4 yıl önce · 085d8e8efa
--- a/apps/emqx/src/emqx_schema.erl
+++ b/apps/emqx/src/emqx_schema.erl
@@ -939,9 +939,9 @@ ssl(Defaults) ->
 
				        sc(boolean(),
			
 
				           #{ default => Df("secure_renegotiate", true)
			
 
				            , desc => """
			
 
				-SSL parameter renegotiation is a feature that allows a client and a server
			
 
				-to renegotiate the parameters of the SSL connection on the fly.
			
 
				-RFC 5746 defines a more secure way of doing this. By enabling secure renegotiation,
			
 
				+SSL parameter renegotiation is a feature that allows a client and a server 
			
 
				+to renegotiate the parameters of the SSL connection on the fly. 
			
 
				+RFC 5746 defines a more secure way of doing this. By enabling secure renegotiation, 
			
 
				 you drop support for the insecure renegotiation, prone to MitM attacks.
			
 
				 """
			
 
				            })
			
@@ -950,13 +950,13 @@ you drop support for the insecure renegotiation, prone to MitM attacks.
 
				        sc(boolean(),
			
 
				           #{ default => Df("client_renegotiation", true)
			
 
				            , desc => """
			
 
				-In protocols that support client-initiated renegotiation,
			
 
				-the cost of resources of such an operation is higher for the server than the client.
			
 
				-This can act as a vector for denial of service attacks.
			
 
				-The SSL application already takes measures to counter-act such attempts,
			
 
				-but client-initiated renegotiation can be strictly disabled by setting this option to false.
			
 
				-The default value is true. Note that disabling renegotiation can result in
			
 
				-long-lived connections becoming unusable due to limits on
			
 
				+In protocols that support client-initiated renegotiation, 
			
 
				+the cost of resources of such an operation is higher for the server than the client. 
			
 
				+This can act as a vector for denial of service attacks. 
			
 
				+The SSL application already takes measures to counter-act such attempts, 
			
 
				+but client-initiated renegotiation can be strictly disabled by setting this option to false. 
			
 
				+The default value is true. Note that disabling renegotiation can result in 
			
 
				+long-lived connections becoming unusable due to limits on 
			
 
				 the number of messages the underlying cipher suite can encipher.
			
 
				 """
			
 
				            })
			
--- a/apps/emqx_dashboard/src/emqx_swagger_util.erl
+++ b/apps/emqx_dashboard/src/emqx_swagger_util.erl
@@ -0,0 +1,13 @@
 
				+%%%-------------------------------------------------------------------
			
 
				+%%% @author zhongwen
			
 
				+%%% @copyright (C) 2021, <COMPANY>
			
 
				+%%% @doc
			
 
				+%%%
			
 
				+%%% @end
			
 
				+%%% Created : 22. 9月 2021 13:38
			
 
				+%%%-------------------------------------------------------------------
			
 
				+-module(emqx_swagger_util).
			
 
				+-author("zhongwen").
			
 
				+
			
 
				+%% API
			
 
				+-export([]).