[
https://issues.apache.org/jira/browse/SOLR-10338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15938904#comment-15938904
]
Ishan Chattopadhyaya edited comment on SOLR-10338 at 3/23/17 5:56 PM:
----------------------------------------------------------------------
bq. forbidding the use of UUID.randomUUID() in test code might be worth
considering for the reasons outlined in StringHelper.randomId() javadocs – but
i don't think it should be forbidden in all solr code ... in production you
want things like UUIDField and UUIDUpdateProcessorFactory to actaully produce
"good" UUID values.
Agreed.
Maybe, this is off-topic (and we can open a separate issue for dealing with
this) -- How about adding a warning in the startup script for Linux, if the
output of the following is below a certain threshold? The warning could
indicate that features like UUIDField, SSL etc. might not work properly (or be
slow). As a hint, we could then suggest the user to configure a non blocking
SecureRandom (or install rng-tools, haveged etc.).
{code}
cat /proc/sys/kernel/random/entropy_avail
{code}
On my laptop, the output was 3308, but on a VPS, it was 134.
was (Author: ichattopadhyaya):
bq. forbidding the use of UUID.randomUUID() in test code might be worth
considering for the reasons outlined in StringHelper.randomId() javadocs – but
i don't think it should be forbidden in all solr code ... in production you
want things like UUIDField and UUIDUpdateProcessorFactory to actaully produce
"good" UUID values.
Agreed.
Maybe, this is off-topic (and we can open a separate issue for dealing with
this: How about adding a warning in the startup script for Linux, if the output
of the following is below a certain threshold? The warning could indicate that
features like UUIDField, SSL etc. might not work properly (or be slow). As a
hint, we could then suggest the user to configure a non blocking SecureRandom
(or install rng-tools, haveged etc.).
{code}
cat /proc/sys/kernel/random/entropy_avail
{code}
On my laptop, the output was 3308, but on a VPS, it was 134.
> Configure SecureRandom non blocking
> -----------------------------------
>
> Key: SOLR-10338
> URL: https://issues.apache.org/jira/browse/SOLR-10338
> Project: Solr
> Issue Type: Sub-task
> Reporter: Mihaly Toth
> Assignee: Mark Miller
> Fix For: 4.9, 6.0
>
> Attachments: SOLR-10338.patch
>
>
> It would be best if SecureRandom could be made non blocking. In that case we
> could get rid of random entropy exhaustion issue related to all usages of
> SecureRandom.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
