[CORDA-2701] Ensure crlCheckSoftFail config option is respected (#4854)

* Plumb through the crlCheckSoftFail configuration option to bridge manager * Add crlCheckSoftFail test to bridge manager and fix equivalent proton wrapper test * Update documentation and set the node configuration default to true * Revert default change and clarify consequences of setting option to false * Remove NodeConfiguration default to leave only AMQPConfiguration default
2025-06-13 04:38:19 +00:00 · 2019-03-08 16:23:07 +00:00
parent 65e7886168
commit b3b184c93e
6 changed files with 58 additions and 17 deletions
--- a/node-api/src/main/kotlin/net/corda/nodeapi/internal/bridging/AMQPBridgeManager.kt
+++ b/node-api/src/main/kotlin/net/corda/nodeapi/internal/bridging/AMQPBridgeManager.kt
@ -34,7 +34,9 @@ import kotlin.concurrent.withLock
 *  The Netty thread pool used by the AMQPBridges is also shared and managed by the AMQPBridgeManager.
 */
@VisibleForTesting
-class AMQPBridgeManager(config: MutualSslConfiguration, maxMessageSize: Int,
+class AMQPBridgeManager(config: MutualSslConfiguration,
+                        maxMessageSize: Int,
+                        crlCheckSoftFail: Boolean,
                        private val artemisMessageClientFactory: () -> ArtemisSessionProvider,
                        private val bridgeMetricsService: BridgeMetricsService? = null) : BridgeManager {

@ -43,15 +45,19 @@ class AMQPBridgeManager(config: MutualSslConfiguration, maxMessageSize: Int,

    private class AMQPConfigurationImpl private constructor(override val keyStore: CertificateStore,
                                                            override val trustStore: CertificateStore,
-                                                            override val maxMessageSize: Int) : AMQPConfiguration {
-        constructor(config: MutualSslConfiguration, maxMessageSize: Int) : this(config.keyStore.get(), config.trustStore.get(), maxMessageSize)
+                                                            override val maxMessageSize: Int,
+                                                            override val crlCheckSoftFail: Boolean) : AMQPConfiguration {
+        constructor(config: MutualSslConfiguration, maxMessageSize: Int, crlCheckSoftFail: Boolean) : this(config.keyStore.get(), config.trustStore.get(), maxMessageSize, crlCheckSoftFail)
    }

-    private val amqpConfig: AMQPConfiguration = AMQPConfigurationImpl(config, maxMessageSize)
+    private val amqpConfig: AMQPConfiguration = AMQPConfigurationImpl(config, maxMessageSize, crlCheckSoftFail)
    private var sharedEventLoopGroup: EventLoopGroup? = null
    private var artemis: ArtemisSessionProvider? = null

-    constructor(config: MutualSslConfiguration, p2pAddress: NetworkHostAndPort, maxMessageSize: Int) : this(config, maxMessageSize, { ArtemisMessagingClient(config, p2pAddress, maxMessageSize) })
+    constructor(config: MutualSslConfiguration,
+                p2pAddress: NetworkHostAndPort,
+                maxMessageSize: Int,
+                crlCheckSoftFail: Boolean) : this(config, maxMessageSize, crlCheckSoftFail, { ArtemisMessagingClient(config, p2pAddress, maxMessageSize) })

    companion object {
        private const val NUM_BRIDGE_THREADS = 0 // Default sized pool
--- a/node-api/src/main/kotlin/net/corda/nodeapi/internal/bridging/BridgeControlListener.kt
+++ b/node-api/src/main/kotlin/net/corda/nodeapi/internal/bridging/BridgeControlListener.kt
@ -20,18 +20,24 @@ import java.util.*

 class BridgeControlListener(val config: MutualSslConfiguration,
                            maxMessageSize: Int,
+                            crlCheckSoftFail: Boolean,
                            private val artemisMessageClientFactory: () -> ArtemisSessionProvider,
                            bridgeMetricsService: BridgeMetricsService? = null) : AutoCloseable {
    private val bridgeId: String = UUID.randomUUID().toString()
-    private val bridgeManager: BridgeManager = AMQPBridgeManager(config, maxMessageSize,
-            artemisMessageClientFactory, bridgeMetricsService)
+    private val bridgeManager: BridgeManager = AMQPBridgeManager(
+            config,
+            maxMessageSize,
+            crlCheckSoftFail,
+            artemisMessageClientFactory,
+            bridgeMetricsService)
    private val validInboundQueues = mutableSetOf<String>()
    private var artemis: ArtemisSessionProvider? = null
    private var controlConsumer: ClientConsumer? = null

    constructor(config: MutualSslConfiguration,
                p2pAddress: NetworkHostAndPort,
-                maxMessageSize: Int) : this(config, maxMessageSize, { ArtemisMessagingClient(config, p2pAddress, maxMessageSize) })
+                maxMessageSize: Int,
+                crlCheckSoftFail: Boolean) : this(config, maxMessageSize, crlCheckSoftFail, { ArtemisMessagingClient(config, p2pAddress, maxMessageSize) })

    companion object {
        private val log = contextLogger()