Strona główna Odkrywaj Pomoc
Zaloguj się
kennyh
/
emqx4.3
1
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Przeglądaj źródła

fix(quic): environment variables as cert file prefix for quic listener

Zaiming (Stone) Shi 2 lat temu
rodzic
4215da12f0
commit
9f135d1f2b
3 zmienionych plików z 12 dodań i 5 usunięć
Widok podzielony Pokaż statystyki zmian
  1. 6 4
      apps/emqx/src/emqx_listeners.erl
  2. 3 1
      apps/emqx/src/emqx_schema.erl
  3. 3 0
      changes/ee/fix-11006.en.md

+ 6 - 4
apps/emqx/src/emqx_listeners.erl
Wyświetl plik 

@@ -423,8 +423,8 @@ do_start_listener(quic, ListenerName, #{bind := Bind} = Opts) ->
 
             ),
 
             ListenOpts =
 
                 [
 
-                    {certfile, str(maps:get(certfile, SSLOpts))},
 
-                    {keyfile, str(maps:get(keyfile, SSLOpts))},
 
+                    {certfile, emqx_schema:naive_env_interpolation(maps:get(certfile, SSLOpts))},
 
+                    {keyfile, emqx_schema:naive_env_interpolation(maps:get(keyfile, SSLOpts))},
 
                     {alpn, ["mqtt"]},
 
                     {conn_acceptors, lists:max([DefAcceptors, maps:get(acceptors, Opts, 0)])},
 
                     {keep_alive_interval_ms, maps:get(keep_alive_interval, Opts, 0)},
 
@@ -434,8 +434,10 @@ do_start_listener(quic, ListenerName, #{bind := Bind} = Opts) ->
 
                     {verify, maps:get(verify, SSLOpts, verify_none)}
 
                 ] ++
 
                     case maps:get(cacertfile, SSLOpts, undefined) of
 
-                        undefined -> [];
 
-                        CaCertFile -> [{cacertfile, str(CaCertFile)}]
 
+                        undefined ->
 
+                            [];
 
+                        CaCertFile ->
 
+                            [{cacertfile, emqx_schema:naive_env_interpolation(CaCertFile)}]
 
                     end ++
 
                     case maps:get(password, SSLOpts, undefined) of
 
                         undefined -> [];

+ 3 - 1
apps/emqx/src/emqx_schema.erl
Wyświetl plik 

@@ -1435,7 +1435,9 @@ fields("listener_quic_ssl_opts") ->
 
                 true ->
 
                     {Name, Schema};
 
                 false ->
 
-                    {Name, Schema#{deprecated => {since, "5.0.20"}}}
 
+                    {Name, Schema#{
 
+                        deprecated => {since, "5.0.20"}, importance => ?IMPORTANCE_HIDDEN
 
+                    }}
 
             end
 
         end,
 
         Schema1

+ 3 - 0
changes/ee/fix-11006.en.md
Wyświetl plik 

@@ -0,0 +1,3 @@
 
+Fix QUIC listeners's default cert file paths.
 
+
 
+Prior to this change, the default cert file paths are prefixed with environment variable `${EMQX_ETC_DIR}` which were not interpolated before used in QUIC listeners.