Commit78a64f4

committed

Drop NettySslPackageAccessor,closeAsyncHttpClient#1382

Motivation:* mess up with provided SslContext* crash when netty and ahc are in different classloadersModifications:* Drop NettySslPackageAccessor* Revert to empty conf to use Netty default behavior (only Nettyrecommended ciphers are available by default)Result:Don’t override provided SslContext behavior.No more crash when netty and ahc sits in different classloaders

1 parentcec67cf commit78a64f4Copy full SHA for 78a64f4

File tree

6 files changed

+24

-46

lines changed

client/src/main
- java
  - io/netty/handler/ssl
    - NettySslPackageAccessor.java
  - org/asynchttpclient
    - config
      - AsyncHttpClientConfigDefaults.java
      - AsyncHttpClientConfigHelper.java
    - netty/ssl
      - DefaultSslEngineFactory.java
      - SslEngineFactoryBase.java
- resources
  - ahc-default.properties

6 files changed

+24

-46

lines changed

`‎client/src/main/java/io/netty/handler/ssl/NettySslPackageAccessor.java‎`

Lines changed: 0 additions & 26 deletions

This file was deleted.

`‎client/src/main/java/org/asynchttpclient/config/AsyncHttpClientConfigDefaults.java‎`

Lines changed: 1 addition & 7 deletions

Original file line number	Diff line number	Diff line change
`@@ -12,10 +12,6 @@`
`12`	`12`	`*/`
`13`	`13`	`packageorg.asynchttpclient.config;`
`14`	`14`
`15`		`-importio.netty.handler.ssl.NettySslPackageAccessor;`
`16`		`-`
`17`		`-importjava.util.Arrays;`
`18`		`-importjava.util.Set;`
`19`	`15`
`20`	`16`	`publicfinalclassAsyncHttpClientConfigDefaults {`
`21`	`17`
`@@ -81,9 +77,7 @@ public static String[] defaultEnabledProtocols() {`
`81`	`77`	`}`
`82`	`78`
`83`	`79`	`publicstaticString[]defaultEnabledCipherSuites() {`
`84`		`-String[]defaultEnabledCipherSuites =AsyncHttpClientConfigHelper.getAsyncHttpClientConfig().getStringArray(ASYNC_CLIENT_CONFIG_ROOT +"enabledCipherSuites");`
`85`		`-Set<String>supportedCipherSuites =NettySslPackageAccessor.jdkSupportedCipherSuites();`
`86`		`-returnArrays.stream(defaultEnabledCipherSuites).filter(supportedCipherSuites::contains).toArray(String[]::new);`
	`80`	`+returnAsyncHttpClientConfigHelper.getAsyncHttpClientConfig().getStringArray(ASYNC_CLIENT_CONFIG_ROOT +"enabledCipherSuites");`
`87`	`81`	`}`
`88`	`82`
`89`	`83`	`publicstaticbooleandefaultUseProxySelector() {`

`‎client/src/main/java/org/asynchttpclient/config/AsyncHttpClientConfigHelper.java‎`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -94,6 +94,10 @@ public String getString(String key) {`
`94`	`94`
`95`	`95`	`publicString[]getStringArray(Stringkey) {`
`96`	`96`	`Strings =getString(key);`
	`97`	`+s =s.trim();`
	`98`	`+if (s.isEmpty()) {`
	`99`	`+returnnull;`
	`100`	`+ }`
`97`	`101`	`String[]rawArray =s.split(",");`
`98`	`102`	`String[]array =newString[rawArray.length];`
`99`	`103`	`for (inti =0;i <rawArray.length;i++)`

`‎client/src/main/java/org/asynchttpclient/netty/ssl/DefaultSslEngineFactory.java‎`

Lines changed: 18 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -13,11 +13,15 @@`
`13`	`13`	`*/`
`14`	`14`	`packageorg.asynchttpclient.netty.ssl;`
`15`	`15`
	`16`	`+importstaticorg.asynchttpclient.util.MiscUtils.*;`
	`17`	`+`
`16`	`18`	`importio.netty.buffer.ByteBufAllocator;`
`17`	`19`	`importio.netty.handler.ssl.SslContext;`
`18`	`20`	`importio.netty.handler.ssl.SslContextBuilder;`
`19`	`21`	`importio.netty.handler.ssl.SslProvider;`
`20`	`22`
	`23`	`+importjava.util.Arrays;`
	`24`	`+`
`21`	`25`	`importjavax.net.ssl.SSLEngine;`
`22`	`26`	`importjavax.net.ssl.SSLException;`
`23`	`27`
`@@ -28,16 +32,26 @@ public class DefaultSslEngineFactory extends SslEngineFactoryBase {`
`28`	`32`	`privatevolatileSslContextsslContext;`
`29`	`33`
`30`	`34`	`privateSslContextbuildSslContext(AsyncHttpClientConfigconfig)throwsSSLException {`
`31`		`-if (config.getSslContext() !=null)`
	`35`	`+if (config.getSslContext() !=null) {`
`32`	`36`	`returnconfig.getSslContext();`
	`37`	`+ }`
`33`	`38`
`34`	`39`	`SslContextBuildersslContextBuilder =SslContextBuilder.forClient()//`
`35`	`40`	`.sslProvider(config.isUseOpenSsl() ?SslProvider.OPENSSL :SslProvider.JDK)//`
`36`	`41`	`.sessionCacheSize(config.getSslSessionCacheSize())//`
`37`	`42`	`.sessionTimeout(config.getSslSessionTimeout());`
`38`	`43`
`39`		`-if (config.isAcceptAnyCertificate())`
	`44`	`+if (isNonEmpty(config.getEnabledProtocols())) {`
	`45`	`+sslContextBuilder.protocols(config.getEnabledProtocols());`
	`46`	`+ }`
	`47`	`+`
	`48`	`+if (isNonEmpty(config.getEnabledCipherSuites())) {`
	`49`	`+sslContextBuilder.ciphers(Arrays.asList(config.getEnabledCipherSuites()));`
	`50`	`+ }`
	`51`	`+`
	`52`	`+if (config.isAcceptAnyCertificate()) {`
`40`	`53`	`sslContextBuilder.trustManager(InsecureTrustManagerFactory.INSTANCE);`
	`54`	`+ }`
`41`	`55`
`42`	`56`	`returnconfigureSslContextBuilder(sslContextBuilder).build();`
`43`	`57`	`}`
`@@ -56,8 +70,8 @@ public void init(AsyncHttpClientConfig config) throws SSLException {`
`56`	`70`	`}`
`57`	`71`
`58`	`72`	`/**`
`59`		`- * The last step of configuring the SslContextBuilder used to create an SslContext when no context is provided in`
`60`		`- *the {@link AsyncHttpClientConfig}. This defaults to no-op andis intended to be overridden as needed.`
	`73`	`+ * The last step of configuring the SslContextBuilder used to create an SslContext when no context is provided in the {@link AsyncHttpClientConfig}. This defaults to no-op and`
	`74`	`+ * is intended to be overridden as needed.`
`61`	`75`	`*`
`62`	`76`	`* @param builder builder with normal configuration applied`
`63`	`77`	`* @return builder to be used to build context (can be the same object as the input)`

`‎client/src/main/java/org/asynchttpclient/netty/ssl/SslEngineFactoryBase.java‎`

Lines changed: 0 additions & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -13,8 +13,6 @@`
`13`	`13`	`*/`
`14`	`14`	`packageorg.asynchttpclient.netty.ssl;`
`15`	`15`
`16`		`-importstaticorg.asynchttpclient.util.MiscUtils.isNonEmpty;`
`17`		`-`
`18`	`16`	`importjavax.net.ssl.SSLEngine;`
`19`	`17`	`importjavax.net.ssl.SSLParameters;`
`20`	`18`
`@@ -28,11 +26,5 @@ protected void configureSslEngine(SSLEngine sslEngine, AsyncHttpClientConfig con`
`28`	`26`	`SSLParametersparams =sslEngine.getSSLParameters();`
`29`	`27`	`params.setEndpointIdentificationAlgorithm("HTTPS");`
`30`	`28`	`sslEngine.setSSLParameters(params);`
`31`		`-`
`32`		`-if (isNonEmpty(config.getEnabledProtocols()))`
`33`		`-sslEngine.setEnabledProtocols(config.getEnabledProtocols());`
`34`		`-`
`35`		`-if (isNonEmpty(config.getEnabledCipherSuites()))`
`36`		`-sslEngine.setEnabledCipherSuites(config.getEnabledCipherSuites());`
`37`	`29`	`}`
`38`	`30`	`}`

`‎client/src/main/resources/ahc-default.properties‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,7 @@ org.asynchttpclient.maxRedirects=5`
`12`	`12`	`org.asynchttpclient.compressionEnforced=false`
`13`	`13`	`org.asynchttpclient.userAgent=AHC/2.0`
`14`	`14`	`org.asynchttpclient.enabledProtocols=TLSv1.2, TLSv1.1, TLSv1`
`15`		`-org.asynchttpclient.enabledCipherSuites=TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_128_GCM_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA`
	`15`	`+org.asynchttpclient.enabledCipherSuites=`
`16`	`16`	`org.asynchttpclient.useProxySelector=false`
`17`	`17`	`org.asynchttpclient.useProxyProperties=false`
`18`	`18`	`org.asynchttpclient.validateResponseHeaders=true`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit78a64f4

File tree

6 files changed

6 files changed

`‎client/src/main/java/io/netty/handler/ssl/NettySslPackageAccessor.java‎`

`‎client/src/main/java/org/asynchttpclient/config/AsyncHttpClientConfigDefaults.java‎`

`‎client/src/main/java/org/asynchttpclient/config/AsyncHttpClientConfigHelper.java‎`

`‎client/src/main/java/org/asynchttpclient/netty/ssl/DefaultSslEngineFactory.java‎`

`‎client/src/main/java/org/asynchttpclient/netty/ssl/SslEngineFactoryBase.java‎`

`‎client/src/main/resources/ahc-default.properties‎`

0 commit comments