TLS is not working
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
oslo.cache |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Seems like TLS in oslo.cache is not working(at least for some backends).
I created a simple script to test memcached connection: https:/
Memcached instance is configured to serve TLS.
With dogpile.
Apr 25 21:09:34 aio1-memcached-
Apr 25 21:09:34 aio1-memcached-
On tcpdump I can see plain http traffic:
# tcpdump -i any 'host 172.29.238.233' -s 65535 -A -tttl | grep get
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on any, link-type LINUX_SLL (Linux cooked v1), capture size 65535 bytes
U[......get 274f7b9675887be
With dogpile.
Environment:
python 3.8.10
oslo.cache 3.3.1
memcached 1.5.22
The dogpile. cache.memcached backend does not support tls connection. This is the limitation caused by underlying library.
We have introduced a validation to reject that wrong usage. See https:/ /review. opendev. org/c/openstack /oslo.cache/ +/907330 .