-
Notifications
You must be signed in to change notification settings - Fork 8.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[node] Enable openssl legacy provider #163190
Conversation
|
ee1ff44
to
8ef4d5f
Compare
Pinging @elastic/kibana-operations (Team:Operations) |
var openSSLLegacyProviderEnabled = require('./openssl_legacy_provider_enabled')(); | ||
|
||
if (openSSLLegacyProviderEnabled) { | ||
console.log( |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@elastic/kibana-core any thoughts on where I can put this check to hook into the core logger? This is currently pre-startup, where we have similar node checks such as validating node.js's version, not running as root etc.
The difference is this doesn't need to prevent startup, and the default experience with this log looks out of place.
This is to prevent a breaking change in a minor release of Kibana. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)
ecbed14
to
e6de936
Compare
Sorry about the force push, there's no changes since the recent reviews. I squashed the commits to get started on the 7.17 backport in parallel. @watson when you can a chance can you take another look? |
src/setup_node_env/openssl_legacy_provider/openssl_legacy_provider_enabled.js
Outdated
Show resolved
Hide resolved
Co-authored-by: Thomas Watson <[email protected]>
…ider_enabled.js Co-authored-by: Thomas Watson <[email protected]>
💚 Build Succeeded
Metrics [docs]
History
To update your PR or re-run it, just comment with: |
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <[email protected]> (cherry picked from commit aebd6f3)
💔 Some backports could not be created
Note: Successful backport PRs will be merged automatically after passing CI. Manual backportTo create the backport manually run:
Questions ?Please refer to the Backport tool documentation and see the Github Action logs for details |
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <[email protected]> (cherry picked from commit aebd6f3)
This comment was marked as duplicate.
This comment was marked as duplicate.
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <[email protected]>
Backports #163190 Co-authored-by: Thomas Watson <[email protected]>
# Backport This will backport the following commits from `main` to `8.10`: - [[node] Enable openssl legacy provider (#163190)](#163190) <!--- Backport version: 8.9.7 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport) <!--BACKPORT [{"author":{"name":"Jon","email":"[email protected]"},"sourceCommit":{"committedDate":"2023-08-30T18:51:10Z","message":"[node] Enable openssl legacy provider (#163190)\n\nThis is to prevent a breaking change in a minor release of Kibana due to\r\nan underlying upgrade of Node.js to v18.\r\nThe legacy provider can be disabled by removing\r\n`--openssl-legacy-provider` in `config/node.options`.\r\n\r\n[Node.js\r\ndocumentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider)\r\n[OpenSSL\r\ndocumentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)\r\n\r\n---------\r\n\r\nCo-authored-by: Thomas Watson <[email protected]>","sha":"aebd6f392384b4e36241f1a1ad5f3c615b42bcca","branchLabelMapping":{"^v8.11.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Operations","release_note:skip","auto-backport","ci:build-all-platforms","ci:cloud-deploy","v8.10.0","v7.17.13","v8.11.0"],"number":163190,"url":"https://github.com/elastic/kibana/pull/163190","mergeCommit":{"message":"[node] Enable openssl legacy provider (#163190)\n\nThis is to prevent a breaking change in a minor release of Kibana due to\r\nan underlying upgrade of Node.js to v18.\r\nThe legacy provider can be disabled by removing\r\n`--openssl-legacy-provider` in `config/node.options`.\r\n\r\n[Node.js\r\ndocumentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider)\r\n[OpenSSL\r\ndocumentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)\r\n\r\n---------\r\n\r\nCo-authored-by: Thomas Watson <[email protected]>","sha":"aebd6f392384b4e36241f1a1ad5f3c615b42bcca"}},"sourceBranch":"main","suggestedTargetBranches":["8.10","7.17"],"targetPullRequestStates":[{"branch":"8.10","label":"v8.10.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"7.17","label":"v7.17.13","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.11.0","labelRegex":"^v8.11.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/163190","number":163190,"mergeCommit":{"message":"[node] Enable openssl legacy provider (#163190)\n\nThis is to prevent a breaking change in a minor release of Kibana due to\r\nan underlying upgrade of Node.js to v18.\r\nThe legacy provider can be disabled by removing\r\n`--openssl-legacy-provider` in `config/node.options`.\r\n\r\n[Node.js\r\ndocumentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider)\r\n[OpenSSL\r\ndocumentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)\r\n\r\n---------\r\n\r\nCo-authored-by: Thomas Watson <[email protected]>","sha":"aebd6f392384b4e36241f1a1ad5f3c615b42bcca"}}]}] BACKPORT--> --------- Co-authored-by: Jon <[email protected]>
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <[email protected]>
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18.
The legacy provider can be disabled by removing
--openssl-legacy-provider
inconfig/node.options
.Node.js documentation
OpenSSL documentation