The GitHub Actions job "Pull Requests" on pekko.git/fix/tls-hostname-3161 has 
failed.
Run started by GitHub user He-Pin (triggered by He-Pin).

Head commit for run:
a912ffbaadfbcd7b94909b5c8b9d7e3856471892 / 虎鸣 <[email protected]>
fix: harden classic remoting hostname verification

Motivation:
Classic remoting hostname verification must fail closed when a custom or 
no-host SSLEngineProvider path cannot provide peer host information.

Modification:
Make the hostname-aware SSLEngineProvider overload fail fast by default, 
require peer host information in ConfigSSLEngineProvider when verification is 
enabled, document the new overload as @since 1.7.0, and add focused tests for 
default, no-host, and custom provider paths.

Result:
Enabling hostname verification no longer silently falls back to a non-verifying 
client engine, and the reference.conf default is covered by tests.

Tests:
- scalafmt --mode diff-ref=origin/main / passed (JDK Unsafe deprecation warning 
only)
- scalafmt --list --mode diff-ref=origin/main / passed, no files listed (JDK 
Unsafe deprecation warning only)
- git diff --check / passed
- remote / Test / testOnly org.apache.pekko.remote.Ticket1978ConfigSpec / 
passed, 5 tests
- remote / Test / testOnly org.apache.pekko.remote.RemoteConfigSpec / passed, 6 
tests
- remote / Test / testOnly 
org.apache.pekko.remote.Ticket1978DefaultRNGSecureSpec / command succeeded, 
test pending because cipher unsupported on Java 25
- remote / mimaReportBinaryIssues / passed
- qodercli stdout review / no must-fix findings

References:
Refs #3161, Refs #3164

Report URL: https://github.com/apache/pekko/actions/runs/28106398556

With regards,
GitHub Actions via GitBox


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to