From 35d6c55633e523a6236db16697360e5b4520a855 Mon Sep 17 00:00:00 2001 From: William Yang Date: Thu, 11 May 2023 10:30:28 +0200 Subject: [PATCH] docs: fix misplaced TLS partial chain changlog --- changes/v4.4.18-en.md | 4 ---- changes/v4.4.18-zh.md | 4 ---- changes/v4.4.19-en.md | 3 +++ changes/v4.4.19-zh.md | 3 +++ 4 files changed, 6 insertions(+), 8 deletions(-) diff --git a/changes/v4.4.18-en.md b/changes/v4.4.18-en.md index 1b26c5522..bc5af67b3 100644 --- a/changes/v4.4.18-en.md +++ b/changes/v4.4.18-en.md @@ -7,8 +7,4 @@ The parameters of certain actions support using placeholder syntax to dynamically fill in the content of strings. The format of the placeholder syntax is `${key}`. Prior to the improvement, the `key` in `${key}` could only contain letters, numbers, and underscores. Now the `key` supports any UTF8 character after the improvement. -- Adds a new feature to enable partial certificate chain validation for TLS listeners[#10553](https://github.com/emqx/emqx/pull/10553). - If partial_chain is set to 'true', the last certificate in cacertfile is treated as the terminal of the certificate trust-chain. That is, the TLS handshake does not require full trust-chain, and EMQX will not try to validate the chain all the way up to the root CA. - ## Bug fixes - diff --git a/changes/v4.4.18-zh.md b/changes/v4.4.18-zh.md index 714572012..5a9e7c42a 100644 --- a/changes/v4.4.18-zh.md +++ b/changes/v4.4.18-zh.md @@ -7,9 +7,5 @@ 某些动作的参数支持使用占位符语法,来动态的填充字符串的内容,占位符语法的格式为 `${key}`。 改进前,`${key}` 中的 `key` 只能包含字母、数字和下划线。改进后 `key` 支持任意的 UTF8 字符了。 -- 增加了一个新的功能,为TLS监听器启用部分证书链验证[#10553](https://github.com/emqx/emqx/pull/10553)。 - 如果 partial_chain 设置为“true”,cacertfile 中的最后一个证书将被视为证书信任链的顶端证书。 也就是说,TLS 握手不需要完整的链,并且 EMQX 不会尝试一直验证链直到根 CA。 - - ## 修复 diff --git a/changes/v4.4.19-en.md b/changes/v4.4.19-en.md index 9501c0f9f..93f604213 100644 --- a/changes/v4.4.19-en.md +++ b/changes/v4.4.19-en.md @@ -17,6 +17,9 @@ 2023-04-20T18:10:17.205436+08:00 [error] [esockd_proxy_protocol] The listener 127.0.0.1:8883 is working in proxy protocol mode, but timed out while waiting for proxy_protocol header ``` +- Adds a new feature to enable partial certificate chain validation for TLS listeners[#10553](https://github.com/emqx/emqx/pull/10553). + If partial_chain is set to 'true', the last certificate in cacertfile is treated as the terminal of the certificate trust-chain. That is, the TLS handshake does not require full trust-chain, and EMQX will not try to validate the chain all the way up to the root CA. + ## Bug fixes - Fixed an issue where the rule engine was unable to access variables exported by `FOREACH` in the `DO` clause [#10620](https://github.com/emqx/emqx/pull/10620). diff --git a/changes/v4.4.19-zh.md b/changes/v4.4.19-zh.md index 37a54ecf2..dc5a77fac 100644 --- a/changes/v4.4.19-zh.md +++ b/changes/v4.4.19-zh.md @@ -17,6 +17,9 @@ 2023-04-20T18:10:17.205436+08:00 [error] [esockd_proxy_protocol] The listener 127.0.0.1:8883 is working in proxy protocol mode, but timed out while waiting for proxy_protocol header ``` +- 增加了一个新的功能,为 TLS 监听器启用部分证书链验证[#10553](https://github.com/emqx/emqx/pull/10553)。 + 如果 partial_chain 设置为“true”,cacertfile 中的最后一个证书将被视为证书信任链的顶端证书。 也就是说,TLS 握手不需要完整的链,并且 EMQX 不会尝试一直验证链直到根 CA。 + ## 修复 - 修复规则引擎无法在 `DO` 子句中访问 `FOREACH` 导出的变量的问题 [#10620](https://github.com/emqx/emqx/pull/10620)。