[node] Enable openssl legacy provider #163190
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jbudz
added
Team:Operations
|
jbudz
force-pushed
the
node-openssl-legacy-provider
branch
from
ee1ff44
to
8ef4d5f
Compare
|
Pinging @elastic/kibana-operations (Team:Operations) |
jbudz
commented
Aug 28, 2023
| var openSSLLegacyProviderEnabled = require('./openssl_legacy_provider_enabled')(); | ||
|
|
||
| if (openSSLLegacyProviderEnabled) { | ||
| console.log( |
There was a problem hiding this comment.
@elastic/kibana-core any thoughts on where I can put this check to hook into the core logger? This is currently pre-startup, where we have similar node checks such as validating node.js's version, not running as root etc.
The difference is this doesn't need to prevent startup, and the default experience with this log looks out of place.
pgayvallet
approved these changes
Aug 29, 2023
delanni
approved these changes
Aug 29, 2023
jbudz
added
ci:build-all-platforms
ci:cloud-deploy
This is to prevent a breaking change in a minor release of Kibana. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)
jbudz
force-pushed
the
node-openssl-legacy-provider
branch
from
ecbed14
to
e6de936
Compare
|
Sorry about the force push, there's no changes since the recent reviews. I squashed the commits to get started on the 7.17 backport in parallel. @watson when you can a chance can you take another look? |
watson
reviewed
Aug 30, 2023
src/setup_node_env/openssl_legacy_provider/openssl_legacy_provider_enabled.js
Outdated
Show resolved
Hide resolved
Co-authored-by: Thomas Watson <w@tson.dk>
…ider_enabled.js Co-authored-by: Thomas Watson <w@tson.dk>
💚 Build Succeeded
Metrics [docs]
History
To update your PR or re-run it, just comment with: |
watson
approved these changes
Aug 30, 2023
jbudz
added
the
auto-backport
kibanamachine
pushed a commit
that referenced
this pull request
Aug 30, 2023
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <w@tson.dk> (cherry picked from commit aebd6f3)
💔 Some backports could not be created
Note: Successful backport PRs will be merged automatically after passing CI. Manual backportTo create the backport manually run: Questions ?Please refer to the Backport tool documentation and see the Github Action logs for details |
kibanamachine
pushed a commit
to kibanamachine/kibana
that referenced
this pull request
Aug 30, 2023
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <w@tson.dk> (cherry picked from commit aebd6f3)
This comment was marked as duplicate.
This comment was marked as duplicate.
jbudz
added a commit
to jbudz/kibana
that referenced
this pull request
Aug 30, 2023
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <w@tson.dk>
jbudz
added a commit
that referenced
this pull request
Aug 30, 2023
Backports #163190 Co-authored-by: Thomas Watson <w@tson.dk>
kibanamachine
added a commit
that referenced
this pull request
Aug 30, 2023
# Backport This will backport the following commits from `main` to `8.10`: - [[node] Enable openssl legacy provider (#163190)](#163190) <!--- Backport version: 8.9.7 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport) <!--BACKPORT [{"author":{"name":"Jon","email":"jon@elastic.co"},"sourceCommit":{"committedDate":"2023-08-30T18:51:10Z","message":"[node] Enable openssl legacy provider (#163190)\n\nThis is to prevent a breaking change in a minor release of Kibana due to\r\nan underlying upgrade of Node.js to v18.\r\nThe legacy provider can be disabled by removing\r\n`--openssl-legacy-provider` in `config/node.options`.\r\n\r\n[Node.js\r\ndocumentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider)\r\n[OpenSSL\r\ndocumentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)\r\n\r\n---------\r\n\r\nCo-authored-by: Thomas Watson <w@tson.dk>","sha":"aebd6f392384b4e36241f1a1ad5f3c615b42bcca","branchLabelMapping":{"^v8.11.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Operations","release_note:skip","auto-backport","ci:build-all-platforms","ci:cloud-deploy","v8.10.0","v7.17.13","v8.11.0"],"number":163190,"url":"https://github.com/elastic/kibana/pull/163190","mergeCommit":{"message":"[node] Enable openssl legacy provider (#163190)\n\nThis is to prevent a breaking change in a minor release of Kibana due to\r\nan underlying upgrade of Node.js to v18.\r\nThe legacy provider can be disabled by removing\r\n`--openssl-legacy-provider` in `config/node.options`.\r\n\r\n[Node.js\r\ndocumentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider)\r\n[OpenSSL\r\ndocumentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)\r\n\r\n---------\r\n\r\nCo-authored-by: Thomas Watson <w@tson.dk>","sha":"aebd6f392384b4e36241f1a1ad5f3c615b42bcca"}},"sourceBranch":"main","suggestedTargetBranches":["8.10","7.17"],"targetPullRequestStates":[{"branch":"8.10","label":"v8.10.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"7.17","label":"v7.17.13","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.11.0","labelRegex":"^v8.11.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/163190","number":163190,"mergeCommit":{"message":"[node] Enable openssl legacy provider (#163190)\n\nThis is to prevent a breaking change in a minor release of Kibana due to\r\nan underlying upgrade of Node.js to v18.\r\nThe legacy provider can be disabled by removing\r\n`--openssl-legacy-provider` in `config/node.options`.\r\n\r\n[Node.js\r\ndocumentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider)\r\n[OpenSSL\r\ndocumentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html)\r\n\r\n---------\r\n\r\nCo-authored-by: Thomas Watson <w@tson.dk>","sha":"aebd6f392384b4e36241f1a1ad5f3c615b42bcca"}}]}] BACKPORT--> --------- Co-authored-by: Jon <jon@elastic.co>
eokoneyo
pushed a commit
to eokoneyo/kibana
that referenced
this pull request
Aug 31, 2023
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18. The legacy provider can be disabled by removing `--openssl-legacy-provider` in `config/node.options`. [Node.js documentation](https://nodejs.org/docs/latest-v18.x/api/cli.html#--openssl-legacy-provider) [OpenSSL documentation](https://www.openssl.org/docs/man3.0/man7/OSSL_PROVIDER-legacy.html) --------- Co-authored-by: Thomas Watson <w@tson.dk>
This was referenced Oct 1, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is to prevent a breaking change in a minor release of Kibana due to an underlying upgrade of Node.js to v18.
The legacy provider can be disabled by removing
--openssl-legacy-providerinconfig/node.options.Node.js documentation
OpenSSL documentation