Skip to content

[fix][fn] Fix TLS configuration for fn worker to broker if auth disabled #19290

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
nicoloboschi merged 1 commit into from
Jan 25, 2023
Merged

[fix][fn] Fix TLS configuration for fn worker to broker if auth disabled #19290

nicoloboschi merged 1 commit into from
Jan 25, 2023

Conversation

@nicoloboschi
Copy link
Contributor

@nicoloboschi nicoloboschi commented Jan 19, 2023
edited
Loading

Motivation

Regression of #11681

In case of standalone functions worker, the pulsar client connected to the broker doesn't pick up the brokerClientTrustCertsFilePath configuration if authentication is disabled.

This causes issues if TlsEnableHostnameVerification=true and the certificate is self signed.

I don't think is much critical since non authenticated clusters are very rare when tls is enabled.

Modifications

  • Pass the brokerClientTrustCertsFilePath option if auth is disabled

Documentation

  • doc
  • doc-required
  • doc-not-needed
  • doc-complete

@github-actions github-actions bot added the doc-not-needed Your PR changes do not impact docs label Jan 19, 2023
@nicoloboschi nicoloboschi requested review from eolivelli, lhotari and michaeljmarshall and removed request for eolivelli and michaeljmarshall January 19, 2023 16:02
@nicoloboschi nicoloboschi mentioned this pull request Jan 19, 2023
Closed
lhotari
lhotari approved these changes Jan 25, 2023
View reviewed changes
Copy link
Member

@lhotari lhotari left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good catch!

@lhotari
Copy link
Member

lhotari commented Jan 25, 2023

/pulsarbot rerun-failure-checks

@nicoloboschi nicoloboschi merged commit 52bd9da into apache:master Jan 25, 2023
@nicoloboschi nicoloboschi added this to the 2.12.0 milestone Jan 25, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lhotari lhotari lhotari approved these changes

@michaeljmarshall michaeljmarshall Awaiting requested review from michaeljmarshall

@eolivelli eolivelli Awaiting requested review from eolivelli

Assignees

No one assigned

Labels

area/function doc-not-needed Your PR changes do not impact docs

Projects

None yet

Milestone

3.0.0

Development

Successfully merging this pull request may close these issues.

2 participants

@nicoloboschi @lhotari