Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[#8029][YW] Fix slow queries failing to fetch on client-to-node TLS e…
…ncrypted universes Summary: This issue was observed on 2.7 branch and observed again on master branch with 2.7.0-b17 database version. When client-to-node TLS encryption is enabled on the universe, the fetching of slow queries fails with 500 error. Upon further digging, the error is caused by pg_hba.conf not allowing the YW ip address with SSL off. When just the "ssl" = true parameter is added, a different error was thrown: `org.postgresql.util.PSQLException: SSL error: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target`. As a result, the "sslmode" = "require" was added and found to work. Test Plan: Create universe with Client-To-Node encryption enabled. Go to the overview page and check the network logs. The slow_queries API request should not throw an error. Reviewers: arnav, spotachev, sanketh Reviewed By: spotachev Subscribers: jenkins-bot, yugaware Differential Revision: https://phabricator.dev.yugabyte.com/D11333
- Loading branch information