[sn-platform] Unable to deploy when broker TLS is enabled #842
Description
Description
Enable broker TLS
helm upgrade snp ./charts/sn-platform \
--install \
--create-namespace \
--namespace app-snp \
--set initialize=true \
--set tls.enabled=true \
--set tls.broker.enabled=true \
--set certs.internal_issuer.enabled=true \
--set ingress.controller.enabled=true
Logs from broker Pod:
2022-08-11T15:29:11,288+0000 [pulsar-io-4-2] INFO org.apache.pulsar.broker.service.ServerCnx - Closed connection from /10.60.3.18:42374
2022-08-11T15:29:11,703+0000 [pulsar-io-4-1] INFO org.apache.pulsar.broker.service.ServerCnx - New connection from /10.60.3.18:42376
2022-08-11T15:29:11,713+0000 [pulsar-io-4-1] WARN org.apache.pulsar.broker.service.ServerCnx - [/10.60.3.18:42376] Got exception io.netty.handler.codec.DecoderException: javax.net.ssl.SSLHandshakeException: error:10000412:SSL routines:OPENSSL_internal:SSLV3_ALERT_BAD_CERTIFICATE
at io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:480)
at io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:279)
at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:379)
at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:365)
at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:357)
at io.netty.channel.DefaultChannelPipeline$HeadContext.channelRead(DefaultChannelPipeline.java:1410)
at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:379)
at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:365)
at io.netty.channel.DefaultChannelPipeline.fireChannelRead(DefaultChannelPipeline.java:919)
at io.netty.channel.epoll.AbstractEpollStreamChannel$EpollStreamUnsafe.epollInReady(AbstractEpollStreamChannel.java:800)
at io.netty.channel.epoll.EpollEventLoop.processReady(EpollEventLoop.java:487)
Metadata
Metadata
Assignees
Labels
No labels