Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-30948

[RHEL 9.5 Bug]: nvme connect with TLS fails due to missing extensions in ClientHello

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Duplicate
    • Icon: Major Major
    • None
    • rhel-9.5
    • nvme-cli
    • None
    • sst_storage_io
    • ssg_filesystems_storage_and_HA
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • All
    • None

      NVMe TLS connect failures are seen due to missing psk_shared_key & psk_key_exchange_modes extensions in the ClientHello message.

       

      Requires the following ktls-utils upstream commits to address the same:

      1) server: add missing priority setting - https://github.com/oracle/ktls-utils/commit/3247e0bc239e14f6ccc676a51a874deab999298a

      2) config: use 'authenticate' as a section name - https://github.com/oracle/ktls-utils/commit/614443cf5d38956037cb8c8625e16f7012906a9f

      3) Rework priority string setting for PSK - https://github.com/oracle/ktls-utils/commit/c3923f76ec7bf8fe5218ca719a5dc2adef67a733

            mlombard@redhat.com Maurizio Lombardi
            marting_netapp Martin George
            NetApp Confidential Group
            Maurizio Lombardi Maurizio Lombardi
            Marco Patalano Marco Patalano
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated:
              Resolved: