TLS certificate verification doesn't always work as expected
See original GitHub issueArtillery does not always recognize valid TLS certificates. For example:
$ artillery quick -d 10 -r 5 https://artillery.io
Scenarios launched: 49
Scenarios completed: 0
Number of requests made: 0
RPS: 4.73
Request latency:
min: Infinity
max: -Infinity
median: NaN
p95: NaN
p99: NaN
Scenario duration:
min: Infinity
max: -Infinity
median: NaN
p95: NaN
p99: NaN
Errors:
UNABLE_TO_VERIFY_LEAF_SIGNATURE: 49
The issue is that Node.js uses its own certificate bundle, which does not include many CAs. To fix, a custom bundle needs to be used by the HTTP engine.
Issue Analytics
- State:
- Created 8 years ago
- Comments:13 (6 by maintainers)
Top Results From Across the Web
SSL/TLS client certificate authentication does not work in ...
Fixes an issue in which the SSL/TLS client certificate authentication no longer works after a certain operation is performed.
Read more >Common SSL Certificate Errors and How to Fix Them
The reason SSL/TLS certificates have a maximum validity (and this one being cut short repeatedly) is an effort to ensure that keys are...
Read more >1957633 – Cannot accept SSL/TLS certificate
One of the most common errors is a self-signed > certificate, which can be "accepted" by the user. I don't think you should...
Read more >A Simple Explanation of SSL Certificate Errors & How to Fix ...
1. SSL Certificate Not Trusted Error. This error indicates that the SSL certificate is signed or approved by a company that the browser...
Read more >Missing TLS certificate verification in Faye - The If Works
This method does not implement certificate verification by default, meaning that it does not check that the server presents a valid and trusted ......
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
@vineyugave you can use
-k
flag to turn off certificate validation, like so:artillery run -k myscript.json
@hassy thanks a ton… that saved my day …