Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
MB-44361: Multiple CA support core changes and refactoring
- save ca's in a separate key in chronicle - reduce the number of cert related files (there should be only three files: chain, pkey, ca's) - use certs.tmp when loading certs in order to avoid situations where only one file of two is updated (either chain or pkey); we should make sure we update them atomicaly - don't keep node cert hash in state of ns_ssl_services_setup, in order to avoid restart of cb_dist ssl connection every time the process starts - load ca's from disk in order to avoid situation when a person with password can add their node to a cluster without having correct certs Change-Id: I41c44f5566919944f9f219b40505f257b191edbb Reviewed-on: http://review.couchbase.org/c/ns_server/+/158779 Tested-by: Timofey Barmin <timofey.barmin@couchbase.com> Reviewed-by: Artem Stemkovski <artem@couchbase.com>
- Loading branch information
1 parent
174f6ff
commit 09ff68b
Showing
9 changed files
with
611 additions
and
392 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.