Details
-
Bug
-
Resolution: Fixed
-
Major
-
6.5.0
-
None
-
Untriaged
-
Unknown
Description
I can't run queries against the HTTP port after setting the cluster to run in node-to-node encrypted mode at level "all". Note that the HTTP query port should work. However query should connect with indexing and KV over TLS encrypted connections.
Steps to repro:
- Bring up cluster with at least one query node and one index node with a bucket default. Create a primary index on default
- couchbase-cli node-to-node-encryption -c host:port -u Administrator -p password --enable
- couchbase-cli setting-security -c host:port -u Administrator -p password --cluster-encryption-level all --set
Run a query such as select * from `default`. This is from a cluster run build. Looks like query can't get go-couchbase to find the correct KV port.
curl -i http://localhost:9498/query/service -d 'statement=select * from `default`' -u Administrator:asdasd
|
HTTP/1.1 500 Internal Server Error
|
Content-Length: 382
|
Content-Type: application/json; version=2.0.0-N1QL
|
Date: Wed, 11 Sep 2019 05:36:36 GMT
|
|
{
|
"requestID": "365eaeaa-02a0-404a-857b-b356d724396e",
|
"errors": [{"code":12003,"msg":"Keyspace not found in CB datastore keyspace default - cause: Unable to map hostport combination 127.0.0.1:12004: expected port 12004 but found 12000"}],
|
"status": "fatal",
|
"metrics": {"elapsedTime": "65.421451ms","executionTime": "65.38739ms","resultCount": 0,"resultSize": 0,"errorCount": 1}
|
}
|
Logs:
https://s3.amazonaws.com/cb-engineering/davef/query-doesnt-work/collectinfo-2019-09-11T053349-n_0%40127.0.0.1.zip
https://s3.amazonaws.com/cb-engineering/davef/query-doesnt-work/collectinfo-2019-09-11T053349-n_1%40127.0.0.1.zip
https://s3.amazonaws.com/cb-engineering/davef/query-doesnt-work/collectinfo-2019-09-11T053349-n_2%40127.0.0.1.zip
Attachments
Issue Links
- relates to
-
MB-35966 Queries can temporarily fail when node-to-node encryption is set to "all" during rebalance
- Open