Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
This project is now read‑only. Starting Monday, February 2, please use https://ibm-ceph.atlassian.net/ for all bug tracking management.

Bug 2392400

Summary: [BYOK] [RFE] Cephadm NFS service spec does not support SNI (Server Name Indication) for mTLS
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Manisha Saini <msaini>
Component: CephadmAssignee: Adam King <adking>
Status: CLOSED ERRATA QA Contact: sumr
Severity: high Docs Contact: Rivka Pollack <rpollack>
Priority: unspecified    
Version: 8.1CC: bkunal, bluitel, cephqe-warriors, kkeithle, msaini, mwatts, ngangadh, rpollack, shbhosal, sumr, tserlin, vdas, vereddy
Target Milestone: ---Keywords: FutureFeature
Target Release: 8.1z3   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ceph-19.2.1-261.el9cp; nfs-ganesha-6.5-27.el9cp Doc Type: Enhancement
Doc Text:
.New SNI support for mTLS connections Previously, NFS-Ganesha established mTLS connections to the KMIP server using the hostname specified in its configuration. However, the configuration did not support specifying Server Name Indication (SNI) for the mTLS connection. This limitation assumed that the certificate used for mTLS was issued for the same hostname, which is not always the case. This enhancement introduces support for specifying SNI in the mTLS connection used to retrieve KMIP keys. It removes the need for local hostname mapping and improves compatibility with IBM Cloud’s mTLS implementation and similar environments.
 Story Points: ---
Clone Of: 2381960 Environment:
Last Closed: 2025-09-30 09:23:05 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2381960    
Bug Blocks:    

Description Manisha Saini 2025-09-01 14:41:06 UTC 
+++ This bug was initially created as a clone of Bug #2381960 +++
Comment 7 errata-xmlrpc 2025-09-30 09:23:05 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 8.1 security, bug fix and enhancement updates), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2025:17047