Bug 1319636 - rpc: set bind-insecure to off by default
Summary: rpc: set bind-insecure to off by default
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Gluster Storage
Classification: Red Hat
Component: core
Version: rhgs-3.1
Hardware: Unspecified
OS: Unspecified
low
low
Target Milestone: ---
: ---
Assignee: Bug Updates Notification Mailing List
QA Contact: storage-qa-internal@redhat.com
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-03-21 08:55 UTC by Prasanna Kumar Kalever
Modified: 2018-10-11 10:21 UTC (History)
6 users (show)

Fixed In Version: glusterfs-3.12.2-18
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2018-10-11 10:21:04 UTC
Target Upstream Version:


Attachments (Terms of Use)

Description Prasanna Kumar Kalever 2016-03-21 08:55:21 UTC
Description of problem:

commit 243a5b429f225acb8e7132264fe0a0835ff013d5 turn's 'ON'
allow-insecure and bind-insecure by default.

while upgrading subset of nodes from a trusted storage pool,
nodes which have older versions of glusterfs will expect
connection from secure ports only (since they still have
bind-insecure off) thus they reject connection from upgraded
nodes which now have insecure ports.

Hence we will run into connection issues between peers.


Version-Release number of selected component (if applicable):
3.1.3

reproducible:
Simple, upgrading a subset of nodes from trusted pool will show you failure in connection between peers

Actual results:
Failure in connection between non-upgraded nodes and upgraded nodes

Expected results:
No connection issues between peers

Additional info:

Comment 2 Atin Mukherjee 2016-08-16 15:03:26 UTC
Prasanna,

Is this already fixed? If so could you please mention the patch link with the version in which it has been fixed and move the BZ to ON_QA?

Comment 6 Amar Tumballi 2018-10-11 10:21:04 UTC
the patches are in as part of rebases!!


Note You need to log in before you can comment on or make changes to this bug.