-
Notifications
You must be signed in to change notification settings - Fork 852
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Improve error messaging for SSL related errors #3568
Improve error messaging for SSL related errors #3568
Conversation
- Fixed diagnostic message - Changed location of the `ServerUtil` class methods to align with the project
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM! Also tested that this change doesn't break an agent
A least the following places contain VssConnection creation, but not updated yet:
Could you please check? Making trace mandatory for VssUtil.CreateConnection will help to find other places as well I guess. |
…e_error_messaging_for_ssl_errors
…e_error_messaging_for_ssl_errors
There are 2 places for which trace is still not passed - could you please check? |
The following VssConnections constructor call still not adjusted - so there won't be SSL errors tracing for them: |
Per offline discussion, we have decided to postpone enabling SSL error tracing for these places. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, thanks!
Issue description:
Recently we saw a lot of agent SSL issues not related to the agent. Usually, we see a generic error message like the below:
We need to increase verbosity to such errors - to be able to understand the root cause more quickly.
Fix description:
As a fix, we will use ServerCertificateCustomValidationCallback to capture the SSL-related data about web requests. We will set this custom callback for every Vss connection that will be created by the pipeline agent during the runtime.
Changelog:
SslUtil
class that contains the implementation ofServerCertificateCustomValidationCallback
CreateConnection
ofVssUtil
class to setServerCertificateCustomValidationCallback
for each Vss connectionsTraceWriter
in theCreateConnection
method to be able to write SSL-related data to the agent's logExamples of logging:
Examples
Documentation changes required: No
Added unit tests: No
Attached related issue:
Checklist: