netty5

History

Norman Maurer bd8a337e99 Propagate SSLException to the Http2StreamChannels (#11023 ) Motivation: When TLSv1.3 is used (or TLS_FALSE_START) together with mTLS the handshake is considered successful before the server actually did verify the key material that was provided by the client. If the verification fails we currently will just close the stream without any extra information which makes it very hard to debug on the client side. Modifications: - Propagate SSLExceptions to the active streams - Add unit test Result: Better visibility into why a stream was closed	2021-02-19 08:09:22 +01:00
..
src	Propagate SSLException to the Http2StreamChannels (#11023 )	2021-02-19 08:09:22 +01:00
pom.xml	Propagate SSLException to the Http2StreamChannels (#11023 )	2021-02-19 08:09:22 +01:00

Propagate SSLException to the Http2StreamChannels (#11023 )

Motivation:

When TLSv1.3 is used (or TLS_FALSE_START) together with mTLS the handshake is considered successful before the server actually did verify the key material that was provided by the client. If the verification fails we currently will just close the stream without any extra information which makes it very hard to debug on the client side.

Modifications:

- Propagate SSLExceptions to the active streams
- Add unit test

Result:

Better visibility into why a stream was closed

2021-02-19 08:09:22 +01:00

src

Propagate SSLException to the Http2StreamChannels (#11023 )

2021-02-19 08:09:22 +01:00

pom.xml

Propagate SSLException to the Http2StreamChannels (#11023 )

2021-02-19 08:09:22 +01:00