Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Backport of heartbeat: use leader's ACL token when failing heartbeat into release/1.9.x #24248

Merged
merged 1 commit into from
Oct 17, 2024
Merged

Backport of heartbeat: use leader's ACL token when failing heartbeat into release/1.9.x #24248

merged 1 commit into from
Oct 17, 2024

Conversation

hc-github-team-nomad-core
Copy link
Contributor

Backport

This PR is auto-generated from #24241 to be assessed for backporting due to the inclusion of the label backport/1.9.x.

The below text is copied from the body of the original PR.

In #23838 we updated the Node.Update RPC handler we use for heartbeats to be more strict about requiring node secrets. But when a node goes down, it's the leader that sends the request to mark the node down via Node.Update (to itself), and this request was missing the leader ACL needed to authenticate to itself.

Add the leader ACL to the request and update the RPC handler test for disconnected-clients to use ACLs, which would have detected this bug. Also added a note to the Authenticate comment about how that authentication path requires the leader ACL.

Fixes: #24231
Ref: https://hashicorp.atlassian.net/browse/NET-11384

Overview of commits

@hc-github-team-nomad-core hc-github-team-nomad-core force-pushed the backport/b-heartbeat-fail-update/kindly-exotic-rooster branch from 3c37c5b to db4304b Compare October 17, 2024 17:48
@vercel vercel bot temporarily deployed to Preview – nomad-ui October 17, 2024 17:51 Inactive
@tgross tgross merged commit e6facdf into release/1.9.x Oct 17, 2024
19 of 20 checks passed
@tgross tgross deleted the backport/b-heartbeat-fail-update/kindly-exotic-rooster branch October 17, 2024 18:11
@github-actions GitHub Actions
Copy link

I'm going to lock this pull request because it has been closed for 120 days ⏳. This helps our maintainers find and focus on the active contributions.
If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Feb 15, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@tgross tgross tgross approved these changes

Assignees

@tgross tgross

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@hc-github-team-nomad-core @tgross