NettyConnectionClient And NettyClient support SslContext rebuild when reconnect

Open iJIAJIA opened this issue 2 years ago • 0 comments

[x] I have searched the issues of this repository and believe that this is not a duplicate.
[x] I have searched the release notes of this repository and believe that this is not a duplicate.

Describe the feature

org.apache.dubbo.remoting.transport.netty4.ExtNettyConnectionClient#initBootstrap org.apache.dubbo.remoting.transport.netty4.NettyClient#initBootstrap SslContext均在ChannelInitializer外部构建初始化, 在开启MTls认证时, 客户端证书可能因为轮换或者禁用发生变更, 此时重新建连是无法使用最新的证书进行认证的. 建议将SslContext sslContext = SslContexts.buildClientSslContext(getUrl()); 迁移到ChannelInitializer内部.

Oct 17 '23 11:10 iJIAJIA