[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
[mosquitto-dev] Client certificate expiration handling
|
Hello,
I'd like to ask how the certificates and its expiration is handled in mosquitto.
Does the mosquitto watch changes on certificate files defined in mosquitto.config?
How are the cert files handled by mosquitto? Are they loaded to the memory at the start of mosquitto and the physical files are not considered any longer (until the mosquitto is restarted)?
e.g.
Let's say I have a valid certificates (today is 13/1/2000 and 'certfile' and 'keyfile' will expire on 15/1/2000) defined in mosquitto.config file:
...
cafile /path/certs/ca.pem
certfile /path/certs/server-certfile .crt
keyfile /path/certs/server-keyfile.key
...
Now I create a mqtt client and subscribe him to some topic. Data is coming.
On 15/1/2000 new certificates (with expiration to 20/1/2000) are uploaded to /path/certs/ (/path/certs/server-certfile .crt, keyfile /path/certs/server-keyfile.key).
What will happened to running client on 15/1/2000? Does he stop getting data (since he is using expired certs)?
Do I need to restart mosquitto, so the new certificates are considered?
Is there another way of how to tell mosquitto that certificate files were changed?
Thanks in advance,
Carrot Hunter
