You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@solr.apache.org by "sarkaramrit2 (via GitHub)" <gi...@apache.org> on 2023/08/10 18:47:51 UTC

[GitHub] [solr-operator] sarkaramrit2 opened a new issue, #599: Solr 9.2.1 K8s issue

sarkaramrit2 opened a new issue, #599:
URL: https://github.com/apache/solr-operator/issues/599

   Solr 9.2.1 facing two issues:
   
   * except solr home dir, read/write permissions are needed and hence fails
   ```
                       "solrClientTLS": {
                           "mountedTLSDir": {
                               "path": "/abv-client-tls",  # see `spec.customSolrKubeOptions.podOptions.volumes` below
                               "path": "/opt/solr-9.2.1.0-apple/abv-client-tls",
   ```
   * SNI 400s
   ```2023-07-25 17:19:34.649 WARN  (qtp912747546-37) [] o.e.j.s.HttpChannel handleException /solr/admin/info/system org.eclipse.jetty.http.BadMessageException: 400: Invalid SNI
   2023-07-25 17:19:34.649 WARN  (qtp912747546-98) [] o.e.j.s.HttpChannel handleException /solr/admin/info/system org.eclipse.jetty.http.BadMessageException: 400: Invalid SNI
   2023-07-25 17:19:34.656 WARN  (qtp912747546-35) [] o.e.j.s.HttpChannel handleException /solr/admin/info/system org.eclipse.jetty.http.BadMessageException: 400: Invalid SNI
   ```                          


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org

Re: [I] Solr 9 SSL incompatibilities [solr-operator]

Posted by "HoustonPutman (via GitHub)" <gi...@apache.org>.

HoustonPutman closed issue #599: Solr 9 SSL incompatibilities
URL: https://github.com/apache/solr-operator/issues/599


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org

Re: [I] Solr 9 SSL incompatibilities [solr-operator]

Posted by "HoustonPutman (via GitHub)" <gi...@apache.org>.

HoustonPutman commented on issue #599:
URL: https://github.com/apache/solr-operator/issues/599#issuecomment-1753511592

   This has been fixed by #610 


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org

[GitHub] [solr-operator] HoustonPutman commented on issue #599: Solr 9 SSL incompatibilities

Posted by "HoustonPutman (via GitHub)" <gi...@apache.org>.

HoustonPutman commented on issue #599:
URL: https://github.com/apache/solr-operator/issues/599#issuecomment-1688869332

   The first one is [SOLR-16934](https://issues.apache.org/jira/browse/SOLR-16934)
   
   The second one is an issue with how the Solr Operator calls the Solr API. Basically we don't always use a "correct" hostname, and instead use localhost. There is a new option in Solr 9.2.1 ([SOLR-16735](https://issues.apache.org/jira/browse/SOLR-16735)), `-Dsolr.jetty.ssl.sniHostCheck`, that acts in the same way that `verifyHostName` does. So we need to set both options according to what the user wants regarding `verifyHostName`. If they want to verifyHostName, then we need to make sure that the correct hostname is used when executing the liveness/readiness probes.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@solr.apache.org
For additional commands, e-mail: issues-help@solr.apache.org