Description of problem: Adding the support for libgfapi requires the option rpc-auth-allow-insecure set to "on" in glusterd.vol (and service restart). We also should consider what to do with the hosts where gluster was already deployed.
or patch libgfapi to enable secure mode? exposing hosts only because a component that is under our control misbehaves is the last [non available] alternative.
(In reply to Alon Bar-Lev from comment #1) > or patch libgfapi to enable secure mode? exposing hosts only because a > component that is under our control misbehaves is the last [non available] > alternative. rpc-auth-allow-insecure: """ Allow client connections from unprivileged ports. By default only privileged ports are allowed. """ If you want regular users (using unprivileged ports on the client) to be able to connect to your gluster server you need to enable rpc-auth-allow-insecure. The use case for this is qemu processes (running as qemu user) being able to directly connect to the gluster server to access the images. It would be great if we could do it only per-volume but as I understood from Vijay that's not enough (you also need rpc-auth-allow-insecure). Vijay is that correct?
According to Pranith and Vijay this one won't be needed starting with Gluster 3.7.1. So the requirement here is to raise the requirements for getting gluster >= 3.7.1 once it will be out in a couple of weeks.
Waiting for Gluster 3.7.1 to be out.
The patch has been delayed to 3.7.2
The patch has been delayed to 3.7.3 http://review.gluster.org/11039
should this be modified?
AFAIK 3.7.3 has not been released yet.
There were few problems discovered by http://review.gluster.org/11039 which can be addressed by http://review.gluster.org/#/c/11512/ (Waiting to get merged)
This request has been proposed for two releases. This is invalid flag usage. The ovirt-future release flag has been cleared. If you wish to change the release flag, you must clear one release flag and then set the other release flag to ?.
Closing Upstream, should be solved in Gluster by now.