HTHou opened a new pull request, #1462: URL: https://github.com/apache/ratis/pull/1462
## What changed This patch makes gRPC TLS settings configurable through `RaftProperties`: - Netty SSL provider - JSSE provider name - enabled TLS/TLCP protocols - enabled cipher suites It also allows generic JSSE providers, such as KonaSSL, to be used with Netty's JDK `SslContext` path and ALPN `h2`. ## Why Ratis currently hardcodes most gRPC TLS behavior around Netty's defaults. Deployments that need custom JSSE providers or non-default protocol/cipher suites cannot configure them without code changes. ## Validation ```bash ./mvnw -pl ratis-grpc -Dtest=TestGrpcTlsConfig test ./mvnw -pl ratis-grpc checkstyle:check ./mvnw -pl ratis-grpc install -DskipTests ``` I also ran a local KonaSSL smoke test with `TLCPv1.1`, `TLCP_ECC_SM4_GCM_SM3`, and ALPN `h2`. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
