summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMohit Agrawal <moagrawa@redhat.com>2018-06-20 16:13:00 +0530
committerMohit Agrawal <moagrawa@redhat.com>2018-06-20 16:15:50 +0530
commite8d928e34680079e42be6947ffacc4ddd7defca2 (patch)
treeddf374dcd22523f7af12376f8a2f864f90043e8c
parentcc2f2e7bfef6ca47e740c5ee6b4665ec2880f860 (diff)
glusterfs: access trusted peer group via remote-host command
Problem: In SSL environment the user is able to access volume via remote-host command without adding node in a trusted pool Solution: Change the list of rpc program in glusterd.c at the time of initialization while SSL is enabled BUG: 1593232 Change-Id: I987e433b639e68ad17b77b6452df1e22dbe0f199 fixes: bz#1593232 Signed-off-by: Mohit Agrawal <moagrawa@redhat.com>
-rw-r--r--xlators/mgmt/glusterd/src/glusterd.c5
1 files changed, 0 insertions, 5 deletions
diff --git a/xlators/mgmt/glusterd/src/glusterd.c b/xlators/mgmt/glusterd/src/glusterd.c
index e071f8f..316cae4 100644
--- a/xlators/mgmt/glusterd/src/glusterd.c
+++ b/xlators/mgmt/glusterd/src/glusterd.c
@@ -1722,11 +1722,6 @@ init (xlator_t *this)
goto out;
}
/*
- * With strong authentication, we can afford to allow
- * privileged operations over TCP.
- */
- gd_inet_programs[1] = &gd_svc_cli_prog;
- /*
* This is the only place where we want secure_srvr to reflect
* the management-plane setting.
*/