docs: changelog for TLS listener partial certificate chain validation
This commit is contained in:
William Yang
parent
ea35b20035
commit
11c8e937b4
|
|
@ -7,4 +7,9 @@
|
|||
The parameters of certain actions support using placeholder syntax to dynamically fill in the content of strings. The format of the placeholder syntax is `${key}`.
|
||||
Prior to the improvement, the `key` in `${key}` could only contain letters, numbers, and underscores. Now the `key` supports any UTF8 character after the improvement.
|
||||
|
||||
- Adds a new feature to enable partial certificate chain validation for TLS listeners[#10553](https://github.com/emqx/emqx/pull/10553).
|
||||
If TLS listener has `partial_chain` set to `cacert_from_cacertfile`,
|
||||
the certificate in the `cacertfile` will be used as the `cacert` for chain path validation. If the `cacertfile` has a chain of certificates, the cert at the end of the file will be used as the `cacert` for path validation.
|
||||
|
||||
## Bug fixes
|
||||
|
||||
|
|
|
|||
|
|
@ -7,5 +7,9 @@
|
|||
某些动作的参数支持使用占位符语法,来动态的填充字符串的内容,占位符语法的格式为 `${key}`。
|
||||
改进前,`${key}` 中的 `key` 只能包含字母、数字和下划线。改进后 `key` 支持任意的 UTF8 字符了。
|
||||
|
||||
- 增加了一个新的功能,为TLS监听器启用部分证书链验证[#10553](https://github.com/emqx/emqx/pull/10553)。
|
||||
如果TLS监听器的 `partial_chain` 设置为 `cacert_from_cacertfile`,
|
||||
`cacertfile` 中的证书将被用作链式路径验证的 `cacert` 。如果 `cacertfile` 文件有一连串的证书,文件末尾的证书将被用作路径验证的 `cacert`。
|
||||
|
||||
## 修复
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue