Red Hat Bugzilla – Bug 1343442
The default value of 'max_anonymous_clients' is not correct
Last modified: 2016-11-03 14:46:39 EDT
Description of problem: The default value of 'max_anonymous_clients' is not correct. Version-Release number of selected component (if applicable): libvirt-1.3.4-1.el7 How reproducible: 100% Steps to Reproduce: 1.Configure the libvirtd.conf as below and restart libvirtd service: loglevel=1 log_outpus="1:file:/var/log/libvirt/libvirtd.log" 2.Open first terminal, check the default value of 'max_anonymous_clients': #tailf /var/log/libvirt/libvirtd.log | grep -i nclients_unauth_max 3.Open second termial, Connect to libvirtd: # virsh Welcome to virsh, the virtualization interactive terminal. Type: 'help' for help with commands 'quit' to quit virsh # list Id Name State ---------------------------------------------------- 4.Check the output in the first terminal: ... 2016-06-07 11:03:59.469+0000: 9437: debug : virNetServerCheckLimits:730 : Considering re-enabling services: nclients=1 nclients_max=5000 nclients_unauth=0 **nclients_unauth_max=20** ... Actual results: The default value of 'max_anonymous_clients' is '20'. Expected results: According the explanation in libvirtd.conf the default value should be '0': #cat /etc/libvirt/libvirtd.conf ... # The maximum length of queue of accepted but not yet # authenticated clients. The default value is **zero**, meaning # the feature is disabled. #max_anonymous_clients = 20 ... Additional info:
commit 60f1f1082a635928d9310ec49ea13290e7e13929 Author: Michal Privoznik <mprivozn@redhat.com> AuthorDate: Sun Jun 26 09:44:41 2016 +0200 Commit: Michal Privoznik <mprivozn@redhat.com> CommitDate: Mon Jun 27 08:54:03 2016 +0200 libvirtd.conf: Fix invalid default of max_anonymous_clients https://bugzilla.redhat.com/show_bug.cgi?id=1343442 When a client connects, it is placed into a queue. As soon as it authenticate, it is taken out of that queue and placed into a different one. Now, we have a setting in the daemon config file that allows users to control the length of the queue of yet not authenticated clients. By default, it has a value 20 but in the description to the config knob we clam it's zero. Signed-off-by: Michal Privoznik <mprivozn@redhat.com> v2.0.0-rc1-27-g60f1f10
Verify on build libvirt-2.0.0-2.el7.x86_64 Check the description in libvirtd.conf: # The maximum length of queue of accepted but not yet # authenticated clients. The default value is **20**. Set this to # zero to turn this feature off. #max_anonymous_clients = 20 The default value in description is updated to **20**
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHSA-2016-2577.html