Skip to content

Commit 05d7812

Browse files
kfaseelakfaseela
authored
Clarify filemounted crl usage (#3331)
Signed-off-by: Faseela K <[email protected]>
1 parent 2ee8e3c commit 05d7812

File tree

3 files changed

+6
-3
lines changed

3 files changed

+6
-3
lines changed

networking/v1alpha3/destination_rule.pb.go

Lines changed: 2 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1alpha3/destination_rule.pb.html

Lines changed: 2 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1alpha3/destination_rule.proto

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -923,7 +923,8 @@ message ClientTLSSettings {
923923
// to use in verifying a presented server certificate. `CRL` is a list of certificates
924924
// that have been revoked by the CA (Certificate Authority) before their scheduled expiration date.
925925
// If specified, the proxy will verify if the presented certificate is part of the revoked list of certificates.
926-
// If omitted, the proxy will not verify the certificate against the `crl`.
926+
// If omitted, the proxy will not verify the certificate against the `crl`. Note that if `credentialName` is set,
927+
// `CRL` cannot be specified using `caCrl`, rather it has to be specified inside the credential.
927928
string ca_crl = 9;
928929
}
929930

0 commit comments

Comments
 (0)