Uploaded image for project: 'Mesos'
  1. Mesos
  2. MESOS-9730

Executors cannot reconnect with agents using TLS1.3

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.8.0
    • Fix Version/s: 1.8.1
    • Component/s: libprocess
    • Labels:
    • Target Version/s:

      Description

      TLS 1.3 support is enabled by default from openssl >= 1.1.0

      Executors do not reconnect with agents after restart when using TLS 1.3, and I guess this should also affect master/slave communication.

      suggested action :

      add a `LIBPROCESS_SSL_ENABLE_TLS_V1_3` environment variable with a `false` default, and apply `SSL_OP_NO_TLSv1_3` ssl option when building with openssl >= 1.1.0

        Attachments

          Activity

            People

            • Assignee:
              kaalh Stéphane Cottin
              Reporter:
              kaalh Stéphane Cottin
            • Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: