CL-Softwares
/
telegraf
8
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix(outputs.quix): Allow empty certificate for new cloud managed instances (#16857)

This commit is contained in:
tomas-quix 2025-04-24 18:03:46 +02:00 committed by GitHub
parent 3feca5650f
commit 16610ce351
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 10 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
plugins/outputs/quix/quix.go
View File

@ -109,13 +109,17 @@ func (q *Quix) Connect() error {
return fmt.Errorf("unsupported SASL mechanism: %s", quixConfig.SaslMechanism) return fmt.Errorf("unsupported SASL mechanism: %s", quixConfig.SaslMechanism)
} }
// Certificate cfg.Net.TLS.Enable = true
// Add the CA certificate sent by the server if there is any. Newer cloud
// instances do not need this and we can go with the system certificates.
if len(quixConfig.cert) > 0 {
certPool := x509.NewCertPool() certPool := x509.NewCertPool()
if !certPool.AppendCertsFromPEM(quixConfig.cert) { if !certPool.AppendCertsFromPEM(quixConfig.cert) {
return errors.New("appending CA cert to pool failed") return errors.New("appending CA cert to pool failed")
} }
cfg.Net.TLS.Enable = true
cfg.Net.TLS.Config = &tls.Config{RootCAs: certPool} cfg.Net.TLS.Config = &tls.Config{RootCAs: certPool}
}
case "PLAINTEXT": case "PLAINTEXT":
// No additional configuration required for plaintext communication // No additional configuration required for plaintext communication
default: default: