Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security Solution] In-consistent message displayed on kill process with PID and EntityId that does not exist #139286

Open
ghost opened this issue Aug 23, 2022 · 4 comments
Open

[Security Solution] In-consistent message displayed on kill process with PID and EntityId that does not exist #139286

ghost opened this issue Aug 23, 2022 · 4 comments
Assignees
@kevinlog
Labels
bug Fixes for quality problems that affect the customer experience impact:medium Addressing this issue will have a medium level of impact on the quality/strength of our product. Team:Defend Workflows “EDR Workflows” sub-team of Security Solution Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v8.4.0

Comments

@ghost
Copy link

ghost commented Aug 23, 2022
edited by ghost

Description:
In-consistent message displayed on kill process with PID and EntityId that does not exist

Build Details:

VERSION: 8.4.0
BUILD: 55395
COMMIT: 1922ab0b6f8dc2906ef10f3fb65fc4d0e0076f90
ARTIFACT PAGE: https://staging.elastic.co/8.4.0-3b80811b/summary-8.4.0.html

Browser Details:
All

Preconditions:

  1. Kibana user should be logged in
  2. Endpoint Should be deployed.

Steps to Reproduce:

  1. Navigate to the Endpoints tab under the Manage section from the left-hand side navigation bar
  2. Click on the hostname
  3. Click on the 'Take Action' button
  4. Click on 'Launch responder' option
  5. Execute the command kill-process --pid 234567
  6. Observe that message Action completed. The provided process was not found or already killed is displayed.
  7. Now, again Execute the command kill-process --entityId NfneknANBSJAaxnscxacAsaNxbacbsabcjasASadADhVHVHVhvHvvhVvvhvVvHvHVhVHvHVhVHvhVvVhvVh=
  8. Observe that message Action failed. The following error was encountered: The provided process was not found is displayed.

Note : Consistent message should displayed on kill process with PID and EntityId that does not exist.

Message : Action completed. The provided process was not found or already killed
OR
Message : Action failed. The following error was encountered: The provided process was not found

Impacted Test case:
N/A

Actual Result:
In-consistent message displayed on kill process with PID and EntityId that does not exist

Expected Result:
Consistent message should be displayed on kill process with PID and EntityId that does not exist

What's Working

  • N/A

What's Not Working

  • This issue is also occurring when kill already killed process with PID and EntityId.
    Message displayed when Kill already killed process with PID : Action completed. The provided process was not found or already killed

already-killed-process

Message displayed when Kill already killed process with EntityId : Action completed.

already-kill-entityId

Screenshot:

Inconsistent-kill-process

Logs:
N/A
@ghost ghost added bug Fixes for quality problems that affect the customer experience impact:medium Addressing this issue will have a medium level of impact on the quality/strength of our product. Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. Team:Defend Workflows “EDR Workflows” sub-team of Security Solution v8.4.0 labels Aug 23, 2022
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-solution (Team: SecuritySolution)

@elasticmachine
Copy link
Contributor

Pinging @elastic/security-onboarding-and-lifecycle-mgt (Team:Onboarding and Lifecycle Mgt)

@ghost
Copy link
Author

ghost commented Aug 23, 2022

@muskangulati-qasource : Please review the Bug

@muskangulati-qasource
Copy link

Reviewed and assigned to @kevinlog

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@kevinlog kevinlog

Labels
bug Fixes for quality problems that affect the customer experience impact:medium Addressing this issue will have a medium level of impact on the quality/strength of our product. Team:Defend Workflows “EDR Workflows” sub-team of Security Solution Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v8.4.0
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@elasticmachine @kevinlog @muskangulati-qasource