[jira] [Commented] (SOLR-15936) Fix confusing SSL related warn logs on sartup

[Jira]

    [ 
https://issues.apache.org/jira/browse/SOLR-15936?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17484285#comment-17484285
 ] 

Jan Høydahl commented on SOLR-15936:
------------------------------------

I found the reason for these. The new Http2SolrClient always initialized an 
SslContextFactory, even if SSL was not configured. I have a patch for that.

But then I started looking at a typical Solr startup, and found more log lines 
that really don't provide much value to users. I have highlighted the lines 
that I propose to mute:

 
{panel:title=Startup log fragment}
{{$ bin/solr start -f  }}
{{OpenJDK 64-Bit Server VM warning: -XX:+UseLargePages not supported in this 
VM}}
{{INFO  (main) [] o.e.j.u.log Logging initialized @1044ms to 
org.eclipse.jetty.util.log.Slf4jLog}}
{{INFO  (main) [] o.e.j.s.Server jetty-9.4.44.v20210927; built: 
2021-09-27T23:02:44.612Z; git: 8da83308eeca865e495e53ef315a249d63ba9332; jvm 
11.0.13+8}}
{{{color:#de350b}INFO  (main) [] o.e.j.d.p.ScanningAppProvider Deployment 
monitor 
[file:///Users/janhoy/git/solr/solr/packaging/build/dev/server/contexts/] at 
interval 0{color}}}
{{{color:#de350b}INFO  (main) [] o.e.j.w.StandardDescriptorProcessor NO JSP 
Support for /solr, did not find org.apache.jasper.servlet.JspServlet{color}}}
{{{color:#de350b}INFO  (main) [] o.e.j.s.session DefaultSessionIdManager 
workerName=node0{color}}}
{{{color:#de350b}INFO  (main) [] o.e.j.s.session No SessionScavenger set, using 
defaults{color}}}
{{{color:#de350b}INFO  (main) [] o.e.j.s.session node0 Scavenging every 
660000ms{color}}}
{{INFO  (main) [] o.a.s.s.CoreContainerProvider Using logger factory 
org.apache.logging.slf4j.Log4jLoggerFactory}}
{{INFO  (main) [] o.a.s.s.CoreContainerProvider  ___      _       Welcome to 
Apache Solr™ version 10.0.0-SNAPSHOT}}
{{INFO  (main) [] o.a.s.s.CoreContainerProvider / __| ___| |_ _   Starting in 
standalone mode on port 8983}}
{{INFO  (main) [] o.a.s.s.CoreContainerProvider \__ \/ _ \ | '_|  Install dir: 
/Users/janhoy/git/solr/solr/packaging/build/dev}}
{{INFO  (main) [] o.a.s.s.CoreContainerProvider |___/\___/_|_|    Start time: 
2022-01-29T11:18:59.328243Z}}
{{INFO  (main) [] o.a.s.s.CoreContainerProvider Solr Home: /tmp/solrhome 
(source: system property: solr.solr.home)}}
{{INFO  (main) [] o.a.s.c.SolrXmlConfig solr.xml not found in SOLR_HOME, using 
built-in default}}
{{INFO  (main) [] o.a.s.c.SolrXmlConfig Loading solr.xml from 
/Users/janhoy/git/solr/solr/packaging/build/dev/server/solr/solr.xml}}
{{{color:#de350b}INFO  (main) [] o.a.s.c.SolrXmlConfig MBean server found: 
com.sun.jmx.mbeanserver.JmxMBeanServer@6ed3f258, but no JMX reporters were 
configured - adding default JMX reporter.{color}}}
{{{color:#de350b}WARN  (main) [] o.e.j.u.s.S.config Trusting all certificates 
configured for 
Client@799ed4e8[provider=null,keyStore=null,trustStore=null]{color}}}
{{{color:#de350b}WARN  (main) [] o.e.j.u.s.S.config No Client 
EndPointIdentificationAlgorithm configured for 
Client@799ed4e8[provider=null,keyStore=null,trustStore=null]{color}}}
{{{color:#de350b}WARN  (main) [] o.e.j.u.s.S.config Trusting all certificates 
configured for 
Client@6a2c717f[provider=null,keyStore=null,trustStore=null]{color}}}
{{{color:#de350b}WARN  (main) [] o.e.j.u.s.S.config No Client 
EndPointIdentificationAlgorithm configured for 
Client@6a2c717f[provider=null,keyStore=null,trustStore=null]{color}}}
{{WARN  (main) [] o.a.s.u.StartupLoggingUtils Jetty request logging enabled. 
Will retain logs for last 3 days. See chapter "Configuring Logging" in 
reference guide for how to configure.}}
{{WARN  (main) [] o.a.s.c.CoreContainer Not all security plugins configured!  
authentication=disabled authorization=disabled.  Solr is only as secure as you 
make it. Consider configuring authentication/authorization before exposing Solr 
to users internal or external.  See https://s.apache.org/solrsecurity for more 
info}}
{{{color:#de350b}INFO  (main) [] o.a.s.m.r.SolrJmxReporter JMX monitoring for 
'solr.node' (registry 'solr.node') enabled at server: 
com.sun.jmx.mbeanserver.JmxMBeanServer@6ed3f258{color}}}
{{{color:#de350b}INFO  (main) [] o.a.s.m.r.SolrJmxReporter JMX monitoring for 
'solr.jvm' (registry 'solr.jvm') enabled at server: 
com.sun.jmx.mbeanserver.JmxMBeanServer@6ed3f258{color}}}
{{{color:#de350b}INFO  (main) [] o.a.s.m.r.SolrJmxReporter JMX monitoring for 
'solr.jetty' (registry 'solr.jetty') enabled at server: 
com.sun.jmx.mbeanserver.JmxMBeanServer@6ed3f258{color}}}
{{INFO  (main) [] o.a.s.c.CorePropertiesLocator Found 0 core definitions 
underneath /tmp/solrhome}}
{{INFO  (main) [] o.e.j.s.h.ContextHandler Started 
o.e.j.w.WebAppContext@xxxxxx\{/solr,file:///Users/janhoy/git/solr/solr/packaging/build/dev/server/solr-webapp/webapp/,AVAILABLE}{/Users/janhoy/git/solr/solr/packaging/build/dev/server/solr-webapp/webapp}}}
{{INFO  (main) [] o.e.j.s.RequestLogWriter Opened 
/Users/janhoy/git/solr/solr/packaging/build/dev/server/logs/2022_01_30.request.log}}
{{INFO  (main) [] o.e.j.s.AbstractConnector Started 
ServerConnector@xxxxxx\{HTTP/1.1, (http/1.1, h2c)}{127.0.0.1:8983}}}
{{INFO  (main) [] o.e.j.s.Server Started @2623ms}}
{panel}
 

> Fix confusing SSL related warn logs on sartup
> ---------------------------------------------
>
>                 Key: SOLR-15936
>                 URL: https://issues.apache.org/jira/browse/SOLR-15936
>             Project: Solr
>          Issue Type: Bug
>      Security Level: Public(Default Security Level. Issues are Public) 
>            Reporter: Jan Høydahl
>            Priority: Major
>
> Jetty is logging these lines on every startup (SSL not enabled):
> {code:java}
> 2022-01-19 11:43:18.053 WARN  (main) [] o.e.j.u.s.S.config Trusting all 
> certificates configured for 
> Client@62dbe64e[provider=null,keyStore=null,trustStore=null]
> 2022-01-19 11:43:18.053 WARN  (main) [] o.e.j.u.s.S.config No Client 
> EndPointIdentificationAlgorithm configured for 
> Client@62dbe64e[provider=null,keyStore=null,trustStore=null]
> 2022-01-19 11:43:18.194 WARN  (main) [] o.e.j.u.s.S.config Trusting all 
> certificates configured for 
> Client@12fe1f28[provider=null,keyStore=null,trustStore=null]
> 2022-01-19 11:43:18.194 WARN  (main) [] o.e.j.u.s.S.config No Client 
> EndPointIdentificationAlgorithm configured for 
> Client@12fe1f28[provider=null,keyStore=null,trustStore=null]
> 2 {code}
> Why is this class is even triggered in a non-ssl config? Or do we have some 
> mis-configuration of Solr's default truststore or something that we should 
> act on?
> Once this is fixed, PR [https://github.com/apache/solr/pull/543] can be 
> addressed, which moves LogWatcher earlier in the solr startup process to get 
> as much logs as possible in the UI.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org
For additional commands, e-mail: issues-h...@solr.apache.org