[HDDS-5556] GrpcReplication Client might fail in SCM HA Cluster - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Blocker
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.2.0
Component/s: Ozone Datanode
Labels:
- pull-request-available

Description

Scenario:
1. DN1 got cert from SCM1
2. DN2 got cert from SCM2
3. DN3 got cert from SCM3
4. DN4 got cert from SCM3

And now one of the closed container is under replicated due to DN3 faiilure, and DN4 is choose for replication it will fail during secure channel setup.

 sslContextBuilder
            .trustManager(certClient.getCACertificate)
            .clientAuth(ClientAuth.REQUIRE)
            .keyManager(certClient.getPrivateKey(),
                certClient.getCertificate());

In SCM HA kind of setup we should pass for truststore all the CA certs to setup a secure channel.

Attachments

Issue Links

links to

GitHub Pull Request #2556

Activity

People

Assignee:: Vivek Ratnavel Subramanian

Reporter:: Bharat Viswanadham

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 09/Aug/21 06:24

Updated:: 23/Aug/21 08:43

Resolved:: 23/Aug/21 08:43