Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

"KeyStoreException: Keystore not specified" when only truststore is configured in config client configuration. #2514

Closed
KrishnaST opened this issue Sep 4, 2024 · 2 comments
Closed

"KeyStoreException: Keystore not specified" when only truststore is configured in config client configuration. #2514

KrishnaST opened this issue Sep 4, 2024 · 2 comments
Labels
feedback-provided

Comments

@KrishnaST
Copy link

KrishnaST commented Sep 4, 2024
edited
Loading

I have TLS enabled eureka server. Microservice is trying to fetch configuration from config server throws "KeyStoreException: Keystore not specified" when only truststore is configured. should be able to trust server certificate by truststore configuration. There is no mutual authentication.

Following is micro-service configuration
image

It seems that there is no way to configure truststore without configuring the keystore even when mutual authentication is not required.

org.springframework.cloud.configuration.SSLContextFactory
image

Spring Config Client Version : 4.1.3
@ryanjbaxter
Copy link
Contributor

Is that because builder.loadKeyMaterial throws an exception and we never call builder.loadTrustMaterial? Can you provide a sample to reproduce the error?

@KrishnaST
Copy link
Author

KrishnaST commented Sep 5, 2024
edited
Loading

Yes, call to loadKeyMaterial will throws a KeystoreException and the execution will never reach the loadTrust.

Here is a minimal sample to reproduce the error and log.
config-client-log.log

https://github.com/KrishnaST/Config-Client-TLS-Issue

ryanjbaxter added a commit to ryanjbaxter/spring-cloud-config that referenced this issue Sep 19, 2024
@ryanjbaxter
Update tls tests to add test that tests creating a truststore without…
4f0015b 
… a keystore

Fixes spring-cloud#2514
This was referenced Sep 19, 2024
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feedback-provided
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@ryanjbaxter @KrishnaST @spring-cloud-issues