Bug 1672922

Summary: [GSS] problems adding bricks to a volume
Product: [Red Hat Storage] Red Hat Gluster Storage Reporter: amansan <amanzane>
Component: glusterdAssignee: Srijan Sivakumar <ssivakum>
Status: CLOSED NOTABUG QA Contact: SATHEESARAN <sasundar>
Severity: medium Docs Contact:
Priority: urgent    
Version: rhgs-3.4CC: bkunal, ksubrahm, mhackett, moagrawa, pasik, rhs-bugs, sasundar, seamurph, sheggodu, ssivakum
Target Milestone: ---Keywords: ZStream
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 1780288 (view as bug list) Environment:
Last Closed: 2021-09-01 06:29:59 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1780288    
Bug Blocks: 1935046    

Description amansan 2019-02-06 08:43:37 UTC 
Description of problem:

This BZ has been opened to allow access to servers even if they are not part of the auth.allow (if exist) list.

Related with BZ 1665873
Comment 4 amansan 2019-03-14 13:07:40 UTC 
Hi

Could you review anything regarding this bug ?

Thanks

Alicia
Comment 35 Srijan Sivakumar 2021-07-02 05:43:22 UTC 
 Hi Satheesaran,

 One of the patches to be backported is required as it fixes a scenario wherein we could see buffer overflow when using auth.allow. That patch came in upstream recently. For reference : https://github.com/gluster/glusterfs/pull/2526

 Regards, 
 Srijan
Comment 36 SATHEESARAN 2021-07-05 11:27:01 UTC 
(In reply to Srijan Sivakumar from comment #35)
>  Hi Satheesaran,
> 
>  One of the patches to be backported is required as it fixes a scenario
> wherein we could see buffer overflow when using auth.allow. That patch came
> in upstream recently. For reference :
> https://github.com/gluster/glusterfs/pull/2526
> 
>  Regards, 
>  Srijan

Hi Srijan,

The existing downstream codebase ( RHGS 3.5.5 ), doesn't carry the change.
So the buffer overflow problem when using auth.allow will not create any consequence.

If we could ignore the original patch which fixed the issue, we would not land up in this issue.
So I feel this is good to ignore the fix.

Can you kindly check this part, please ?