This code is there but it does not show on solr running cammnd
On Wed, 9 Dec 2020 at 23:28, rkrish84 wrote:
> Commented out the solr_ssl_client_key_store related code section in solr.sh
> file to resolve the issue and enable ssl.
>
>
>
> --
> Sent from: https://lucene.472066.n3.nabble.com/Solr-U
Commented out the solr_ssl_client_key_store related code section in solr.sh
file to resolve the issue and enable ssl.
--
Sent from: https://lucene.472066.n3.nabble.com/Solr-User-f472068.html
Yes ,that's correct . I did that and the exception is gone.
But I see bel.ow exception , not sure what is the reason for this NPE.
2020-07-15 10:28:14.453 INFO (MetricsHistoryHandler-12-thread-1) [ ]
o.a.s.c.s.i.SolrClientNodeStateProvider Error on getting remote info, trying
again: IOExce
You need to remove the references from bin/solr or bin/solr.cmd to
SOLR_SSL_CLIENT_KEY_STORE and "-Djavax.net.ssl.keyStore". This is different
from solr.in.sh.
The way the bin/solr script is written it is falling back to whatever is
provided as SOLR_SSL_KEY_STORE for the client keystore which is c
Here is the result. I removed the else block and tested . You are correct , the
previous exception which I saw went away.
But I see bel.ow exception , not sure what is the reason for this NPE.
2020-07-15 10:28:14.453 INFO (MetricsHistoryHandler-12-thread-1) [ ]
o.a.s.c.s.i.SolrClientNodeStat
Ok , I looked at the solr script , here is the logic , even if the
SOLR_SSL_CLIENT_KEY_STORE_PASSWORD is not set , it sets the
-Djavax.net.ssl.keyStore=$SOLR_SSL_KEY_STORE" . Let me remove the else part and
test it . Thanks again for the pointer
if [ -n "$SOLR_SSL_CLIENT_KEY_STORE" ]; then
From the /bin directory I did grep for SOLR_SSL_CLIENT_KEY_STORE ,
this is what I see . But somehow the option option -Djavax.net.ssl.keyStore is
added
grep SOLR_SSL_CLIENT_KEY_STORE *
grep: init.d: Is a directory
solr: if [ -n "$SOLR_SSL_CLIENT_KEY_STORE" ]; then
solr:SOLR_SSL_OPTS+=" -Dja
Thank you for your reply. I looked at solr.in.sh I see that
SOLR_SSL_CLIENT_KEY_STORE is already commented out by default. But you are
right I looked at the running solr, I see the option -Djavax.net.ssl.keyStore
pointing to solr-ssl.keystore.p12 , not sure how it is getting that value. Let
Hmmm so I looked closer - it looks like a side effect of the default
passthrough of the keystore being passed to the client keystore.
https://github.com/apache/lucene-solr/blob/master/solr/bin/solr#L229
Can you remove or commout the entire SOLR_SSL_CLIENT_KEY_STORE section from
bin/solr or bin/so
Thank you so much for the response. Below are the configs I have in solr.in.sh
and I followed https://lucene.apache.org/solr/guide/8_5/enabling-ssl.html
documentation
# Enables HTTPS. It is implicitly true if you set SOLR_SSL_KEY_STORE. Use this
config
# to enable https module with custom jet
>
> In local with just certificate and one domain name the SSL communication
> worked. With multiple DNS and 2 certificates SSL fails with below exception.
>
A client keystore by definition can only have a single certificate. A
server keystore can have multiple certificates. The reason being is t
I looked at the patch mentioned in the JIRA
https://issues.apache.org/jira/browse/SOLR-14105 reporting the below issue. I
looked at the solr 8.5.1 code base , I see the patch is applied. But still
seeing the same exception with different stack trace. The initial excsption
stacktrace was at
Re-sending to see if anyone encountered had this combination and encountered
this issue. In local with just certificate and one domain name the SSL
communication worked. With multiple DNS and 2 certificates SSL fails with below
exception. Below JIRA says it is fixed for Http2SolrClient , wond
Hi,
We are using Solr 8.5.1 in cloud mode with Java 8. We are enabling TLS with
http1 (as we get a warning java 8 + solr 8.5 SSL can’t be enabled) and we get
below exception
2020-07-07 03:58:53.078 ERROR (main) [ ] o.a.s.c.SolrCore
null:org.apache.solr.common.SolrException: Error insta
14 matches
Mail list logo
