Lari Hotari
Lari Hotari
@dao-jun To speed up the review, I pushed the changes for adding a configuration parameter `managedLedgerCursorResetLedgerCloseTimestampMaxClockSkewMillis` and logic to handle it. That was something that I was concerned about. Do...
@dao-jun There's a bug report that might be related to this change. Do you have a chance to check #23910? Thanks
answered in https://github.com/netty/netty/issues/14087#issuecomment-2140991370
@deepak-chhetri to investigate the problem and suggest a proper solution, it could be helpful to also share the output of `sslscan` (https://github.com/rbsec/sslscan) for the target server. sslscan is available in...
@deepak-chhetri I don't have a ready made example. I guess you should be able to customize that by adding a bean that implements org.springframework.cloud.gateway.config.HttpClientCustomizer.
You might also be able to override `httpClientSslConfigurer` bean with your own implementation that configures the ciphers. https://github.com/spring-cloud/spring-cloud-gateway/blob/920b3a81abb350afa9f53ad6be705560219cdfcb/spring-cloud-gateway-server/src/main/java/org/springframework/cloud/gateway/config/GatewayAutoConfiguration.java#L756-L761
> @lhotari Is there any settings that can be configured in yml file directly like spring.cloud.gateway.httpclient.ssl ? No. That's the reason why you need either of the solutions that I...
@deepak-chhetri Although it is possible that defaults for the ciphers could be configured with a system property.
@deepak-chhetri Unfortunately not.
It's also worth checking if ["Configuring default extensions"](https://docs.oracle.com/en/java/javase/17/security/java-secure-socket-extension-jsse-reference-guide.html#GUID-527BAE97-3B78-4390-A479-623BD998C4EE) is related. > Some TLS implementations may not handle unknown extensions properly. As a result, you might encounter unexpected interoperability issues when...