diff options
author | Leonid Ishimnikov <lishim@fastmail.com> | 2020-08-13 15:37:50 -0400 |
---|---|---|
committer | Rinku Kothiya <rkothiya@redhat.com> | 2020-08-20 13:27:50 +0000 |
commit | 05060c9664153beb392206ae05a498d4d4178f5f (patch) | |
tree | db03f341a928f9cc80b23912efb5d0ea7caf2a44 /xlators | |
parent | c5fc58c8cb01753e2fed173c76aea1e9cc333862 (diff) |
glusterd: dump SSL error stack on disconnect
Problem: When a non-SSL connection is attempted on an SSL-enabled
management port, unrelated peers are subsequently disconnected
from the node with a misleading error message.
Cause: A non-SSL client causes OpenSSL to push a wrong version error
into its thread-local error stack, but this error is never
cleared, and it lingers in the stack until the thread is used
by another SSL session, and a certain condition requires the error
stack to be examined, at which time the old error is discovered and
the connection is terminated.
Solution: Log and clear the error stack upon terminating the connection.
Change-Id: I82f3a723285df24dafc88850ae4fca65b69f6ae4
Fixes: #1418
Signed-off-by: Leonid Ishimnikov <lishim@fastmail.com>
(cherry picked from commit bb5801d1480314e09b4203d2525bd01aada5c683)
Diffstat (limited to 'xlators')
0 files changed, 0 insertions, 0 deletions