Elasticsearch Helm chart: Set -Dlog4j2.formatMsgNoLookups = true in jvm.options
See original GitHub issueI was trying to update Elasticsearch cluster in AKS using helm chart. I wanted to set it up with option -Dlog4j2.formatMsgNoLookups = true in jvm.options file in the pods but using values.yaml file, I can only add it in /usr/share/elasticsearch/config/log4j2.properties. I see only option to add it as below:
esConfig:
# elasticsearch.yml: |
# key:
# nestedkey: value
log4j2.properties: |
-Dlog4j2.formatMsgNoLookups = true
Please let me know if the above setting should be enough for log4j vulnerability primary fix and how to add the parameter in the jvm.options file directly? Are we getting a new updated chart soon?
Issue Analytics
- State:
- Created 2 years ago
- Reactions:1
- Comments:7 (5 by maintainers)
Top Results From Across the Web
log4j temporary fix in elasticsearch helm chart using Dlog4j2 ...
This answer is incorrect in 2 ways. The log4j2 flag should be set in jvm settings and it is not reccommended to overwrite...
Read more >Log4j Vulnerability: JVM Options not picked from location ...
Does anyone know why setting option -Dlog4j2.formatMsgNoLookups=true in jvm.options file does not work? Elasticsearch version ...
Read more >CVE-2021-44228 & CVE-2021-45046 (Elasticsearch Users be ...
Helm -chart version zammad-6.0.2 contains Zammad 5.0.3 together with ... formatMsgNoLookups=true' > /usr/share/elasticsearch/config/jvm.
Read more >Dlog4j2.formatMsgNoLookups=true on bundled Elasticsearch
Set -Dlog4j2. ... formatMsgNoLookups=true to the JVM that runs Elasticsearch. ... to the Elasticsearch JVM options file then restart Bitbucket Server:.
Read more >SonarQube, SonarCloud, and the Log4J vulnerability
@ganncamp How do we handle this in official helm chart? Do we need to add sonar.search.javaAdditionalOpts: “-Dlog4j2.formatMsgNoLookups=true” ...
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
hello @afirth , here the PR https://github.com/elastic/helm-charts/pull/1496/files
“The ES_JAVA_OPTS variable overrides all other JVM options. We do not recommend using ES_JAVA_OPTS in production.” from the es docs
Anyway, I’m using it for now, so thanks!