Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cherry-pick #9566 to 6.6: [Heartbeat] Handle TLS certs missing notBefore/notAfter #9759

Merged
merged 2 commits into from
Dec 30, 2018
Merged

Cherry-pick #9566 to 6.6: [Heartbeat] Handle TLS certs missing notBefore/notAfter #9759

merged 2 commits into from
Dec 30, 2018

Conversation

andrewvc
Copy link
Contributor

Cherry-pick of PR #9566 to 6.6 branch. Original message:

Some certs in the wild don't set these standard fields and can cause an NPE. I left a long comment in the code, this is sort of a bizarre situation.

Fixes #9556

@andrewvc
Add heartbeat test for TLS client cert auth (elastic#8984) (elastic#9676
626c325 
)

* Add heartbeat test for TLS client cert auth

We were missing a test for this specific case. I wrote this hoping to confirm elastic#8979, but actually wound up disproving it.

That said, this is still a good test to have, so we should merge it.

* Remove extraneous comment

(cherry picked from commit 17d94b9)
@andrewvc
[Heartbeat] Handle TLS certs missing notBefore/notAfter (elastic#9566)
440dfac 
* [Heartbeat] Handle TLS certs missing notBefore/notAfter

Some certs in the wild don't set these standard fields and can cause an NPE

Fixes elastic#9556

* Add changelog entry
ruflin
ruflin approved these changes Dec 24, 2018
View reviewed changes
Copy link
Member

@ruflin ruflin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

x-pack CI failures are not related.

@andrewvc andrewvc merged commit 4ab2494 into elastic:6.6 Dec 30, 2018
leweafan pushed a commit to leweafan/beats that referenced this pull request Apr 28, 2023
@andrewvc
Cherry-pick elastic#9566 to 6.6: [Heartbeat] Handle TLS certs missing…
096f91c 
… notBefore/notAfter (elastic#9759)

* Add heartbeat test for TLS client cert auth (elastic#8984) (elastic#9676)

* Add heartbeat test for TLS client cert auth

We were missing a test for this specific case. I wrote this hoping to confirm elastic#8979, but actually wound up disproving it.

That said, this is still a good test to have, so we should merge it.

* [Heartbeat] Handle TLS certs missing notBefore/notAfter (elastic#9566)

Some certs in the wild don't set these standard fields and can cause an NPE

Fixes elastic#9556
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ruflin ruflin ruflin approved these changes

Assignees
No one assigned
Labels
backport review v6.6.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@andrewvc @ruflin