[MESOS-9730] Executors cannot reconnect with agents using TLS1.3 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.8.0
Fix Version/s: 1.8.1
Component/s: libprocess
Labels:
- integration
- ssl

Target Version/s:

1.8.1

Description

TLS 1.3 support is enabled by default from openssl >= 1.1.0

Executors do not reconnect with agents after restart when using TLS 1.3, and I guess this should also affect master/slave communication.

suggested action :

add a `LIBPROCESS_SSL_ENABLE_TLS_V1_3` environment variable with a `false` default, and apply `SSL_OP_NO_TLSv1_3` ssl option when building with openssl >= 1.1.0

Attachments

Activity

People

Assignee:: Stéphane Cottin

Reporter:: Stéphane Cottin

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 15/Apr/19 12:19

Updated:: 29/Apr/19 21:18

Resolved:: 29/Apr/19 21:18