The node rejects incoming P2P connection from node with revoked certificate but does not block any future attempts to re-establish it.

Description

During new feature testing introduced in https://r3-cev.atlassian.net/browse/ENT-4912 we have observed that the node rejects(with warnings and errors) incoming P2P connection from node with revoked certificate but does not block any future attempts to re-establish it. As a result, this leads to fast growing of number of errors and warnings in the node log, since the node with the revoked certificate is constantly trying to reconnect to it with time interval approximately is equal to 1 second.

Extract from log:

Logs attached.

 

Assignee

Denis Rekalov

Reporter

Alexey Panfilov

Labels

None

Sprint

None

Epic Link

None

Priority

Medium

Engineering Teams

Kernel

Fix versions

Affects versions

Ported to...

None

Story Points / Dev Days

None

Build cut

None

Feature Team

Kernel Group
Configure