[
https://issues.apache.org/jira/browse/SOLR-11678?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16273418#comment-16273418
]
Shawn Heisey commented on SOLR-11678:
-------------------------------------
Related to the note from the jetty list about a keymanager password, I checked
how Solr configures Jetty for SSL, and there is no way provided to set that
password.
Some info I found says that some people think the keymanager password is not
the way things should be done
https://stackoverflow.com/a/40941126
https://stackoverflow.com/a/10848925
> SSL not working if store and key passwords are different
> --------------------------------------------------------
>
> Key: SOLR-11678
> URL: https://issues.apache.org/jira/browse/SOLR-11678
> Project: Solr
> Issue Type: Bug
> Security Level: Public(Default Security Level. Issues are Public)
> Components: security
> Affects Versions: 6.6.2
> Reporter: Constantin Bugneac
>
> If I specify different passwords for store and key then Solr fails to read
> certificate from JKS file with the below error.
> Example:
> SOLR_SSL_KEY_STORE_PASSWORD: "secret1"
> SOLR_SSL_TRUST_STORE_PASSWORD: "secret2"
> If I set the same password for both - it works just fine.
> Tested with the docker image 6.6.2 available here
> https://hub.docker.com/_/solr/
> I don't know whether this is JAVA nuance or Solr implementation issue but
> from security point of view there there is no point to have the same password
> assigned for both the key store and private key bound to specific certificate.
> Expected behaviour: It should allow to specify different passwords.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
