You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@lucene.apache.org by "Constantin Bugneac (JIRA)" <ji...@apache.org> on 2017/11/27 13:11:00 UTC

[jira] [Created] (SOLR-11678) SSL not working if store and key passwords are different

Constantin Bugneac created SOLR-11678:
-----------------------------------------

             Summary: SSL not working if store and key passwords are different
                 Key: SOLR-11678
                 URL: https://issues.apache.org/jira/browse/SOLR-11678
             Project: Solr
          Issue Type: Bug
      Security Level: Public (Default Security Level. Issues are Public)
          Components: security
    Affects Versions: 6.6.2
            Reporter: Constantin Bugneac


If I specify different passwords for store and key then Solr fails to read certificate from JKS file with the attached error.

Example:
SOLR_SSL_KEY_STORE_PASSWORD: "secret1"
SOLR_SSL_TRUST_STORE_PASSWORD: "secret2"

I don't know whether this is JAVA nuance or Solr implementation issue but from security point of view there is no point to have the same password assigned for key store and private key bound to certificate.




--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org