You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Andriy Redko (Jira)" <ji...@apache.org> on 2022/03/09 22:41:00 UTC
[jira] [Updated] (CXF-8674) Custom SSLContext using async http-client5 does not work
[ https://issues.apache.org/jira/browse/CXF-8674?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Andriy Redko updated CXF-8674:
------------------------------
Affects Version/s: 3.5.1
(was: 3.5.0)
> Custom SSLContext using async http-client5 does not work
> --------------------------------------------------------
>
> Key: CXF-8674
> URL: https://issues.apache.org/jira/browse/CXF-8674
> Project: CXF
> Issue Type: Bug
> Components: Transports
> Affects Versions: 3.4.6, 3.5.1
> Reporter: Fernando Soares Carnevale Ito
> Priority: Major
> Fix For: 3.5.2, 3.4.7, 4.0.0
>
>
> AsyncHTTPConduit configures httpclient5 tlsstrategy [here|https://github.com/apache/cxf/blob/7b144c6ee38c3883ec031ad0cc32d122824b42b5/rt/transports/http-hc5/src/main/java/org/apache/cxf/transport/http/asyncclient/hc5/AsyncHTTPConduit.java#L541]
> however this configuration is actually never used. Instead, the http-client5 is always built using the system default TlsStrategy [here|https://github.com/apache/cxf/blob/7b144c6ee38c3883ec031ad0cc32d122824b42b5/rt/transports/http-hc5/src/main/java/org/apache/cxf/transport/http/asyncclient/hc5/AsyncHTTPConduitFactory.java#L303]
> The result is that custom SSLContext configured in the httpconduit is not honored.
> The current workaround is to keep using cxf-rt-transports-http-hc, or force using the sync httpclient.
> I did a quick test propagating the RegistryBuilder<TlsStrategy> built at AsyncHTTPConduit up until the httpclient is built and the custom SSLContext started being used.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)