Skip to content
This repository was archived by the owner on Aug 22, 2025. It is now read-only.

Commit 345ad78

Browse files
ciroqueciroque
committed
Stop leaking certificates!!
1 parent 5c9adee commit 345ad78

File tree

1 file changed

+5
-5
lines changed

1 file changed

+5
-5
lines changed

internal/authentication/factory.go

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ func NewTlsConfig(settings *configuration.Settings) (*tls.Config, error) {
3838
}
3939

4040
func buildSelfSignedTlsConfig(certificates *certification.Certificates) (*tls.Config, error) {
41-
logrus.Debugf("authentication::buildSelfSignedTlsConfig Building self-signed TLS config, CA Secret Key(%v)", certificates.CaCertificateSecretKey)
41+
logrus.Debug("authentication::buildSelfSignedTlsConfig Building self-signed TLS config")
4242
certPool, err := buildCaCertificatePool(certificates.GetCACertificate())
4343
if err != nil {
4444
return nil, err
@@ -51,7 +51,7 @@ func buildSelfSignedTlsConfig(certificates *certification.Certificates) (*tls.Co
5151
}
5252

5353
func buildSelfSignedMtlsConfig(certificates *certification.Certificates) (*tls.Config, error) {
54-
logrus.Debugf("authentication::buildSelfSignedMtlsConfig Building self-signed mTLS config, CA Secret Key(%v), Client Certificate Key(%v)", certificates.CaCertificateSecretKey, certificates.ClientCertificateSecretKey)
54+
logrus.Debug("authentication::buildSelfSignedMtlsConfig Building self-signed mTLS config")
5555
certPool, err := buildCaCertificatePool(certificates.GetCACertificate())
5656
if err != nil {
5757
return nil, err
@@ -79,7 +79,7 @@ func buildBasicTlsConfig(skipVerify bool) *tls.Config {
7979
}
8080

8181
func buildCaTlsConfig(certificates *certification.Certificates) (*tls.Config, error) {
82-
logrus.Debugf("authentication::buildCaTlsConfig, Client Certificate Key(%v)", certificates.ClientCertificateSecretKey)
82+
logrus.Debug("authentication::buildCaTlsConfig")
8383
certificate, err := buildCertificates(certificates.GetClientCertificate())
8484
if err != nil {
8585
return nil, err
@@ -92,12 +92,12 @@ func buildCaTlsConfig(certificates *certification.Certificates) (*tls.Config, er
9292
}
9393

9494
func buildCertificates(privateKeyPEM []byte, certificatePEM []byte) (tls.Certificate, error) {
95-
logrus.Debugf("authentication::buildCertificates, Private Key(%v), Certificate(%v)", privateKeyPEM, certificatePEM)
95+
logrus.Debug("authentication::buildCertificates")
9696
return tls.X509KeyPair(certificatePEM, privateKeyPEM)
9797
}
9898

9999
func buildCaCertificatePool(caCert []byte) (*x509.CertPool, error) {
100-
logrus.Debugf("authentication::buildCaCertificatePool, CA Certificate(%v)", caCert)
100+
logrus.Debug("authentication::buildCaCertificatePool")
101101
block, _ := pem.Decode(caCert)
102102
if block == nil {
103103
return nil, fmt.Errorf("failed to decode PEM block containing CA certificate")

0 commit comments

Comments
 (0)