bmcweb icon indicating copy to clipboard operation
bmcweb copied to clipboard

Published 20 hours ago verified publisher icon openbmc

Replacing/deleting CA certificate doesn't close https connections made based on that CA certificate

Open zlukwins opened this issue 5 years ago • 1 comments

Issue is about https connections made based on CA certificate are not closed when CA certificate is replaced or deleted. Step to reproduce:

  1. Install CA certificate (mTLS).
  2. Create (and keep alive) https connection based on installed CA certificate.
  3. Delete CA certificate installed in first step.
  4. Check if connection created in the second step is valid/active.

Current result: Connection is still valid/active

Expected result: Connection was closed.

zlukwins avatar Nov 12 '19 21:11 zlukwins

Unclear if this was the intended behavior or not, so I've marked as both a bug and an enhancement. So far as I'm aware, this would be the only place where we shutdown a session because of an authentication change, but we could certainly make that a new behavior.

edtanous avatar Oct 19 '20 16:10 edtanous

No progress in 3 years. Clearly this isn't required. Closing.

edtanous avatar Feb 10 '23 20:02 edtanous