 22:39:28.296 1042 [WARN] tcmu_print_cdb_info:1195 glfs/block4: a3 c 1 12 0 0 0 0 2 0 0 0 is not support
Sep 02 22:39:28 rhel1 tcmu-runner[1042]: tcmu_print_cdb_info:1195 glfs/block4: a3 c 1 12 0 0 0 0 2 0 0 0 is not supported
Sep 02 22:39:28 rhel1 kernel: Got Login Command, Flags 0x87, ITT: 0x00000000, CmdSN: 0x00000000, ExpStatSN: 0x00000000, CID: 0, Length: 494
Sep 02 22:39:28 rhel1 kernel: Received iSCSI login request from 192.168.195.161:41620 on iSCSI/TCP Network Portal 192.168.195.157:3260
Sep 02 22:39:28 rhel1 kernel: Moving to TARG_CONN_STATE_IN_LOGIN.
Sep 02 22:39:28 rhel1 kernel: Entering iscsi_target_set_sock_callbacks: conn: ffff9be258024000
Sep 02 22:39:28 rhel1 kernel: Located Storage Object: iqn.2016-12.org.gluster-block:46bc4514-ef24-42f6-9090-fe4f75f29160
Sep 02 22:39:28 rhel1 kernel: Located Portal Group Object: 1
Sep 02 22:39:28 rhel1 kernel: Initiator is requesting CSG: 1, has not been successfully authenticated, and the Target is enforcing iSCSI Authentication, lo
Sep 02 22:39:28 rhel1 kernel: Entering iscsi_target_restore_sock_callbacks: conn: ffff9be258024000
Sep 02 22:39:28 rhel1 kernel: iSCSI Login negotiation failed.
Sep 02 22:39:28 rhel1 kernel: Moving to TARG_CONN_STATE_FREE.

From the iscsi proto and the kernel code/logs, this case is because that when doing login auth the initiator side just skip the CSG stage0, which should be CSG stage0 --> CSG stage1.

Version-Release number of selected component (if applicable):


How reproducible:
30%

I have tried the newest open-iscsi code from the upstream, still the same.

This will be very easy to reproduce when trying to login multi targets in parallel, more detail and the reproduce scrtipt could be found in https://bugzilla.redhat.com/show_bug.cgi?id=1597320#c26.

Thanks
Comment 3 Amar Tumballi 2018-10-22 09:15:51 UTC 
Chris, just checking if you got any chance to go further with this bug?
Comment 4 Xiubo Li 2018-11-19 02:51:20 UTC 
*** Bug 1646945 has been marked as a duplicate of this bug. ***
Comment 15 Prashant Dhange 2019-09-24 07:00:02 UTC 
*** Bug 1754766 has been marked as a duplicate of this bug. ***