Uploaded image for project: 'Ignite'
  1. Ignite
  2. IGNITE-4147

SSL misconfiguration is not handled properly

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 1.7
    • 2.0
    • general
    • None

    Description

      Currently, if one tries to start a node with incorrect SSL configuration (i.e. node with SSL disabled tries to connect to secured cluster or other way around), this new node does not show any exceptions or warnings. Instead user may end up having two topologies - one secured and another non-secured.

      This is counterintuitive. We should try to detect this and throw an exception in this case.

      Here are possible scenarios that we should consider:

      • Unsecured server tries to join secured cluster.
      • Secured server tries to join unsecured cluster.
      • Unsecured client tries to join secured cluster.
      • Secured client tries to join unsecured cluster.

      Attachments

        Issue Links

          causes

          Bug - A problem which impairs or prevents the functions of the product. IGNITE-16054 Skipped attempt to connect to other TcpDiscovery nodes if SSL is enabled and first node from list is down.

          • Major - Major loss of function.
          • Reopened
          links to

          Web Link IGNT-CR-59

          Activity

            People

              dkarachentsev Dmitry Karachentsev
              vkulichenko Valentin Kulichenko
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: