Only decode certificates if HTTP GET is successful (!4281) · Merge requests · GitLab.org / gitlab-runner

Stan Hu requested to merge sh-check-status-code-resolver into main Aug 09, 2023

Previously when the Runner attempted to resolve the full TLS chain, it fetched URLs from the certificate chain without paying attention to the HTTP status code. This could cause the Runner to decode a bogus payload if the endpoint were blocked or down.

Relates to #36319 (closed)

Edited Aug 09, 2023 by Stan Hu

Only decode certificates if HTTP GET is successful

Merge request reports