[CASSANDRA-18681] Internode legacy SSL storage port certificate is not hot reloaded on update - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Normal
Resolution: Fixed
Fix Version/s: 4.1.4, 5.0-alpha2, 5.0
Component/s: Messaging/Internode
Labels:
None

Bug Category:
Availability
Severity:
Low
Complexity:
Normal
Discovered By:
User Report
Platform:

All
Impacts:

None
Since Version:

4.1.0
Source Control Link:

https://github.com/apache/cassandra/commit/b9586501a6b6cdfe465302448018785652c9b966
Test and Documentation Plan:

Hide

updated tests

Show
updated tests

Description

In ~~CASSANDRA-16666~~ the SSLContext cache was changed to clear individual EncryptionOptions from the SslContext cache if they needed reloading to reduce resource consumption. Before the change if ANY cert needed hot reloading, the SSLContext cache would be cleared for ALL certs.

If the legacy SSL storage port is configured, a new EncryptionOptions object is created in org.apache.cassandra.net.InboundSockets#addBindings just for binding the socket, but never gets cleared as the change in port means it no longer matches the configuration retrieved from DatabaseDescriptor in org.apache.cassandra.net.MessagingServiceMBeanImpl#reloadSslCertificates.

This is unlikely to be an issue in practice as the legacy SSL internode socket is only used in mixed version clusters with pre-4.0 nodes, so the cert only needs to stay valid until all nodes upgrade to 4.x or above.

One way to avoid this class of failures is to just check the entries present in the SSLContext cache.

Attachments

Activity

People

Assignee:: Jon Meredith

Reporter:: Jon Meredith

Authors:: Jon Meredith

Reviewers:: Dinesh Joshi, Francisco Guerrero

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 21/Jul/23 20:15

Updated:: 01/Nov/23 08:54

Resolved:: 25/Sep/23 20:45