yuanbiao
/
emqx
1
0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8,900 Commits 393 Branches 684 Tags 74 MiB
Commit Graph

10 Commits

Author SHA1 Message Date
Thales Macedo Garitezi f08aa9f5f5 test(crl): add test case for revoke-then-refresh (v4.4) 
Investigation for https://github.com/emqx/emqx/issues/9732.

Apparently, there is no problem if a CRL is cached without
revocations, a client cert is revoked, and later the CRL is refreshed.
The test case indicates that the same client can at first connect to
the server and later is denied connection because the CRL was
refreshed.

Also, we take the opportunity in this PR to refresh the test
certificate and CRL files which would expire in June 2023.
 2023-01-12 11:12:22 -03:00
Zaiming (Stone) Shi 14ba75502f chore: update copyright year 2023-01-02 14:54:38 +01:00
Thales Macedo Garitezi 8d20c5a00c test(flaky): fix flaky test 
```
%%% emqx_crl_cache_SUITE ==> t_empty_cache: FAILED
%%% emqx_crl_cache_SUITE ==> {{badmatch,{error,econnrefused}},
 [{emqx_crl_cache_SUITE,t_empty_cache,1,
                        [{file,"/home/thales/dev/emqx/emqx2/test/emqx_crl_cache_SUITE.erl"},
                         {line,450}]},
  {test_server,ts_tc,3,[{file,"test_server.erl"},{line,1783}]},
  {test_server,run_test_case_eval1,6,[{file,"test_server.erl"},{line,1292}]},
  {test_server,run_test_case_eval,9,[{file,"test_server.erl"},{line,1224}]}]}
```
 2022-12-07 11:32:54 -03:00
Thales Macedo Garitezi 5df513f277 refactor: flatten crl_cache config namespace into root 2022-11-14 09:57:04 -03:00
Thales Macedo Garitezi 0ca7492515 feat(crl): add refresh config API 2022-11-11 12:21:03 -03:00
Thales Macedo Garitezi c9e05acb4c fix(crl): make http timeout global for all listeners 
We make the CRL HTTP timeout the same for all listeners for simplicity
of understanding and implementation.
 2022-11-11 10:50:47 -03:00
Thales Macedo Garitezi 445e176898 refactor(crl): rename `s/enable_crl_cache/enable_crl_check/g` 2022-11-10 16:26:06 -03:00
Thales Macedo Garitezi b0e8e9dc28 refactor(crl): use cast for refreshing crls 2022-11-08 13:53:27 -03:00
Thales Macedo Garitezi 26d2ed3d31 fix(crl): allow specifying CRL URLs per listener 2022-11-07 16:42:51 -03:00
Thales Macedo Garitezi af4141bef4 chore(oscp_crl): port OCSP and CRL features to CE repo (re4.4) 2022-11-03 10:10:16 -03:00