on my program startup I setup my jdk provider by 'Security.addProvider(new BouncyCastleFipsProvider());' I use it in the Grpc client by '''SslContextBuilder sslContextBuilder = SslContextBuilder.forClient() .sslProvider(SslProvider.JDK) .applicationProtocolConfig(new ApplicationProtocolConfig( ApplicationProtocolConfig.Protocol.ALPN, ApplicationProtocolConfig.SelectorFailureBehavior.NO_ADVERTISE, ApplicationProtocolConfig.SelectedListenerFailureBehavior.ACCEPT, Collections.singletonList("h2")));''' When trying to establish the connection, After successful ssl handshake I get:
Failed ALPN negotiation: Unable to find compatible protocol using io.grpc 1.44 version + bc-fips.jar 1.0.2 version. Running by java 11.0.15 compiled by jdk1.8.0_291.jdk. It looks like BouncyCastleFipsProvider, by its SSLParamertesUtil class, somehow remove the "h2" from the suggested application protocols list. increasing grpc version to 1.46 didn't help any suggestions please? Thanks.
Aucun commentaire:
Enregistrer un commentaire