[
https://issues.apache.org/jira/browse/CASSANDRA-9384?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16777972#comment-16777972
]
Stefan Podkowinski commented on CASSANDRA-9384:
-----------------------------------------------
Looks like you added the following text to NEWS.txt:
{quote}Before you upgrade, confirm that
`cassandra.auth_bcrypt_gensalt_log2_rounds` property
is set to value lower than 31 otherwise Cassandra will fail to start.
See CASSANDRA-9384
for further details.{quote}
First of all, there's no such property in the conf or bin files, so it will
most likely leave users confused and some may even think they have to add this
property, in case it isn't set yet.
Also, what happens to existing hashes with 31 rounds? Upgrading to 0.4 will
make all authentication attempts fail, see my first comment in thread. Changing
the property will not solve this.
> Update jBCrypt dependency to version 0.4
> ----------------------------------------
>
> Key: CASSANDRA-9384
> URL: https://issues.apache.org/jira/browse/CASSANDRA-9384
> Project: Cassandra
> Issue Type: Bug
> Reporter: Sam Tunnicliffe
> Assignee: Dinesh Joshi
> Priority: Major
> Fix For: 2.1.x, 2.2.x, 3.0.x, 3.11.x
>
>
> https://bugzilla.mindrot.org/show_bug.cgi?id=2097
> Although the bug tracker lists it as NEW/OPEN, the release notes for 0.4
> indicate that this is now fixed, so we should update.
> Thanks to [~Bereng] for identifying the issue.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org
For additional commands, e-mail: commits-h...@cassandra.apache.org
